News

IT security

• February 15, 2021 15 Feb'21

  NCSC recognises UK’s top cyber schools

  National Cyber Security Centre CyberFirst Schools initiative has handed out 14 gold, silver and bronze awards recognising excellence in cyber security teaching

• February 15, 2021 15 Feb'21

  Government to impose new digital identity system across all Gov.uk services

  Cabinet Office minister Michael Gove writes to Whitehall departments mandating the use of a new digital identity system that will allow citizens to be tracked across the Gov.uk website

• February 12, 2021 12 Feb'21

  UK border surveillance regime highly privatised, says Privacy International

  Research from Privacy International raises concerns about the deep involvement of technology companies in the development and deployment of various technologies throughout the UK’s border regime, along with the lack of scrutiny they receive

• February 11, 2021 11 Feb'21

  Hacked Finnish therapy business collapses

  Vastaamo, the Finnish psychotherapy centre whose patients were blackmailed by a cyber criminal gang, has filed for bankruptcy

• February 11, 2021 11 Feb'21

  Government launches digital identity trust framework

  The government’s draft framework, which aims to set out rules for the use of digital identities, will be tested with industries, services, users and organisations ahead of a final version being published

• February 11, 2021 11 Feb'21

  Low-complexity CVEs a growing concern

  Analysis of thousands of CVEs logged with NIST in 2020 reveals some unwelcome developments

• February 11, 2021 11 Feb'21

  Future security stars shine in first round of CyberFirst Girls contest

  There were more than 6,500 participants in the opening heats of the National Cyber Security Centre’s CyberFirst Girls competition this year

• February 11, 2021 11 Feb'21

  Singtel falls prey to supply chain attack

  The Singapore telco reveals that its Accellion file sharing system was illegally hacked in a supply chain attack

• February 10, 2021 10 Feb'21

  Dating app users warned to watch out for scammers

  A vast amount of money was lost to romance scammers last year, and with millions of people isolated in lockdown the problem is getting worse, according to a report

• February 10, 2021 10 Feb'21

  HelloKitty almost certainly behind CD Projekt ransomware attack

  Theories that the cyber attack on a high-profile gaming studio was orchestrated by players who are disappointed in a videogame are likely wide of the mark, according to analysis

• February 10, 2021 10 Feb'21

  Windows 10, Server 2019 users must patch serious zero-day

  Another dangerous zero-day exploit is among 56 vulnerabilities patched by Microsoft in February’s Patch Tuesday update

• February 10, 2021 10 Feb'21

  Sim-swapping crooks targeted celebrities, influencers

  Eight arrests have been made in England and Scotland in connection with a series of Sim-swapping attacks targeting high-profile victims

• February 09, 2021 09 Feb'21

  Oracle claims major win in Australian public sector

  Australian Data Centres will deploy Oracle’s Dedicated Region Cloud@Customer to host cloud services for the federal government

• February 09, 2021 09 Feb'21

  Facebook sued for data-sharing practices with third parties

  Data protection claim filed in London against social media giant for its alleged failure to give at least one million users in England and Wales meaningful control over their personal data

• February 09, 2021 09 Feb'21

  Government launches review of use of health data for research

  The review, which will be led by Ben Goldacre, will look at home-efficient and safe use of health data for research and analysis

• February 09, 2021 09 Feb'21

  Data breaches are a ticking timebomb for consumers

  Damage from data breaches goes far beyond the impact to the target organisation – an obvious fact that is too often overlooked, says F-Secure

• February 09, 2021 09 Feb'21

  Cyberpunk 2077 developer refuses to pay up after ransomware attack

  Polish video game developer CD Projekt has released details of a ransomware attack on its systems

• February 09, 2021 09 Feb'21

  ‘Batman Begins’ cyber attack is a warning to CNI providers

  A thwarted cyber attack in a Florida town that could have resulted in the poisoning of the water supply is a timely reminder of the vulnerability of critical services

• February 09, 2021 09 Feb'21

  NHS reports fewer phishing emails in 2020

  The NHSmail email service saw a steady decline in suspected phishing emails during the course of 2020

• February 08, 2021 08 Feb'21

  UK Cyber Security Council to take charge of skills strategy

  New government-backed body will be set up to boost careers opportunities and professional standards in the cyber security sector

• February 08, 2021 08 Feb'21

  Too few UK organisations offering cyber training for remote work

  Nearly a year into the pandemic, a study reveals a concerning tendency for organisations not to bother offering security training for remote workers

• February 08, 2021 08 Feb'21

  Data of thousands of Dutch citizens leaked from government Covid-19 systems

  Weak access controls and outdated systems blamed for leaking of the personal details of thousands of Dutch citizens tested for Covid-19

• February 08, 2021 08 Feb'21

  Sweden to establish national cyber security centre

  Sweden becomes latest Nordic state to establish a national cyber security centre as the threat landscape grows

• February 05, 2021 05 Feb'21

  EncroChat: Appeal court finds ‘digital phone tapping’ admissible in criminal trials

  Appeal Court decides EncroChat-encrypted phone records can be used in criminal trials. Critics say the decision means phone tapping no longer has a ‘clear meaning in the digital age’

• February 05, 2021 05 Feb'21

  Google Chrome update to patch serious zero-day

  A serious heap buffer overflow vulnerability means Google Chrome users should patch their browsers as soon as possible

• February 05, 2021 05 Feb'21

  Financial regulatory body bombarded with malicious emails

  New disclosures reveal the FCA’s systems bounced almost a quarter of a million malicious emails in a three-month period

• February 05, 2021 05 Feb'21

  Security firm Stormshield loses source code in cyber attack

  Source code from two products developed by French cyber security firm was compromised in a December 2020 incident

• February 05, 2021 05 Feb'21

  Denmark and Sweden to issue digital vaccine certificates

  Sweden and Denmark announce plans to develop digital certificates that prove people have been vaccinated against Covid-19

• February 05, 2021 05 Feb'21

  How Yarra Valley Water is tapping APIs

  The largest water retailer in Melbourne has rolled out application programming interfaces to improve operations and customer service

• February 04, 2021 04 Feb'21

  Woodland Trust hit by cyber attack in December

  Conservation charity is investigating what it describes as a ‘sophisticated’ cyber attack but has waited nearly two months to inform its members

• February 04, 2021 04 Feb'21

  SolarWinds chases multiple leads in breach investigation

  Investigators at SolarWinds are exploring multiple theories as to how the company’s systems were compromised

• February 04, 2021 04 Feb'21

  Fraud and cyber crime still vastly under-reported

  The scale of digitally enabled crime in the UK is dramatically under-reported, new statistics indicate

• February 04, 2021 04 Feb'21

  CDEI: Local government data use must keep up Covid momentum

  The Centre for Data Ethics and Innovation says momentum in local authority data use during the Covid-19 pandemic is in danger of being dissipated without central government investment and support for data skills development

• February 03, 2021 03 Feb'21

  Crypto malware targets Kubernetes clusters, say researchers

  Newly identified Hildegaard malware targets Kubernetes clusters and seems to herald a new campaign from the TeamTNT gang

• February 03, 2021 03 Feb'21

  Foxtons rejects claims of slow reaction to data leak

  Investigators have unearthed 16,000 data records that seem to have been stolen in an attack on property firm Foxtons last year, but the organisation says it acted by the book in dealing with the incident

• February 03, 2021 03 Feb'21

  ‘Classic’ Cerber ransomware targets health sector in high volumes

  Cerber ransomware-as-a-service seems to have re-emerged as one of the most critical cyber threats facing healthcare organisations, reports VMware Carbon Black

• February 03, 2021 03 Feb'21

  SolarWinds patches two critical CVEs in Orion platform

  New vulnerabilities disclosed as SolarWinds reels from December 2020 Solorigate/Sunburst attack – but do not appear to have been exploited yet

• February 03, 2021 03 Feb'21

  Tata Communications grows IoT footprint

  India’s Tata Communications has been shoring up its IoT capabilities through a handful of acquisitions and partnerships with telcos

• February 02, 2021 02 Feb'21

  Agent Tesla trojan finds new ways to sneak past defences

  Updated versions of Agent Tesla Rat include new techniques that fiddle with code to disable endpoint protection tools on target systems

• February 01, 2021 01 Feb'21

  Serco confirms Babuk ransomware attack

  Outsourcing firm was hit by the ransomware last week but insists most of its operations are running as normal

• February 01, 2021 01 Feb'21

  UKRI suspends services after ransomware attack

  UK Research and Innovation was hit by an undisclosed strain of ransomware at the end of January

• February 01, 2021 01 Feb'21

  CISOs invisible to their organisations, says BT report

  Ignorance of cyber issues is leading to misplaced confidence in security in many organisations, as CISOs struggle to make themselves seen and heard

• February 01, 2021 01 Feb'21

  ‘Victory for free speech and openness’ after tribunal confirms no territorial restrictions to FOIA

  Freedom of information tribunal rules that investigative journalists and others can use the Freedom of Information Act if they live outside the UK or are not British citizens

• February 01, 2021 01 Feb'21

  SBRC picks Check Point to support cyber helpline

  The Scottish Business Resilience Centre has enlisted Check Point as the first security supplier to join its incident response partnership programme

• January 31, 2021 31 Jan'21

  Indian firms see growing value of data

  Half of Indian IT leaders see a permanent increase in value of data as their organisations come under threat from mounting cyber attacks amid the pandemic

• January 29, 2021 29 Jan'21

  Hunting and anti-hunting groups locked in tit-for-tat row over data gathering

  The leaking of internal documents has prompted a row between pro- and anti-hunting groups about the legality of the other’s data collection practices

• January 29, 2021 29 Jan'21

  Biometrics ethics group addresses public-private use of facial recognition

  Home Office’s Biometrics and Forensics Ethics Group releases briefing note on the use of live facial recognition in public–private collaborations following a year-long investigation

• January 29, 2021 29 Jan'21

  Revealed: Brits who fuelled ‘vicious’ conspiracy theory by Trump supporters

  Trump supporters have apologised and paid millions in damages to the family of murdered Democratic Party staffer Seth Rich for promoting false allegations that Rich – not Russian agents – stole emails from the Democratic National Committee

• January 29, 2021 29 Jan'21

  Manufacturing particularly at risk of Solorigate-linked breaches

  Every fifth victim of the SolarWinds Solorigate/Sunburst attack was a manufacturing organisation, say researchers

• January 29, 2021 29 Jan'21

  Human factor dominates Australia’s latest data breach numbers

  The number of data breaches resulting from human error increased by 18% in the second half of 2020, according to Australian government’s latest notifiable data breaches report