News

IT risk management

• November 01, 2017 01 Nov'17

  Personal data of 46.2 million Malaysia mobile subscribers leaked

  The massive data breach is yet another example of a ‘low and slow’ attack that stays dormant inside networks for years, without anyone noticing

• October 31, 2017 31 Oct'17

  Cyber security professionals urged to embrace AI and automation

  IBM security intelligence head says professionals should embrace artificial intelligence and automation to ensure they do not become obsolete

• October 26, 2017 26 Oct'17

  NAO calls on NHS to ‘get its act together’ after WannaCry attack

  The NHS could have prevented the WannaCry cyber attack had it followed basic IT security best practice, according to National Audit Office boss

• October 26, 2017 26 Oct'17

  IOActive warns of security flaws in maritime communication system

  Researcher discovers critical security flaws in an Inmarsat maritime communication system, highlighting the cyber risks facing the shipping industry

• October 25, 2017 25 Oct'17

  Oversight of intelligence agencies’ data sharing has ‘failed’, court hears

  UK’s intelligence services lack adequate oversight and written guidelines when sharing databases of sensitive information, Privacy International argues in secret court

• October 25, 2017 25 Oct'17

  Bad Rabbit malware raises fears of third global ransomware attack

  A ransomware attack that has commonalities with WannaCry NotPeya is reportedly hitting organisations in Russia, Ukraine, Turkey, Bulgaria and Germany

• October 19, 2017 19 Oct'17

  IT security hindering productivity and innovation, survey shows

  IT security is hindering productivity and innovation across enterprises, research has revealed

• October 19, 2017 19 Oct'17

  Infoblox partners with McAfee to combine web and DNS security

  Infoblox is to collaborate with McAfee to combine web and DNS security to deliver unified protection

• October 18, 2017 18 Oct'17

  McAfee forges ahead with analytics, deep learning and AI

  McAfee is forging ahead with its innovation efforts in advanced analytics, deep learning and artificial intelligence

• October 18, 2017 18 Oct'17

  Focus needs to shift to breach impact, says McAfee researcher

  Breach investigations commonly focus on the attackers and their motives, but a security researcher believes there needs to be more emphasis on business impact

• October 17, 2017 17 Oct'17

  RSA’s Middle East cyber security conference gains its own identity

  RSA Abu Dhabi conference focuses on region’s cyber security needs as digital technology deployments expand

• October 17, 2017 17 Oct'17

  UK intelligence agencies ‘unlawfully’ sharing sensitive personal data, court hears

  A secret court will decide whether Intelligence agencies are “unlawfully” sharing huge datasets containing sensitive information about the population with industry, government departments and overseas intelligence services.

• October 16, 2017 16 Oct'17

  Pizza Hut data breach shows need for board control

  The poor handling of the data breach by fast food chain Pizza Hut shows that company boards need to take control, a London-based law firm advises

• October 16, 2017 16 Oct'17

  SMEs more vulnerable than ever to cyber attacks, survey shows

  The biggest cyber threat to UK and US small businesses is employees’ weak passwords, as the frequency, intensity and cost of cyber attacks continue to rise, a study has revealed

• October 11, 2017 11 Oct'17

  Dutch government agreement increasingly focuses on IT security

  The coalition government in the Netherlands has agreed its plan for the next four years, with IT security prominent

• October 10, 2017 10 Oct'17

  Global cyber security collaboration initiative launched in Krakow

  Cyber security ecosystems around the world have launched an initiative aimed at strengthening collaboration between regional ecosystems

• October 05, 2017 05 Oct'17

  Singapore’s public sector finds agility and speed in AWS

  City-state’s government has been able to meet peak demands and address security issues through a cloud-based web-hosting platform powered by Amazon Web Services

• October 04, 2017 04 Oct'17

  How Australia is tackling cyber crime

  Telcos such as Telstra and industry associations in Australia are chipping in to help enterprises that are being targeted by cyber criminals with phishing and social engineering exploits

• September 28, 2017 28 Sep'17

  WannaCry an example of pseudo-ransomware, says McAfee

  The global WannaCry and NotPetya attacks were both examples of pseudo-ransomware, according to McAfee researchers

• September 27, 2017 27 Sep'17

  Global hacker botnet tops 6 million hijacked devices

  A year after the first Mirai botnet attacks, the global botnet has grown, with many countries and cities unwittingly hosting large number of bot-infected devices

• September 26, 2017 26 Sep'17

  Mac OS passwords at risk of theft, researcher warns

  Some Apple Mac users are at risk of password theft due to a zero-day vulnerability discovered in some versions of the operating system

• September 25, 2017 25 Sep'17

  Cage director found guilty of terrorism offence after refusing to disclose passwords

  Muhammad Rabbani, international director of Cage, is convicted of an offence under the terrorism act after refusing to disclose his mobile phone PIN and laptop password under Terrorism Act

• September 25, 2017 25 Sep'17

  NotPetya attack cost up to £15m, says UK ad agency WPP

  Advertising giant was one of many companies hit in June 2017 by malware distributed through Ukrainian accounting software

• September 22, 2017 22 Sep'17

  Malware hidden in CCleaner targeted tech firms

  Major tech firms were targeted by malware hidden in Avast’s Piriform CCleaner software, researchers have found, leading to speculation that it may have been state-sponsored espionage attack

• September 22, 2017 22 Sep'17

  Nation-state actors responsible for most cyber attacks

  Companies of all sizes may find themselves faced with highly capable state-sponsored cyber attacks, but steps can be taken to shore up defences

• September 20, 2017 20 Sep'17

  Most UK councils hit by cyber attacks

  A study has revealed that most UK local authorities have suffered cyber attacks in the past year, showing local government is a key target for cyber criminals and that legacy software is a top security concern

• September 20, 2017 20 Sep'17

  Cyber crime a significant risk to individuals and organisations

  Cyber crime is still a significant risk to individuals and organisations, a report claims, with the top threats including business email compromise, ransomware, and banking and mobile malware

• September 14, 2017 14 Sep'17

  Government aligns data laws with GDPR

  The UK government announces details of its data protection law that will align with the EU’s GDPR

• September 12, 2017 12 Sep'17

  Government wants to remain in EU cyber security club after Brexit

  The UK government wants to maintain deep links with the European Union’s cyber security working groups following Britain’s exit from the bloc in 2019

• September 05, 2017 05 Sep'17

  People with non-IT backgrounds could help fill cyber security skills gap

  Organisations should look to fill cyber security roles with people who are curious and have work experience rather than focusing solely on graduates

• August 30, 2017 30 Aug'17

  Researcher finds over 711 million compromised email accounts

  A security researcher has discovered a spambot using more than 711 million compromised email accounts to spread data-stealing malware

• August 25, 2017 25 Aug'17

  Security professionals name top causes of breaches

  Security professionals have named the top reasons for successful cyber attacks, which are affecting more than half of organisations

• August 21, 2017 21 Aug'17

  NotPetya highlights cyber risk in shipping industry

  Malware attack has shown that the shipping industry is vulnerable to cyber attacks, with Danish shipping giant Maersk reporting potential cost of up to $300m

• August 17, 2017 17 Aug'17

  Developers lack skills needed for secure DevOps, survey shows

  The growing demand for developers with security skills is outpacing supply, but a survey reveals that a lack of formal security education and training by employers is contributing to the growing skills gap

• August 16, 2017 16 Aug'17

  NotPetya attack cost up to $300m, says Maersk

  Danish shipping line Maersk estimates that the NotPetya cyber attack in June cost the company up to $300m

• August 16, 2017 16 Aug'17

  Hackers hit Holyrood with Westminster-style brute-force attack

  The Scottish parliament has been hit by a cyber attack similar to the one that struck Westminster in June

• August 15, 2017 15 Aug'17

  Leaked SMB exploits make malware powerful, warns Cylance

  Four key exploits at the heart of hacking tools leaked by the Shadow Brokers have given malware authors a lot of power, say security researchers

• August 11, 2017 11 Aug'17

  Malicious email spikes in Q2, reports Proofpoint

  Malicious email campaigns saw a spike in volume and increased variety in the second quarter of 2017, a cyber security report reveals

• August 10, 2017 10 Aug'17

  IT pros urged to support ‘WannaCry hero’ Marcus Hutchins

  Computer experts fear chilling effect on security research over US arrest of Marcus Hutchins who halted the spread of the WannaCry ransomware

• August 07, 2017 07 Aug'17

  Gaming apps ‘main source’ of mobile phishing attacks, research shows

  Analysis of 100,000 corporate devices shows more than a quarter of traffic going to phishing domains was from gaming apps

• August 03, 2017 03 Aug'17

  Ransom DDoS attacks on the rise

  The use of distributed denial of service (DDoS) attacks to extort money from organisations is on the rise, warns security firm Kaspersky Lab

• August 01, 2017 01 Aug'17

  Why Facebook’s AI termination raises safety concerns

  Revelations that researchers at Facebook had to switch off two bots that went rogue have raised questions about the safety of artificial intelligence

• July 28, 2017 28 Jul'17

  CIA hacking tools for Mac OS and Linux exposed by WikiLeaks

  WikiLeaks has exposed hacking tools targeting the Mac and Linux operating systems in the latest of its series of leaks allegedly from the US Central Intelligence Agency

• July 25, 2017 25 Jul'17

  Big data means big risk, Swedish Transport Agency leak shows

  The Swedish Transport Agency exposed sensitive information by transferring its databases to a third party cloud provider without following data protection procedures

• July 24, 2017 24 Jul'17

  Tech disruption forces CEOs to rethink leadership

  Headline figures from KPMG’s Outlook 2017 survey of 1500 CEOs shows that 40% expect technology innovation to cause major disruption

• July 20, 2017 20 Jul'17

  Retail data breaches still high as GDPR deadline looms

  As the EU’s General Data Protection Regulation compliance deadline approaches, retail data breaches remain unacceptably high, a data threat report reveals

• July 19, 2017 19 Jul'17

  Newcastle council data leak shows need for security automation

  Leak of child adoption information by Newcastle City Council resulted from accidental email attachment by employee

• July 17, 2017 17 Jul'17

  IBM claims breakthrough in mainframe encryption

  IBM says its new mainframe ushers in a new era of data protection in response to a call to action from chief information security officers and security experts worldwide

• July 13, 2017 13 Jul'17

  Encryption keys too predictable, warn security researchers

  Encryption keys are not as random as most people think, which means encrypting data is often not as secure as it could be, according to security researchers

• July 13, 2017 13 Jul'17

  Verizon denies data loss but admits potentially huge breach

  Verizon has responded to reports of millions of customer records being exposed to the internet by saying no data was accessed by malicious third parties, but the incident raises thorny issues