News

IT security

• July 09, 2024 09 Jul'24

  Chinese spies target vulnerable home office kit to run cyber attacks

  China’s APT40 is ramping up targeting of victims using vulnerable small and home office networking kit as command and control infrastructure, according to an international alert

• July 09, 2024 09 Jul'24

  Lessons from war: How Israel is fighting Iranian state-backed hacking

  The general director of the Israel National Cyber Directorate talks about the rise in cyber attacks and what lessons the country has gleaned to defend against hacking from foreign parties

• July 09, 2024 09 Jul'24

  Atos jumps on ‘moving train’ for Euro 2024

  Atos provides the IT supporting major recurring sporting events including Uefa’s European Football Championship

• July 08, 2024 08 Jul'24

  Synnovis attack highlights degraded, outdated state of NHS IT

  More cyber attacks against the health service are likely, and will succeed if something isn’t done to address the increasingly elderly NHS IT estate, experts are warning

• July 03, 2024 03 Jul'24

  NCA’s Operation Morpheus targets illicit Cobalt Strike use

  International law enforcement operation targets cyber criminals using the Cobalt Strike penetration testing framework for dodgy purposes

• June 28, 2024 28 Jun'24

  How FWD is driving its digital strategy

  FWD’s group chief technology and operations officer talks up how the pan-Asian insurer is driving change faster and putting technology at the heart of its services

• June 28, 2024 28 Jun'24

  How Recorded Future is operationalising threat intelligence

  Recorded Future is investing in APIs to enable automated security workflows, among other measures, to help organisations overcome the hurdles of operationalising threat intelligence

• June 27, 2024 27 Jun'24

  Gulf Edge to operate Google Distributed Cloud in Thailand

  The Gulf Energy subsidiary will offer Google’s sovereign cloud service in Thailand with a focus on air-gapped configurations

• June 26, 2024 26 Jun'24

  Scottish Courts and Tribunal Service replaces legacy SD-WAN

  Contract awarded for the deployment of cross-Scotland software-defined wide area network designed to ensure efficient, secure and reliable administrative services to the judiciaries of Scotland

• June 26, 2024 26 Jun'24

  Israel’s cyber chief calls for international front against Iranian hackers

  Israel’s cyber chief has called for international action against Iran over state-backed hacking

• June 26, 2024 26 Jun'24

  Police Scotland did not consult ICO about high-risk cloud system

  Police Scotland chose not to formally consult with the data regulator about the risks identified with a cloud-based digital evidence sharing system, while the regulator itself did not follow up for nearly three months

• June 25, 2024 25 Jun'24

  WikiLeaks founder Julian Assange freed from prison

  A deal reached with US authorities will end the WikiLeaks founder’s years-long legal saga, setting him free if he pleads guilty to a criminal conspiracy charge

• June 25, 2024 25 Jun'24

  NHS experts raise warning over patient data breach risk in registries project

  Clinicians warn that the NHS England Outcome Registries Platform has poor security and is vulnerable to cyber attack, putting critical patient data at risk of being exposed

• June 24, 2024 24 Jun'24

  Sellafield pleads guilty to criminal charges over cyber security

  Nuclear Decommissioning Authority-backed organisation Sellafield Ltd pleads guilty to criminal charges brought over significant cyber security failings that could have compromised sensitive nuclear information

• June 24, 2024 24 Jun'24

  Tata Communications hosted SASE claims to redefine networking, security

  Tata Communications claims world-first implementation of unified SASE solution to deliver unified visibility and control of network traffic with context-led insights and enhanced user experience

• June 24, 2024 24 Jun'24

  Hybrid work prompts spike in network security threats

  Survey shows more than two-thirds of organisations have seen an increase in network security threats over the past 18 months, with remote and hybrid working the biggest contributor to heightened threat levels

• June 21, 2024 21 Jun'24

  Sellafield whistleblower ordered to pay costs after email tampering claims

  A former consultant at Sellafield has been ordered to pay costs for having ‘acted unreasonably’ in claiming the nuclear facility tampered with metadata in letters used against her in court

• June 21, 2024 21 Jun'24

  Qilin ransomware gang publishes stolen NHS data online

  The ransomware gang behind a major cyber attack on NHS supplier Synnovis has published a 400GB trove of private healthcare data online

• June 21, 2024 21 Jun'24

  Executive interview: Open models pros and cons

  We speak to Meta’s vice-president of AI research about recent publicly released research and models, and the role of closed AI models

• June 21, 2024 21 Jun'24

  Kaspersky says it can continue to sell cyber threat intelligence in spite of US ban

  The US government is stopping Kaspersky Lab from offering its antivirus software and cyber security tools to US firms and citizens

• June 21, 2024 21 Jun'24

  ICO police cloud guidance released under FOI

  Long-awaited guidance from the UK data regulator on police cloud deployments highlights some potential data transfer mechanisms it thinks can clear up ongoing legal issues, but tells forces it’s up to them to decide if the measures would work

• June 20, 2024 20 Jun'24

  Sir Alan Bates hits out at Post Office ‘incompetence’ after data breach

  Victims of the scandal react with anger at news the Post Office published a document containing their names and addresses on its website

• June 19, 2024 19 Jun'24

  Microsoft admits no guarantee of sovereignty for UK policing data

  Documents show Microsoft’s lawyers admitted to Scottish policing bodies that the company cannot guarantee sensitive law enforcement data will remain in the UK, despite long-standing public claims to the contrary

• June 13, 2024 13 Jun'24

  Black Basta ransomware crew may be exploiting Microsoft zero-day

  A Microsoft vulnerability that was addressed without fanfare in March may in fact have been exploited as a zero-day by the notorious Black Basta ransomware gang, threat hunters warn

• June 12, 2024 12 Jun'24

  RCE flaw and DNS zero-day top list of Patch Tuesday bugs

  An RCE vulnerability in a Microsoft messaging feature and a third-party flaw in a DNS authentication protocol are the most pressing issues to address in Microsoft’s latest Patch Tuesday

• June 11, 2024 11 Jun'24

  PSNI ran secret unit to monitor journalists’ and lawyers’ phones, claims former senior officer

  The Police Service of Northern Ireland denies claims that its anti-corruption unit used a standalone computer to ‘avoid scrutiny and control’

• June 11, 2024 11 Jun'24

  Pure Storage hit by Snowflake credential hackers

  Pure Storage emerges as the latest victim of a fast-spreading breach of Snowflake customers targeting users with lax credential security measures in place

• June 11, 2024 11 Jun'24

  More than 160 Snowflake customers hit in targeted data theft spree

  Mandiant reports that more than 160 Snowflake customers have been hit in a broad data theft and extortion campaign targeting organisations that have failed to pay proper attention to securing valuable credentials

• June 10, 2024 10 Jun'24

  General election 2024: Liberal Democrats thread digital commitments throughout manifesto

  The Lib Dems have promised a new industrial strategy and emphasised the importance of the digital sector, skills and regulating AI, as they lay out plans for the UK general election

• June 10, 2024 10 Jun'24

  NHS blood stocks running low after ransomware attack

  The NHS is appealing for people with O Positive and O Negative blood types to come forward to donate as hospitals in London struggle to keep critical services running after ransomware attack

• June 07, 2024 07 Jun'24

  Northern Irish police used covert powers to monitor over 300 journalists

  PSNI publishes report on police surveillance of journalists and lawyers, but Northern Ireland’s Policing Board says it does not give the assurances needed

• June 07, 2024 07 Jun'24

  Juniper Networks claims first with AIOps to WAN routing

  Juniper Networks announces industry leadership with enhancements to cloud-native Mist AI engine for all network domains, claiming to deliver insight for exceptional experiences

• June 07, 2024 07 Jun'24

  DDoS gang threatens to disrupt European elections

  Russian hacktivists are threatening to disrupt the European Parliament elections, while the BBC reports on new deepfake threats to the UK’s electoral process

• June 07, 2024 07 Jun'24

  Bitdefender makes MDR services free to NHS bodies hit by Qilin

  Bitdefender offers NHS bodies affected by a major cyber incident free access to its product suite, as the health service continues to deal with the impact of the Qilin ransomware attack on partner Synnovis

• June 07, 2024 07 Jun'24

  Sophos uncovers Chinese state-sponsored campaign in Southeast Asia

  Sophos found three distinct clusters of activity targeted at a high-level government organisation that appeared to be tied to Chinese interests in the South China Sea

• June 06, 2024 06 Jun'24

  FBI finds 7,000 LockBit decryption keys in blow to criminal gang

  The US authorities say they now have more than 7,000 LockBit decryption keys in their possession and are urging victims of the prolific ransomware gang to come forward

• June 05, 2024 05 Jun'24

  Qilin ransomware gang likely behind crippling NHS attack

  Security experts investigating a major cyber attack on an NHS partner that has caused frontline services across South London to grind to a halt say the Qilin ransomware gang appears to be the culprit

• June 04, 2024 04 Jun'24

  OAIC files civil penalty action against Medibank

  The OAIC alleges that Medibank failed to take reasonable steps to protect the personal information of 9.7 million Australians in the October 2022 data breach

• June 04, 2024 04 Jun'24

  Invasive tracking ‘endemic’ on sensitive support websites

  Websites set up by police, charities and universities to help people get support for sensitive issues like addiction and sexual harassment are deploying tracking technologies that harvest information without proper consent

• June 04, 2024 04 Jun'24

  NHS services at major London hospitals disrupted by cyber attack

  A major cyber attack at NHS services provider Synnovis is disrupting frontline care at hospitals across London

• June 04, 2024 04 Jun'24

  Haier Europe taps Orange Business to build responsive SD-WAN

  Looking to offer a scalable, secure networking infrastructure to support its growth, Fortune 500 home appliances company works with business arm of telco to deploy cloud-first platform enhancing security, visibility and agility

• June 04, 2024 04 Jun'24

  Russia used fake AI Tom Cruise in Olympic disinformation campaign

  Microsoft threat researchers report a surge in Russian disinformation campaigns targeting the 2024 Summer Olympics, including AI-enhanced propaganda

• June 03, 2024 03 Jun'24

  Police chief commissions ‘independent review’ of surveillance against journalists and lawyers

  PNSI chief constable appoints lawyer to conduct review into police phone surveillance of journalists, lawyers and NGOs

• June 03, 2024 03 Jun'24

  97 FTSE 100 firms exposed to supply chain breaches

  Between March 2023 and March 2024, 97 out of 100 companies on the UK’s FTSE 100 list were put at risk of compromise following supply chain breaches at third-party suppliers

• June 03, 2024 03 Jun'24

  Major breaches allegedly caused by unsecured Snowflake accounts

  Significant data breaches at Ticketmaster and Santander appear to have been orchestrated through careful targeting of the victims’ Snowflake cloud data management accounts

• June 03, 2024 03 Jun'24

  AI Seoul Summit review

  Dozens of governments and tech companies attending the second global AI Safety Summit have committed themselves to the safe and inclusive development of the technology, but questions remain around whether the commitments made go far enough

• June 03, 2024 03 Jun'24

  McLaren Formula 1 Team revs up network security with Cisco

  Legendary motor racing team expands global partnership with networking giant to accelerate network security for on-premise hardware and cloud-based software, including secure firewall and XDR

• June 03, 2024 03 Jun'24

  Sellafield local authority slammed over response to North Korean ransomware attack

  The local authority for Europe’s biggest nuclear site has been slammed by auditors for its response to a North Korea-linked cyber attack that temporarily crippled its operations

• June 02, 2024 02 Jun'24

  Ticketek Australia hit by data breach

  Customer names, dates of birth and email addresses of Ticketek Australia account holders reportedly impacted in latest data breach affecting event ticketing firm

• May 31, 2024 31 May'24

  Law student ‘unfairly disciplined’ after reporting data breach blunder

  A law student has accused a leading legal college of unethical behaviour and a “lack of integrity” after it brought misconduct proceedings against him when he reported a data security blunder