News

IT risk management

April 11, 2019 11 Apr'19
Government breach data highlights cyber skills misconception

Results of a government-sponsored survey highlight a dangerous misconception around cyber skills, according to a former GCHQ trainer
April 11, 2019 11 Apr'19
Triton industrial malware group still active, researchers warn

Security researchers have found traces of a Russian-linked cyber attack group in another critical infrastructure facility, prompting calls for increased diligence around industrial cyber security
April 10, 2019 10 Apr'19
A quarter of phishing emails bypass Office 365 security

Cloud-based email is leaving enterprises vulnerable to phishing attacks capable of giving cyber criminals access to a wide range of critical data, warn security researchers
April 09, 2019 09 Apr'19
Digital doppelgangers for sale to defeat anti-fraud tech

Security researchers have uncovered an online market selling digital identities to help cyber criminals to defeat anti-fraud technologies, as financial cyber crime becomes a bigger threat than ever before

April 09, 2019 09 Apr'19
UK councils team up to boost cyber security

Three UK councils and data analysis firm Splunk have teamed up to improve cyber defence capabilities and maintain their security systems
April 08, 2019 08 Apr'19
Ransomware getting more targeted, warns Flashpoint

Ransomware attacks are becoming more targeted and designed to infect different sized organisations in specific industries and regions, say security researchers
April 08, 2019 08 Apr'19
How APAC firms can tame the data beast

Companies and data management experts across Asia-Pacific reveal how they are tackling data management challenges that have been compounded by growing cloud usage and compliance requirements
April 05, 2019 05 Apr'19
Critical infrastructure under relentless cyber attack

A lack of visibility into the attack surface, inadequate security staffing and reliance on manual processes undermine operational technology security capabilities, a study reveals
April 05, 2019 05 Apr'19
European firms see value in ‘known good’ approach to security

European data protection regulations are driving enterprise interest in an approach to security being championed by virtualisation software maker VMware, says the company’s security lead
April 04, 2019 04 Apr'19
The rise of digital workers and the bot economy

Automation Anywhere’s booming business, particularly in the Asia-Pacific region, is a sign of things to come in the new world of work where digital workers can be hired from a bot store

April 04, 2019 04 Apr'19
Researchers uncover US-based malware distribution centre

More than a dozen US-based web servers are operating as the malware equivalent of an Amazon fulfilment centre to target businesses, security researchers have found
April 04, 2019 04 Apr'19
Document-based malware on the rise, businesses warned

Document-based malware spiked in the first quarter of the year, building on a gradual rise in the past year, warn researchers
April 03, 2019 03 Apr'19
Government urges businesses and charities to up cyber security

The UK government is urging businesses and charities to take action to prevent cyber attacks as the costs go up, despite an overall reduction in breaches, partly driven by new data protection laws
April 03, 2019 03 Apr'19
Employees lack awareness of corporate data-sharing policies

IT leaders believe their organisations are highly likely to lose data in the next 12 months due to accidental data breaches
April 02, 2019 02 Apr'19
Akamai to open second traffic scrubbing centre in Australia

New centre in Melbourne will meet growing demand for scrubbing services to mitigate the impact of distributed denial of service attacks in Australia
April 02, 2019 02 Apr'19
Four in 10 leading banks failing on email fraud protection

Top UK traditional and challenger banks risk exposing customers to email fraud, a study reveals
April 02, 2019 02 Apr'19
Cyber attacks increasingly exploiting supply chain weaknesses

Cyber attacks are increasingly characterised by supply chain attacks, counter incident response and lateral movement, research reveals
April 02, 2019 02 Apr'19
Huawei reports record numbers despite tumultuous year

Huawei has become one of the world’s largest technology companies by revenue, suggesting the accusations over its ties to the Chinese government are failing to have much impact
April 01, 2019 01 Apr'19
Black Hat Asia 2019: Get ready for the cyber arms race

The arms race is now squarely in the cyber realm as defence teams and threat actors arm themselves with AI tools
April 01, 2019 01 Apr'19
Rapidly multiplying IoT cyber attacks use well-known weaknesses

Internet of things threats and attacks are increasing rapidly, but rely on well-known security weaknesses, security researchers discover
April 01, 2019 01 Apr'19
Singapore government to review data security in public sector

A high-level committee comprising ministers and private sector security experts will review data security practices and recommend measures to better protect citizens’ data
March 29, 2019 29 Mar'19
Magento e-commerce sites urged to apply security update

Security experts are urging companies using the Magento e-commerce site to apply security updates without delay to avoid a disastrous hacking campaign
March 28, 2019 28 Mar'19
Infosec pros slam government-mandated backdoors

Government-mandated encryption backdoors increase vulnerability to nation-state attacks, according to the majority of cyber security professionals
March 28, 2019 28 Mar'19
Encryption adoption driven by new tech and compliance

The adoption of encryption is at its highest level yet, driven by the need to protect data generated by new digital initiatives, but still less than half of organisations are applying it consistently across the enterprise
March 27, 2019 27 Mar'19
UK IoT research centre to tackle cyber risk

A government-backed national IoT research centre has been launched as part of UK efforts to become a world leader in tackling cyber threats
March 27, 2019 27 Mar'19
Cyber attacks targeting industrial control systems on the rise

Malicious cyber activity increased to almost half of the industrial infrastructure protected by Kaspersky Lab in 2018, but the UK is among the most secure countries, the security firm reports
March 27, 2019 27 Mar'19
Norsk Hydro cyber attack cost estimates up to $41m

Initial estimates have put the financial impact of last week’s ransomware attack on the Norwegian aluminium producer of up to nearly $41m, raising questions about cyber insurance coverage
March 26, 2019 26 Mar'19
IT complexity raises concerns of certificate-related outages

Company executives are concerned that increased IT complexity will result in more security certificate-related outages, with nearly two-thirds of organisations affected in the past year
March 26, 2019 26 Mar'19
Asus releases fix for supply chain cyber attack

Asus has released a fix for a supply chain attack and downplayed the impact on customers while promising to contact all those affected as incident highlights code signing vulnerabilities
March 26, 2019 26 Mar'19
Nominet urges SMEs to register .uk domains to thwart squatters

The automatic right of .co.uk domain name holders to register the shorter .uk domains ends in June
March 26, 2019 26 Mar'19
Firms urged to gear up for new malware and tactics as threats proliferate

The volume of malware attacks reached a record level in 2018, with UK and India bucking global trend of increased ransomware attacks, a study shows
March 25, 2019 25 Mar'19
Security challenge is to move as fast as the business

Adapting security to the pace at which the business is moving is one of the biggest challenges facing infosec professionals in the cloud era, says Palo Alto Networks
March 22, 2019 22 Mar'19
Digital Darwinism unkind to those who wait, says Palo Alto

As business-driven digital transformation, including the move to cloud, continues apace, companies need to rethink their approach to how they deploy and consume security, or risk being left behind
March 22, 2019 22 Mar'19
Government cyber security strategy is ‘chaotic’

Responding to potential threats at a national level is unfeasible given the time ministers are currently dedicating to Brexit negotiations, says shadow Cabinet Office minister
March 20, 2019 20 Mar'19
Spike in cyber attacks targeting Cisco Webex

Cyber attacks targeting a leading web conference tool have increased dramatically and sextortion is becoming more popular with attackers, according to WatchGuard Technologies
March 20, 2019 20 Mar'19
Police investigate Norsk Hydro ransomware attack

Ransomware attack on one of the world’s largest aluminium producers is under police investigation
March 20, 2019 20 Mar'19
UK cyber experts to support global company boards

A consortium of UK cyber security experts and academics is to support multinational company boards to tackle online threats and protect against cyber crime
March 20, 2019 20 Mar'19
UK government organisations’ email security lagging

Email security in UK government organisations is lagging far behind that of central government, analysis reveals, with less than a third implementing standard protection
March 19, 2019 19 Mar'19
Norsk Hydro confirms ransomware attack

A Norwegian aluminium producer has confirmed a ransomware attack is affecting several areas of its business, forcing it to switch to manual operations
March 19, 2019 19 Mar'19
Firms urged to protect against spear phishing

Spear phishing attacks are sophisticated, targeted, costly and increasing in popularity among cyber attackers, a report warns
March 19, 2019 19 Mar'19
Norwegian aluminium producer hit by ‘extensive’ cyber attack

A Norwegian aluminium producer has disclosed that it has come under cyber attack affecting several areas of its business as the firm faces claims of environmental damage
March 15, 2019 15 Mar'19
Businesses failing to grasp DevSecOps

UK and US businesses are being exposed to security risks by a failure to integrate security into DevOps programmes, research shows
March 14, 2019 14 Mar'19
National Cyber Security Programme at risk of missing targets

The National Audit Office has sharply criticised the Cabinet Office over failings in how it set up the National Cyber Security Programme that mean it may struggle to meet its goals
March 14, 2019 14 Mar'19
Avoid infosec mistakes of the past, urges Robert Hannigan

Technology innovators need to avoid security mistakes of the past by building in integrity so that products and services can be used with trust and confidence, says former GCHQ director
March 13, 2019 13 Mar'19
IT Priorities 2019: ASEAN organisations lay digital foundations

Organisations in Southeast Asia are planning to shore up their IT infrastructure to speed up application development and become more customer focused
March 13, 2019 13 Mar'19
Almost half UK firms hit by phishing attacks

Almost half of UK organisations have been compromised in the past two years using phishing attacks, despite high levels of cyber awareness and training, research shows
March 12, 2019 12 Mar'19
Cyber attackers favouring stealthier attacks, says Darktrace

Cyber attackers are moving away from ransomware to stealthier tactics, including banking Trojans and cryptojacking, an analysis of attack data reveals
March 12, 2019 12 Mar'19
Many firms unaware of data exfiltration threat

Many firms are unaware that they are being targeted by cyber espionage and that data is being exfiltrated from their networks by overseas adversaries, a security firm warns
March 12, 2019 12 Mar'19
Despite failings, exec appetite for secure collaboration growing

Top business decision makers are more reckless than ever with company data, but the appetite for secure collaboration tools is growing, survey reveals
March 11, 2019 11 Mar'19
Citrix breach once again highlights password weaknesses

A reported breach of Citrix, which has potentially exposed data at hundreds of thousands of customer organisations, has once again highlighted the need for an alternative to passwords and the importance of supply chain security