News

IT risk management

August 07, 2019 07 Aug'19
Industry collaborates to patch SwapGS CPU vulnerability

Newly disclosed SwapGS vulnerability in modern processors has been patched in Windows, Linux and ChromeOS, underlining the importance of keeping systems up to date
August 06, 2019 06 Aug'19
African bank foils suspected North Korean cyber attack

An African bank is among the financial institutions to be targeted by North Korea’s multi-billion dollar cyber theft campaign to support its weapons programmes
August 06, 2019 06 Aug'19
Most UK firms lack confidence in disaster recovery

Only a third of UK firms are confident in their ability to recover from cyber attacks and other disasters, with business continuity still relatively low on the agenda, a study reveals
August 05, 2019 05 Aug'19
DDoS on the rise, warns Kaspersky

Security researchers at Kaspersky are among those warning business that, more than ever, mitigation of distributed denial of service attacks needs to be a key element of cyber defence strategies

August 05, 2019 05 Aug'19
Most UK university applicants at risk of email fraud

The majority of hundreds of thousands of applicants to UK universities are at risk of email fraud before and after A-level results day, due to a failure to implement full Dmarc protection, a study reveals
August 02, 2019 02 Aug'19
Lack of resources top challenge to IT security

A lack of resources is the top challenge to information security professionals, followed by a lack of experience and skills, a survey reveals
August 02, 2019 02 Aug'19
Government continues probe of UK cyber security labour market

The government has announced a second phase of research to help understand the UK's cyber security labour market
August 01, 2019 01 Aug'19
Industrial control system cyber security risk high, report warns

The industrial control system cyber risk to global oil and gas companies is high and rising, as new attack groups continue to enter the arena
August 01, 2019 01 Aug'19
Leaked Sephora databases peddled on dark web

Cyber security firm finds two databases likely to be related to the Sephora data breach that affected online customers in Southeast Asia, Australia and New Zealand
July 31, 2019 31 Jul'19
Cisco pays $8.6m after whistleblower discloses security flaws in video surveillance system

James Glenn, a video surveillance expert working for a Cisco reseller in Denmark, alerted Cisco to security faults and stands to gain a share of a multimillion-dollar settlement with the US government

July 31, 2019 31 Jul'19
How Singapore’s NTUC Enterprise is embracing digital transformation

NTUC Enterprise is starting to look more like a technology company, employing DevOps to speed up software development and developing new digital business models even as cultural barriers to transformation remain
July 31, 2019 31 Jul'19
Financial services top cyber attack target

Financial services are among the most attractive targets for cyber attackers, security researchers reveal, with phishing and credential stuffing among the top threats
July 30, 2019 30 Jul'19
Australian firms grappling with “train-smash” of security legislation

While businesses should avoid going into checkbox compliance mode, the constant flux of regulations on cyber security and privacy has led to calls for more legislative coherence from regulators
July 30, 2019 30 Jul'19
Mobiles top target of nation state surveillance

Nation states are targeting individual mobile users for intelligence gathering and disruption of rivals as security on mobile devices lags behind traditional computing, a report reveals
July 29, 2019 29 Jul'19
Cyber kill chain is outdated, says Carbon Black

The chief cyber security officer of Carbon Black calls for a new cognitive paradigm to fend off cyber adversaries that are now attacking in cycles
July 26, 2019 26 Jul'19
Email security as important as ever, report shows

Cyber security professionals need to keep up to date with email-borne threats because they continue to evolve and have a major impact on business, research reveals
July 26, 2019 26 Jul'19
86 million reasons to support No More Ransom

Anti-ransomware cross-industry initiative says it has prevented more than £86m in ransom payments as it marks its third anniversary, which coincides with a resurgence in ransomware in many parts of the world
July 25, 2019 25 Jul'19
F-Secure talks up threat-hunting to stay ahead of cyber attacks in APAC

Cyber security firm calls for organisations to double up on threat-hunting now that nearly all attack and reconnaissance traffic is automated
July 25, 2019 25 Jul'19
Mobile banking malware surges in 2019

Mobile banking malware surged in the first half of the year, email scams geared up and attacks on cloud increased, while illicit cryptocurrency miners declined, report reveals
July 25, 2019 25 Jul'19
Most SMEs severely underestimate cyber security vulnerabilities

Small businesses are the primary target for cyber attacks, yet most are unprepared and do not think they will be targeted, a survey reveals
July 24, 2019 24 Jul'19
Internet crime costs global economy £2.3m a minute

Cyber crime cost the global economy £2.3m every minute in 2018, reveals a report aimed at defining the scale of cyber attacks taking place over the internet
July 24, 2019 24 Jul'19
Global malware down but ransomware up, with UK hard hit

Despite a global decrease in the volume of malware in the past year, ransomware is surging once again, and the UK is one of the worst-hit countries, a report reveals
July 24, 2019 24 Jul'19
AI to advance Swedish military systems

Swedish report into use of artificial intelligence in military systems reveals opportunities and concerns
July 23, 2019 23 Jul'19
Phishing attack highlights cyber security need at universities

UK university cyber security is once again under the spotlight after Lancaster University reveals that it has been targeted by a phishing attack used to send fake invoices
July 23, 2019 23 Jul'19
Norsk Hydro cyber attack could cost up to $75m

March 2019 ransomware attack could cost Norwegian aluminium giant up to $75m in the first half of the year, according to latest estimates
July 23, 2019 23 Jul'19
Data breach costs on the rise, IBM study shows

Data breach costs have risen in the past decade, and the financial impact can be felt for years. Breaches posing a growing risk for small businesses, a study shows, underlining the importance of incident response
July 23, 2019 23 Jul'19
Microsoft talks up benefits and pitfalls of machine learning in security

Software giant Microsoft uses machine learning models to detect emerging threats while keeping an eye on potential bias in security data points that could derail its analysis
July 22, 2019 22 Jul'19
Big tech firms back UK cyber security initiative

Big technology firms have pledged their support for UK investment in an initiative to “design out” of new tech the most damaging cyber security threats
July 19, 2019 19 Jul'19
Latest ICO fine highlights privacy due diligence

A week after issuing the first serious GDPR fines, the ICO has further underlined the importance of data stewardship and due diligence regarding privacy practices
July 19, 2019 19 Jul'19
Second CyberThreat Summit announced by NCSC and SANS Institute

CyberThreat 2019 aims to bring together a more diverse set of technical professionals in cyber security from the private and public sectors in the UK and abroad to encourage collaboration
July 19, 2019 19 Jul'19
MPs warn of data adequacy hole in no-deal Brexit

Transferring data to and from the EU will only be possible if an agreement is in place before the UK leaves. No deal means no data agreement
July 19, 2019 19 Jul'19
Warzone bulletproof hosts protecting Magecart group

Security researchers have discovered a Magecart group operating with impunity using bulletproof hosting services, including one in battle-scarred Ukraine
July 19, 2019 19 Jul'19
HID weighs in the glacial move towards digital ID

There are still concerns over data integrity, security and privacy of digital identities, but the convenience of the technology outweighs the risks, says a HID expert
July 18, 2019 18 Jul'19
UK poor cyber security practice undermining controls

UK firms investing in the latest cyber security products and services risk this being undermined by poor security practices, a survey reveals
July 18, 2019 18 Jul'19
Lateral phishing used to attack organisations on global scale

Lateral phishing is a growing type of account takeover that has enabled attackers to target more than 100,000 people by hijacking just 154 email accounts
July 17, 2019 17 Jul'19
Most security pros still concerned about public cloud security

Despite accelerated adoption of public cloud services by companies keen to benefit from increased efficiency, scalability and agility, most security professionals have reservations
July 17, 2019 17 Jul'19
Vulnerable firmware in enterprise server supply chain

Researchers are warning of vulnerabilities in firmware from a third-party supplier that put some servers from Lenovo, Gigabyte and six other manufacturers at risk
July 16, 2019 16 Jul'19
NCSC calls out Microsoft over Dmarc reports

The UK’s cyber security agency has called out Microsoft for seriously undermining global email security by failing to provide crucial reports from its email platforms
July 16, 2019 16 Jul'19
NCSC reports on second year of cyber defence at scale

The UK’s National Cyber Security Centre releases a report on the second year of its Active Cyber Defence programme to demonstrate its effects in the public sector and wider UK cyber ecosystem
July 15, 2019 15 Jul'19
No technical grounds to ban Huawei, DCMS told

Science and Technology Committee tells Department for Digital, Culture, Media and Sport that there are no technical grounds for it to exclude Huawei
July 15, 2019 15 Jul'19
Organisations turn to AI in race against cyber attackers

Businesses are racing to automate their defences as hackers and nation states launch increasingly sophisticated cyber attacks
July 15, 2019 15 Jul'19
UK public sector needs to prioritise mobile device security

Only 10% of public service stolen and lost mobile are recovered, underlining the need for mobile-centric, zero-trust model to reduce the risk, says MobileIron
July 15, 2019 15 Jul'19
UK boards ignoring £30bn cyber risk

Despite the danger posed by cyber attacks to mid-sized companies, boards are not prepared to manage the risk and firms are over-confident in their cyber capabilities, report finds
July 15, 2019 15 Jul'19
How Apollo 11 influenced modern computer software and hardware

On 16 July 1969, Apollo 11 began its historic journey to send man to the Moon. We look at the pioneering computer technology developed by Nasa
July 12, 2019 12 Jul'19
New FinSpy versions extend surveillance capabilities

New versions of the FinSpy malware for iOS and Android smartphones have extended targeted surveillance capabilities, warn security researchers
July 12, 2019 12 Jul'19
Windows 10 to enable passwordless sign-in

Windows 10 users will soon be able to sign in to devices without using a password to encourage the use of two-factor authentication methods to improve security
July 11, 2019 11 Jul'19
Attacks against AI systems are a growing concern

European research group says attacks against AI systems are already occurring, difficult to identify, and could be far more common than currently understood
July 11, 2019 11 Jul'19
RiskIQ uncovers new Magecart campaign

A fresh Magecart campaign is breaching websites on a massive scale using indiscriminate attacks exploiting misconfigured Amazon S3 buckets, say researchers
July 10, 2019 10 Jul'19
Agent Smith mobile malware hits millions of devices

New mobile malware that exploits Android vulnerabilities has infected millions of devices, security researchers have discovered
July 09, 2019 09 Jul'19
Nearly half of firms fear cloud apps make them insecure

Survey shows more than one-third of global companies appoint a CISO in the face of data breaches, and the UK is giving CISOs more power despite making fewer appointments