News

IT security

• May 14, 2020 14 May'20

  Harman seeks to bring private member’s bill over contact tracing

  Chair of Human Rights Committee aims to put the proposed Contact Tracing (Data Protection) Bill 2020 before parliament as a private member’s bill if necessary

• May 14, 2020 14 May'20

  Venafi buys cloud protection service Jetstack

  Jetstack specialises in open source machine identity protection software for Kubernetes and cloud native ecosystems

• May 14, 2020 14 May'20

  China targeting Covid-19 researchers through IT suppliers, claims US

  The US CISA says it is seeing targeting and attempted network compromise of Covid-19 research centres by China

• May 14, 2020 14 May'20

  UK’s contact-tracing app targeted by scammers

  Even though it is only operational on the Isle of Wight as a beta test, the UK government’s coronavirus contact-tracing app has already attracted the attention of cyber criminals

• May 14, 2020 14 May'20

  SK Telecom brings quantum security to the masses

  The South Korean telco is readying the world’s first 5G smartphone equipped with a quantum random number generator chipset

• May 13, 2020 13 May'20

  Report reveals inadequate cyber security at Schiphol Airport

  A report has revealed problems with critical security systems in Amsterdam’s Schiphol Airport

• May 13, 2020 13 May'20

  Nation state APT groups prefer old, unpatched vulnerabilities

  The Cybersecurity and Infrastructure Security Agency and the FBI have published details of the most commonly exploited vulnerabilities of recent years, and there are some “classics” on the list

• May 13, 2020 13 May'20

  Can Lady Gaga and Madonna get people to take security seriously?

  What does it take to get people to pay attention to cyber security? A celebrity law firm hack may hold some answers

• May 13, 2020 13 May'20

  British public largely distrustful of technology companies, says report

  High levels of distrust in the motivations of technology companies and a lack of meaningful influence over their behaviour has left the British public feeling digitally disempowered, says Doteveryone report

• May 13, 2020 13 May'20

  Microsoft fixes 16 critical vulnerabilities on Patch Tuesday

  The trend towards mammoth Patch Tuesdays continues as Microsoft fixes 111 vulnerabilities

• May 13, 2020 13 May'20

  European comms bodies set up standards group, call for vigilance on contact-tracing apps

  New ETSI group will develop standardisation framework for secure smartphone-based proximity tracing systems, helping to break Covid-19 transmission chains

• May 12, 2020 12 May'20

  Draft Covid-19 contact tracing legislation proposes formal oversight

  Human Rights Committee chair Harriet Harman has outlined a proposed bill to guarantee the security and privacy of data generated by the UK’s Covid-19 contact tracing app

• May 12, 2020 12 May'20

  MPs take part in first live test of remote voting during Covid-19 debate

  MPs will use phones and computers to vote from their homes in a House of Commons debate today in the biggest change in parliamentary procedure for 150 years

• May 12, 2020 12 May'20

  Details released of second UK contact-tracing app development

  Contractual documents show Zuhlke Engineering receiving an official start date of 6 May to supply a managed delivery team to support and run proximity mobile application and services for the UK

• May 12, 2020 12 May'20

  Pay the ransom and double your recovery costs, report warns

  Paying cyber criminals a ransom to recover your data adds over half a million dollars to the cost of organisational recovery, says Sophos

• May 12, 2020 12 May'20

  Police failing to consult public on new technologies

  A freedom of information campaign has revealed that UK police are largely failing to consult the public on their use of new technologies, with the potential to undermine the principle of policing by consent

• May 12, 2020 12 May'20

  APAC firms still coming to grips with data protection

  More governments in Asia are implementing data protection regimes, but challenges such as checkbox compliance and the lack of effective staff training remain

• May 12, 2020 12 May'20

  Maze ransomware attack will cost Cognizant at least $50m to $70m

  Cognizant’s clients cut off the IT supplier’s access to their networks to contain a Maze ransomware attack – effectively putting projects on hold

• May 12, 2020 12 May'20

  How Australian firms can plug data protection gaps

  Australian organisations can address data protection challenges by creating roles such as a data governance lead, classifying data and improving employee awareness of cyber hygiene

• May 12, 2020 12 May'20

  Banks failing to protect customers from coronavirus fraud

  Just 13 of the 64 banks accredited for the government’s Coronavirus Business Interruption Loan Scheme have implemented Dmarc protection

• May 11, 2020 11 May'20

  Four in 10 Australians will share GPS data for alerting

  Amid the Covid-19 pandemic, 40% of Australians are likely to share GPS data with the government to facilitate alerting, new study finds

• May 11, 2020 11 May'20

  Pitney Bowes hit by Maze in second ransomware attack in a year

  Shipping services firm falls victim to Maze ransomware just seven months after a previous major attack

• May 11, 2020 11 May'20

  Micro Focus sees growth in mainframe migration business

  Lifting and shifting Cobol code from mainframes to public cloud has been a growth driver for Micro Focus in the Asia-Pacific region, even as the software supplier continues to diversify its business

• May 07, 2020 07 May'20

  Zoom buys secure messaging service Keybase

  Unified comms platform Zoom says the acquisition of Keybase will finally let it bring end-to-end encryption to the table

• May 07, 2020 07 May'20

  Privacy International to Palantir: We are watching you

  Privacy International expresses a qualified welcome for Palantir’s responses to questions about its data integration role in the NHS Covid-19 data store, but continues to raise concerns

• May 07, 2020 07 May'20

  HM Treasury tells GDS: No further online services can use Gov.uk Verify

  The recent 18-month reprieve for Verify came with strict conditions – the digital identity scheme must not be added to any more services, and existing users must find alternatives

• May 07, 2020 07 May'20

  SilverTerrier cyber crime group targets Covid-19 key workers

  Organisations on the front line in the fight against coronavirus are under attack from Nigeria’s SilverTerrier criminal gang

• May 07, 2020 07 May'20

  Contact-tracing app fails to protect privacy and human rights

  Reassurances over the security and human rights implications of NHSX’s approach to developing its Covid-19 contact-tracing app are insufficient, says the cross-bench Human Rights Committee

• May 07, 2020 07 May'20

  Facebook announces oversight board members

  New board will rule on freedom of expression issues and make policy recommendations to social media giant.

• May 07, 2020 07 May'20

  FBI search warrants reveal Trump aide’s messages to WikiLeaks founder Julian Assange

  FBI search warrants reveal Trump campaigner Roger Stone sent private messages to WikiLeaks founder Julian Assange after the site published thousands of documents that damaged Hillary Clinton’s election campaign

• May 07, 2020 07 May'20

  Next round of Zoom updates targets consumer security

  Casual consumer users of Zoom will get additional protections in an update to be released over the long weekend

• May 07, 2020 07 May'20

  NCSC Covid-19 scam reporting service sees more than 160,000 reports

  The general public has taken to the NCSC’s scam reporting service like ducks to water, with thousands of suspicious emails reported to it in just two weeks

• May 06, 2020 06 May'20

  Criminal justice system is failing cyber crime victims

  Victims of cyber crime face barriers to reporting, receiving support and achieving justice, says a Home Office-backed study

• May 06, 2020 06 May'20

  Re-purposing data and questionable effectiveness could undermine trust in NHS contact-tracing app

  Experts call for greater clarity over how contact-tracing data will be used, while discussing the limitations of the coronavirus app

• May 06, 2020 06 May'20

  HMRC tackles almost 300 coronavirus phishing websites

  Of 292 websites removed since lockdown began on 23 March, 237 were proactively identified by HMRC and 55 were flagged by the public

• May 06, 2020 06 May'20

  End-users failing to protect themselves online

  Remote workers and stuck-at-home consumers are taking silly risks with their security during the coronavirus pandemic, according to a report

• May 05, 2020 05 May'20

  Coronavirus: NCSC issues urgent alert for healthcare sector

  UK National Cyber Security Centre and US Cybersecurity and Infrastructure Security Agency say they are seeing large-scale campaigns targeting healthcare bodies and medical research organisations

• May 05, 2020 05 May'20

  GoDaddy owns up to October 2019 data breach

  Web hosting services provider has suffered yet another security incident, confirming that an unauthorised individual accessed hosting accounts

• May 05, 2020 05 May'20

  Building security and privacy into contact-tracing apps

  Governance and data decentralisation are among measures that organisations can take to allay security and privacy concerns over contact-tracing apps, according to RSA

• May 04, 2020 04 May'20

  Xen Orchestra latest victim of Salt cryptojackers

  More victims of cyber criminals exploiting two critical Salt vulnerabilities are coming forward

• May 04, 2020 04 May'20

  NHSX contact-tracing app needs legislative oversight

  Legal experts have told Parliament’s Human Rights Committee that legislation is desirable to ensure public trust in the data security of the Covid-19 coronavirus contact-tracing app

• May 04, 2020 04 May'20

  Assange extradition hearing to take place in September following coronavirus lockdown

  An extradition hearing against WikiLeaks founder Julian Assange has been delayed by four months, after defence and prosecution lawyers said the Covid-19 lockdown would make it impractical to hold a fair hearing in May

• May 04, 2020 04 May'20

  Blogging platform Ghost hacked through Salt vulnerability

  Publishing service’s network was taken over by illicit cryptominers after failing to patch a critical vulnerability

• May 04, 2020 04 May'20

  IT Priorities 2020: Compliance and risk are top security concerns

  When it comes to security, buyers are prioritising solutions and services that address compliance issues, risk management and data protection, according to the Computer Weekly/TechTarget IT Priorities 2020 study

• May 04, 2020 04 May'20

  Research institutes warn of necessity for UK contact-tracing app to link to testing

  BCS and Cass Business School call for proposed UK contact-tracing app not to be launched without alignment to testing and warns that without this link, NHS will not be able to “big data” its way out of “no data” situation

• May 01, 2020 01 May'20

  NCSC tackles unconscious bias in security terminology

  The terms whitelisting and blacklisting are out at the UK’s National Cyber Security Centre

• May 01, 2020 01 May'20

  Treasury gives Gov.uk Verify 18-month reprieve due to coronavirus

  The government's troubled digital identity system was due to end funding in April 2020 but surge in use due to Universal Credit applications has brought a temporary reprieve

• April 30, 2020 30 Apr'20

  Cyber security skills courses go online during pandemic

  The government is turning to online learning to find the next generation of cyber security talent

• April 30, 2020 30 Apr'20

  Critical SaltStack vulnerability affects thousands of datacentres

  Critical vulnerabilities in the Salt remote task and configuration framework enable hackers to take control of cloud servers and must be patched right away

• April 30, 2020 30 Apr'20

  Mobile banking customers at risk from new EventBot trojan

  Customers of Barclays, HSBC, Santander and many other banks should be alert to a dangerous new trojan