News
IT risk management
-
August 16, 2018
16
Aug'18
Google Chrome flaw puts privacy at risk
Imperva security researcher urges Google Chrome users to update to the latest version after discovering a vulnerability that could be exploited to uncover private data
-
August 15, 2018
15
Aug'18
The National Archives deploys Egress to support FoI requests
Egress Secure Workspace is being used by the Advisory Council for The National Archives, who require a collaboration environment to assess FoI requests
-
August 15, 2018
15
Aug'18
ICS security at risk in key verticals, report shows
The security of industrial control systems (ICS) is at risk in key verticals due to under staffing, under investment and human error, a report reveals
-
August 15, 2018
15
Aug'18
Intel releases fix for latest chip security flaws
Businesses and consumers are advised to download security updates from Intel for new security flaws that could allow attackers to access protected data, but some cloud providers could see a performance impact
-
August 14, 2018
14
Aug'18
Businesses urged to patch Microsoft flaw allowing MFA bypass
Security researchers are urging enterprises to update their software after the discovery of a vulnerability that could undermine the security provided by multifactor authentication
-
August 14, 2018
14
Aug'18
FBI warns of global ATM cyber crime spree
The FBI has issued a warning to banks that cyber criminals are planning to steal millions in a coordinated worldwide attack on cash machines
-
August 13, 2018
13
Aug'18
Banks lead in digital era fraud detection
All e-commerce businesses should follow the banks’ lead in how to detect fraud in the digital era, says RSA fraud and risk expert
-
August 13, 2018
13
Aug'18
Most security pros concerned about election infrastructure
A majority of information security professionals believe that election infrastructure is vulnerable to cyber attack, a survey shows
-
August 13, 2018
13
Aug'18
UK firms concerned about cyber arms race
Continuous investment and activity are key in the cyber arms race, according to Databarracks, as research shows UK firms are worried about keeping up with security challenges
-
August 13, 2018
13
Aug'18
Millions of businesses vulnerable to fax-based cyber attack
Hackers could exploit security vulnerabilities in fax machines to launch cyber attacks in millions of organisations around the world, researchers warn, underlining the need for cyber resilience
-
August 12, 2018
12
Aug'18
Over 146 billion records to be stolen over next five years
The US will bear the brunt of data exfiltration efforts by cyber criminals, though Asia-Pacific nations such as Singapore will not be spared
-
August 10, 2018
10
Aug'18
Mimecast extends core email security to enable cyber resilience
Mimecast continues to widen its cyber security capability through in-house development and strategic acquisition, as well as extend its core email security technologies to all other areas it applies
-
August 10, 2018
10
Aug'18
NCR patches ATM vulnerabilities
NCR has patched ATM vulnerabilities discovered by Positive Technologies
-
August 09, 2018
09
Aug'18
Under half of firms use vulnerability assessments
Less than half of organisations base their cyber defences on strategic vulnerability assessments, and a third of these do the bare minimum to meet compliance requirements, a study shows
-
August 09, 2018
09
Aug'18
Smart cities a tempting target for cyber attackers
Smart cities are an attractive target for cyber attackers because of the growing number of connected systems embedded throughout their infrastructure
-
August 09, 2018
09
Aug'18
Brace for more Triton-like attacks, researchers warn
The world has not seen the last of industrial control system (ICS) attacks like Triton, researchers have warned
-
August 09, 2018
09
Aug'18
Incomplete visibility a top security failing
Incomplete visibility of IT environments is among the most common basic enterprise security failings, as most organisations are still failing to achieve basic cyber security hygiene, a survey reveals
-
August 08, 2018
08
Aug'18
Financial services firms lack the culture to innovate fast
Finance firms appear to be struggling to release new software quickly, a study from Contino has found
-
August 08, 2018
08
Aug'18
Check Point warns of WhatsApp vulnerabilities
Researchers are warning of vulnerabilities in WhatsApp that allow threat actors to intercept and manipulate messages sent in a group chat
-
August 08, 2018
08
Aug'18
Cyber security double agents most common in the UK
Cyber security professionals who alternate between criminal and legitimate activities or move full-time into cyber criminal activity are more common in the UK than other countries, a report reveals
-
August 08, 2018
08
Aug'18
Australia calls for interventionist approach in new cyber agenda
The Australian government is forming a cyber defence network comprising security agencies and private sector partners to support a more interventionist approach towards cyber security
-
August 07, 2018
07
Aug'18
AI security hype putting businesses at risk
The hype around artificial intelligence may be putting businesses at risk, according to a study that found most IT decision-makers believe AI is the answer to all cyber security challenges
-
August 07, 2018
07
Aug'18
Lack of Dmarc email validation puts brands and customers at risk
There is a worldwide lack of Dmarc email validation to defend against fraud and phishing attacks, putting organisations and customers at risk, a study shows
-
August 07, 2018
07
Aug'18
Industrial control systems a specialised cyber target
Cyber attackers specialising in industrial control systems are fast, efficient and able to move between IT and OT environments, a study has revealed
-
August 06, 2018
06
Aug'18
Mobile banking Trojans reach all-time high
Mobile banking Trojans topped the list of cyber threats in the second quarter of the year, according to research by Kaspersky Lab
-
August 06, 2018
06
Aug'18
Virus outbreak at iPhone chip plant could delay shipments
A computer virus at an iPhone chip manufacturing plant could delay shipments of Apple’s latest smartphones, but the impact will be limited, say analysts
-
August 03, 2018
03
Aug'18
UK security centre to launch IoT security standard
The London-based Centre for Strategic Cyber Space and Security Science is working on an internet of things security standard and has roped in participants from eight markets
-
August 02, 2018
02
Aug'18
Gorgon Group shows simple cyber attacks remain effective
A highly effective cyber attack group that appears to be based in Pakistan is carrying out targeted attacks against nation states at the same time as criminal operations, researchers have found
-
August 02, 2018
02
Aug'18
Reddit breach exposes 2FA flaws
Reddit has reported a password breach despite using 2FA, exposing the weaknesses of two-factor authentication based on mobile text messages
-
August 02, 2018
02
Aug'18
Three Carbanak cyber heist gang members arrested
Three alleged members of the Carbanak gang believed to be responsible for more than 100 cyber heists worldwide have been arrested, US authorities have announced
-
August 01, 2018
01
Aug'18
Bromium evolves virtualisation-based security
Virtualisation-based security firm Bromium has evolved its technology to offer bidirectional protection for applications and underlying operating systems
-
August 01, 2018
01
Aug'18
Top dark web indicators of compromise
There are 10 common activities on the dark web that indicate a data breach or some other security compromise has taken place, according to a specialist monitoring firm
-
July 31, 2018
31
Jul'18
SamSam ransomware reaps $5.9m and counting
In just two and a half years, SamSam campaigns are believed to have netted nearly $6m for cyber criminals, an analysis of this adaptive and evasive strain of active ransomware reveals
-
July 31, 2018
31
Jul'18
Australia’s health sector reports most data breaches again
In the first full quarter since Australia’s mandatory breach disclosure scheme came into effect, healthcare providers reported the most data breaches amid controversy over the national health record system
-
July 31, 2018
31
Jul'18
Briton ran pro-Kremlin disinformation campaign that helped Trump deny Russian links
A British IT manager and former hacker from Darlington ran a disinformation campaign that duped former US intelligence agents and provided Donald Trump with manufactured “evidence” to deny that Russia interfered with the US election
-
July 30, 2018
30
Jul'18
Pentagon flags risky software suppliers
The Pentagon has drawn up a list of software suppliers that it wants the US military and defence contractors to avoid due to fears of risks to national security
-
July 29, 2018
29
Jul'18
Burden of data protection rests on firms and governments
A senior executive at Singapore’s Cyber Security Agency stressed the role of corporate data governance and government regulations in raising the bar on cyber security
-
July 27, 2018
27
Jul'18
Fileless malware a growing trend, warns McAfee
Cyber attackers are increasingly moving away from traditional malware to using trusted Windows executables to invade systems and breach corporate networks, say security researchers
-
July 27, 2018
27
Jul'18
Hackers targeting software supply chains, US report warns
A US government report on cyber espionage by China, Russia and Iran says software supply chains are increasingly under attack
-
July 26, 2018
26
Jul'18
Brace for PowerGhost cryptominer, warns Kaspersky Lab
Corporate networks are the target of a new illicit cryptocurrency mining malware that is difficult to detect and eradicate, security researchers warn
-
July 26, 2018
26
Jul'18
Crest report highlights need for bug bounty best practice
A lack of best practice guidelines for bug bounties is leaving researchers, organisations and bounty platforms confused and at risk, a report reveals
-
July 26, 2018
26
Jul'18
Software development remains insecure
The prevalence of common and well-known web-based vulnerabilities underlines the need for better education around secure software development
-
July 26, 2018
26
Jul'18
Cyber security vulnerability concerns skyrocket
Security professionals are more worried about data breaches and cyber attacks than they were a year ago, with most fearing that Meltdown-Spectre attacks are becoming the norm
-
July 25, 2018
25
Jul'18
Dark web cyber crime markets thriving
The market for cyber criminals’ services is thriving on the dark web, research reveals
-
July 25, 2018
25
Jul'18
ERP applications are under cyber attack, research confirms
ERP applications are increasingly being targeted by cyber criminals, hacktivists and nation-state actors, a report reveals
-
July 25, 2018
25
Jul'18
Apache OpenWhisk users urged to patch
IBM has patched vulnerabilities in its Cloud Functions service that is based on Apache OpenWhisk in response to vulnerability disclosures, and all other users are urged to do the same
-
July 25, 2018
25
Jul'18
Application attacks demand new security approach
Applying security software updates is an ineffective way to deal with application layer cyber attacks and businesses should change their approach, security experts advise
-
July 25, 2018
25
Jul'18
Ransomware concern drops despite being top cost
Fewer organisations are worried about ransomware even though it remains one of the most costly cyber attacks
-
July 25, 2018
25
Jul'18
Australian energy sector caught in security catch-22
With regulators unwilling to accept security investments that would lead to higher tariffs, there is a chance that Australia’s National Energy Market could face increased cyber risks
-
July 24, 2018
24
Jul'18
Ramp up security to mitigate Office 365 attacks
Public clouds tend to be more secure, but Office 365 has become a major target for attacks, which means internal IT security needs tightening