News

IT risk management

September 06, 2016 06 Sep'16
Use ransomware to get security buy-in, says Trend Micro CTO

Ransomware is one of the top cyber threats to business, but organisations should use that to engage stakeholders and review processes and defences, says Trend Micro CTO Raimund Genes
September 01, 2016 01 Sep'16
Lessons from the Dropbox breach

Dropbox is the latest major company to confirm a data breach, albeit four years old, but – as with all recent data breaches by cloud-based services – it highlights some key security lessons
August 31, 2016 31 Aug'16
Evidence of DNS tunnelling in two-fifths of business networks

Cyber criminals are capitalising on the failure of many businesses to examine their DNS traffic for malware insertion and data exfiltration, according to Infoblox
August 30, 2016 30 Aug'16
Encryption hiding malware in half of cyber attacks

Cyber attackers are using encryption to hide malicious activity, making it increasingly difficult to find as more organisations turn to encryption to protect data, a study has revealed

August 26, 2016 26 Aug'16
Law firms planning litigation market for GDPR

Businesses should be preparing for the storm of litigation that is likely to be unleashed when the GDPR goes into force, warns Stewart Room of PwC Legal
August 19, 2016 19 Aug'16
Expect ransomware arrests soon, says bitcoin tracking firm Chainalysis

Law enforcement organisations are set to ramp up arrests of cyber criminals behind ransomware attacks, according to financial technology startup Chainalysis
August 19, 2016 19 Aug'16
Police arrest woman in connection with Sage data breach

A woman has been arrested on suspicion of fraud in connection with a data breach at accounting software firm Sage
August 16, 2016 16 Aug'16
Cerber ransomware service reaps $195,000 profit in a month

Franchises such as Cerber are making highly profitable ransomware available to a broader range of cyber criminals, according to a report by security firm Check Point
August 15, 2016 15 Aug'16
Financial sector faces era of cyber mega heists

Banks and other financial institutions are threatened by a new breed of elite cyber criminals running professional operations that will use any means to achieve their goals, says Barclays security chief
August 15, 2016 15 Aug'16
Sage data breach underlines insider threat

Organisations need to take insider threats more seriously say security experts, as Sage warns that a data breach using an internal log-in may have compromised employee data at nearly 300 UK firms

August 10, 2016 10 Aug'16
MI5 staff repeatedly overrode data surveillance rules

Security service MI5 is responsible for 210 “clear contraventions” over five years for the way it accessed private internet and telephone data
August 08, 2016 08 Aug'16
IT failure grounds Delta flights worldwide

US airline Delta has temporarily grounded flights worldwide after a power failure took key IT systems offline in its home base of Atlanta, Georgia
August 08, 2016 08 Aug'16
Strider cyber attack group deploying malware for espionage

Symantec security researchers have uncovered a spying campaign by a previously unknown group using modular malware as stealthware
August 05, 2016 05 Aug'16
Banner Health cyber breach underlines need for faster intrusion detection

A data breach at Banner Health has highlighted the importance of intrusion detection and prompted calls for greater cyber security investment in the increasingly targeted healthcare industry
August 05, 2016 05 Aug'16
Artificial intelligence takes centre stage in cyber security

Artificial intelligence-led cyber security technology has been in the spotlight at two major industry conferences in Las Vegas, signalling a firm trend in cyber defence research
August 03, 2016 03 Aug'16
One in five businesses hit by ransomware are forced to close, study shows

More than half of UK companies have been hit by ransomware in the past year, a study on the impacts of this popular attack method has revealed
July 28, 2016 28 Jul'16
UK’s top security judges struggle to assess privacy threats

Technological advancements make it difficult for the Investigatory Powers Tribunal to assess privacy threats, say the tribunal’s own judges
July 26, 2016 26 Jul'16
Date set for landmark hearing into EU-US data transfers

Irish court hearing triggered by Austrian law student Max Schrems could have huge implications for EU-US trade and the data privacy rights of millions of EU citizens
July 19, 2016 19 Jul'16
Carbon Black bets on next-generation antivirus

Carbon Black is betting on next-generation antivirus technology by acquiring Confer to extend the capability and appeal of its endpoint protection offerings
July 19, 2016 19 Jul'16
Case study: Rémy Cointreau boosts security and productivity

Drinks firm Rémy Cointreau uses Centrify’s identity and mobile management to simplify security, improve business agility and reduce IT costs
July 14, 2016 14 Jul'16
Cyber attacks cost UK business more than £34bn a year, study shows

Nearly half of UK firms lack advanced cyber defences, despite the high level of concern about cyber attacks and associated costs
July 12, 2016 12 Jul'16
IBM sets up security centre in Canberra

IBM leads the charge as large private businesses invest heavily in security resources across Australia in an attempt to close the security gap
July 06, 2016 06 Jul'16
UK's Darktrace aims to lead the way to automatic cyber security

Darktrace hopes to be a leader in the move to automated cyber security to free up security professionals to focus on business risk and innovation
June 30, 2016 30 Jun'16
LizardStresser IoT botnet launches 400Gbps DDoS attack

Attack groups using the LizardStresser botnet are exploiting IoT devices to mount massive DDoS attacks without using amplification techniques, say researchers
June 29, 2016 29 Jun'16
Lauri Love using illness as a shield against extradition, claims prosecution

Prosecution lawyer questions whether activist Lauri Love is not fit enough to stand trial in the US over hacking charges,as expert witnesses warn that US prisons are ill-equipped for people with mental health problems.
June 28, 2016 28 Jun'16
Lauri Love suicide risk if extradited to US over hacking allegations

Westminster Magistrates’ Court hears evidence from medical experts that alleged hacker Lauri Love is at risk of suicide if extradited to the US
June 21, 2016 21 Jun'16
Cyber security industry mostly welcomes report on TalkTalk breach

Most of the recommendations of a government committee inquiry into the TalkTalk breach have been welcomed, but pundits have expressed reservations about some, particularly proposed new fines
June 20, 2016 20 Jun'16
Lower average cost of Australian data breaches is not a sign of comfort

The average cost of a data breach to Australian organisations dropped in 2015, according to research
June 13, 2016 13 Jun'16
EU firms slow in detecting cyber attacks, study shows

European firms take an average of 469 days to discover a compromise, compared with an average of 146 days globally, according to Mandiant
June 12, 2016 12 Jun'16
Philippines government data breach is a warning to Asean region

Security is a rising concern in the Asean region, with fears fuelled by incidents such as the recent hacking incident in Manila
June 10, 2016 10 Jun'16
IoT security: Lack of expertise will hurt, says Bruce Schneier

Government action at national and international levels is essential for addressing IoT security issues, but the relevant expertise is lacking, according to security expert Bruce Schneier
June 07, 2016 07 Jun'16
Millions of sensitive IT services exposed to the internet, study finds

Encryption should become the default as study reveals millions of sensitive services are exposed to the internet, says Rapid7
June 01, 2016 01 Jun'16
MPs’ private emails are routinely accessed by GCHQ

Computer Weekly investigation reveals the extent of interception of MPs’ and peers’ email communications and data
May 20, 2016 20 May'16
NHS data security standards to be designed around technology, people and processes

The Care Quality Commission’s delayed review of NHS data security standards will encourage NHS organisations to have senior information risk owners and Caldicott Guardians at board level
May 19, 2016 19 May'16
Lessons from LinkedIn data breach revelations

There are several important lessons to be learned from revelations about LinkedIn's 2012 data breach, say security experts
May 13, 2016 13 May'16
Time to shift information security focus away from prevention, says Swiss bank CISO

Organisations need a new approach which recognises security is “breakable”, according to Michael Meli
May 09, 2016 09 May'16
Australian health sector an easy target for cyber criminals, says IBM

A push to encourage greater adoption of electronic health records has raised the spectre of online record theft
May 06, 2016 06 May'16
Ransomware emerges as a top cyber threat to business

Security researchers at Kasperky Lab and FireEye confirm that the upward trend of ransomware is continuing and has emerged as a top threat to business
April 29, 2016 29 Apr'16
Cyber security in Belgium will gain prominence after terror attacks

Belgium’s physical security has been branded inadequate, so how does the country’s cyber security measure up?
April 28, 2016 28 Apr'16
Payment card industry issues data security standard update

PCI DSS version 3.2 introduces six new requirements for compliance, some additional guidance and a raft of clarifications
April 27, 2016 27 Apr'16
IPv6 alone will not secure IoT, warns GE CISO

It is important for all users of the internet of things to understand what they are getting into with IPv6, and to be aware of the risks and myths, says GE CISO Hanns Proenen
April 26, 2016 26 Apr'16
Business failing to learn lessons of past cyber attacks, report shows

Organisations are still failing to address basic security issues and well-known attack methods, Verizon’s latest Data Breach Investigations Report reveals
April 21, 2016 21 Apr'16
GCHQ told analysts to assume surveillance 'bulk data' is legal

Documents obtained by charity Privacy International reveal insights into GCHQ’s collection of sensitive bulk data, as lawyers question the impact of surveillance on legal privilege, fair trials and protection of whistleblowers
April 19, 2016 19 Apr'16
Employees’ use of personal devices puts firms at risk of malware infection, says report

Downloaders care about their own security while grabbing pirated content, not that of their employers
April 15, 2016 15 Apr'16
Israeli volunteers ready their cyber defences as Anonymous affiliates attack

Every April, Israel braces itself for an onslaught from pro-Palestinian hackers, but the occupants of a small conference room in Tel Aviv stand in their way
April 15, 2016 15 Apr'16
BBC turns micro:bit computers into IoT devices

The BBC and Nominet demonstrate a new use case for the micro:bit computer and hope to turn Britain’s schoolchildren into internet of things pioneers
April 13, 2016 13 Apr'16
NCA attempts 'back door' access to obtain activist Lauri Love’s passwords

Court told that use of civil proceedings to force disclosure of alleged hacker Lauri Love's passwords is disproportionate and would breach human rights law
April 11, 2016 11 Apr'16
QA launches cyber attack defence training facility in London

Training firm QA launches a cyber attack simulation facility in London to enable organisations to test and learn cyber defence skills
April 11, 2016 11 Apr'16
Activist Lauri Love faces order to disclose encryption keys

The UK’s National Crime Agency takes an unusual legal step to force a former university student accused of hacking to disclose encryption keys
April 11, 2016 11 Apr'16
IT specialist sentenced for stealing NHS computer equipment

A former NHS IT worker is convicted of stealing hospital computer equipment from Doncaster and Bassetlaw Hospitals NHS Foundation trust and selling them on eBay