News

IT security

• September 20, 2017 20 Sep'17

  Most UK councils hit by cyber attacks

  A study has revealed that most UK local authorities have suffered cyber attacks in the past year, showing local government is a key target for cyber criminals and that legacy software is a top security concern

• September 20, 2017 20 Sep'17

  Cyber crime a significant risk to individuals and organisations

  Cyber crime is still a significant risk to individuals and organisations, a report claims, with the top threats including business email compromise, ransomware, and banking and mobile malware

• September 20, 2017 20 Sep'17

  PM pressures internet companies to act on terrorist propaganda

  The UK, France and Italy will use a meeting with technology companies at the UN General Assembly in New York to press for development of technical solutions to defeat terrorist activity on the internet

• September 19, 2017 19 Sep'17

  Poor passwords still putting UK firms at risk

  Poor password practices are still putting UK citizens and the companies they work for at risk, a survey reveals

• September 19, 2017 19 Sep'17

  UK education system exacerbates cyber skills gap

  Security industry needs to get involved to raise awareness of cyber security career opportunities, say commentators

• September 18, 2017 18 Sep'17

  UAE banks share information to combat cyber threats

  Banks in the United Arab Emirates will share information on cyber attacks through a platform instigated by the country’s banking federation

• September 18, 2017 18 Sep'17

  Hackers installed backdoor in CCleaner, Avast’s Piriform warns

  Avast-owned Piriform has warned that some versions of its CCleaner software was compromised by hackers that would allow them to install malware on users’ computers

• September 18, 2017 18 Sep'17

  Heads roll as Equifax reveals 400,000 Britons affected by breach

  Equifax replaces two senior staff members as it reveals how many Britons were hit by a massive data breach that affected millions of consumers

• September 14, 2017 14 Sep'17

  Europe’s data regulators head to US to discuss Privacy Shield

  A delegation from Europe's data protection regulators will meet with the Privacy and Civil Liberties Oversight Board, which oversees US intelligence gathering

• September 14, 2017 14 Sep'17

  Equifax confirms massive data breach was result of missed patch

  Equifax appears to have failed to roll out a patch that might have stopped the massive breach of its systems

• September 14, 2017 14 Sep'17

  Government aligns data laws with GDPR

  The UK government announces details of its data protection law that will align with the EU’s GDPR

• September 14, 2017 14 Sep'17

  Trust could be last hurdle for insurtech dominance

  Insurance startups that use the latest IT are gaining customers but still face challenges around trust, security and consumer awareness

• September 13, 2017 13 Sep'17

  CBI calls for transitional deal with EU on data

  The CBI is warning of the risks to UK businesses of no deal with the European Union on data exchange when Brexit arrives

• September 12, 2017 12 Sep'17

  Government wants to remain in EU cyber security club after Brexit

  The UK government wants to maintain deep links with the European Union’s cyber security working groups following Britain’s exit from the bloc in 2019

• September 08, 2017 08 Sep'17

  Millions of customer records compromised in Equifax breach

  Major security breach unfolded over a two-month period, and is thought to have affected 143 million customers in the US, as well as an undisclosed number of Britons and Canadians

• September 05, 2017 05 Sep'17

  UK universities increasingly targeted by cyber criminals

  Cyber attacks are turning their attention to UK universities, with research being the main prize

• September 05, 2017 05 Sep'17

  People with non-IT backgrounds could help fill cyber security skills gap

  Organisations should look to fill cyber security roles with people who are curious and have work experience rather than focusing solely on graduates

• September 04, 2017 04 Sep'17

  CIO interview: Adrenaline junkie leaps from big pharma to cloud services

  Diana McKenzie, CIO of Workday and triathlon competitor, on analytics, data lakes and the relationship between IT and business

• September 01, 2017 01 Sep'17

  Almost all UK law firms vulnerable to email fraud, study shows

  Robust defence of law firms’ email systems is critical to the £26bn industry in the face of increased impersonation attacks aimed at stealing money and data, claims security firm OnDmarc

• September 01, 2017 01 Sep'17

  Content delivery innovation improves user experience for e-tailer

  WorldStores Group, the owner of a number of online home and lifestyle retail brands, has transformed its customer experience with enhanced content delivery capabilities from Instart Logic

• September 01, 2017 01 Sep'17

  Business warned of massive ransomware campaign

  Security researchers are urging businesses to prepare for ransomware attacks after the discovery of a massive attack campaign

• August 31, 2017 31 Aug'17

  Two-thirds of UK firms hiring for GDPR

  Most UK firms are planning to hire extra staff to help them meet the requirements of the EU’s new data protection regulation

• August 31, 2017 31 Aug'17

  ICO fines council £70,000 for exposing personal data online

  The ICO has issued a monetary penalty to Nottinghamshire County Council for leaving personal information exposed online for five years

• August 31, 2017 31 Aug'17

  Instagram fixes API blamed for celebrity data leaks

  Instagram says it has fixed the API responsible for enabling hackers to access some personal details of high-profile users of the service

• August 31, 2017 31 Aug'17

  Use of healthcare data must improve, says report

  Life sciences sector report calls on government to create several digital innovation hubs, improve data use and establish a regulatory health technology assessment and commercial framework

• August 31, 2017 31 Aug'17

  Suspected UK bank cyber attacker extradited from Germany

  A British man suspected of cyber attacks on banks is back in the UK to face charges

• August 31, 2017 31 Aug'17

  PCI DSS compliance reduces likelihood of data breaches

  A Verizon report shows a link between compliance with the payment card industry security standard and an organisation’s ability to defend against cyber attacks, but nearly half are failing to maintain compliance

• August 30, 2017 30 Aug'17

  Executive interview: Stuart Tarmy on the technical challenges of GDPR compliance

  It is a single line in GDPR, but the right to be forgotten has huge implications on corporate IT. Io-Tahoe vice-president, Stuart Tarmy, explains why

• August 30, 2017 30 Aug'17

  CeX breach shows personal data is still vulnerable

  A breach of the personal details of more than two million customers of used technology goods store CeX has prompted fresh calls for better data protection by retailers

• August 30, 2017 30 Aug'17

  Researcher finds over 711 million compromised email accounts

  A security researcher has discovered a spambot using more than 711 million compromised email accounts to spread data-stealing malware

• August 29, 2017 29 Aug'17

  UK local councils failing on key GDPR requirement

  Most UK local authorities are unable to meet the EU General Data Protection Regulation’s right-to-be-forgotten requirement, and nearly a quarter of firms have yet to hire a data protection officer

• August 29, 2017 29 Aug'17

  IBM’s SoftLayer ‘fully operational’ as Storm Harvey floods basement

  Business continuity will keep servers operational, but tropical storm appears to have taken out one of IBM’s basements

• August 29, 2017 29 Aug'17

  NHS Lanarkshire recovers from ransomware attack

  The Scottish health board was hit by a cyber attack over the weekend, affecting several IT systems and leading to cancelled operations and appointments

• August 29, 2017 29 Aug'17

  Google removes Play Store apps used in WireX DDoS botnet

  Google has axed around 300 Play Store apps after security researchers revealed the apps were hijacking Android devices to carry out DDoS attacks

• August 29, 2017 29 Aug'17

  UK critical infrastructure skipping security checks

  Almost two-fifths of the UK’s national infrastructure providers have not completed basic cyber security steps recommended by the UK government, an FOI response shows

• August 28, 2017 28 Aug'17

  VMware making bigger push into cloud, cyber security

  The virtualisation bigwig is making it easier for VMware customers to adopt public cloud services, starting with a partnership with Amazon Web Services

• August 25, 2017 25 Aug'17

  Business confidence in managing digital threats low, survey shows

  Business digital transformation and cyber threats have outpaced enterprise security capacity, a survey has revealed

• August 25, 2017 25 Aug'17

  Security professionals name top causes of breaches

  Security professionals have named the top reasons for successful cyber attacks, which are affecting more than half of organisations

• August 25, 2017 25 Aug'17

  US arrests Chinese national for using malware linked to OPM hack

  US authorities have arrested a Chinese national for allegedly using malware linked to a breach of millions of records at the US federal personnel agency

• August 24, 2017 24 Aug'17

  Future of dark web markets not yet in question, says analyst

  AlphaBay and Hansa shutdowns are unlikely to jeopardise the future of dark web markets, according to a security analyst

• August 24, 2017 24 Aug'17

  Flashpoint warns of under-the-radar phishing campaigns

  Simple but hard-to-detect phishing campaigns are targeting all industry sectors as a key enabler of business email compromise attacks, security analysts warn

• August 24, 2017 24 Aug'17

  Mac malware continuing to escalate, warn security researchers

  Malware targeting the Mac operating system has seen a significant growth in the first half of this hear, according to security firm Malwarebytes

• August 24, 2017 24 Aug'17

  Policing revamp needed to tackle rise of digital crime, says Reform report

  Think tank calls for £450m increase in police digital budget and giving bosses the ability to fire officers without digital skills

• August 24, 2017 24 Aug'17

  UK business welcomes government post-Brexit data sharing plan

  Business has welcomed government proposals for data protection to enable unhindered data sharing with the EU after Brexit

• August 23, 2017 23 Aug'17

  UK business urged to do more as ID fraud continues to rise

  Identity fraud continued to increase at a record rate in the first half of 2017, reaching epidemic levels, a fraud data report has revealed

• August 23, 2017 23 Aug'17

  Russian hackers expose allegedly doping footballers

  Russian hacking group Fancy Bear has exposed 150 footballers worldwide for allegedly taking banned substances, underlining the importance of protecting personal data

• August 22, 2017 22 Aug'17

  Mimecast calls for action to counter game-changing email exploit

  Email security firm warns of a newly-discovered email exploit that could be a game-changer if used by attackers

• August 22, 2017 22 Aug'17

  Industrial robots a security risk, warns IOActive

  Some of the most popular industrial and domestic robot brands have various vulnerabilities that could by exploited by cyber attackers, a research paper warns

• August 22, 2017 22 Aug'17

  Cyber criminals hack Enigma to steal $500,000 in Ethereum

  Hackers have reportedly used stolen contact details to trick investors into sending funds to a fake trading platform digital wallet, but some allege poor password security is to blame

• August 21, 2017 21 Aug'17

  Calls for UK boards to be better educated on cyber threats

  While there is increased focus on cyber security education for young people in the UK, the latest government reports have prompted calls for better education at board level

• August 21, 2017 21 Aug'17

  NotPetya highlights cyber risk in shipping industry

  Malware attack has shown that the shipping industry is vulnerable to cyber attacks, with Danish shipping giant Maersk reporting potential cost of up to $300m

• August 21, 2017 21 Aug'17

  GCHQ knew WannaCry hero risked arrests by travelling to the US

  UK intelligence officials were reportedly aware that security researcher Marcus Hutchins risked arrest by travelling to the US to attend a series of cyber security conferences

• August 21, 2017 21 Aug'17

  AI leaders call for a stop on development of autonomous weapons

  Business leaders and artificial intelligence experts sign an open letter to governments warning of the risks of an AI arms race in autonomous weapons

• August 19, 2017 19 Aug'17

  Top UK directors lack training to deal with cyber attacks

  The UK’s top firms and charities urgently need to do more to protect themselves from online threats, according to a government-backed audit

• August 18, 2017 18 Aug'17

  Researchers find potentially lethal car hack with no quick fix

  Security researchers have discovered a supplier-neutral and stealthy smart car hack that can drastically affect the performance and function of the vehicle

• August 17, 2017 17 Aug'17

  School leavers urged to look at cyber security apprenticeships

  Cyber security apprenticeships are a good alternative to ‘clearing’ and debts, according to security certification body, Crest

• August 17, 2017 17 Aug'17

  UK rail passengers don’t trust on-board Wi-Fi

  YouGov survey commissioned by Cobham Wireless finds UK commuters are increasingly frustrated with connectivity standards on the rail network

• August 17, 2017 17 Aug'17

  Cyber criminals command top-level attacks, warns Check Point

  Businesses need to rethink cyber defences with nation-state attack tools in the hands of ordinary cyber criminals, warns Check Point

• August 17, 2017 17 Aug'17

  LG Electronics hit by suspected WannaCry attack

  LG Electronics have been hit by ransomware that uses malicious code that could signal another WannaCry attack

• August 17, 2017 17 Aug'17

  Developers lack skills needed for secure DevOps, survey shows

  The growing demand for developers with security skills is outpacing supply, but a survey reveals that a lack of formal security education and training by employers is contributing to the growing skills gap

• August 16, 2017 16 Aug'17

  NotPetya attack cost up to $300m, says Maersk

  Danish shipping line Maersk estimates that the NotPetya cyber attack in June cost the company up to $300m

• August 16, 2017 16 Aug'17

  UK workers interested in cyber security, survey shows

  Many UK workers are interested in cyber security and would consider a career in the field, a survey has revealed, which could help close the skills gap

• August 16, 2017 16 Aug'17

  Regulation and impact of cyber attacks driving security spending

  Awareness of the impact of cyber attacks on business and regulation are expected to be the top drivers of continued and increased spending on cyber security, according to research firm Gartner

• August 16, 2017 16 Aug'17

  GDPR drives cloud firm’s Cloudian S3 object storage deployment

  Interoute deployed Cloudian Hyperstore because it believes customers want object storage to help gain compliance with the forthcoming European GDPR regulations

• August 16, 2017 16 Aug'17

  Hackers hit Holyrood with Westminster-style brute-force attack

  The Scottish parliament has been hit by a cyber attack similar to the one that struck Westminster in June

• August 15, 2017 15 Aug'17

  Microsoft to open new Azure regions in Australia in public sector push

  Hosted by Canberra Data Centres, Microsoft’s additional Azure datacentre regions will provide the necessary security controls for handling government data in Australia

• August 15, 2017 15 Aug'17

  Leaked SMB exploits make malware powerful, warns Cylance

  Four key exploits at the heart of hacking tools leaked by the Shadow Brokers have given malware authors a lot of power, say security researchers

• August 15, 2017 15 Aug'17

  Exploit leaks are a cyber security game changer, says Kaspersky Lab

  Leaked exploits became the game changer of the cyber threat landscape in the second quarter of 2017, say security researchers

• August 15, 2017 15 Aug'17

  WannaCry hero Marcus Hutchins under house arrest

  Briton, 23, pleads not guilty to charges of writing and distributing malware

• August 15, 2017 15 Aug'17

  How companies can fend off cyber attacks

  Organisations should map IT assets to business strategy and adopt a proactive cyber security programme, says Centurylink’s chief security officer Dave Mahon

• August 14, 2017 14 Aug'17

  Statistics show retailers need to improve data security

  Data breach statistics show retailers need to address customer data security ahead of the GDPR compliance deadline, a law firm has warned

• August 14, 2017 14 Aug'17

  NHS Digital signs cyber security agreement with Microsoft

  Support contract comes three months after NHS hit by global ransomware attack that targeted Windows computers

• August 14, 2017 14 Aug'17

  Everton FC works with Netskope to safeguard cloud-stored data

  Cloud provider’s Active Platform will help football club secure player and fan data as GDPR deadline approaches

• August 14, 2017 14 Aug'17

  HBO stands firm as hackers release more stolen content

  HBO appears to be standing firm and refusing to negotiate with hackers as more stolen television content is released

• August 11, 2017 11 Aug'17

  Malicious email spikes in Q2, reports Proofpoint

  Malicious email campaigns saw a spike in volume and increased variety in the second quarter of 2017, a cyber security report reveals

• August 11, 2017 11 Aug'17

  Russian cyber espionage group targeting hotel Wi-Fi

  A Russian cyber espionage group is targeting hotel Wi-Fi networks to carry out malware infections and potentially steal credentials, researchers warn

• August 11, 2017 11 Aug'17

  Manufacturing a key target for cyber attacks

  Manufacturers are a key and growing target for cyber criminals, a threat intelligence report reveals

• August 10, 2017 10 Aug'17

  China tests hack-proof quantum satellite communications

  China has tested a prototype communication system that uses the principles of quantum mechanics to make it impossible for hackers to access

• August 10, 2017 10 Aug'17

  Kaspersky Lab to drop EU complaint against Microsoft

  Security firm Kaspersky Lab is to drop a complaint that Microsoft is abusing its market dominance to promote its security software in light of changes to the latest Windows 10

• August 10, 2017 10 Aug'17

  New TalkTalk fine takes total for poor data protection to £500,000

  Information Commissioner’s Office fines TalkTalk for putting up to 21,000 customers’ details at risk of exposure prior to September 2014

• August 10, 2017 10 Aug'17

  IT pros urged to support ‘WannaCry hero’ Marcus Hutchins

  Computer experts fear chilling effect on security research over US arrest of Marcus Hutchins who halted the spread of the WannaCry ransomware

• August 10, 2017 10 Aug'17

  Gov.uk Verify fails to meet key business case targets

  Government’s controversial online identity system has missed important milestones that formed the basis of its original 2015 business case

• August 10, 2017 10 Aug'17

  ICO hits out at misinformation about GDPR

  The Information Commissioner’s Office has warned against misinformation about the EU’s new data protection rules and how they will be applied

• August 09, 2017 09 Aug'17

  HBO hacking gets personal

  Theft of data from US television network has become personal with the release of details of actors in Game of Thrones and could signal a trend of cyber attacks on entertainment firms

• August 09, 2017 09 Aug'17

  Websites giving hackers easy access, audit reveals

  Many company websites still contain critical vulnerabilities that cyber criminals can use to carry out a variety of cyber attacks, a security audit shows

• August 09, 2017 09 Aug'17

  WannaCry hero malware trial postponed

  The US court appearance of British WannaCry hero on charges of writing and distributing malware has been postponed

• August 08, 2017 08 Aug'17

  WannaCry hero due in court on malware charges

  The Briton who played a key role in halting the global WannaCry ransomware attacks is due in court in the US to face charges in connection with the Kronos banking Trojan

• August 08, 2017 08 Aug'17

  NIS Directive plans show UK is serious about tackling cyber threats

  UK government plans to implement the EU’s Network and Information Systems (NIS) Directive have been welcomed for assuring its commitment to cyber defence post-Brexit

• August 08, 2017 08 Aug'17

  Child cyber exploration good for the UK, says ex-GCHQ head

  Children should be encouraged to spend more time online learning cyber skills to inspire future generations of computer scientists, cyber defenders and engineers, says former GCHQ head

• August 07, 2017 07 Aug'17

  UK mulls hefty fines for CNI providers with poor cyber security

  The UK is considering the same hefty fines for critical national infrastructure (CNI) providers with poor cyber security as those failing to protect the personal data of UK citizens

• August 07, 2017 07 Aug'17

  Security industry welcomes planned UK Data Protection Bill

  The cyber security industry has generally welcomed planned UK data protection legislation, but some say it is hypocritical in the light of the Investigatory Powers Act

• August 07, 2017 07 Aug'17

  Cultural change a critical but neglected element of IoT security

  Managing how people within an enterprise deal with data is a vital element of shoring up security around the internet of things, says Vodafone

• August 07, 2017 07 Aug'17

  Gaming apps ‘main source’ of mobile phishing attacks, research shows

  Analysis of 100,000 corporate devices shows more than a quarter of traffic going to phishing domains was from gaming apps

• August 07, 2017 07 Aug'17

  UK calls for smart car cyber protection

  A new generation of internet-connected cars will have to be better protected from cyber attackers, under tough new UK government guidance

• August 06, 2017 06 Aug'17

  Government to strengthen UK data protection law

  New legislation will require social media platforms to delete information about children and adults when asked

• August 04, 2017 04 Aug'17

  Security audits reveal poor state of corporate cyber defences

  Critical vulnerabilities detected in 47% of corporate systems investigated in security audits by Positive Technologies

• August 04, 2017 04 Aug'17

  Manchester to host international freedom of information event

  Manchester is to host an international conference exploring the future of transparency and access to information in the UK and worldwide

• August 04, 2017 04 Aug'17

  FBI arrests UK WannaCry hero on malware charges

  The Briton credited with stopping the WannaCry global malware attacks in their tracks in May has been arrested in the US on malware charges

• August 03, 2017 03 Aug'17

  Cyber criminals make it difficult to follow the money

  Following the money is a classic technique used by law enforcement to link criminals to crimes by tracing associated financial exchanges, but that may not be easy in the case of the WannaCry attacks

• August 03, 2017 03 Aug'17

  Voice control in BBC iPlayer pilot demos Microsoft's AI ambitions

  An internal BBC pilot in collaboration with Microsoft shows how voice control could be used on the iPlayer TV streaming app