News

IT risk management

August 02, 2018 02 Aug'18
Three Carbanak cyber heist gang members arrested

Three alleged members of the Carbanak gang believed to be responsible for more than 100 cyber heists worldwide have been arrested, US authorities have announced
August 01, 2018 01 Aug'18
Bromium evolves virtualisation-based security

Virtualisation-based security firm Bromium has evolved its technology to offer bidirectional protection for applications and underlying operating systems
August 01, 2018 01 Aug'18
Top dark web indicators of compromise

There are 10 common activities on the dark web that indicate a data breach or some other security compromise has taken place, according to a specialist monitoring firm
July 31, 2018 31 Jul'18
SamSam ransomware reaps $5.9m and counting

In just two and a half years, SamSam campaigns are believed to have netted nearly $6m for cyber criminals, an analysis of this adaptive and evasive strain of active ransomware reveals

July 31, 2018 31 Jul'18
Australia’s health sector reports most data breaches again

In the first full quarter since Australia’s mandatory breach disclosure scheme came into effect, healthcare providers reported the most data breaches amid controversy over the national health record system
July 31, 2018 31 Jul'18
Briton ran pro-Kremlin disinformation campaign that helped Trump deny Russian links

A British IT manager and former hacker from Darlington ran a disinformation campaign that duped former US intelligence agents and provided Donald Trump with manufactured “evidence” to deny that Russia interfered with the US election
July 30, 2018 30 Jul'18
Pentagon flags risky software suppliers

The Pentagon has drawn up a list of software suppliers that it wants the US military and defence contractors to avoid due to fears of risks to national security
July 29, 2018 29 Jul'18
Burden of data protection rests on firms and governments

A senior executive at Singapore’s Cyber Security Agency stressed the role of corporate data governance and government regulations in raising the bar on cyber security
July 27, 2018 27 Jul'18
Fileless malware a growing trend, warns McAfee

Cyber attackers are increasingly moving away from traditional malware to using trusted Windows executables to invade systems and breach corporate networks, say security researchers
July 27, 2018 27 Jul'18
Hackers targeting software supply chains, US report warns

A US government report on cyber espionage by China, Russia and Iran says software supply chains are increasingly under attack

July 26, 2018 26 Jul'18
Brace for PowerGhost cryptominer, warns Kaspersky Lab

Corporate networks are the target of a new illicit cryptocurrency mining malware that is difficult to detect and eradicate, security researchers warn
July 26, 2018 26 Jul'18
Crest report highlights need for bug bounty best practice

A lack of best practice guidelines for bug bounties is leaving researchers, organisations and bounty platforms confused and at risk, a report reveals
July 26, 2018 26 Jul'18
Software development remains insecure

The prevalence of common and well-known web-based vulnerabilities underlines the need for better education around secure software development
July 26, 2018 26 Jul'18
Cyber security vulnerability concerns skyrocket

Security professionals are more worried about data breaches and cyber attacks than they were a year ago, with most fearing that Meltdown-Spectre attacks are becoming the norm
July 25, 2018 25 Jul'18
Dark web cyber crime markets thriving

The market for cyber criminals’ services is thriving on the dark web, research reveals
July 25, 2018 25 Jul'18
ERP applications are under cyber attack, research confirms

ERP applications are increasingly being targeted by cyber criminals, hacktivists and nation-state actors, a report reveals
July 25, 2018 25 Jul'18
Apache OpenWhisk users urged to patch

IBM has patched vulnerabilities in its Cloud Functions service that is based on Apache OpenWhisk in response to vulnerability disclosures, and all other users are urged to do the same
July 25, 2018 25 Jul'18
Application attacks demand new security approach

Applying security software updates is an ineffective way to deal with application layer cyber attacks and businesses should change their approach, security experts advise
July 25, 2018 25 Jul'18
Ransomware concern drops despite being top cost

Fewer organisations are worried about ransomware even though it remains one of the most costly cyber attacks
July 25, 2018 25 Jul'18
Australian energy sector caught in security catch-22

With regulators unwilling to accept security investments that would lead to higher tariffs, there is a chance that Australia’s National Energy Market could face increased cyber risks
July 24, 2018 24 Jul'18
Ramp up security to mitigate Office 365 attacks

Public clouds tend to be more secure, but Office 365 has become a major target for attacks, which means internal IT security needs tightening
July 24, 2018 24 Jul'18
Top execs cyber security hypocrites, report shows

There is a critical disconnect between the cyber security behaviour that top executives recommend and the way they behave themselves, while many firms do not know where their data lives and moves, a report reveals
July 24, 2018 24 Jul'18
Singapore public healthcare sector limits internet use

Healthcare workers who require internet access will have to use separate internet workstations following an unprecedented attack on Singapore’s public healthcare system
July 23, 2018 23 Jul'18
Zero trust security model boosts business confidence

Organisations that combine the zero trust security model with next-gen access are more confident about meeting access control challenges, a study shows
July 20, 2018 20 Jul'18
NCSC report underlines cyber threat for legal firms

Legal firms are a top target for cyber attackers, the latest report from the National Cyber Security Centre shows, emphasising the need for comprehensive cyber defence capabilities
July 20, 2018 20 Jul'18
UK alerted to potential cyber risks of Huawei equipment

A report has raised concerns about the shortcomings of Huawei engineering processes, which it says could put UK telecommunications networks at risk
July 19, 2018 19 Jul'18
Cyber criminals use fake domains to scam businesses

UK police are warning businesses that cyber criminals are using fake domains to scam businesses out of hundreds of thousands of pounds
July 19, 2018 19 Jul'18
CNI sector lacks cyber security skills, government warned

The UK’s critical national infrastructure sector is being negatively impacted by the lack of cyber security skills, a report warns
July 19, 2018 19 Jul'18
How Splunk is ‘splunking’ data for APAC enterprises

Splunk’s regional vice-president talks up the company’s business strategy and how its customers are using big data analytics in security and IT operations
July 18, 2018 18 Jul'18
Retail cyber security spending ineffective as breaches rise

Cyber attacks on the retail sector are increasing, and although most retailers plan to increase cyber security spending, planned investments are unlikely to be effective, a report reveals
July 18, 2018 18 Jul'18
Cyber security top priority for aircraft makers, says Airbus

There is a high level of collaboration in the aircraft industry on cyber security, but not all other industries are at the same level, according to an industry veteran at multinational aerospace and defence firm Airbus
July 18, 2018 18 Jul'18
Singapore to bolster threat intelligence sharing in financial sector

Singapore’s Cyber Security Agency has partnered the Financial Services Information Sharing and Analysis Centre to glean cyber threat intelligence for the country’s financial industry
July 17, 2018 17 Jul'18
Cryptominers plateau while backdoors shoot up

Illicit cryptocurrency mining appears to be slowing down, but backdoors increased rapidly in the second quarter of the year, a report warns
July 17, 2018 17 Jul'18
A third of organisations do not have a security expert, survey shows

Around a third of organisations are vulnerable to cyber attacks due to a lack of dedicated in-house cyber security experts, finds Gartner survey
July 16, 2018 16 Jul'18
Mobile devices lost in London underline security risk

The security risk of lost mobile devices is underlined by the fact that almost 26,000 mobile phones and computing devices were lost in London in the past year alone
July 16, 2018 16 Jul'18
ITPS expands datacentre to support Azure Stack and HPC

Datacentre company ITPS expands its County Durham facility to meet client needs for high performance computing and security
July 16, 2018 16 Jul'18
Russian cyber attacks show need for international rules

Russian cyber attacks aimed at influencing foreign elections highlight the need for the international community to agree on rules of conduct and punitive consequences
July 13, 2018 13 Jul'18
Hackers increasingly targeting cloud infrastructure

Cloud infrastructure is a growing target for cyber attackers because of available computing resources, as well as the repositories of valuable data, a report reveals
July 12, 2018 12 Jul'18
Cyber attackers cashing in on ‘hidden’ attack surface

Cyber attackers are cashing in on organisations’ lack of visibility into all online interactions that can involve multiple third parties, a report reveals
July 11, 2018 11 Jul'18
White-hat hackers find record number of vulnerabilities

White-hat hackers are finding more vulnerabilities than ever before, with crowdsourced security testing continuing to gain popularity, a report reveals
July 11, 2018 11 Jul'18
UK firms too confident about cyber security

Three-quarters of UK companies say their cyber protection is above average, and nearly half think they are a “top performer” despite the growth in data breaches
July 10, 2018 10 Jul'18
Hidden costs of data breaches difficult to manage, study finds

The full cost of “mega breaches” can be up to £264m, with the average UK data breach costing £2.69m, a study has revealed
July 10, 2018 10 Jul'18
Corporate networks vulnerable to insider attacks, report finds

Researchers found that 100% of corporate networks tested in 2017 were vulnerable to insider attacks, with Wi-Fi networks and employees among the top areas of weakness
July 09, 2018 09 Jul'18
Collaborative taskforce launches security intelligence network

BAE Systems, Vodafone, cyber security incubator CyLon and other partners have joined forces in unveiling a manifesto for safeguarding society in the digital age
July 09, 2018 09 Jul'18
Inside one of the world’s largest bug bounty programmes

Trend Micro’s Zero Day Initiative may be the top external supplier of software bug reporting for Microsoft and Adobe, but that does not mean it purchases every type of bug
July 06, 2018 06 Jul'18
Infosec community welcomes bank sector focus on cyber resilience

The information security community has welcomed regulators’ call on the banking industry to demonstrate their capability to respond to cyber attacks because it highlights the importance of cyber resilience for all businesses
July 05, 2018 05 Jul'18
Beware blockchain security blindspots, warns RSA

Companies need to ensure that rushed blockchain and other new technology projects are not introducing security vulnerabilities by gaining granular visibility of network activity, according to RSA Security
July 04, 2018 04 Jul'18
Israel accuses Hamas of using spy apps to target soldiers

Israel has accused Hamas of using apps to hijack soldiers’ phones to spy on them, and UK defence secretary demonstrates how effective that could be
July 02, 2018 02 Jul'18
Linux targeted by illicit cryptocurrency miners

Cryptojacking is increasingly being used by cyber criminals to raise funds, Watchguard report reveals
July 02, 2018 02 Jul'18
HMRC deactivates record number of fake websites

HM Revenue & Customs has removed more than 20,000 malicious websites in the past year, but warns people to stay alert to the threat from online fraudsters