News

IT security

• August 06, 2018 06 Aug'18

  Virus outbreak at iPhone chip plant could delay shipments

  A computer virus at an iPhone chip manufacturing plant could delay shipments of Apple’s latest smartphones, but the impact will be limited, say analysts

• August 06, 2018 06 Aug'18

  Alibaba Cloud makes deeper inroads into Malaysia

  The Chinese cloud supplier’s second availability zone and upcoming DDoS scrubbing centre in Malaysia comes on the heels of growing investments in the Southeast Asian nation

• August 03, 2018 03 Aug'18

  UK security centre to launch IoT security standard

  The London-based Centre for Strategic Cyber Space and Security Science is working on an internet of things security standard and has roped in participants from eight markets

• August 03, 2018 03 Aug'18

  Google to alert firms of state-sponsored attacks on G Suite users

  As cyber security increasingly becomes a market differentiator, Google has announced that businesses using G Suite cloud-based software can opt in to cyber attack alerts

• August 02, 2018 02 Aug'18

  Gorgon Group shows simple cyber attacks remain effective

  A highly effective cyber attack group that appears to be based in Pakistan is carrying out targeted attacks against nation states at the same time as criminal operations, researchers have found

• August 02, 2018 02 Aug'18

  Reddit breach exposes 2FA flaws

  Reddit has reported a password breach despite using 2FA, exposing the weaknesses of two-factor authentication based on mobile text messages

• August 02, 2018 02 Aug'18

  GDPR harmonised with local laws in Nordic EU states

  Sweden provides an interesting challenge for the European Union’s data protection regulation due to its laws around freedom of press and free speech

• August 02, 2018 02 Aug'18

  Three Carbanak cyber heist gang members arrested

  Three alleged members of the Carbanak gang believed to be responsible for more than 100 cyber heists worldwide have been arrested, US authorities have announced

• August 01, 2018 01 Aug'18

  Bromium evolves virtualisation-based security

  Virtualisation-based security firm Bromium has evolved its technology to offer bidirectional protection for applications and underlying operating systems

• August 01, 2018 01 Aug'18

  Top dark web indicators of compromise

  There are 10 common activities on the dark web that indicate a data breach or some other security compromise has taken place, according to a specialist monitoring firm

• July 31, 2018 31 Jul'18

  UK business overestimating level of consumer trust, study shows

  UK consumer trust is low, with the majority of UK businesses admitting to selling customer data, a report reveals

• July 31, 2018 31 Jul'18

  SamSam ransomware reaps $5.9m and counting

  In just two and a half years, SamSam campaigns are believed to have netted nearly $6m for cyber criminals, an analysis of this adaptive and evasive strain of active ransomware reveals

• July 31, 2018 31 Jul'18

  Australia’s health sector reports most data breaches again

  In the first full quarter since Australia’s mandatory breach disclosure scheme came into effect, healthcare providers reported the most data breaches amid controversy over the national health record system

• July 31, 2018 31 Jul'18

  Dixons Carphone ups data breach figure to 10 million

  Dixons Carphone now believes the number of personal data records affected in 2017’s data breach is nearly 10 times greater than initially thought

• July 31, 2018 31 Jul'18

  Briton ran pro-Kremlin disinformation campaign that helped Trump deny Russian links

  A British IT manager and former hacker from Darlington ran a disinformation campaign that duped former US intelligence agents and provided Donald Trump with manufactured “evidence” to deny that Russia interfered with the US election

• July 30, 2018 30 Jul'18

  Pentagon flags risky software suppliers

  The Pentagon has drawn up a list of software suppliers that it wants the US military and defence contractors to avoid due to fears of risks to national security

• July 30, 2018 30 Jul'18

  Digital identity system for EU nationals should be used for all UK citizens, says report

  Policy Exchange report recommends extending Home Office system for registering EU nationals post-Brexit to become UK-wide digital identity application

• July 30, 2018 30 Jul'18

  Search begins for UK’s cyber security Unsung Heroes

  The Security Serious cyber awareness campaign has opened nominations for the third annual cyber security Unsung Heroes awards

• July 29, 2018 29 Jul'18

  Burden of data protection rests on firms and governments

  A senior executive at Singapore’s Cyber Security Agency stressed the role of corporate data governance and government regulations in raising the bar on cyber security

• July 27, 2018 27 Jul'18

  Post-quantum security on Airbus’s radar

  With quantum computing on the horizon, multinational aerospace and defence firm Airbus is among those organisations that are looking at evolving their cryptography capabilities to stay ahead of technology

• July 27, 2018 27 Jul'18

  Fileless malware a growing trend, warns McAfee

  Cyber attackers are increasingly moving away from traditional malware to using trusted Windows executables to invade systems and breach corporate networks, say security researchers

• July 27, 2018 27 Jul'18

  Hackers targeting software supply chains, US report warns

  A US government report on cyber espionage by China, Russia and Iran says software supply chains are increasingly under attack

• July 26, 2018 26 Jul'18

  Large organisations less confident over cloud security compared to smaller businesses

  A study has found larger enterprises are not as confident as smaller businesses about the security of their data in the public cloud

• July 26, 2018 26 Jul'18

  Brace for PowerGhost cryptominer, warns Kaspersky Lab

  Corporate networks are the target of a new illicit cryptocurrency mining malware that is difficult to detect and eradicate, security researchers warn

• July 26, 2018 26 Jul'18

  Crest report highlights need for bug bounty best practice

  A lack of best practice guidelines for bug bounties is leaving researchers, organisations and bounty platforms confused and at risk, a report reveals

• July 26, 2018 26 Jul'18

  Cities key to making data a new form of infrastructure, says Nesta

  City governments need to take charge of data use and leverage responsible innovation, as data should not be seen as a saleable commodity, but a common good, according to the innovation foundation

• July 26, 2018 26 Jul'18

  Software development remains insecure

  The prevalence of common and well-known web-based vulnerabilities underlines the need for better education around secure software development

• July 26, 2018 26 Jul'18

  Facebook stock price falls on slowing growth forecast

  Facebook’s stock price has fallen dramatically in response to a forecast of slower revenue growth in 2018 and lower-than-expected user growth for the second quarter

• July 26, 2018 26 Jul'18

  Cyber security vulnerability concerns skyrocket

  Security professionals are more worried about data breaches and cyber attacks than they were a year ago, with most fearing that Meltdown-Spectre attacks are becoming the norm

• July 25, 2018 25 Jul'18

  Dark web cyber crime markets thriving

  The market for cyber criminals’ services is thriving on the dark web, research reveals

• July 25, 2018 25 Jul'18

  ERP applications are under cyber attack, research confirms

  ERP applications are increasingly being targeted by cyber criminals, hacktivists and nation-state actors, a report reveals

• July 25, 2018 25 Jul'18

  Apache OpenWhisk users urged to patch

  IBM has patched vulnerabilities in its Cloud Functions service that is based on Apache OpenWhisk in response to vulnerability disclosures, and all other users are urged to do the same

• July 25, 2018 25 Jul'18

  Application attacks demand new security approach

  Applying security software updates is an ineffective way to deal with application layer cyber attacks and businesses should change their approach, security experts advise

• July 25, 2018 25 Jul'18

  Ransomware concern drops despite being top cost

  Fewer organisations are worried about ransomware even though it remains one of the most costly cyber attacks

• July 25, 2018 25 Jul'18

  Australian energy sector caught in security catch-22

  With regulators unwilling to accept security investments that would lead to higher tariffs, there is a chance that Australia’s National Energy Market could face increased cyber risks

• July 24, 2018 24 Jul'18

  Google wants to ease hybrid cloud woes

  Cloud supplier Google claims its Cloud Service Platform will alleviate complexities in managing microservices in a hybrid IT environment

• July 24, 2018 24 Jul'18

  Ramp up security to mitigate Office 365 attacks

  Public clouds tend to be more secure, but Office 365 has become a major target for attacks, which means internal IT security needs tightening

• July 24, 2018 24 Jul'18

  Top execs cyber security hypocrites, report shows

  There is a critical disconnect between the cyber security behaviour that top executives recommend and the way they behave themselves, while many firms do not know where their data lives and moves, a report reveals

• July 24, 2018 24 Jul'18

  Most firms have software security vulnerability

  Most firms have a software vulnerability that can be exploited by cyber attackers, a study has revealed

• July 24, 2018 24 Jul'18

  MPs call for inquiry into smart meter roll-out

  Government urged to conduct a review of the roll-out of smart meters for electricity and gas, and to intervene to tackle a number of failures

• July 24, 2018 24 Jul'18

  Singapore public healthcare sector limits internet use

  Healthcare workers who require internet access will have to use separate internet workstations following an unprecedented attack on Singapore’s public healthcare system

• July 23, 2018 23 Jul'18

  Zero trust security model boosts business confidence

  Organisations that combine the zero trust security model with next-gen access are more confident about meeting access control challenges, a study shows

• July 20, 2018 20 Jul'18

  Huge Singapore data breach shows need for new approach

  A major data breach in Singapore underlines the need for a new approach to protecting critical data and applications, say security experts

• July 20, 2018 20 Jul'18

  GDPR drives down UK insider threat

  The insider threat in European countries is falling post-General Data Protection Regulation, but continues to rise in the US, a study has revealed

• July 20, 2018 20 Jul'18

  NCSC report underlines cyber threat for legal firms

  Legal firms are a top target for cyber attackers, the latest report from the National Cyber Security Centre shows, emphasising the need for comprehensive cyber defence capabilities

• July 20, 2018 20 Jul'18

  Uptick in UK privacy awareness, says ICO

  The UK’s privacy watchdog, the Information Commissioner’s Office, reports increased public awareness of privacy and information rights issues

• July 20, 2018 20 Jul'18

  UK alerted to potential cyber risks of Huawei equipment

  A report has raised concerns about the shortcomings of Huawei engineering processes, which it says could put UK telecommunications networks at risk

• July 19, 2018 19 Jul'18

  Cyber criminals use fake domains to scam businesses

  UK police are warning businesses that cyber criminals are using fake domains to scam businesses out of hundreds of thousands of pounds

• July 19, 2018 19 Jul'18

  CNI sector lacks cyber security skills, government warned

  The UK’s critical national infrastructure sector is being negatively impacted by the lack of cyber security skills, a report warns

• July 19, 2018 19 Jul'18

  Collaborative alliance to advance UK’s cyber security profession

  Leading UK organisations in cyber security have united to develop a national professional body in the field

• July 19, 2018 19 Jul'18

  How Splunk is ‘splunking’ data for APAC enterprises

  Splunk’s regional vice-president talks up the company’s business strategy and how its customers are using big data analytics in security and IT operations

• July 19, 2018 19 Jul'18

  Uber appoints first privacy and data protection chiefs

  Uber is getting its privacy and data protection house in order in the wake of damaging data breaches and in anticipation of the company’s planned stock market launch in 2019

• July 18, 2018 18 Jul'18

  NHS on the hunt for chief data officer

  The NHS CDO will report directly to NHS Digital CEO Sarah Wilkinson, get paid up to £176,750 and be responsible for a budget of around £57m

• July 18, 2018 18 Jul'18

  Retail cyber security spending ineffective as breaches rise

  Cyber attacks on the retail sector are increasing, and although most retailers plan to increase cyber security spending, planned investments are unlikely to be effective, a report reveals

• July 18, 2018 18 Jul'18

  Deloitte launches EMEA-wide initiative to close cyber security gender gap

  Professional services organisation Deloitte expands its UK efforts to encourage more women into cyber security to cover the EMEA area

• July 18, 2018 18 Jul'18

  Cyber security top priority for aircraft makers, says Airbus

  There is a high level of collaboration in the aircraft industry on cyber security, but not all other industries are at the same level, according to an industry veteran at multinational aerospace and defence firm Airbus

• July 18, 2018 18 Jul'18

  Singapore to bolster threat intelligence sharing in financial sector

  Singapore’s Cyber Security Agency has partnered the Financial Services Information Sharing and Analysis Centre to glean cyber threat intelligence for the country’s financial industry

• July 18, 2018 18 Jul'18

  Spectre variant gives buffer overflow a new twist

  New variants of the Spectre microprocessor bugs use buffer overflow-style attacks to run malicious code

• July 17, 2018 17 Jul'18

  Cryptominers plateau while backdoors shoot up

  Illicit cryptocurrency mining appears to be slowing down, but backdoors increased rapidly in the second quarter of the year, a report warns

• July 17, 2018 17 Jul'18

  A third of organisations do not have a security expert, survey shows

  Around a third of organisations are vulnerable to cyber attacks due to a lack of dedicated in-house cyber security experts, finds Gartner survey

• July 16, 2018 16 Jul'18

  Mobile devices lost in London underline security risk

  The security risk of lost mobile devices is underlined by the fact that almost 26,000 mobile phones and computing devices were lost in London in the past year alone

• July 16, 2018 16 Jul'18

  ITPS expands datacentre to support Azure Stack and HPC

  Datacentre company ITPS expands its County Durham facility to meet client needs for high performance computing and security

• July 16, 2018 16 Jul'18

  Russian cyber attacks show need for international rules

  Russian cyber attacks aimed at influencing foreign elections highlight the need for the international community to agree on rules of conduct and punitive consequences

• July 15, 2018 15 Jul'18

  New industry network to bolster data protection in ASEAN

  The Data Protection Excellence network will assist organisations and individuals new to data protection laws by providing hands-on training and professional certification courses

• July 13, 2018 13 Jul'18

  Hackers increasingly targeting cloud infrastructure

  Cloud infrastructure is a growing target for cyber attackers because of available computing resources, as well as the repositories of valuable data, a report reveals

• July 12, 2018 12 Jul'18

  Brexit proposal calls for standards alignment and data sharing

  Although the government’s Brexit whitepaper focuses on curbing immigration, collaboration on cyber crime, data sharing and services are among the bargaining chips

• July 12, 2018 12 Jul'18

  Cyber attackers cashing in on ‘hidden’ attack surface

  Cyber attackers are cashing in on organisations’ lack of visibility into all online interactions that can involve multiple third parties, a report reveals

• July 11, 2018 11 Jul'18

  Cloudian adds Storage Made Easy file-sync-and-share compliance

  Object storage maker adds file-sync-and-share with compliance filters from Storage Made Easy to restrict movement of potentially sensitive data between endpoints and datacentres

• July 11, 2018 11 Jul'18

  White-hat hackers find record number of vulnerabilities

  White-hat hackers are finding more vulnerabilities than ever before, with crowdsourced security testing continuing to gain popularity, a report reveals

• July 11, 2018 11 Jul'18

  UK firms too confident about cyber security

  Three-quarters of UK companies say their cyber protection is above average, and nearly half think they are a “top performer” despite the growth in data breaches

• July 11, 2018 11 Jul'18

  Facebook could face ICO fine of up to £500,000

  Facebook could face the maximum fine provided by the UK’s previous data protection laws for lack of transparency and security issues relating to the harvesting of data, the UK’s privacy watchdog has revealed

• July 10, 2018 10 Jul'18

  Hidden costs of data breaches difficult to manage, study finds

  The full cost of “mega breaches” can be up to £264m, with the average UK data breach costing £2.69m, a study has revealed

• July 10, 2018 10 Jul'18

  Lords urge Brexit negotiators to reach agreement on security

  Time is running out for the UK and EU to agree on a future security relationship and if negotiators fail to find common ground, all stakeholders stand to lose, warns a Lords’ committee

• July 10, 2018 10 Jul'18

  Corporate networks vulnerable to insider attacks, report finds

  Researchers found that 100% of corporate networks tested in 2017 were vulnerable to insider attacks, with Wi-Fi networks and employees among the top areas of weakness

• July 09, 2018 09 Jul'18

  As prime minister unveils Brexit plans, TechUK calls for deal on services

  The UK tech industry wants a Brexit deal open to services, mirroring the EU trade agreement with Canada

• July 09, 2018 09 Jul'18

  Collaborative taskforce launches security intelligence network

  BAE Systems, Vodafone, cyber security incubator CyLon and other partners have joined forces in unveiling a manifesto for safeguarding society in the digital age

• July 09, 2018 09 Jul'18

  Inside one of the world’s largest bug bounty programmes

  Trend Micro’s Zero Day Initiative may be the top external supplier of software bug reporting for Microsoft and Adobe, but that does not mean it purchases every type of bug

• July 06, 2018 06 Jul'18

  Infosec community welcomes bank sector focus on cyber resilience

  The information security community has welcomed regulators’ call on the banking industry to demonstrate their capability to respond to cyber attacks because it highlights the importance of cyber resilience for all businesses

• July 06, 2018 06 Jul'18

  ICO Grants Programme launches second round of funding

  The ICO is inviting a second round of applications for funding to promote and support independent, innovative research and solutions focused on privacy and data protection

• July 06, 2018 06 Jul'18

  European Parliament calls for suspension of Privacy Shield

  The Privacy Shield framework that replaced the Safe Harbour agreement for personal data transfers between the EU and the US is under increased pressure due to alleged non-compliance by US firms

• July 06, 2018 06 Jul'18

  How changes in retail law could affect customer experience

  New payments regulations could increase the amount of times customers will need to use two-factor authentication to make a purchase, potentially putting a strain on customer experience, according to MasterCard

• July 05, 2018 05 Jul'18

  Beware blockchain security blindspots, warns RSA

  Companies need to ensure that rushed blockchain and other new technology projects are not introducing security vulnerabilities by gaining granular visibility of network activity, according to RSA Security

• July 05, 2018 05 Jul'18

  Australian startups team up to keep wind turbines humming

  Using acoustic sensors and nanosatellite connectivity, two Australian startups hope to identify potential turbine problems before they occur to secure the country’s wind energy

• July 04, 2018 04 Jul'18

  Israel accuses Hamas of using spy apps to target soldiers

  Israel has accused Hamas of using apps to hijack soldiers’ phones to spy on them, and UK defence secretary demonstrates how effective that could be

• July 04, 2018 04 Jul'18

  Singapore company turns to blockchain to improve food security

  SMC Nutrition is using a blockchain distributed ledger developed by a Singapore-based company to gain visibility across its supply chain and ensure food security

• July 03, 2018 03 Jul'18

  Exiting EU committee cattle-prods government on 'data adequacy'

  House of Commons Select Committee for Exiting the European Union urges the government to start the process to secure a “Data Adequacy Decision” from the EU pronto

• July 03, 2018 03 Jul'18

  NHS data breach caused details of 150,000 patients to be shared

  The NHS has inadvertently shared the confidential data of 150,000 patients over a three-year period due to a coding error in one of the most common GP IT systems

• July 03, 2018 03 Jul'18

  Feds expand Facebook data sharing probe

  The US federal probe into Facebook’s data sharing practices is expanding and MEPs are considering new measures as the firm reveals it granted extended access to 61 companies and admits to another data sharing software bug

• July 02, 2018 02 Jul'18

  Linux targeted by illicit cryptocurrency miners

  Cryptojacking is increasingly being used by cyber criminals to raise funds, Watchguard report reveals

• July 02, 2018 02 Jul'18

  Bolloré Group partners with Alibaba for cloud and co-development

  French transportation conglomerate will use Alibaba cloud, and Alibaba will look at using Bolloré's battery technology in its datacentres

• July 02, 2018 02 Jul'18

  HMRC deactivates record number of fake websites

  HM Revenue & Customs has removed more than 20,000 malicious websites in the past year, but warns people to stay alert to the threat from online fraudsters

• July 02, 2018 02 Jul'18

  Singapore’s Fullerton Health gears up for the cloud

  Private healthcare service provider Fullerton Health is moving business applications to Microsoft’s cloud services before rolling out data analytics and artificial intelligence to enhance operations and patient care

• July 01, 2018 01 Jul'18

  Australian government grappling with digital transformation woes

  Digital transformation in Australia’s public sector has been beset by soaring rhetoric and vague aspirations by government, a new report reveals

• June 29, 2018 29 Jun'18

  UK government cyber security standard welcomed

  The information security community has welcomed the publication of the government’s minimum cyber security standard, which could be used by any organisation to improve its cyber defences

• June 29, 2018 29 Jun'18

  GDPR exposes breach reporting flaws

  In the month since the GDPR compliance deadline, it has become clear that many organisations are not well prepared for personal data breach notifications, says PwC’s data protection lead

• June 29, 2018 29 Jun'18

  NHS Digital signs three-year cyber security partnership with IBM

  Partnership with IBM aims to bolster cyber security responses and defences, including expanding NHS Digital’s Cyber Security and Operations Centre

• June 29, 2018 29 Jun'18

  UK biometrics strategy criticised for lack of content

  The long-awaited government biometrics strategy falls short of the mark, say critics, failing to provide a detailed and coherent strategy or governance framework

• June 29, 2018 29 Jun'18

  British Muslim considers appeal after court rules repeated terrorism stops are legal

  Muzaffar Abdullah, a 37-year-old gas engineer who has been stopped and questioned by police at airports at least 10 times, is considering an appeal after being found guilty of wilful obstruction for refusing to answer questions under controversial ...

• June 28, 2018 28 Jun'18

  First Lorca cohort to focus on security orchestration

  The first companies to benefit from the new London cyber innovation centre will focus on cyber security orchestration and automation

• June 28, 2018 28 Jun'18

  Ticketmaster warns of third-party data breach

  Ticketmaster has warned of a potential data breach through malware found in a third-party customer support service, underlining the importance of supply chain security