News

IT risk management

April 25, 2019 25 Apr'19
NCSC looks to industry to scale Active Cyber Defence

The national cyber security agency is calling on wider government organisations as well as industry to help scale automated cyber attack blocking systems country-wide
April 24, 2019 24 Apr'19
NCSC to scale up intelligence sharing, says GCHQ director

The GCHQ director has outlined the agency’s cyber security mission in the third decade of the internet age at CyberUK, promising to scale up the sharing of declassified cyber intelligence with industry
April 24, 2019 24 Apr'19
PM May approves Huawei for use in 5G networks despite opposition

The UK’s National Security Council has approved the use of Huawei’s networking equipment in parts of the country’s 5G mobile networks in spite of widespread opposition
April 23, 2019 23 Apr'19
Casual collaboration comms pose security risk, survey shows

UK employees have a worryingly casual attitude to workplace communications, underling the need for employers to take steps to counter related cyber attack vulnerabilities

April 23, 2019 23 Apr'19
APAC set for blockchain boom

Led by China, spending on blockchain technology in Asia-Pacific excluding Japan will surpass $2bn by 2022
April 18, 2019 18 Apr'19
State-sponsored hackers are hijacking DNS, researchers warn

A DNS-hijacking campaign targeting the Middle East and Africa may lead to actors more broadly attacking the global DNS system
April 17, 2019 17 Apr'19
Nearly a quarter of tech firms do not security check products

Nearly a quarter of organisations polled do not run security checks on products, and nearly a third admitted to shipping products with known security vulnerabilities, a survey shows
April 17, 2019 17 Apr'19
Wipro admits to potential breach to employee accounts by phishing attack

Indian IT services company Wipro is investigating a phishing attack, which hit some staff email accounts and launched attacks on customer environments
April 16, 2019 16 Apr'19
Singtel and NUS claim quantum breakthrough

Researchers from Singtel and the National University of Singapore have succeeded in coordinating the paths of photons across a fibre network to drive wider adoption of quantum key distribution
April 16, 2019 16 Apr'19
Huawei cyber security chief John Suffolk: It’s not our culture to be aggressive

John Suffolk, global cyber security and privacy officer at China-based telecoms equipment supplier Huawei, tells Huawei Analyst Summit growth is the best answer to US criticism

April 16, 2019 16 Apr'19
Energy industry needs to up cyber defences, warns report

Cyber threat actors are advanced and persistent, but firms in the energy industry are using outdated systems and technology to save money, putting them at risk of cyber attacks, warns F-Secure report
April 15, 2019 15 Apr'19
How Palo Alto Networks fends off its cyber adversaries

Palo Alto Networks CIO Naveen Zutshi talks up the company’s approach in keeping threat actors at bay
April 15, 2019 15 Apr'19
Facebook takes extraordinary legal steps to contain document leak

Facebook targets journalists and news organisations for computer searches
April 15, 2019 15 Apr'19
Zero trust is about more than products

The zero trust security model is more than just products and network segmentation, it’s an architectural design principle with identity at its core that needs to be applied enterprise-wide, says KuppingerCole
April 15, 2019 15 Apr'19
Automation will bring job security, say most IT security pros

Most security professionals believe that although automation can support humans, it will not result in a reduction in job opportunities, a study shows
April 11, 2019 11 Apr'19
Government breach data highlights cyber skills misconception

Results of a government-sponsored survey highlight a dangerous misconception around cyber skills, according to a former GCHQ trainer
April 11, 2019 11 Apr'19
Triton industrial malware group still active, researchers warn

Security researchers have found traces of a Russian-linked cyber attack group in another critical infrastructure facility, prompting calls for increased diligence around industrial cyber security
April 10, 2019 10 Apr'19
A quarter of phishing emails bypass Office 365 security

Cloud-based email is leaving enterprises vulnerable to phishing attacks capable of giving cyber criminals access to a wide range of critical data, warn security researchers
April 09, 2019 09 Apr'19
Digital doppelgangers for sale to defeat anti-fraud tech

Security researchers have uncovered an online market selling digital identities to help cyber criminals to defeat anti-fraud technologies, as financial cyber crime becomes a bigger threat than ever before
April 09, 2019 09 Apr'19
UK councils team up to boost cyber security

Three UK councils and data analysis firm Splunk have teamed up to improve cyber defence capabilities and maintain their security systems
April 08, 2019 08 Apr'19
Ransomware getting more targeted, warns Flashpoint

Ransomware attacks are becoming more targeted and designed to infect different sized organisations in specific industries and regions, say security researchers
April 08, 2019 08 Apr'19
How APAC firms can tame the data beast

Companies and data management experts across Asia-Pacific reveal how they are tackling data management challenges that have been compounded by growing cloud usage and compliance requirements
April 05, 2019 05 Apr'19
Critical infrastructure under relentless cyber attack

A lack of visibility into the attack surface, inadequate security staffing and reliance on manual processes undermine operational technology security capabilities, a study reveals
April 05, 2019 05 Apr'19
European firms see value in ‘known good’ approach to security

European data protection regulations are driving enterprise interest in an approach to security being championed by virtualisation software maker VMware, says the company’s security lead
April 04, 2019 04 Apr'19
The rise of digital workers and the bot economy

Automation Anywhere’s booming business, particularly in the Asia-Pacific region, is a sign of things to come in the new world of work where digital workers can be hired from a bot store
April 04, 2019 04 Apr'19
Researchers uncover US-based malware distribution centre

More than a dozen US-based web servers are operating as the malware equivalent of an Amazon fulfilment centre to target businesses, security researchers have found
April 04, 2019 04 Apr'19
Document-based malware on the rise, businesses warned

Document-based malware spiked in the first quarter of the year, building on a gradual rise in the past year, warn researchers
April 03, 2019 03 Apr'19
Government urges businesses and charities to up cyber security

The UK government is urging businesses and charities to take action to prevent cyber attacks as the costs go up, despite an overall reduction in breaches, partly driven by new data protection laws
April 03, 2019 03 Apr'19
Employees lack awareness of corporate data-sharing policies

IT leaders believe their organisations are highly likely to lose data in the next 12 months due to accidental data breaches
April 02, 2019 02 Apr'19
Akamai to open second traffic scrubbing centre in Australia

New centre in Melbourne will meet growing demand for scrubbing services to mitigate the impact of distributed denial of service attacks in Australia
April 02, 2019 02 Apr'19
Four in 10 leading banks failing on email fraud protection

Top UK traditional and challenger banks risk exposing customers to email fraud, a study reveals
April 02, 2019 02 Apr'19
Cyber attacks increasingly exploiting supply chain weaknesses

Cyber attacks are increasingly characterised by supply chain attacks, counter incident response and lateral movement, research reveals
April 02, 2019 02 Apr'19
Huawei reports record numbers despite tumultuous year

Huawei has become one of the world’s largest technology companies by revenue, suggesting the accusations over its ties to the Chinese government are failing to have much impact
April 01, 2019 01 Apr'19
Black Hat Asia 2019: Get ready for the cyber arms race

The arms race is now squarely in the cyber realm as defence teams and threat actors arm themselves with AI tools
April 01, 2019 01 Apr'19
Rapidly multiplying IoT cyber attacks use well-known weaknesses

Internet of things threats and attacks are increasing rapidly, but rely on well-known security weaknesses, security researchers discover
April 01, 2019 01 Apr'19
Singapore government to review data security in public sector

A high-level committee comprising ministers and private sector security experts will review data security practices and recommend measures to better protect citizens’ data
March 29, 2019 29 Mar'19
Magento e-commerce sites urged to apply security update

Security experts are urging companies using the Magento e-commerce site to apply security updates without delay to avoid a disastrous hacking campaign
March 28, 2019 28 Mar'19
Infosec pros slam government-mandated backdoors

Government-mandated encryption backdoors increase vulnerability to nation-state attacks, according to the majority of cyber security professionals
March 28, 2019 28 Mar'19
Encryption adoption driven by new tech and compliance

The adoption of encryption is at its highest level yet, driven by the need to protect data generated by new digital initiatives, but still less than half of organisations are applying it consistently across the enterprise
March 27, 2019 27 Mar'19
UK IoT research centre to tackle cyber risk

A government-backed national IoT research centre has been launched as part of UK efforts to become a world leader in tackling cyber threats
March 27, 2019 27 Mar'19
Cyber attacks targeting industrial control systems on the rise

Malicious cyber activity increased to almost half of the industrial infrastructure protected by Kaspersky Lab in 2018, but the UK is among the most secure countries, the security firm reports
March 27, 2019 27 Mar'19
Norsk Hydro cyber attack cost estimates up to $41m

Initial estimates have put the financial impact of last week’s ransomware attack on the Norwegian aluminium producer of up to nearly $41m, raising questions about cyber insurance coverage
March 26, 2019 26 Mar'19
IT complexity raises concerns of certificate-related outages

Company executives are concerned that increased IT complexity will result in more security certificate-related outages, with nearly two-thirds of organisations affected in the past year
March 26, 2019 26 Mar'19
Asus releases fix for supply chain cyber attack

Asus has released a fix for a supply chain attack and downplayed the impact on customers while promising to contact all those affected as incident highlights code signing vulnerabilities
March 26, 2019 26 Mar'19
Nominet urges SMEs to register .uk domains to thwart squatters

The automatic right of .co.uk domain name holders to register the shorter .uk domains ends in June
March 26, 2019 26 Mar'19
Firms urged to gear up for new malware and tactics as threats proliferate

The volume of malware attacks reached a record level in 2018, with UK and India bucking global trend of increased ransomware attacks, a study shows
March 25, 2019 25 Mar'19
Security challenge is to move as fast as the business

Adapting security to the pace at which the business is moving is one of the biggest challenges facing infosec professionals in the cloud era, says Palo Alto Networks
March 22, 2019 22 Mar'19
Digital Darwinism unkind to those who wait, says Palo Alto

As business-driven digital transformation, including the move to cloud, continues apace, companies need to rethink their approach to how they deploy and consume security, or risk being left behind
March 22, 2019 22 Mar'19
Government cyber security strategy is ‘chaotic’

Responding to potential threats at a national level is unfeasible given the time ministers are currently dedicating to Brexit negotiations, says shadow Cabinet Office minister
March 20, 2019 20 Mar'19
Spike in cyber attacks targeting Cisco Webex

Cyber attacks targeting a leading web conference tool have increased dramatically and sextortion is becoming more popular with attackers, according to WatchGuard Technologies