News

IT security

• April 04, 2019 04 Apr'19

  Document-based malware on the rise, businesses warned

  Document-based malware spiked in the first quarter of the year, building on a gradual rise in the past year, warn researchers

• April 04, 2019 04 Apr'19

  Third-party Facebook apps expose 540 million users’ details

  Researchers have discovered another trove of Facebook users’ details, showing there is still no control over data shared with third parties, potentially exposing Facebook to more regulatory and legal action

• April 04, 2019 04 Apr'19

  Fresh approach needed to reap cloud security benefits

  Transitioning to cloud-based services offers businesses an opportunity to improve security capabilities, but only if they adopt a proactive cloud-native approach, says Palo Alto Networks cloud security expert

• April 03, 2019 03 Apr'19

  Government urges businesses and charities to up cyber security

  The UK government is urging businesses and charities to take action to prevent cyber attacks as the costs go up, despite an overall reduction in breaches, partly driven by new data protection laws

• April 03, 2019 03 Apr'19

  Employees lack awareness of corporate data-sharing policies

  IT leaders believe their organisations are highly likely to lose data in the next 12 months due to accidental data breaches

• April 02, 2019 02 Apr'19

  Akamai to open second traffic scrubbing centre in Australia

  New centre in Melbourne will meet growing demand for scrubbing services to mitigate the impact of distributed denial of service attacks in Australia

• April 02, 2019 02 Apr'19

  Women now almost a quarter of cyber security workforce

  Women in cyber security are younger, have achieved higher levels of education and are assuming leadership roles at higher rates than men, a study shows

• April 02, 2019 02 Apr'19

  Four in 10 leading banks failing on email fraud protection

  Top UK traditional and challenger banks risk exposing customers to email fraud, a study reveals

• April 02, 2019 02 Apr'19

  Cyber attacks increasingly exploiting supply chain weaknesses

  Cyber attacks are increasingly characterised by supply chain attacks, counter incident response and lateral movement, research reveals

• April 02, 2019 02 Apr'19

  Huawei reports record numbers despite tumultuous year

  Huawei has become one of the world’s largest technology companies by revenue, suggesting the accusations over its ties to the Chinese government are failing to have much impact

• April 02, 2019 02 Apr'19

  Thales completes acquisition of Gemalto

  Multi-billion-euro acquisition gives Thales a global leadership position in digital identity and security

• April 01, 2019 01 Apr'19

  Black Hat Asia 2019: Get ready for the cyber arms race

  The arms race is now squarely in the cyber realm as defence teams and threat actors arm themselves with AI tools

• April 01, 2019 01 Apr'19

  Rapidly multiplying IoT cyber attacks use well-known weaknesses

  Internet of things threats and attacks are increasing rapidly, but rely on well-known security weaknesses, security researchers discover

• April 01, 2019 01 Apr'19

  Zuckerberg calls for new internet regulation

  Facebook chief calls for new internet regulation in four key areas to define clear responsibilities for people, companies and governments, including more GDPR-aligned data protection rules

• April 01, 2019 01 Apr'19

  Singapore government to review data security in public sector

  A high-level committee comprising ministers and private sector security experts will review data security practices and recommend measures to better protect citizens’ data

• March 29, 2019 29 Mar'19

  Magento e-commerce sites urged to apply security update

  Security experts are urging companies using the Magento e-commerce site to apply security updates without delay to avoid a disastrous hacking campaign

• March 29, 2019 29 Mar'19

  ICO kicks off sandbox beta to support innovation

  The UK’s privacy watchdog has launched the first phase of an initiative aimed at enhancing data protection while supporting business innovation

• March 28, 2019 28 Mar'19

  Infosec pros slam government-mandated backdoors

  Government-mandated encryption backdoors increase vulnerability to nation-state attacks, according to the majority of cyber security professionals

• March 28, 2019 28 Mar'19

  Huawei making no progress on addressing security concerns

  Huawei has made no material progress on addressing the issues identified last year by the NCSC, according to the latest highly critical report from its HSCEC Oversight Board

• March 28, 2019 28 Mar'19

  Encryption adoption driven by new tech and compliance

  The adoption of encryption is at its highest level yet, driven by the need to protect data generated by new digital initiatives, but still less than half of organisations are applying it consistently across the enterprise

• March 27, 2019 27 Mar'19

  UK IoT research centre to tackle cyber risk

  A government-backed national IoT research centre has been launched as part of UK efforts to become a world leader in tackling cyber threats  

• March 27, 2019 27 Mar'19

  Cyber attacks targeting industrial control systems on the rise

  Malicious cyber activity increased to almost half of the industrial infrastructure protected by Kaspersky Lab in 2018, but the UK is among the most secure countries, the security firm reports

• March 27, 2019 27 Mar'19

  Mind the overlap between GDPR and ePD, warns privacy lawyer

  Organisations need to be aware of the overlaps between European data protection and privacy rules, and which takes precedence, a privacy lawyer warns

• March 27, 2019 27 Mar'19

  Norsk Hydro cyber attack cost estimates up to $41m

  Initial estimates have put the financial impact of last week’s ransomware attack on the Norwegian aluminium producer of up to nearly $41m, raising questions about cyber insurance coverage

• March 26, 2019 26 Mar'19

  Web inventor wants a web built on solid data principles

  Tim Berners-Lee has urged app developers to be courteous to users’ data privacy, saying users should own their own data and apps need to interoperate

• March 26, 2019 26 Mar'19

  Police make 61 arrests in global crackdown on dark web

  Law enforcement agencies from the US, Canada and Europe, including the UK, have joined forces to target suppliers and buyers of illegal goods on dark web marketplaces and warn buyers of risks

• March 26, 2019 26 Mar'19

  IT complexity raises concerns of certificate-related outages

  Company executives are concerned that increased IT complexity will result in more security certificate-related outages, with nearly two-thirds of organisations affected in the past year

• March 26, 2019 26 Mar'19

  Europe passes controversial Copyright Directive

  The European Parliament has passed a new Copyright Directive, including a number of highly controversial articles

• March 26, 2019 26 Mar'19

  BT switches on quantum network link at Adastral Park

  BT has opened its quantum network link between its Adastral Park research base and the UK Quantum Network node at the University of Cambridge

• March 26, 2019 26 Mar'19

  Asus releases fix for supply chain cyber attack

  Asus has released a fix for a supply chain attack and downplayed the impact on customers while promising to contact all those affected as incident highlights code signing vulnerabilities

• March 26, 2019 26 Mar'19

  Nominet urges SMEs to register .uk domains to thwart squatters

  The automatic right of .co.uk domain name holders to register the shorter .uk domains ends in June

• March 26, 2019 26 Mar'19

  Firms urged to gear up for new malware and tactics as threats proliferate

  The volume of malware attacks reached a record level in 2018, with UK and India bucking global trend of increased ransomware attacks, a study shows

• March 26, 2019 26 Mar'19

  Geopolitical issues affecting cyber security

  Geopolitical issues are affecting business decisions, according to the majority of cyber security professionals, a survey shows

• March 25, 2019 25 Mar'19

  Security challenge is to move as fast as the business

  Adapting security to the pace at which the business is moving is one of the biggest challenges facing infosec professionals in the cloud era, says Palo Alto Networks

• March 25, 2019 25 Mar'19

  Lack of security skills exposing business to attack

  The cyber skills shortage is leaving businesses at increased risk of attack as organisations continue to struggle to fill security-related positions, a survey shows

• March 25, 2019 25 Mar'19

  Mike Lynch heads to High Court to defend against HP allegations

  The UK’s biggest fraud case commences, with the former CEO of Autonomy, Mike Lynch, attempting to clear his name

• March 25, 2019 25 Mar'19

  Small businesses hit hardest by cyber crime costs

  Small businesses felt the biggest impact of the UK’s cyber crime bill in 2018, research shows

• March 22, 2019 22 Mar'19

  Digital Darwinism unkind to those who wait, says Palo Alto

  As business-driven digital transformation, including the move to cloud, continues apace, companies need to rethink their approach to how they deploy and consume security, or risk being left behind

• March 22, 2019 22 Mar'19

  UK government at odds over Huawei threat

  The chair of the Science and Technology Committee has criticised the government’s vague response to concerns about Huawei’s activities in the UK

• March 22, 2019 22 Mar'19

  Facebook security policy and practices unfit, say infosec pros

  Confidence in Facebook’s ability to keep users’ data safe has once again been shaken by revelations of poor password protection practices, prompting calls for a security review

• March 22, 2019 22 Mar'19

  UK police should not deploy live facial recognition technology until issues are resolved, MPs told

  The Science and Technology Committee has heard from the information and biometrics commissioners about the flawed use of live facial recognition technology by UK police

• March 22, 2019 22 Mar'19

  Government cyber security strategy is ‘chaotic’

  Responding to potential threats at a national level is unfeasible given the time ministers are currently dedicating to Brexit negotiations, says shadow Cabinet Office minister

• March 21, 2019 21 Mar'19

  Russian cyber espionage groups targeting EU governments

  Two Russian cyber espionage groups are targeting EU governments ahead of European elections, say researchers

• March 20, 2019 20 Mar'19

  Spike in cyber attacks targeting Cisco Webex

  Cyber attacks targeting a leading web conference tool have increased dramatically and sextortion is becoming more popular with attackers, according to WatchGuard Technologies

• March 20, 2019 20 Mar'19

  Police investigate Norsk Hydro ransomware attack

  Ransomware attack on one of the world’s largest aluminium producers is under police investigation

• March 20, 2019 20 Mar'19

  UK cyber experts to support global company boards

  A consortium of UK cyber security experts and academics is to support multinational company boards to tackle online threats and protect against cyber crime

• March 20, 2019 20 Mar'19

  UK government organisations’ email security lagging

  Email security in UK government organisations is lagging far behind that of central government, analysis reveals, with less than a third implementing standard protection

• March 19, 2019 19 Mar'19

  Norsk Hydro confirms ransomware attack

  A Norwegian aluminium producer has confirmed a ransomware attack is affecting several areas of its business, forcing it to switch to manual operations

• March 19, 2019 19 Mar'19

  More than half of EU firms report cyber attack losses

  More than half of European firms admit business disruption and data loss due to cyber attacks in the past 24 months, with UK firms among the most targeted, a survey shows

• March 19, 2019 19 Mar'19

  Firms urged to protect against spear phishing

  Spear phishing attacks are sophisticated, targeted, costly and increasing in popularity among cyber attackers, a report warns

• March 19, 2019 19 Mar'19

  Norwegian aluminium producer hit by ‘extensive’ cyber attack

  A Norwegian aluminium producer has disclosed that it has come under cyber attack affecting several areas of its business as the firm faces claims of environmental damage

• March 18, 2019 18 Mar'19

  Build in trust, experts advise cyber innovators

  Trust will be increasingly important in the digital era, and is therefore a key component of new products and services, experts have told cyber security innovators

• March 18, 2019 18 Mar'19

  EU law enforcement agencies prepare for major cyber attacks

  Law enforcement agencies across the European Union are preparing for major cross-border cyber attacks, says Europol

• March 18, 2019 18 Mar'19

  CyLon announces latest cyber security accelerator cohort

  Swiss and Israeli cyber security startups join teams from the UK for CyLon’s ninth London accelerator cohort

• March 15, 2019 15 Mar'19

  Businesses failing to grasp DevSecOps

  UK and US businesses are being exposed to security risks by a failure to integrate security into DevOps programmes, research shows

• March 15, 2019 15 Mar'19

  Brexit complicating already complex data protection

  GDPR impact is yet to be felt and data protection is set to become increasingly complex, with Brexit adding even more complexity that could be overwhelming, warns head of international privacy association

• March 15, 2019 15 Mar'19

  Why the web needs patching

  Regulators want to curb the web giants, while World Wide Web inventor Tim Berners-Lee believes problems with the web's misuse can be fixed

• March 14, 2019 14 Mar'19

  National Cyber Security Programme at risk of missing targets

  The National Audit Office has sharply criticised the Cabinet Office over failings in how it set up the National Cyber Security Programme that mean it may struggle to meet its goals

• March 14, 2019 14 Mar'19

  IT Priorities 2019: ANZ organisations focus on fundamentals

  Organisations in Australia and New Zealand will spend more on modernising legacy applications and breaking down data silos this year

• March 14, 2019 14 Mar'19

  Avoid infosec mistakes of the past, urges Robert Hannigan

  Technology innovators need to avoid security mistakes of the past by building in integrity so that products and services can be used with trust and confidence, says former GCHQ director

• March 14, 2019 14 Mar'19

  Met Police collaborated with US prosecutors in WikiLeaks investigation

  The Metropolitan Police has confirmed it exchanged information on WikiLeaks staff in the UK with the US Department of Justice, which is conducting criminal investigations into the organisation

• March 13, 2019 13 Mar'19

  IT Priorities 2019: ASEAN organisations lay digital foundations

  Organisations in Southeast Asia are planning to shore up their IT infrastructure to speed up application development and become more customer focused

• March 13, 2019 13 Mar'19

  ICO pledges to support innovation

  UK data privacy watchdog is increasingly gearing up to support innovation to ensure developers of tech and digital services do not lose society’s trust

• March 13, 2019 13 Mar'19

  Almost half UK firms hit by phishing attacks

  Almost half of UK organisations have been compromised in the past two years using phishing attacks, despite high levels of cyber awareness and training, research shows

• March 12, 2019 12 Mar'19

  Cyber attackers favouring stealthier attacks, says Darktrace

  Cyber attackers are moving away from ransomware to stealthier tactics, including banking Trojans and cryptojacking, an analysis of attack data reveals

• March 12, 2019 12 Mar'19

  Many firms unaware of data exfiltration threat

  Many firms are unaware that they are being targeted by cyber espionage and that data is being exfiltrated from their networks by overseas adversaries, a security firm warns

• March 12, 2019 12 Mar'19

  Despite failings, exec appetite for secure collaboration growing

  Top business decision makers are more reckless than ever with company data, but the appetite for secure collaboration tools is growing, survey reveals

• March 11, 2019 11 Mar'19

  NatWest launches biometric card pilot

  NatWest Bank is set to trial biometrics-based cards with 200 customers to verify contactless payment transactions over £30

• March 11, 2019 11 Mar'19

  Citrix breach once again highlights password weaknesses

  A reported breach of Citrix, which has potentially exposed data at hundreds of thousands of customer organisations, has once again highlighted the need for an alternative to passwords and the importance of supply chain security

• March 09, 2019 09 Mar'19

  ICO data raises doubts over UK firms’ ability to manage breaches

  Most ICO data breach reports late and incomplete prior to full GDPR implementation, FoI request data reveals, raising doubts about breach prevention, detection and response capabilities

• March 08, 2019 08 Mar'19

  Growing awareness of mobile security risk

  There is a growing awareness of mobile security risk among members of the information security community, but most admit accessing corporate data from personal devices or public Wi-Fi

• March 08, 2019 08 Mar'19

  Equifax defends against scathing Senate report

  Equifax chief says firm did take cyber security seriously in a response to a scathing Senate report on the credit rating agency’s 2017 data breach, which experts say highlights failings around open source software

• March 07, 2019 07 Mar'19

  Vodafone defends its use of Huawei as 5G trials go live

  As Vodafone begins trials of a live 5G service in Bristol, Cardiff and Liverpool, the operator’s CTO and general counsel have defended their use of Huawei equipment in Vodafone’s network and challenged its detractors to produce evidence of spying

• March 07, 2019 07 Mar'19

  How aid workers are using encrypted communications to stay safe in conflict zones

  Often operating in volatile conflict zones, aid workers are frequently turning to encrypted communication services to protect each other

• March 07, 2019 07 Mar'19

  ICO head still in top three of DataIQ data leader list

  The UK’s information commissioner remains in the top three data leaders after claiming top spot in 2018 in the DataIQ 100 list of most influential data leaders, but GDPR is not the only focus in the industry

• March 07, 2019 07 Mar'19

  Machine identities for sale on dark web, business warned

  Academics and security professionals are warning businesses that certificates used to establish trust and privacy on the internet are being weaponised and sold to cyber criminals bundled with other services

• March 07, 2019 07 Mar'19

  US government ban unconstitutional, says Huawei

  Huawei’s lawsuit accuses Washington of violating the US Constitution by banning it from government contracts

• March 07, 2019 07 Mar'19

  Zuckerberg commits to Facebook becoming privacy-focused

  After a storm of controversy and criticism over the way Facebook fails to protect users’ privacy, the company’s chief says he plans to transform it into a privacy-focused platform

• March 06, 2019 06 Mar'19

  Cyber espionage group behind SingHealth attack

  A cyber espionage group dubbed Whitefly has been identified as the perpetrators behind Singapore’s largest data breach to date

• March 06, 2019 06 Mar'19

  5G one of several security challenges to CNI

  5G technology is among the key security challenges facing critical national infrastructure and all other business organisations, according to the Information Security Forum

• March 05, 2019 05 Mar'19

  US doubles down on Huawei fears as Chinese prepare to sue

  US secretary of state Mike Pompeo has reinforced his attacks on Huawei as the firm apparently prepares to sue the US government over its federal-level ban

• March 05, 2019 05 Mar'19

  IT Priorities 2019: What projects are IT professionals spending their budgets on?

  The Computer Weekly/TechTarget IT Priorities 2019 survey finds that cloud maturity, security and automation are among the hot areas for spending

• March 05, 2019 05 Mar'19

  Singapore can now certify security products based on Common Criteria

  The city-state is has attained the status of a Certificate Authorising Nation, enabling it to evaluate and certify security products under the Common Criteria standard

• March 04, 2019 04 Mar'19

  GDS cut expected benefits of troubled Gov.uk Verify system by 75%

  In a highly critical report, the National Audit Office says it is 'difficult to conclude' that past decisions to continue with the flagship digital identity system have been justified

• March 04, 2019 04 Mar'19

  Cyber awareness of UK boards found wanting

  Boards of many of the UK’s biggest firms must do more to be cyber aware, according to a government report.

• March 04, 2019 04 Mar'19

  RSA Security bets on digital risk management

  RSA Security chief predicts that managing digital risk is set to become increasingly important to organisations as they complete their journeys to digital transformation

• March 04, 2019 04 Mar'19

  Clearer North Korean link to global infrastructure malware campaign

  Researchers have uncovered clearer links between a North Korean hacking group and a cyber espionage campaign targeting government, defence, nuclear, energy and financial organisations around the world

• March 04, 2019 04 Mar'19

  IT Priorities 2019: APAC keeping pace with digital transformation

  Digital transformation is well underway among APAC enterprises which are looking to spend more on refreshing their IT infrastructure and technologies that improve employee productivity

• March 02, 2019 02 Mar'19

  Facebook asked George Osborne to influence EU data protection law

  Facebook COO Sheryl Sandberg invited one of the chancellor’s children to Facebook’s office as part of a intensive lobbying programme to influence European data protection legislation

• March 01, 2019 01 Mar'19

  Facebook facing 10 GDPR investigations in Ireland

  Ireland’s Data Protection Commission has revealed it has 10 active probes into Facebook, Instagram and WhatsApp, as well as Apple, LinkedIn and Twitter, on its books

• March 01, 2019 01 Mar'19

  Teen becomes first millionaire through HackerOne bug bounties

  A self-taught teen hacker from Argentina has become the first bug bounty hacker to become a millionaire by hacking to create a safer internet

• February 28, 2019 28 Feb'19

  Supplier consolidation tops infosec goals for 2019

  Supplier consolidation, collaboration between networking and security teams, and security awareness are the top priorities for information security professionals trying to prepare for the unknown, annual benchmark study shows

• February 28, 2019 28 Feb'19

  London cyber security innovation centre issues open invitation

  Government-backed cyber security innovation centre is calling for innovators to address key challenges facing the cyber security industry, offering a year of bespoke support to scale quickly

• February 28, 2019 28 Feb'19

  Sextortion accounts for one in 10 spear-phishing emails

  Email sextortion scams have increased in frequency and scope in the past four months, as well as evolving to bypass spam filters and trick recipients into reading the messages, research shows

• February 27, 2019 27 Feb'19

  Icann calls for community collaboration to protect the internet

  The domain name system watchdog Icann has reaffirmed its commitment to engage in collaborative efforts to ensure the security, stability and resiliency of the internet’s global identifier systems

• February 27, 2019 27 Feb'19

  Chinese cyber attack group Bronze Union targeting weapons tech

  Weapons technology is among the latest targets of a highly adaptable cyber espionage group that uses a wide range of publicly available and custom attack tools, presenting a challenge to network defenders

• February 27, 2019 27 Feb'19

  How CIOs can earn respect from business peers

  CIOs recognise that standing out means being more like a business manager than a technology guru

• February 27, 2019 27 Feb'19

  Most UK consumers say Facebook should be regulated

  Nearly three-quarters of UK consumers feel the social platform is damaging people’s mental health, survey shows

• February 26, 2019 26 Feb'19

  Security is battling to keep pace with cloud adoption

  Cloud-based business initiatives are accelerating more rapidly than security teams can secure them, a survey reveals

• February 26, 2019 26 Feb'19

  Researchers identify 4G and 5G network protocol flaw

  Attackers could identify the network cell a user’s device is located in and potentially steal its IMSI number