News

IT risk management

• November 14, 2018 14 Nov'18

  Zero-trust security not an off-the-shelf product

  The zero-trust security model is a business enabler that needs to be supported by a strategy and security architecture, analyst warns cyber security leaders

• November 13, 2018 13 Nov'18

  User behaviour analytics adding new insight

  User behaviour analytics is helping to add new insights by providing the missing element in security event information management approaches, says Martin Kuppinger

• November 12, 2018 12 Nov'18

  Home Office to use smartphone ID for EU Exit scheme

  The Home Office will use smartphone digital identity verification to support applications for the government’s EU Exit Settlement Scheme  

• November 12, 2018 12 Nov'18

  Firms lack responsible exec for cyber security

  Narrow gap between CEO, CIO and CISO roles means no single executive function is stepping up to take responsibility for cyber security, a study shows

• November 09, 2018 09 Nov'18

  Post-quantum cryptography a major challenge, says expert

  The crypto wars are just beginning and open systems are key to improved security in future, says cryptography expert

• November 07, 2018 07 Nov'18

  Decentralised ID key to identity security

  Enterprises need to step up protections around identity-related compromises and look to decentralised identity in the longer term to improve security, says computer scientist

• November 06, 2018 06 Nov'18

  Start preparing for post-quantum data protection

  Organisations that need to retain sensitive information for long periods of time need to start preparing for the post-quantum era, according to an IBM security architect

• November 02, 2018 02 Nov'18

  DevSecOps not limited to coding, says analyst

  DevSecOps is seen as a way of ensuring application security, but security leaders must understand that embedding a security culture and taking the inter-dependencies of new development frameworks into account is key, says KuppingerCole

• November 02, 2018 02 Nov'18

  Facebook to appeal EU-US data transfer ruling in Irish Supreme Court

  Facebook will appeal a decision by the Irish High Court to refer questions over the legality of EU-US data transfers to the European Court of Justice in January, as the Dublin court rejects attempt by a UK IT expert to join the case

• October 30, 2018 30 Oct'18

  Australia’s data breaches are a ‘sign of naiveté’

  McAfee executive attributes Australia’s poor cloud security record to the lack of data protection measures amid “new and confusing” cloud configurations

• October 26, 2018 26 Oct'18

  DNS attacks cost finance firms millions of pounds a year

  Average cost of recovering from a single DNS attack is $924,390 for a large financial services company, survey shows

• October 26, 2018 26 Oct'18

  IoT ecosystem needs to be investigated, say experts

  A conference of IoT experts convened by Enisa and Europol has made key recommendations to ensure security vulnerabilities do not overshadow benefits

• October 25, 2018 25 Oct'18

  Belgian startup makes a game of creating secure software code

  A global tech startup has placed its research and development centre in Belgium, taking advantage of regional financial support as well as cooperations with local educational organisations

• October 25, 2018 25 Oct'18

  GandCrab decryption tool released by No More Ransom

  Another decryption tool has been made available free of charge in the battle against ransomware to help victims avoid paying to release their data

• October 25, 2018 25 Oct'18

  Cathay Pacific under fire over breach affecting 9.4 million passengers

  Hong Kong-based airline reveals massive data breach of the most sensitive personal data of passengers five months after loss was confirmed

• October 25, 2018 25 Oct'18

  Becrypt security platform helps ease cloud adoption

  Becrypt’s secure operating system is driving a new service aimed at helping organisations reduce cost and increase agility in using cloud-based services and online applications

• October 24, 2018 24 Oct'18

  Choose security tools wisely to gain upper hand

  The cyber threat landscape is continually changing, but staying abreast of attacker and defender innovation can help business leaders gain the upper hand, says KuppingerCole

• October 24, 2018 24 Oct'18

  Government can’t guarantee no-deal Brexit data-sharing agreement

  Digital minister Margot James says there is no clear timetable on when the UK will secure a data adequacy decision from the EU, and cannot guarantee an agreement will be in place in the event of a no-deal Brexit

• October 24, 2018 24 Oct'18

  Sibos 2018: ‘Black swan’ cyber event is inevitable

  With security experts and bankers expecting a 9/11-style cyber event, deeper collaboration between companies and governments is necessary to identify emerging threats before they occur

• October 23, 2018 23 Oct'18

  Interview: Steve Grobman, McAfee CTO shares his views on some burning security questions

  Cyber security technology innovator and veteran Steve Grobman shares his views on adversarial artificial intelligence, post-quantum cryptography and security for next-gen tech

• October 23, 2018 23 Oct'18

  Morrisons loses appeal against data breach liability ruling

  Supermarket chain has lost its appeal against a High Court ruling that found it liable for a data leak by a former employee, underlining the importance of managing insider threats

• October 22, 2018 22 Oct'18

  McAfee CTO raises concerns about election cyber security

  The security industry needs to look at the security of election processes around the world as well as the security of voting and counting machines, says McAfee CTO

• October 19, 2018 19 Oct'18

  McAfee combining threat intel with AI

  Simulations show that threat intelligence and artificial intelligence is a powerful combination, according to McAfee’s technology head

• October 19, 2018 19 Oct'18

  Learn lessons from attacks, says McAfee investigations chief

  Organisations should use every cyber attack as an opportunity to learn, identify weaknesses and improve security posture, according to McAfee’s head of cyber investigations

• October 18, 2018 18 Oct'18

  McAfee researchers uncover ‘significant’ espionage campaign

  Researchers discover campaign targeting South Korea, the US and Canada with links to eight-year-old source code from a threat group that has been dormant for five years

• October 18, 2018 18 Oct'18

  'Sealed cloud' promises better data security

  TÜV SÜD’s Singapore Sealed Cloud does not grant administrators access to data, reducing the possibility of hackers breaking into databases using compromised administrator credentials

• October 16, 2018 16 Oct'18

  APAC security spending tipped to reach new highs

  Security services will be the largest and fastest-growing slice of the overall security pie in the Asia-Pacific region

• October 16, 2018 16 Oct'18

  Zero-trust security model gaining traction

  The zero-trust model of security is finally gaining traction as security professionals tap into new tools and executive buy-in to support this approach in an effort to improve security posture and practices

• October 16, 2018 16 Oct'18

  UK faces 10 cyber attacks a week as hostile states step up hacking, says NCSC

  The UK’s National Cyber Security Centre has thwarted more than 1,600 attacks over the past two years – many by hostile nation states

• October 15, 2018 15 Oct'18

  Cost of WannaCry attack to NHS set at £92m

  Department for Health and Social Care estimates the immediate cost of the May 2017 WannaCry attack on the NHS was £92m, and says it will have spent about £275m on improvements to its cyber security infrastructure by the end of 2021

• October 15, 2018 15 Oct'18

  IoT firms sign up to UK security code of practice

  Internet of things technology firms have begun signing up to a UK code of practice to strengthen the security of internet-connected devices. The code is expected to form the basis of an international standard

• October 12, 2018 12 Oct'18

  Some 10% of user-reported emails malicious

  On average, 1 in 10 user-reported emails is identified as malicious, and more than half can be tied to credential phishing, a Cofense report reveals

• October 12, 2018 12 Oct'18

  AI is no silver bullet for cyber security

  A security expert has called for businesses to manage the risks of adopting new technologies and improve their cyber hygiene, rather than see artificial intelligence as a panacea for their security woes

• October 11, 2018 11 Oct'18

  Crypto-mining malware poses as Flash updates

  Cryptocurrency mining malware is posing as Flash updates that appear to be legitimate, Palo Alto Networks security researchers warn

• October 11, 2018 11 Oct'18

  RATs and Mimikatz among top publicly available hacking tools

  Remote access Trojans (RATs), web shells and Mimikatz among the top publicly available tools that are used in cyber attacks around the world, a five-nation cyber intelligence report reveals

• October 11, 2018 11 Oct'18

  Optus to acquire Hivint in cyber security deal

  The deal is expected to bolster the telco’s security pedigree in a market that is grappling with more data breaches and cyber incidents

• October 10, 2018 10 Oct'18

  Detail of Dutch reaction to Russian cyber attack made public deliberately

  Four Russian intelligence officials were expelled from the Netherlands after an attempted hack on the global chemical weapons watchdog. The Dutch government has been open about the detail

• October 10, 2018 10 Oct'18

  Bug bounties not a silver bullet, Katie Moussouris warns

  Targeted bug bounties have a role to play in cyber security, but they are not a "silver bullet", and run the risk of wiping out talent pipelines if poorly implemented, warns bug bounty pioneer

• October 10, 2018 10 Oct'18

  NCSC head says attribution of GRU attacks important

  The head of the UK’s National Cyber Security Centre has described the attribution of a wave of cyber attacks to Russia’s military intelligence service as “historically important” at a conference in Poland

• October 09, 2018 09 Oct'18

  Cooperation vital in cyber security, says former Estonian minister

  States acting alone cannot be efficient in cyber security and need to cooperate with others to build trust, says a former foreign minister of Estonia

• October 08, 2018 08 Oct'18

  NCSC head calls for technocratic partnership to fix cyber risks

  The UK’s National Cyber Security Centre is appealing for collaboration with the technology industry to remedy key vulnerabilities in current IT

• October 04, 2018 04 Oct'18

  Business email compromise made easy for cyber criminals

  Poor security practices and access to hacking services are making it easy for cyber criminals to compromise business email, research reveals

• October 04, 2018 04 Oct'18

  Apps are gateway to business data for cyber attackers

  Application security is becoming increasingly important because apps are often the main way cyber attackers are getting into corporate networks, a threat researcher warns

• October 04, 2018 04 Oct'18

  UK and allies accuse Russia of cyber attack campaign

  The UK National Cyber Security Centre has identified a campaign by the Russian military intelligence service of “indiscriminate and reckless” cyber attacks

• October 03, 2018 03 Oct'18

  Companies failing to recognise the internal cyber threat

  The focus at many companies is on external cyber threats, and internal threats are being overlooked as a consequence, a researcher warns

• October 03, 2018 03 Oct'18

  Majority of businesses believe they are open to cyber attack

  More than two-thirds of businesses believe their network is open to attack, a report on the state of web application security reveals

• October 03, 2018 03 Oct'18

  Rise in data-stealing Betabot malware

  Researchers are warning about an increase in Betabot malware after detecting multiple infections in recent weeks, underlining the importance of software patching

• October 03, 2018 03 Oct'18

  AI full of possibilities with the right tools and understanding

  Artificial intelligence has the potential to assist in the analysis of data in a range of topics, but businesses need to understand its limitations and have the right tools to get the most benefit, says a Swiss entrepreneur

• October 01, 2018 01 Oct'18

  UK firms’ password security score ‘average’

  While businesses are making strides in strengthening password security, there is more work to be done, with the UK password score lagging behind the frontrunners, a survey shows

• October 01, 2018 01 Oct'18

  Tesco Bank gets first cyber-related FCA fine

  UK’s financial watchdog issues its first cyber-related fine to Tesco Bank in connection with a multimillion-pound cyber fraud in 2016