News

IT security

• June 28, 2018 28 Jun'18

  First Lorca cohort to focus on security orchestration

  The first companies to benefit from the new London cyber innovation centre will focus on cyber security orchestration and automation

• June 28, 2018 28 Jun'18

  Ticketmaster warns of third-party data breach

  Ticketmaster has warned of a potential data breach through malware found in a third-party customer support service, underlining the importance of supply chain security

• June 28, 2018 28 Jun'18

  University of Melbourne claims quantum computing breakthrough

  Australian scientists have simulated the power of quantum computing on classical computers to solve a mathematical problem, paving the way for future breakthroughs in the nascent field

• June 27, 2018 27 Jun'18

  Lorca will help drive UK cyber exports, says ex-GCHQ boss

  New London cyber security innovation centre will help to boost exports of UK cyber security expertise, says former GCHQ director

• June 27, 2018 27 Jun'18

  Brexit a greater risk to UK financial system than cyber attack

  While Brexit is seen as the biggest risk to the stability of the UK financial system, cyber attack is the most difficult risk to manage for over half of firms

• June 27, 2018 27 Jun'18

  Government must challenge popular smart city misconceptions

  A report by the All Party Parliamentary Group on Smart Cities says many people feel alienated by the concept, and calls on the government to challenge some popular misconceptions

• June 27, 2018 27 Jun'18

  Cyber criminals 'infect and collect' in cryptojacking surge

  Illicit cryptocurrency mining offers cyber criminals lower risk, higher efficacy and greater ease of making money, adding passive exploitation to ransomware extortion, data breach theft and fraud, a report reveals

• June 27, 2018 27 Jun'18

  AI and other tech key to post-Brexit success, says Matt Hancock

  Digital secretary Matt Hancock highlights the importance of emerging technologies to the future of the UK at the opening of London’s cyber security innovation centre

• June 27, 2018 27 Jun'18

  Global IoT security standard remains elusive

  Despite the lack of a global internet of things security standard, existing security frameworks are on the same page in areas such as device upgradability and data stewardship

• June 26, 2018 26 Jun'18

  British Muslim challenges use of intelligence databases for repeated police stops

  Muzaffar Abdullah is challenging police use of intelligence databases to repeatedly stop and question Muslims, after being arrested for refusing to answer questions under Schedule 7 of the Terrorism Act 2000. His lawyers say he had been stopped at ...

• June 26, 2018 26 Jun'18

  High-Tech Bridge bets on machine learning capabilities

  Machine learning has a great potential to drive the automation of some security tasks to free up information security professionals to do more strategic work, says High-Tech Bridge founder

• June 26, 2018 26 Jun'18

  Hospitality industry under siege from botnets

  The hospitality industry, including hotels, airlines and cruise lines, is the biggest target for cyber criminal botnet attacks that abuse credentials and overwhelm online systems, a report reveals

• June 26, 2018 26 Jun'18

  Norway’s National Security Agency warns IT industry about security obligations

  IT service providers serving organisations in Norway have received a timely reminder about their security obligations.

• June 25, 2018 25 Jun'18

  London cyber innovation centre opens

  The government-funded London cyber innovation centre is set to open today and welcome the first cyber security businesses as a study reveals that a quarter of UK firms lack the right security technology

• June 25, 2018 25 Jun'18

  UK privacy groups join call on EU to halt comms data collection

  UK-based privacy groups have joined calls for a halt to the collection of communications data by European Union member states

• June 25, 2018 25 Jun'18

  Most infosec pros would trust hacker-tested products

  Information security professionals are more likely to trust a product or company tested by hackers and most would respond to security reports from this community, a survey has revealed

• June 25, 2018 25 Jun'18

  Apple rejects claim of iPhone brute force hack

  Apple has rejected claims by a security researcher that he was able to bypass the iPhone defences against brute force passcode hacks

• June 22, 2018 22 Jun'18

  UK cyber skills in demand, says Dorset firm C3IA Solutions

  UK cyber security skills are in demand and there is a bright future in exporting them, according to Dorset-based firm C3IA Solutions

• June 22, 2018 22 Jun'18

  Firms look to automation for cloud security

  In the face of increasingly sophisticated and nation-state-sponsored cyber attacks, organisations are looking to managed security services and automation for security in the cloud and on-premise

• June 22, 2018 22 Jun'18

  IBM early findings on disastrous TSB core banking system migration released

  Report released by Treasury Committee criticises lack of rigour in preparation for core banking system migration, but TSB says report’s content is out of date

• June 21, 2018 21 Jun'18

  Infosec pros expect increase in nation state cyber attacks

  Most information security professionals expect a rise in nation state cyber attacks, with more than two-thirds preparing to defend against them

• June 21, 2018 21 Jun'18

  CDO interview: Andrei Belevtsev, Gazprom Neft

  Russian oil giant will harness the latest technologies right across its business, says chief digital officer

• June 21, 2018 21 Jun'18

  Government sponsors diversity cyber academy

  The UK government has awarded a grant for the establishment of a cyber academy to promote neurodiversity in the industry

• June 21, 2018 21 Jun'18

  Younger employees 'main culprits' for security breaches

  UK senior decision makers believe younger workers are the biggest risk to cyber security, but are doing little to support them and reduce that risk, a report reveals

• June 20, 2018 20 Jun'18

  Palo Alto Networks opens cyber range in Australia

  The first of its kind in Asia-Pacific, the cyber range training facility will let Australian IT and security teams hone their skills through cyber security exercises

• June 20, 2018 20 Jun'18

  CIO interview: Mike Young, Centrica

  We speak to the CIO whose CEO recently met with the head of Microsoft to talk about strategy

• June 20, 2018 20 Jun'18

  More APAC consumer goods firms expected to adopt blockchain

  The adoption of blockchain technology is likely to increase in the consumer goods industry as more businesses use the technology to address fraud and improve supply chain management

• June 20, 2018 20 Jun'18

  Dutch organisations must unite to fight DDoS attacks

  Experts in the Netherlands call on Dutch corporations and institutions to work together to help prevent distributed denial of service attacks

• June 20, 2018 20 Jun'18

  Most small businesses fail to act after a cyber attack  

  Nearly half of small businesses have suffered at least one cyber attack in the past year, yet most fail to take action afterwards, citing lack of budget at the biggest challenge

• June 19, 2018 19 Jun'18

  Singapore remains hotbed for cyber threats

  Singapore was a victim of advanced persistent threats, phishing and website defacements in 2017, according to the latest threat landscape report by the Cyber Security Agency

• June 19, 2018 19 Jun'18

  Surface web used in private data sales

  The surface web plays an integral role in the selling of personal information, a report on identify fraud has revealed

• June 19, 2018 19 Jun'18

  MPs see risk to critical infrastructure as top threat

  A majority of MPs are concerned about the cyber threat to critical national infrastructure, a survey has revealed

• June 18, 2018 18 Jun'18

  Singapore faced cyber attacks during Trump-Kim summit

  Russian attackers allegedly scanned IP phones in the city-state for vulnerabilities, although it was unclear what they were after or whether they were successful

• June 14, 2018 14 Jun'18

  Encryption is under attack, says Venafi CEO Jeff Hudson

  Encryption is one of the fundamental principles on which the internet is built, but this vital technology is under threat from criminals and ill-advised government policies, says Venafi CEO Jeff Hudson

• June 14, 2018 14 Jun'18

  AI is key to keeping IBM compliant with GDPR

  Artificial intelligence is vital for keeping IBM compliant with the principles of the General Data Protection Regulation, which, in turn, provides opportunities for business, says the company’s data protection officer

• June 14, 2018 14 Jun'18

  Cyber attack warnings highlight need to be prepared

  Fresh warnings about the vulnerability of national infrastructure to cyber attacks show the need for securing and monitoring associated control systems connected to the internet

• June 14, 2018 14 Jun'18

  NCSC urges action after Dixons Carphone breach

  The National Cyber Security Centre (NCSC) is urging UK business to improve data protection capabilities after Dixons Carphone revealed that millions of payment card and personal data records may have been compromised in a cyber breach

• June 13, 2018 13 Jun'18

  Dixons Carphone admits 'falling short' on data protection

  Dixons Carphone has warned that millions of credit card and personal data records may have been compromised in a cyber breach

• June 12, 2018 12 Jun'18

  Insurer Beazley meets global challenge to secure mobile workforce

  Beazley has stolen a march on other London-market insurers by implementing a versatile global digital workspace with improved security

• June 12, 2018 12 Jun'18

  Privacy Shield under threat by US non-compliance

  The Privacy Shield framework that replaced the Safe Harbour agreement for personal data transfers between the EU and the US is under threat due to non-compliance by US firms

• June 12, 2018 12 Jun'18

  Investigators close Nokia extortion probe without finding a motive or making an arrest

  New details of €2m blackmail of Nokia in 2007 emerge as Finland’s NBI calls a halt to its investigation

• June 12, 2018 12 Jun'18

  BT announces “unhackable” quantum-secured network

  In the face of the threat that quantum computers could crack many of the encryption methods used to protect highly sensitive data, BT has developed a “quantum-secured” network

• June 12, 2018 12 Jun'18

  Email-based cyber attacks gathering momentum

  Email-based cyber attacks are gathering momentum and the cost of these attacks are rising, with several hidden costs, a survey of IT professionals in Europe, Middle East and Africa reveals

• June 11, 2018 11 Jun'18

  Singapore career website hit by PageUp malware scare

  A Singapore government career website was among others affected by a malware attack on an Australian recruitment technology supplier

• June 11, 2018 11 Jun'18

  Industry must do more to open up cyber security profession

  Talented and successful cyber security researcher and passionate advocate for the profession, James Lyne reveals that he fell into security more by accident than design, and says training and recruitment must change to find and develop talented ...

• June 11, 2018 11 Jun'18

  Security Think Tank: Data flow visibility is essential to security

  Why is it important to know where data flows, with whom it is shared and where it lives at rest, and what is the best way of achieving this?

• June 11, 2018 11 Jun'18

  Coinrail cyber heist highlights need for exchange security

  A cyber heist at South Korea’s Coinrail has prompted fresh calls for industry regulations to drive better cyber security at cryptocurrency exchanges

• June 11, 2018 11 Jun'18

  APAC remains a hotbed for software piracy

  The Asia-Pacific region is still seeing the highest use of unlicensed software installations globally, making enterprises more susceptible to cyber attacks from malware

• June 10, 2018 10 Jun'18

  GDS loses digital identity policy to DCMS

  The move follows DCMS taking over data policy from GDS and means Cabinet Office is no longer responsible for relations with private sector ID ecosystem

• June 08, 2018 08 Jun'18

  Parliamentary computers at risk after staff targeted by phone phishing

  Police are investigating phone phishing attacks targeted against Parliament. Staff warned not to disclose details of their computers to fraudulent callers.

• June 08, 2018 08 Jun'18

  BYOD for mobile ‘a year away’ for Williams F1

  Companies in the Williams Group – the Formula One racing operation Williams Grand Prix Engineering and its high-growth sister operation Williams Advanced Engineering – are investing with mobile security front-of-mind to enable more agile working ...

• June 08, 2018 08 Jun'18

  Businesses must report cyber crime, panel urges

  By reporting cyber crimes, private enterprise can help improve national and international cyber defences and bring criminals to justice, according to an expert panel

• June 07, 2018 07 Jun'18

  Cyber security focus too much on tech, says Domino’s CISO

  Many organisations are still focusing only on technology and compliance, which means their cyber defences are not as solid as they think, according to Domino’s Pizza chief information security officer

• June 07, 2018 07 Jun'18

  IT spending reaches 10-year high as CIOs struggle with digital technology strategy

  IT leaders have seen their budgets and headcounts rise for the first time in 10 years, but face challenges implementing their digital strategies

• June 07, 2018 07 Jun'18

  Nation state cyber attacks affect all, says former GCHQ boss

  Cyber attacks by nation states used to be a small part of the problem for state authorities to address, but now all organisations are potential targets of nation state attacks, according to former GCHQ head

• June 07, 2018 07 Jun'18

  Business not learning from past cyber security incidents

  Businesses are still not getting the basics right and they are not learning from past security incidents, according to world-renowned security blogger and trainer

• June 06, 2018 06 Jun'18

  GDPR and backup: A potential minefield easily avoided

  The right to be forgotten will be impossible in backups and snapshots, but systems can be built that automate for compliance, says Andy Barratt of security consultancy Coalfire

• June 06, 2018 06 Jun'18

  We need to design for security and privacy, says Martha Lane Fox

  The digital future is bright, but only if society works through a gear change in its relationship with technology, and demands products and services that are secure and private by design, says internet service pioneer

• June 06, 2018 06 Jun'18

  Understanding is key to security awareness, says specialist

  Only if people understand why cyber security matters will they change their behaviours as a result of awareness training, according to a human behaviour specialist and cyber security consultant

• June 06, 2018 06 Jun'18

  Cyber attacks not sophisticated, says Just Eat CISO

  The chief information security officer of Just Eat has challenged the perception that all cyber attacks are sophisticated and that it is impossible to fill cyber security jobs

• June 05, 2018 05 Jun'18

  Nexsan adds Assureon Cloud Transfer for hybrid cloud archiving

  Nexsan archiving appliances add hybrid cloud capability to AWS and Azure cloud for unstructured data, targeting users that want to retain files on-site with cloud access

• June 05, 2018 05 Jun'18

  Boards not asking right security questions, says Dido Harding

  Former TalkTalk CEO says boards are still not asking the right cyber security questions, do not understand that they should be making cyber risk decisions, and are not communicating with engineers

• June 04, 2018 04 Jun'18

  Technology key to new UK counter-terrorism strategy

  Technologies such as machine learning and data analytics are key to the UK government’s updated counter-terrorism strategy

• June 04, 2018 04 Jun'18

  One-third of firms would pay ransoms rather than invest in security

  Report says businesses are still making the same mistakes, failing to make any progress in crucial areas such as cyber security awareness and preparedness

• June 04, 2018 04 Jun'18

  Scotland to begin building identity platform prototype this autumn

  Scottish government plans flexible approach to online identity providers as it aims to launch alpha phase of is online identity assurance programme in August 2018

• June 04, 2018 04 Jun'18

  Offensive AI unlikely in the near future, says Mikko Hypponen

  Cyber criminals are not close to being able to use AI for attack purposes, according to industry veteran Mikko Hypponen, who has been at the forefront of AI use in cyber defence for several years

• June 01, 2018 01 Jun'18

  Huge rise in TSB-themed mobile phishing attacks after IT meltdown

  Scammers have used bank’s IT problems as an opportunity to target its customers with mobile phishing attacks

• June 01, 2018 01 Jun'18

  Ethical hacker, 86, rises to Santander’s challenge

  Elderly hacker with little computing experience was able to hack WiFi and create phishing attack

• June 01, 2018 01 Jun'18

  Security suppliers need to interact with community, says researcher

  Security suppliers need to interact with the community to get feedback on their products before launch to ensure they have not missed any vulnerabilities, a security researchers advises

• May 31, 2018 31 May'18

  VPN hacks can be lethal, warns security expert

  Organisations should not overlook the need to secure VPN connections because failure to do so could be fatal, but 2FA alone is not enough, warns a security expert

• May 30, 2018 30 May'18

  Security community urged to prepare for quantum computing

  A top European chief information security officer is urging the security community to prepare for quantum computing to ensure their encryption processes are ready in time

• May 30, 2018 30 May'18

  US issues warning about North Korean malware

  US government has identified more than 85 networks compromised by two malware families believed to be North Korean in origin

• May 30, 2018 30 May'18

  US jails Canadian resident who helped Russia hack Yahoo emails

  A US court has jailed a hacker on charges of computer fraud for hacking Yahoo email accounts on behalf of the Russian government

• May 29, 2018 29 May'18

  Business still not addressing insider threat

  Businesses are still not addressing inside threats when it comes to cyber security, leaving themselves wide open to data breaches as a result, according to a security analyst

• May 29, 2018 29 May'18

  UK security spend low despite breaches

  The UK is the most breached country in Europe, but IT security spend remains low compared with other countries in the region, a report reveals

• May 29, 2018 29 May'18

  Max Schrems’s NOYB initiates GDPR action

  A privacy NGO led by Austrian lawyer Max Schrems is among the first to file complaints under the GDPR against Google, Instagram, WhatsApp and Facebook

• May 25, 2018 25 May'18

  Former Macedonian PM convicted in corruption case exposed by illegal government surveillance

  Information exposed by leaked recordings that were part an illegal mass surveillance campaign orchestrated under the government of former prime minster Nikola Gruevski have led to his conviction for corruption. He was found guilty of rigging a ...

• May 25, 2018 25 May'18

  London CDO: More groundwork needed to gain trust for data use

  London’s chief digital officer, Theo Blackwell, says organisations need to do more groundwork if a smarter city is to be real possibility

• May 25, 2018 25 May'18

  MPs slam government for biometrics strategy delay

  Science and Technology Committee questions legality of the police’s approach to deleting mugshots of innocent people, and says government’s reasons for four-year delay to a new strategy is “less than convincing”

• May 25, 2018 25 May'18

  GDPR puts people first, says ICO

  The day of 25 May 2018 marks the biggest change to UK data protection law in a generation, with benefits for businesses and consumers, according to the UK privacy watchdog

• May 25, 2018 25 May'18

  Commitment is the watchword on GDPR D-Day

  New rules for protecting European citizens’ personal data are now enforceable by law, and organisations are being advised to focus broadly on commitment rather than narrowly on compliance

• May 24, 2018 24 May'18

  Grab outlines its approach to cyber security

  Singapore-based ride-hailing company prefers detective controls rather than preventive ones to deter cyber threats – an approach it claims is less intrusive and costly to implement

• May 24, 2018 24 May'18

  Stronger rules on data protection by EU institutions agreed

  On the eve of the GDPR compliance deadline, European politicians agree new rules to strengthen data protection in EU organisations

• May 24, 2018 24 May'18

  Security experts weigh in on GDPR checklists

  Security experts give their views on what final checks businesses should be doing on the eve of the General Data Protection Regulation compliance deadline, while a survey reveals almost half of Brits have not heard of it

• May 24, 2018 24 May'18

  NHS to launch national data opt-out tool

  Patients will be able to opt out of having their health and care data shared by using an online tool developed by NHS Digital

• May 24, 2018 24 May'18

  EU cyber security agencies pledge to up cooperation

  Four European cyber security agencies have agreed to increase collaboration in five key areas

• May 24, 2018 24 May'18

  England and Wales Cricket Board to improve players’ medical data

  Cricketers’ medical images will be stored securely in an independent clinical archive, enabling clinicians to access medical data and make treatment decisions more quickly

• May 24, 2018 24 May'18

  New UK Data Protection Act not welcomed by all

  Legislation makes the UK one of the first countries to implement the GDPR in local law, but some have criticised it as a “lost opportunity”

• May 23, 2018 23 May'18

  UK calls for new data-sharing model with EU

  The UK has proposed a new data-sharing model to ensure ongoing data protection collaboration and free flow of data between the EU and the UK post-Brexit

• May 23, 2018 23 May'18

  Compliance in the cloud: Avoiding the cloud compliance trap

  When you hand over data to a cloud provider, you don’t hand over responsibility for legal and regulatory compliance. Beware of falling into a cloud compliance trap

• May 23, 2018 23 May'18

  Mobile fraud up 680% since 2015, RSA reports

  Fake profiles and throw-away devices are transforming social media into a cyber criminal marketplace, a fraud report reveals

• May 23, 2018 23 May'18

  Skills shortage a major cyber security risk

  Skill shortages remain a major risk to long-term information security capability and business is still struggling to defend against cyber breaches – but it is getting better at dealing with them, an IISP survey shows

• May 23, 2018 23 May'18

  Facebook is ready for GDPR, says Zuckerberg

  Facebook chief Mark Zuckerberg has claimed the social network is ready for GDPR, but failed to give any answers to the most probing questions posed by European MEPs

• May 22, 2018 22 May'18

  Legit tools exploited in bank heists

  Cyber criminals attacking the finance and other industry sector are continuing to exploit legitimate administration tools to hide their activities, highlighting the need for threat hunting, a report reveals

• May 22, 2018 22 May'18

  Security researchers find fourth CPU flaw

  Security researchers have reported another flaw in common microprocessor chips related to the Meltdown and Spectre vulnerabilities

• May 22, 2018 22 May'18

  Sweden’s Telenor makes GDPR consent personal

  Telenor Sweden says it has seen market-leading results for General Data Protection Regulation consent after enlisting a customer experience firm to manage the process

• May 22, 2018 22 May'18

  Finland government examines centralised cyber defence

  The Finnish government is attempting to centralise its fight against increasing cyber threats to its infrastructure

• May 22, 2018 22 May'18

  Google sued for £3.2bn for tracking UK iPhone browsing

  A lawsuit by a group called Google You Owe Us is seeking compensation from Google for tracking millions of UK iPhone users’ browsing data

• May 21, 2018 21 May'18

  Pen testers find weaknesses in banks’ cyber security

  Humans are the biggest weakness in banks’ cyber defences, but there are several others that also need attention, penetration testers have revealed

• May 21, 2018 21 May'18

  ICO fines University of Greenwich £120,000

  The UK privacy watchdog has issued a monetary penalty against the University of Greenwich for a "serious" security breach