News

IT risk management

• October 23, 2019 23 Oct'19

  Take responsibility for cyber security basics, urges NCSC CEO

  At the launch of its third annual review, NCSC head Ciaran Martin appealed for individuals and businesses to address the fundamentals of cyber security hygiene to help lighten the load

• October 22, 2019 22 Oct'19

  Banks move to contain impact of Samsung biometric flaw

  NatWest and Nationwide have moved to lock down their mobile banking apps after Samsung warned of a biometric security flaw on its Galaxy and Note S10 devices

• October 22, 2019 22 Oct'19

  Over-30s tend to do better at cyber security than younger colleagues

  Attitudes to workplace cyber security differ by age group, but not in the way one might imagine, according to a new study by NTT Security

• October 21, 2019 21 Oct'19

  Trend Micro buys cloud security firm to broaden offering

  Acquisition of Cloud Conformity will address often overlooked cloud security fundamentals

• October 21, 2019 21 Oct'19

  Sodinokibi emerging as a diverse, multi-vector threat to businesses

  McAfee shares insight into the Sodinokibi ransomware campaign gleaned from its network of honeypots

• October 18, 2019 18 Oct'19

  Amazon consumer devices vulnerable to two-year-old exploit

  Millions of older Amazon Echo and Kindle devices are still susceptible to a Wi-Fi vulnerability that was first disclosed in 2017

• October 17, 2019 17 Oct'19

  BEIS launches multimillion-pound security investment package

  Government is making available more than £50m to support a range of new cyber security initiatives and collaborations, including the latest phase of its Digital Security by Design programme

• October 17, 2019 17 Oct'19

  NHSX could transform NHS security capabilities

  The health sector is increasingly confident that NHSX can deliver a streamlined, effective cyber security policy for the health service

• October 17, 2019 17 Oct'19

  Security threat landscape becomes more organised and business-like

  Approaches to securing the enterprise need to change in the face of a rapidly maturing threat landscape

• October 16, 2019 16 Oct'19

  Pitney Bowes ‘considering options’ after malware attack

  Mailing and shipping services firm in recovery mode after key systems were encrypted by a malware attack

• October 08, 2019 08 Oct'19

  How APAC enterprises can keep pace with container security

  For all the promises of containers, changes in architecture and practices associated with the technology bring new challenges and opportunities

• October 03, 2019 03 Oct'19

  IT contractor charged over cyber attack on property valuation firm

  Australian police charge 49-year-old man with stealing and posting more than 170,000 data records belonging to ASX-listed Landmark White on the dark web

• October 03, 2019 03 Oct'19

  LogRhythm touts unlimited data plan for SIEM systems

  SIEM supplier introduces three-year, term-based pricing plan that lets enterprises ingest as much data as they want without breaking the bank

• October 03, 2019 03 Oct'19

  Local authorities hit by 800 cyber attacks every hour

  Local authorities and councils in the UK have reported being hit by more than 263 million cyber attacks in the first six months of this year

• October 03, 2019 03 Oct'19

  Cyber war as big a threat as nuclear war, says ex-RSA head Coviello

  Former RSA chairman Art Coviello has been speaking about the devastating potential of cyber weapons, and warned that humanity must learn from history in order to control them

• October 01, 2019 01 Oct'19

  A security breach is inevitable, IT leaders warned

  No matter how much IT security tech and training is in place, sophisticated, targeted attacks are going to breach company defences, Carbon Black warns

• October 01, 2019 01 Oct'19

  Singapore outlines initiatives to tackle OT and IoT security

  The Cyber Security Agency of Singapore has developed a blueprint to secure operational technology systems in critical sectors, among other measures to secure cyber-physical systems and the internet of things

• September 27, 2019 27 Sep'19

  Nodersok malware campaign is infecting thousands, Microsoft warns

  Thousands of Windows endpoints in the US and Europe have been infected by a new fileless malware campaign in the past few weeks

• September 27, 2019 27 Sep'19

  GDPR compliance: Whose job is it and is it really possible?

  Nobody seems to have a good handle on business GDPR compliance, how many businesses are compliant, or indeed what compliance really is, but according to security experts, it very much depends on who you talk to

• September 26, 2019 26 Sep'19

  Overinvestment breeds overconfidence among security pros

  CISOs have made an abundance of security investments in multiple suppliers, but this might not be the right approach

• September 24, 2019 24 Sep'19

  Singapore payment card data compromised by JavaScript sniffers

  Raw data of thousands of payment cards issued by Singapore banks stolen by the online equivalent of a traditional card sniffer

• September 24, 2019 24 Sep'19

  Enterprises exposed to data loss by cloud configuration errors

  Only 1% of misconfigured cloud environments are spotted and attackers are capitalising on this, claims McAfee

• September 18, 2019 18 Sep'19

  Facebook automatically generates pages for Islamic State and Al-Qaeda

  Facebook algorithms have auto-generated hundreds of Facebook pages for the Islamic State, Al-Qaeda and Ansar al-Sharia, according to a whistleblower

• September 18, 2019 18 Sep'19

  Universities tempting targets for cyber criminals, warns NCSC

  As hundreds of thousands of students prepare for the new academic year, universities have been warned that they are at high risk of cyber attack

• September 16, 2019 16 Sep'19

  Ensign InfoSecurity opens global headquarters in Singapore

  The Singapore-based cyber security firm’s new headquarters will also be home to a new security operations centre that will be supported by Singapore-centric threat intelligence

• September 13, 2019 13 Sep'19

  When AIs go to war: Autonomous cyber weapons ‘inevitable’

  CISOs must start thinking about how to engage with intelligent, adaptive, non-human attackers, says Trend Micro’s Rik Ferguson

• September 12, 2019 12 Sep'19

  UN agency Unicef praised for response to accidental data leak

  The UN’s children’s agency has disclosed an inadvertent leak of personal data belonging to users of its online learning platform Agora

• September 11, 2019 11 Sep'19

  Nordic countries deepen collaboration with Estonia-based cyber security operation

  Nordic countries are now working closer with Nato’s Estonia-based centre of excellence in cyber security

• September 11, 2019 11 Sep'19

  GDPR non-compliance worse than feared

  Over half of UK businesses do not yet appear to be fully GDPR-compliant, and many have de-prioritised their compliance efforts

• September 10, 2019 10 Sep'19

  UK calls for cyber capacity-building at UN security group

  The UK’s representative to a United Nations cyber security working group has called for increased investment in capacity around cyber security

• September 10, 2019 10 Sep'19

  BT gears up to take on rogue drones

  BT’s Enterprise unit is offering customers an anti-drone security solution to protect their physical sites from intrusion

• September 06, 2019 06 Sep'19

  Australia government to chart 2020 cyber security strategy

  Australia’s home affairs ministry has released a discussion paper to seek views from all segments of society on the country’s next cyber security blueprint

• September 05, 2019 05 Sep'19

  Singapore’s SecureAge eyes US market

  The Singapore-based supplier of encryption and anti-malware tools has set up a new office in Greater Washington, DC as the next logical step in its global expansion plan

• September 05, 2019 05 Sep'19

  Tide Foundation aims to boost password security

  While passwordless security remains just out of reach, a non-profit organisation has developed a mechanism that it says makes passwords exponentially more difficult to crack

• September 04, 2019 04 Sep'19

  TrickBot Trojan switches to stealthy Ostap downloader

  Operators of the TrickBot banking Trojan have switched to a new downloader to evade detection and analysis for a high-volume malicious spam campaign targeting business, researchers warn

• September 03, 2019 03 Sep'19

  Cyber criminals tap into web social engineering toolkit 

  Security researchers have discovered a web social engineering toolkit that enables cyber criminals to create fake update notification campaigns 

• September 03, 2019 03 Sep'19

  CISOs think cloud safer, but security fears remain

  The majority of information security leaders think cloud is now safer than on-premise, but security fears remain, with recently breached and highly regulated organisations most concerned, poll reveals

• September 03, 2019 03 Sep'19

  At least 47,000 servers vulnerable to remote attack

  All organisations using Supermicro servers are being urged to update firmware to block remote attacks exploiting vulnerabilities in baseboard management controllers

• September 02, 2019 02 Sep'19

  UK organisations join quantum comms pilot

  Four UK companies are taking part in a pilot project to build the most secure communication infrastructure in Europe

• September 02, 2019 02 Sep'19

  CISOs turn to AI, detection, response and education

  Information security leaders are looking to artificial intelligence, better detection and response capabilities and user education in the face of cyber threats, but need more budget, a study shows

• August 30, 2019 30 Aug'19

  Social media and enterprise apps pose big security risks

  The lack of security policies in many business applications is putting enterprise data at risk and social media apps are the biggest source of malware, a poll of IT professionals reveals

• August 29, 2019 29 Aug'19

  UK gets first millionaire ethical hacker

  Six months after the first millionaire ethical hacker was announced, five more have been recognised, including a Briton, who have collectively discovered nearly 5,000 vulnerabilities

• August 29, 2019 29 Aug'19

  Finland’s security agencies collaborate after cyber attacks

  National Bureau of Investigations and National Cyber Security Centre aim to increase expertise and capability to defend Finland’s critical IT infrastructure

• August 29, 2019 29 Aug'19

  UK firms getting on top of IT downtime costs

  Despite data breach headlines, UK firms are generally improving in their data protection, business continuity, cyber preparedness and understanding of downtime costs, study shows

• August 29, 2019 29 Aug'19

  Dutch regulator reveals potential Microsoft privacy breach

  Netherlands privacy watchdog has revealed potential breaches while testing Microsoft software changes

• August 28, 2019 28 Aug'19

  Targeted cyber attacks, including ransomware, on the rise

  Governments and healthcare institutions are prime targets of ransomware operators, a report shows

• August 28, 2019 28 Aug'19

  Most UK firms ignore security in tech investments

  Less than a quarter of UK firms prioritise security when investing in new technology, despite the threat of cyber attacks and data protection regulations, a survey reveals

• August 28, 2019 28 Aug'19

  Ransomware has evolved into a serious enterprise threat

  Ransomware has seen a resurgence since the start of 2019, with cyber criminals changing code and tactics to target enterprises and local authorities for higher ransom payments, McAfee researchers warn

• August 27, 2019 27 Aug'19

  Employees, MSPs and developers top third-party risks

  Employees, managed service providers and developers are the top sources of third-party risks in terms of data security, a survey reveals, highlighting the value of workplace monitoring

• August 26, 2019 26 Aug'19

  VMware’s latest acquisitions point to emerging platform war

  VMware’s buyout of Carbon Black and Pivotal is a sign of an emerging platform war following the IBM-Red Hat deal