News

IT security

July 05, 2023 05 Jul'23
HSBC explores quantum-safe comms to AWS edge

Banking group HSBC is looking at how to secure transactions and the benefits of quantum computing in finance
July 05, 2023 05 Jul'23
UK public increasingly concerned over NHS data sovereignty

Amid security concerns and AI advances, a majority of the British public still trusts the NHS to store and analyse their health data, but would prefer it remains domiciled in the UK
July 04, 2023 04 Jul'23
EU judgment sinks Meta’s argument for targeted ads

The EU Court of Justice has issued a significant judgment against Meta, ruling that national anti-trust bodies can investigate GDPR breaches, disrupting the platform’s entire basis for carrying out targeted advertising
July 04, 2023 04 Jul'23
How Maxeon is forging the path to SASE

Maxeon Solar Technologies is building out its security service edge capabilities with an eye on a SASE implementation that combines best of breed offerings from different suppliers

July 03, 2023 03 Jul'23
Over half of ANZ organisations hit by ransomware

Amid the rising ransomware threat, almost four in five organisations in ANZ expect to pay a ransom if they could recover data and business processes
July 03, 2023 03 Jul'23
BlackCat gang claims cyber attack on Barts NHS Trust

Investigations continue into a claim by the ALPHV/BlackCat ransomware gang that it has stolen 7TB of data from Barts NHS Trust in London
June 30, 2023 30 Jun'23
AI can never be given control over combat decisions, Lords told

Artificial intelligence is technically incapable of distinguishing between the complex contextual factors of combat situations, and will likely never be able to, according to legal and software experts
June 30, 2023 30 Jun'23
NHS data stolen in Manchester Uni ransomware attack

The ransomware gang behind the cyber attack on the University of Manchester appears to have got its hands on an NHS dataset being used by the university for research purposes
June 29, 2023 29 Jun'23
‘Shadow’ AI use becoming a driver of insider cyber risk

Off-the-books use of generative AI tools will inevitably lead to a costly, high-profile data breach for someone, but a little attention paid to appropriate data management policy can help mitigate the risk
June 28, 2023 28 Jun'23
Charity demands transparency in digital universal credit system

The digital universal credit system needs overhauling to ensure greater transparency over benefit claims and more effective means of redress when things go wrong, says child poverty charity

June 28, 2023 28 Jun'23
GDPR tax reclaim scheme preys on fears of SMEs

IT suppliers are a target of companies offering a tax reclaim scheme that preys on small businesses’ fears around General Data Protection Regulation compliance
June 28, 2023 28 Jun'23
Stolt-Nielsen SASE looks to optimise global connectivity, security for hybrid workers

Bulk liquid logistics and sustainable land-based aquaculture expert advances secure digital transformation plans and operational efficiency
June 27, 2023 27 Jun'23
Three years on, EncroChat cryptophone hack nets 6,500 arrests and seizures of €900m

French and Dutch prosecutors say three years after they infiltrated the EncroChat cryptophone network in a novel hacking operation, Europe’s courts are opening the way for more collaboration and data sharing between law enforcement agencies
June 27, 2023 27 Jun'23
One Login’s Gov.uk ID check apps downloaded over two million times

The One Login digital identity system is being used by eight government services, and GDS has issued more than 1.5 million verified identities since summer 2022, while its ID check apps are proving popular
June 27, 2023 27 Jun'23
WithSecure forges ahead with green coding initiative

WithSecure’s W/Sustainability programme kickstarts a number of initiatives, including a commitment to green coding the security supplier hopes will set an example for others to follow
June 27, 2023 27 Jun'23
3,600 potential cyber security experts apply to government scheme

The UK government’s Upskill in Cyber programme is reporting great success just a month after launch, with almost half of applicants women
June 27, 2023 27 Jun'23
A tenth of kids claim they could hack you

More and more young people are at risk of being drawn into cyber criminality, and parents must shoulder some of the blame, according to a report
June 23, 2023 23 Jun'23
ICO under fire for taking limited action over serious data breaches

The ICO has come under fire from lawyers and data protection specialists for just issuing written warnings to two public bodies over serious data breaches that placed people’s lives at risk
June 23, 2023 23 Jun'23
Phishing and ransomware dominate Singapore’s cyber threat landscape

Phishing and ransomware attacks continued apace in Singapore last year amid signs of improving cyber hygiene
June 22, 2023 22 Jun'23
Lancaster University launches trailblazing cyber MBA

MBA programme at Lancaster University designed to deliver security leadership education to business leaders has received NCSC backing
June 22, 2023 22 Jun'23
Manchester University students threatened by ransomware gang

Students and staff members at the University of Manchester are being pressurised by an unnamed ransomware gang
June 22, 2023 22 Jun'23
Orange Business leads team to deliver cloud-native managed SASE to enterprises

Enterprise division of the global telco taps in-house cyber security practice and leading cyber security technology provider to offer simpler operational model for customers with end-to-end accountability, improved agility, efficiency and performance
June 21, 2023 21 Jun'23
Nearly quarter of a million malicious websites reported and removed through NCSC service

A suspicious email and text message reporting service in the UK has directly led to a quarter of a million malicious websites being removed
June 21, 2023 21 Jun'23
The security interviews: Exploiting AI for good and for bad

The chief product officer of AI security firm Darktrace explains how large language AI models are making it harder for people to spot email attacks
June 19, 2023 19 Jun'23
Prime minister Rishi Sunak faces pressure from banks to force tech firms to pay for online fraud

The UK’s major banks have told the prime minister to force tech firms to do more to prevent fraud that the banks end up paying for
June 19, 2023 19 Jun'23
How Fastly thinks differently about CDNs and the edge

Fastly is counting on its developer chops and different approaches towards security and other areas to compete with its rivals
June 19, 2023 19 Jun'23
Early June Microsoft outages were result of large-scale DDoS hit

Investigations into recent outages on Microsoft Azure and Outlook services have turned up evidence of a massive distributed denial-of-service attack
June 19, 2023 19 Jun'23
Nakivo adds ransomware scanning and new restore options

Backup maker adds malware scanning with big names in security to immutable backup copy functionality. “Tape’s not dead” either, with restore from the venerable medium now possible
June 19, 2023 19 Jun'23
UK to contribute up to £25m to Ukraine cyber defences

Prime minister Rishi Sunak announces an expansion to the Ukraine Cyber Programme, with a cash boost of up to £25m over the next two years
June 15, 2023 15 Jun'23
Exploitation of Barracuda ESG appliances linked to Chinese spies

Intelligence from Mandiant links exploitation of a flaw in a subset of Barracuda ESG appliances to a previously untracked China-nexus threat actor
June 15, 2023 15 Jun'23
NCSC warns over ‘enduring’ LockBit threat

Although its activity volumes have been lower of late, LockBit is still a highly dangerous ransomware gang and is now the subject of a new international cyber advisory
June 15, 2023 15 Jun'23
Clop begins naming alleged MOVEit victims

Clop uploaded details of 12 new victims to its dark web leak site late on 14 June, many of them likely linked to the ongoing MOVEit cyber attack
June 14, 2023 14 Jun'23
Ransomware-stricken Capita to run Action Fraud successor

A £50m deal to replace the Action Fraud service has been handed to PwC and Capita, which is facing investigations over its handling of customer data in a ransomware incident
June 14, 2023 14 Jun'23
No zero-days for June Patch Tuesday, but plenty to chew over

On the face of it, Microsoft’s monthly round of updates is a lighter-than-usual load for security teams, with no zero-days in evidence, but there are still plenty of issues needing attention
June 14, 2023 14 Jun'23
TSB calls on Meta to intervene and protect users from fraud losses of £250m this year

TSB is the latest bank to demand more action from social media sector in helping to reduce online fraud
June 14, 2023 14 Jun'23
Clop’s MOVEit ransom deadline expires

A seven-day deadline set by Clop for victims of its latest attack to contact it to arrange payment passes today
June 14, 2023 14 Jun'23
Cyber attacks against APAC commerce sector surpass 1.1 billion

Retailers, hotels and travel-related organisations in the region saw over a billion cyber attacks last year amid the surge in e-commerce activity and online travel bookings
June 13, 2023 13 Jun'23
Arnold Clark data leak victims prepare legal action

More than 10,000 people who had their data stolen and leaked in a ransomware attack on the Arnold Clark car dealer network have signed up to a group legal action after facing elevated amounts of fraud
June 13, 2023 13 Jun'23
(ISC)² and CIISec set out to make cyber language more inclusive

Newly published guide on appropriate use of language in cyber security aims to help make the profession more inclusive for all
June 12, 2023 12 Jun'23
Ofcom data stolen in MOVEit cyber attack

Communications regulator Ofcom says data on employees and regulated communications companies was stolen by the Clop gang
June 12, 2023 12 Jun'23
Progress Software releases patch for second MOVEit Transfer vulnerability

Progress Software releases a patch for a second MOVEit Transfer issue, which was uncovered by third-party security specialist Huntress Security during post-incident code scanning
June 09, 2023 09 Jun'23
Extreme Networks emerges as victim of Clop MOVEit attack

Network equipment and services supplier Extreme Networks has revealed its instance of Progress Software’s MOVEit tool was compromised in the ongoing Clop cyber attack
June 09, 2023 09 Jun'23
Barracuda ESG users told to throw away their hardware

Owners of Barracuda Email Security Gateway appliances are being told that they will need to throw out and replace their kit after it emerged that a patch for a recently disclosed vulnerability had not done the job
June 09, 2023 09 Jun'23
UK and US move closer to transatlantic data bridge deal

The British and American governments have committed, in principle, to a new data bridge agreement that will ease the free flow of personal data across the Atlantic
June 09, 2023 09 Jun'23
University of Manchester hit by cyber attack

The University of Manchester has been hit by a cyber attack of an undisclosed nature
June 08, 2023 08 Jun'23
CDEI publishes portfolio of AI assurance techniques

The UK’s Centre for Data Ethics and Innovation has published a variety of case studies to show how different assurance techniques can build and maintain trust in artificial intelligence systems
June 08, 2023 08 Jun'23
Vulnerability exploitation volumes up over 50% in 2022

Data from Palo Alto Networks’ Unit 42 threat intel specialists reveals insight into the scale of vulnerability exploitation in the wild
June 08, 2023 08 Jun'23
UK gets new rules to regulate crypto sector

The Financial Conduct Authority is introducing new rules to regulate the cryptoasset sector, after being handed a government remit to oversee crypto promotions
June 08, 2023 08 Jun'23
Clop may have been sitting on MOVEit vulnerability for two years

The Clop cyber extortion gang may have been keeping the MOVEit SQL injection vulnerability they used to penetrate the systems of multiple victims secret for two years
June 08, 2023 08 Jun'23
Bishop Fox’s Vinnie Liu talks offensive security skills

There is growing demand for offensive security testing, but it needs a multi-layered skillset that can be hard to quantify. Bishop Fox’s CEO and co-founder explains why and some potential mitigation strategies