News

IT risk management

June 04, 2019 04 Jun'19
Deterministic data-based AI key for security

AI-based cyber security systems have enormous potential, but under specific conditions that are essential for success, AI expert tells Infosecurity Europe
June 04, 2019 04 Jun'19
Cyber crime widely under-reported, Isaca study shows

Cyber crime, which is the top cyber threat to business, remains widely under-reported, and only a third of organisations are confident in their ability to detect and respond to threats, a study reveals
June 04, 2019 04 Jun'19
Beware of security blind spots in encrypted traffic

The growth of encrypted traffic has put the spotlight on intrusion prevention systems that help to surface cyber attacks conducted under the cloak of network encryption
June 03, 2019 03 Jun'19
Australia’s Notifiable Data Breaches scheme drives compliance but issues remain

Australia’s data breach notification rules have largely been complied with, but some quarters are calling for more clarity on the reporting threshold and tougher action against errant firms

June 03, 2019 03 Jun'19
Business leaders failing to address cyber threats

Businesses are failing to address growing cyber threats as business leaders admit to knowledge gaps, a lack of resources and confusion about who is responsible for data breaches, a report reveals
May 31, 2019 31 May'19
Facebook loses bid to halt European court decision on EU-US data sharing

Irish Supreme Court dismisses attempt by Facebook to prevent the European Court of Justice considering the validity of US-EU data transfers, after Austrian lawyer Max Schrems argued that they put the privacy of EU citizens at risk
May 30, 2019 30 May'19
A lack of skills and ownership are top challenges to OT security

A lack of skills, visibility and clarity on which business function is responsible for securing operational technology are the biggest challenges to managing the risk, a study shows
May 30, 2019 30 May'19
2.3 billion business and consumer data files exposed online

In the year since the GDPR compliance deadline, the number of data files exposed online without adequate protection is up more than 50% due to misconfigured security controls, report reveals
May 29, 2019 29 May'19
Hackers targeting UK universities a threat to national security

Poorly defended UK university research that is mainly commissioned by government is a top target for hackers, putting national security at risk, a study reveals, underlining the need for better cyber security
May 29, 2019 29 May'19
Turla APT group beefs up cyber attack tool

An advanced persistent threat cyber espionage group has improved its tools to attack diplomatic targets, making their activities more difficult to detect and block

May 29, 2019 29 May'19
Cyber weapons readily available to criminals, researchers warn

Security researchers have discovered an attack campaign infrastructure designed to scan, brute-force and infect tens of thousands of MS-SQL and PHPMyAdmin servers
May 28, 2019 28 May'19
Dutch IT security firm dumps corporate structure

Boss of Netherlands-based Computest turns to self-management model to make company more nimble
May 24, 2019 24 May'19
Just over half of UK firms don’t have a cyber resilience plan

Many UK firms still lack cyber resilience and data protection capabilities covering email a year after the implementation of the GDPR aimed at improving personal data protection
May 23, 2019 23 May'19
Arm China seeks solutions to US export controls with Huawei

Chip design firm in communication with Huawei-owned semiconductor firm HiSilicon following US move to halt exports of US technology to Chinese tech giant
May 23, 2019 23 May'19
Lapse in LinkedIn security certificate update

A lapse in the update of LinkedIn’s security certificate has once again underlined the importance of keeping track to avoid disruptions and phishing attacks, and how even big players are failing to get it right
May 22, 2019 22 May'19
TalkTalk admits new failings in 2015 data breach notification

TalkTalk’s failure to notify all those affected by its 2015 data breach highlights the importance of data visibility so that breach notifications are fast and accurate – a key requirement of the GDPR
May 21, 2019 21 May'19
Dutch lecturer researches the person behind the cyber criminal

Dutch academic is trying to get inside the mind of cyber criminals by understanding what makes them tick
May 20, 2019 20 May'19
Danske Bank launches initiative to help SME customers with cyber security

Danske Bank launches initiative to support the cyber security efforts of its SME customers
May 17, 2019 17 May'19
GozNym bust underlines cyber crime threat

A criminal network using GozNym malware has been shut down in an international law enforcement operation, but others are still operating, underlining the need for vigilance, warns a security expert
May 16, 2019 16 May'19
Norwegian industry and state must combine to counter cyber threats

Norway has been targeted by two large ransomware attacks in recent months – and public and private organisations must react in a coordinated way
May 16, 2019 16 May'19
Fujitsu sets out to restore trust in technology

Trust in technology, how to recapture it, and how to ensure AI doesn’t overstep its bounds were the big messages on the opening day of Fujitsu Forum in Tokyo
May 15, 2019 15 May'19
Microsoft working to support decentralised identity

Microsoft is among the big tech players aiming to help enable personalisation of products and services without putting privacy at risk
May 15, 2019 15 May'19
Implement multifactor authentication, urges expert panel

Multifactor authentication should be a top priority for organisations to defend users from cyber attacks, coupled with zero-trust architecture and artificial intelligence-based technologies, says expert panel
May 14, 2019 14 May'19
APAC firms on the back foot in cyber security

Most Asia-Pacific organisations did not consider cyber security until after their digital transformation projects had begun, new survey finds
May 13, 2019 13 May'19
National Crime Agency calls for additional funding to tackle 21st century crime

Organised criminal gangs represent the biggest cyber threat to the UK, and law enforcement has identified rogue servers hosted in the UK
May 10, 2019 10 May'19
Key lessons from an ethical hacker

Understanding hacker techniques and processes is the best way to defend against cyber attacks, and focusing on business risks is the best way to get security budget, according to an ethical hacker
May 10, 2019 10 May'19
Dutch businesses not yet implementing NIS Directive

Little urgency to comply with the Network and Information Systems Security Act, which seeks to protect the Netherlands’ vital infrastructure and digital services from cyber attack
May 09, 2019 09 May'19
Northern Ireland generating cyber security knowledge and jobs

Northern Ireland is establishing itself as an international hub of cyber security research and innovation, providing growing employment opportunities
May 08, 2019 08 May'19
Time to start thinking about AI regulation, says KuppingerCole

Organisations and individuals should think about regulating artificial intelligence to avoid sleepwalking into a future regulated by these technologies, says analyst
May 08, 2019 08 May'19
Cyber criminals targeting C-suite, DBIR shows

Executives and cloud-based services are gaining popularity as targets for cyber criminals, according to the latest data breach investigations report
May 07, 2019 07 May'19
Privileged access management moving to cloud

Survey shows nearly half of information security professionals are either planning to move privileged access management to the cloud or are exploring the possibility
May 06, 2019 06 May'19
AWS to power Australia’s 2021 online census

PwC Australia, one of two firms appointed by the government to run the next Census, will build and operate an online form and a website on Amazon Web Services
May 03, 2019 03 May'19
Zero trust: A 21st century security model

Traditional corporate security models date back to a time when there were fewer, lower-level threats, but a zero trust model is better suited to the 21st century, according to the originator of the idea
May 03, 2019 03 May'19
Norsk Hydro urges caution as it counts cost of cyber attack

Norwegian aluminium giant Norsk Hydro is urging partners to be cautious in the wake of a damaging ransomware attack in March as financial impact estimates come in above initial estimates
May 02, 2019 02 May'19
Firms urged to embrace positive security trends to win cyber war

Modern cyber security challenges overshadow the information security successes of the past, but several positive trends are emerging as defenders come to grips with new threats, says Deloitte
May 02, 2019 02 May'19
Microservices introduce hidden security complexity, analyst warns

Microservice architecture – an approach to application development in which applications are built as a suite of modular services – simplifies development but complicates security, says KuppingerCole
May 02, 2019 02 May'19
Businesses unprepared for cyber breaches

Study shows many organisations lack IT security and operations basics, including visibility across their IT operations
May 01, 2019 01 May'19
BSA releases framework for secure software

Software industry advocacy group releases framework to facilitate flexible and comprehensive software security assessments
May 01, 2019 01 May'19
Get more proactive on cyber security, says ex Europol chief

Business needs to get more proactive, collaborative, resilient and analytical to manage cyber risks posed by cyber criminals down to acceptable levels, says former Europol chief
April 30, 2019 30 Apr'19
UK gears up for new laws on IoT security

The UK plans to introduce measures to require that basic cyber security features are built into internet-connected devices
April 30, 2019 30 Apr'19
Cyber criminals increase use of fileless attacks

Fileless attacks are increasingly popular with cyber criminals, while Russia and China top the league of nation state data exfiltrators, threat data shows
April 30, 2019 30 Apr'19
Most businesses vulnerable to supply chain cyber attacks

UK firms trail the leaders US and Germany in knowing the most about their partners’ cyber security practices, but most companies globally are in the dark about this growing source of vulnerabilities
April 30, 2019 30 Apr'19
Nearly half of UK IT pros report serious data breaches

Integration of security systems and employee training recognised as key ways to reduce the growing severity of data breaches
April 29, 2019 29 Apr'19
Fix the basics first, then worry about AI, advise experts

The freedom of the internet is at risk, with the cyber arms race and the industrialisation of hacking are set to continue as attackers move up the value chain to target trust mechanisms, threat experts predict
April 29, 2019 29 Apr'19
Australians lost half a billion dollars to scams in 2018

Most of the losses went to investment scams as tricksters found innovative ways to dupe victims into parting with their money
April 26, 2019 26 Apr'19
Facebook faces fresh privacy actions from regulators

Facebook faces legal action from Canada after it dismissed regulators’ findings that it failed to protect customer privacy. The firm has set aside $5bn to settle a privacy action in the US and faces a new investigation in Ireland
April 26, 2019 26 Apr'19
Top lessons from cyber attacks

Cyber security experts weigh in on lessons learned from cyber attack experiences, underlining that recovery capability is as important as defence
April 26, 2019 26 Apr'19
GDPR cases drive bigger budgets for Nordic regulators

High-profile General Data Protection Regulation cases in Finland and Sweden have increased the workload for regulators, which are to receive an increase in funding
April 25, 2019 25 Apr'19
UK up for cyber challenge but work to be done, says minister

Lidington says National Cyber Security Strategy has “revolutionised the UK’s fight against cyber threats”
April 25, 2019 25 Apr'19
Cabinet Office addresses 5G security issue

Cabinet Office uses NCSC conference to lay out government’s approach to the security of 5G networks, as controversy grows around using equipment from Chinese supplier Huawei