News

IT risk management

March 26, 2018 26 Mar'18
Blockchain not ready for cross-border bank payments

The use of blockchain in certain parts of the financial services industry is limited at present due to the additional IT work required around its use
March 26, 2018 26 Mar'18
Dutch SMEs’ cyber security is insufficient

Nowhere in the Netherlands is digitisation as big as it is in small and medium-sized enterprises, but the sector still has a lot to do in terms of cyber security
March 22, 2018 22 Mar'18
Colt pioneers blockchain in telco voice wholesaling

Colt Technology Services and Hong Kong Telecom’s international unit PCCW Global teamed up to trial the use of blockchain in wholesale voice settlements
March 22, 2018 22 Mar'18
Application layer DDoS attacks increasing, Imperva data shows

Distributed denial of service attacks targeting applications almost doubled in the last three months of 2017, according to Imperva Incapsula data

March 22, 2018 22 Mar'18
Businesses lack cyber security confidence after majority were breached in past year

Most businesses were hit by a data breach in the past year, yet less than half are confident they would detect a breach, a survey shows
March 21, 2018 21 Mar'18
MoD to focus on SMEs to raise supply chain cyber security

The Ministry of Defence continues to develop a joint initiative with industry aimed at raising the security posture throughout the UK’s defence supply chain, with increasing focus on SMEs
March 20, 2018 20 Mar'18
Firms need to move from DevOps to DevSecOps, says expert

In the face of competition, organisations are turning to DevOps to improve efficiency and accelerate innovation, but this is creating new security risks, an industry expert warns
March 19, 2018 19 Mar'18
C-suite a cyber attack risk, say security chiefs

Those tasked with running organisations are the most likely group to expose them to a major cyber attack, a poll of UK information security executives shows
March 19, 2018 19 Mar'18
Wigan data breaches underline need to share threat intelligence

Ongoing data breaches experienced by local authorities underline the need for greater sharing of threat intelligence, say security experts
March 19, 2018 19 Mar'18
Russia compromised core router in US energy attacks

Russian cyber attackers used a compromised core router in a series of attacks on the US energy sector, security researchers have revealed as the UK energy sector is placed on alert

March 16, 2018 16 Mar'18
IT contractors not a risk despite Snowden leaks, GCHQ tells court

The government argues in the Investigatory Powers Tribunal that contractors with systems administration rights to computers holding GCHQ’s most sensitive intelligence pose no more of a security risk than the agency’s employees
March 16, 2018 16 Mar'18
US blames Russia for cyber attacks on energy firms

The US has blamed Russia for a series of attacks on energy sector firms, underlining the need to ensure critical infrastructure IT systems are up to date and secure
March 15, 2018 15 Mar'18
DocuTrac medical software is a breach risk, warns Rapid7

Security researchers have issued a security warning about medical billing and documentation software they say puts patients at risk of data breach
March 14, 2018 14 Mar'18
Researchers accused of irresponsible disclosure of AMD chip flaws

Israel-based researchers have been accused of irresponsible disclosure for going public with more than a dozen security flaws discovered in AMD processors
March 13, 2018 13 Mar'18
Government ‘unlawfully delegated’ bulk data powers to GCHQ, court hears

Privacy International urges Britain’s most secret court, the Investigatory Powers Tribunal, to rule that the government illegally collected surveillance data from internet and phone companies until at least September 2017
March 13, 2018 13 Mar'18
Public sector organisations ill-prepared for GDPR

Public sector organisations in the UK need to do much more to comply with the General Data Protection Regulation rule on providing information to citizens about details held about them
March 13, 2018 13 Mar'18
Slingshot router malware: a warning for businesses

A stealthy malware that has been used to carry out cyber espionage undetected for six years should raise a red flag to businesses, say security commentators
March 12, 2018 12 Mar'18
Eight new cyber threats a second in Q4 2017, McAfee report reveals

There was an increase in cyber attacks on healthcare organisations, the use of fileless malware and cryptocurrency mining in the last three months of 2017, with eight new threats a second
March 12, 2018 12 Mar'18
Regulator takes tougher line than expected on surveillance warrants

The Investigatory Powers Commissioner’s Office has signalled to government that it will take a tough line when scrutinising surveillance warrants under the controversial Investigatory Powers Act
March 12, 2018 12 Mar'18
UK leads global upward trend in SOC maturity

The UK is leading the way towards more efficient security operations centres, but many still continue to operate with serious gaps in security, a report reveals
March 09, 2018 09 Mar'18
Security researchers demonstrate ransomware attack on robots

Researchers have carried out a ransomware attack on robots to show that such attacks are possible and should be guarded against
March 09, 2018 09 Mar'18
Cryptojacking cyber criminals up their game

Cyber criminals hijacking computing resources to mine for cryptocurrencies are raising their efforts to bypass enterprise security controls, researchers have found
March 08, 2018 08 Mar'18
Mac malware more than doubled in 2017

Malware targeting Apple Mac computers more than doubled from 2016 to 2017, according to security firm Malwarebytes
March 08, 2018 08 Mar'18
Businesses warned not to ignore cryptojacking threat

Businesses should not ignore the threat of malware designed to carry out illicit cryptocurrency mining, warns NTT Security
March 07, 2018 07 Mar'18
Only half of ransomware payments honoured

Only half of ransomware victims who pay ransoms to cyber criminals recover their data, a report reveals, pointing to a need for more effective strategies to deal with these attacks
March 07, 2018 07 Mar'18
Businesses under pressure to allow easier access to cloud

Businesses are under pressure from employees to use consumer-focused authentication methods for cloud applications, but that could have both positive and negative security implications, warns Gemalto
March 07, 2018 07 Mar'18
Cyber security is a team sport, says NCSC

The UK’s national cyber security agency aims to help organisations understand the need to act collaboratively and collectively against the cyber threat, urging them to raise the bar
March 07, 2018 07 Mar'18
World Economic Forum creates fintech focus group for cyber security

WEF consortium of companies will focus on protecting financial technology firms from cyber threats
March 06, 2018 06 Mar'18
EC to boost cyber security support and collaboration

The European Commission is focused on boosting cyber security support and collaboration throughout the European Union
March 05, 2018 05 Mar'18
Most healthcare organisations have been breached, report shows

Less than a third of global healthcare organisations remain untouched, as data breaches rise across the industry, a report reveals
March 02, 2018 02 Mar'18
Cyber crime is a top threat to UK charities, says NCSC

Cyber crime poses the most serious threats to UK charities, the National Cyber Security Centre has warned
March 02, 2018 02 Mar'18
Cyber threat to industrial control systems highest yet

The cyber threat to industrial control systems has never been greater, according to a report analysing malicious activity aimed at such systems
March 02, 2018 02 Mar'18
Memcached servers irresistible to DDoS attackers, expert warns

In the light of the biggest distributed denial of service attack to date against GitHub, organisations should ditch memcached servers or risk a blizzard of blistering attacks, says security researcher
March 02, 2018 02 Mar'18
New privacy fears as IT challenges delay surveillance oversight body by a year

IT challenges have delayed government plans for an independent body to authorise requests to access the public’s internet and phone records by nearly a year, raising new legal and privacy concerns
March 01, 2018 01 Mar'18
Imaging systems biggest security risk in healthcare

Imaging systems have been identified as the biggest cyber security risk in the healthcare sector, a report on internet of things security has revealed
March 01, 2018 01 Mar'18
Security fears delay roll-out of national e-voting system in Finland

Project enters problem-solving phase to identify advanced, effective and best practice solutions to develop a secure internet-based voting system
March 01, 2018 01 Mar'18
ANZ organisations grappling with cloud outages

A majority of organisations from Australia and New Zealand admitted in a survey that they had not fully evaluated the impact of cloud outages which were longer than they had expected
February 28, 2018 28 Feb'18
Government must rewrite illegal sections of Snoopers’ Charter, court told

A court has been asked to give ministers until July 2018 to rewrite powers to require phone and internet companies to retain data on the population. The government acknowledges parts of surveillance regime are unlawful
February 28, 2018 28 Feb'18
Businesses urged to patch Oracle WebLogic flaw

Security researchers are again urging businesses to patch an Oracle WebLogic flaw that continues to be exploited by cyber criminals to mine cryptocurrencies
February 27, 2018 27 Feb'18
Understanding the cyber threat key to UK defence, says NCSC

Understanding cyber threats is key to defending the UK and ensuring it is a safe place to do business, says the National Cyber Security Centre
February 26, 2018 26 Feb'18
Cryptomining is top attack type, says Malwarebytes

Malicious cryptomining has been the top cyber criminal activity detected since September 2017, a report reveals
February 26, 2018 26 Feb'18
Cyber criminals catching up with nation state attacks

The trickle-down effect of advanced “military-grade” tools is seeing the gap between cyber criminal and nation state attack capabilities closing, outpacing many organisations’ defence capabilities
February 23, 2018 23 Feb'18
Avast discovers Tempting Cedar Android spyware campaign

Security researchers have uncovered a three-year-old Android spyware campaign spread through social media and targeting people in the Middle East
February 22, 2018 22 Feb'18
Unprotected Kubernetes consoles expose firms to cryptojacking

A number of big companies have been targeted by crytojacking attacks, where cyber criminals hijack computing power to mine cryptocurrencies, but some have unprotected Kubernetes consoles in common
February 22, 2018 22 Feb'18
Hitachi Vantara ups ante on industrial IoT

Potential internet of things powerhouse believes its deep expertise in operational technology will give it a leg up over traditional IT rivals
February 22, 2018 22 Feb'18
UK plans laws to protect company directors from ID theft

Legislation will make it easier for directors to remove their personal addresses from the company register
February 22, 2018 22 Feb'18
Email attacks and incident detection top security challenges

Email inboxes are the weakest link in security perimeters, and companies struggle with detecting security incidents quickly and accurately, a report finds
February 21, 2018 21 Feb'18
UK organisations failing to take action against fraud

UK organisations are facing increasingly complex and costly incidents of fraud partly due to increasing cyber fraud, yet few are making use of the anti-fraud technologies available, a survey has revealed
February 21, 2018 21 Feb'18
Security leaders investing in automation and AI, study shows

Automation and artificial Intelligence are being used to defend against cyber threats, says report, but experts warn that these tools and technologies can be exploited by attackers
February 21, 2018 21 Feb'18
Economic impact of cyber crime is significant and rising

Cyber attacks are becoming easier to carry out while defences remain inadequate, study shows