News

IT security

• March 18, 2020 18 Mar'20

  Push for digitisation in Malaysia amid coronavirus crisis

  Event cancellations and travel bans are spurring more companies to embrace digital tools to support remote and flexible working arrangements

• March 17, 2020 17 Mar'20

  Covid-19: NCSC issues secure remote working guidance

  With hundreds of thousands likely to be working remotely for some time, the UK’s NCSC has issued best practice guidance to enable security teams to support them

• March 17, 2020 17 Mar'20

  Travelex under threat as insolvency risk, hacking costs and coronavirus take their toll

  Foreign exchange group’s future remains uncertain as its parent company, Finablr, prepares for potential insolvency

• March 17, 2020 17 Mar'20

  UN identifies tech companies working in Occupied Palestinian Territories

  United Nations Human Rights Office report names a number of technology companies that could be involved in violating human rights

• March 17, 2020 17 Mar'20

  SentinelOne makes security platform free to support remote workers

  Endpoint protection platform service will be made free until 16 May 2020 to help protect remote workers during the Covid-19 coronavirus crisis

• March 17, 2020 17 Mar'20

  UK makes its case for post-Brexit data adequacy decision

  Government sets out an explanatory framework as it seeks adequacy decisions from the European Commission to maintain the free flow of personal data between the European Union, the UK and Gibraltar

• March 17, 2020 17 Mar'20

  Covid-19: Three technology areas that CIOs must address

  CIOs will need to consider the IT measures that will be needed to support their organisations as the government ramps up its response to the coronavirus

• March 16, 2020 16 Mar'20

  NCSC issues coronavirus cyber security alert

  The UK’s National Cyber Security Centre has issued a public alert and fresh guidance as more cyber criminals get wise to the lucrative potential of Covid-19

• March 13, 2020 13 Mar'20

  Equality watchdog calls on police to stop using facial recognition

  Equalities and Human Rights Commission says use of automatic facial recognition and predictive algorithms by police is discriminatory, stifles freedom of expression and lacks a proper legislative framework

• March 13, 2020 13 Mar'20

  Coronavirus-linked hacks likely as Czech hospital comes under attack

  The world of cyber security is on high alert to heightened vulnerabilities as the spread of the Covid-19 coronavirus changes daily life across Europe

• March 13, 2020 13 Mar'20

  UK’s security sector failing on most diversity measures

  A DCMS report on the state of the UK’s cyber security workforce highlights a huge lack of diversity and a substantial skills gap

• March 12, 2020 12 Mar'20

  Turla’s use of Iranian infrastructure probably opportunistic

  Turla, the Kremlin-linked APT group that last year hijacked an Iranian group’s infrastructure, was likely to have been operating opportunistically, according to researchers

• March 12, 2020 12 Mar'20

  Security pros just want to be loved, report finds

  Being valued by the business for their role in keeping the organisation safe and upholding ethical standards is a primary motivator for CISOs and other security professionals

• March 12, 2020 12 Mar'20

  Failings in open source disclosure put users at risk

  As more projects rely on open source components, IT departments need to keep on top of critical vulnerabilities to ensure they are secure

• March 12, 2020 12 Mar'20

  Cookie-stealing trojans found lurking on Android phones

  Kaspersky discovers two new Android malware modifications that could give hackers control of their victims’ social media accounts

• March 12, 2020 12 Mar'20

  APAC remains hotbed for digital transformation

  Nearly half of organisations in the Asia-Pacific region see digital transformation as their top priority, followed by cloud infrastructure deployment and artificial intelligence, survey finds

• March 11, 2020 11 Mar'20

  Cross-regulator taskforce on digital economy announced in 2020 Budget

  UK regulators will join forces to look at how the potential regulation of the digital platforms and advertising markets would work

• March 11, 2020 11 Mar'20

  Security pros test positive for Covid-19 after RSA Conference

  Two employees of security firm Exabeam have been diagnosed with the Covid-19 coronavirus after attending RSA Conference 2020

• March 11, 2020 11 Mar'20

  Microsoft locks down new vulnerability with EternalBlue echoes

  Microsoft has moved to get ahead of a serious remote code execution vulnerability in Microsoft Server Message Block 3.1.1, which was accidentally disclosed then missed in its March Patch Tuesday update

• March 11, 2020 11 Mar'20

  Microsoft fixes 26 critical vulnerabilities in another heavy Patch Tuesday

  March’s Patch Tuesday is another big one for Microsoft, addressing 115 vulnerabilities, 26 of them critical

• March 11, 2020 11 Mar'20

  ANZ firms ill-prepared to deal with tech issues

  More than two in five businesses in Australia and New Zealand are hearing from customers about major technology issues, affecting productivity and staff morale, new study finds

• March 10, 2020 10 Mar'20

  Schoolgirl security experts prepare to do battle

  The finals of the CyberFirst Girls contest will take place on 16 March as the culmination of the NCSC’s annual competition to unearth future security talent

• March 10, 2020 10 Mar'20

  Hacking community targeted by cyber criminals in new trojan campaign

  Cybereason’s Nocturnus threat research team has uncovered a cyber criminal campaign that weaponises popular hacking tools

• March 10, 2020 10 Mar'20

  VAT software supplier exposed data of millions

  Eight million sales records belonging to UK and EU consumers left exposed due to misconfigured server

• March 10, 2020 10 Mar'20

  Police IT system failure creates significant backlogs

  Independent review of IT system failure that left Greater Manchester Police working with pen and paper finds combination of technical shortcomings, operational procedures and staff training responsible for massive backlogs

• March 10, 2020 10 Mar'20

  More questions raised about Gov.uk Verify as digital identity chief quits

  Lisa Barrett, director of digital identity at GDS and head of the troubled Verify programme, is leaving government as funding questions remain ahead of Budget

• March 10, 2020 10 Mar'20

  Inside Oracle’s cloud strategy

  Oracle may be late to the cloud infrastructure and platform game, but it believes it has what it takes to carve out a bigger slice of the Asia-Pacific’s cloud market

• March 09, 2020 09 Mar'20

  Bill Gates backs Crest fintech security scheme for Africa and Asia

  UK-based cyber security accreditation and certification non-profit Crest has been awarded a $1.4m grant from the Bill and Melinda Gates Foundation to expand cyber security capacity for fintechs in Africa and Asia

• March 09, 2020 09 Mar'20

  DCMS to oversee coronavirus disinformation unit

  A cross-departmental counter-disinformation unit will seek to protect and secure UK citizens from disinformation, scams and cyber security threats related to the Covid-19 outbreak

• March 06, 2020 06 Mar'20

  MI5 slammed by watchdog for failing to delete intercepted phone and internet data

  The Investigatory Powers Commissioner (IPCO) has criticised MI5 for failing to report serious errors in the way it handles intercepted phone and internet data

• March 06, 2020 06 Mar'20

  CIO interview: Sarah Wilkinson, NHS Digital

  NHS Digital has been racing to ensure the systems and protocols are in place to prepare the health service for the coronavirus. We speak to its CEO about the preparations

• March 06, 2020 06 Mar'20

  Virgin Media confirms 'misconfigured database' left personal data of 900,000 people exposed

  Telco provider Virgin Media confirms 'data incident' that left personal details of 900,000 people exposed, but denies its systems were hacked or that it suffered a data breach

• March 05, 2020 05 Mar'20

  Boots and Tesco loyalty card schemes plagued by security issues

  High-street retailers deal with fraudulent attempts to access the accounts of thousands of customers

• March 05, 2020 05 Mar'20

  Huawei: MPs air concerns over security risks in code and managed contracts

  The risk Huawei poses to the UK's 5G network roll out was raised during a recent Westminster Hall debate

• March 05, 2020 05 Mar'20

  Biometrics ethics group takes evidence on public-private use of facial recognition

  Collaboration between police forces and private entities on facial recognition technology comes under scrutiny by the Home Office’s Biometrics and Forensics Ethics Group

• March 05, 2020 05 Mar'20

  Cathay Pacific hit with £500,000 data protection fine from ICO over 2018 breach

  Airline receives maximum financial penalty under Data Protection Act for data breach that led to nine million customers having their personal data accessed by hackers

• March 04, 2020 04 Mar'20

  Australian government pulls plug on cloud certification programme

  The Australian Signals Directorate is closing its cloud services certification programme to allow for more home-grown suppliers

• March 04, 2020 04 Mar'20

  5G security is a concern for most companies

  A study has found that decision-makers fear that 5G technology will make organisations more vulnerable to cyber attacks and will raise security-related costs

• March 04, 2020 04 Mar'20

  F-Secure reports a steep rise in hacking attempts

  An increase in distributed denial of service attacks pushes up the volume of identified rogue internet traffic to almost three billion

• March 03, 2020 03 Mar'20

  Horangi and Tokio Marine team up on cyber security services

  Singapore-based Horangi will provide penetration testing, among other cyber security services, to Tokio Marine Insurance Singapore’s cyber risk insurance clients

• March 03, 2020 03 Mar'20

  NCSC issues smart camera security guidance to protect consumers from unauthorised snoops

  Government’s latest push to safeguard users of in-home connected devices sees National Cyber Security Centre issue guidance to help consumers tighten up security of smart cameras and baby monitors

• March 03, 2020 03 Mar'20

  Singapore among world’s top sources of online threats

  Singapore remained a hotspot for originating cyber attacks in 2019, with 11 million attacks launched from servers in the city-state

• March 02, 2020 02 Mar'20

  The Security Interviews: Inside the world of bug bounties

  You may not make a million as a bug bounty hunter, but you might help remove some of the stigma that persists around cyber security, says HackerOne’s Shlomie Liberow

• March 01, 2020 01 Mar'20

  Data breaches in Australia showing no signs of abating

  Compromised login credentials and human error were the most common causes of data breaches reported under Australia’s notifiable data breach regime from July to December 2019

• February 28, 2020 28 Feb'20

  NCSC makes ransomware attack guidance more accessible

  Following a swathe of high-profile ransomware attacks, the UK’s National Cyber Security Centre has made changes to its guidance, emphasising the importance of offline backups

• February 27, 2020 27 Feb'20

  WikiLeaks founder Assange is well enough to participate in extradition proceedings, says judge

  A judge dismissed claims that Julian Assange’s vulnerable psychological state would prevent him from taking part in his extradition hearing to face espionage and computer misuse charges in the US

• February 27, 2020 27 Feb'20

  Gove warns EU that UK sovereignty is non-negotiable on eve of trade deal talks

  The UK and the EU have published their divergent mandates for trade talks due to start on Monday 2 March 2020, and digital may emerge as a long-term terrain of dispute

• February 27, 2020 27 Feb'20

  Clearview hack fuels debate over facial recognition

  Customers of Clearview AI, a controversial startup that scrapes and sells billions of photos of people from social media to police forces, have found themselves at the centre of a major data breach

• February 27, 2020 27 Feb'20

  Oxbotica on board with Cisco to drive autonomous vehicle data challenge

  Connected car technology firm hits pedal with Cisco to solve data challenges of future autonomous vehicles

• February 27, 2020 27 Feb'20

  Redcar & Cleveland Council confirms ransomware attack

  Local authority’s systems are still offline nearly three weeks after being attacked

• February 27, 2020 27 Feb'20

  Kr00k vulnerability compromises billions of Wi-Fi devices

  Billions of Wi-Fi chips used in IoT devices, laptops, smartphones and tablets are vulnerable to a serious vulnerability

• February 27, 2020 27 Feb'20

  IT Priorities 2020: ASEAN firms on the frontline of digital transformation

  Southeast Asian companies plan to spend more on infrastructure and cyber security, but the growth in IT budgets appears to be slowing down

• February 26, 2020 26 Feb'20

  Fake CDNs obscuring credit card fraudsters

  Fake content delivery networks and ngrok servers are being pressed into service to obscure credit card skimming activities

• February 26, 2020 26 Feb'20

  Cloud Snooper firewall bypass may be work of nation state

  Cloud Snooper deploys a combination of specialised techniques to sneak past enterprise firewalls, warns Sophos

• February 26, 2020 26 Feb'20

  WikiLeaks founder Julian Assange cannot be legally extradited for ‘political offences’, say lawyers

  Lawyers for WikiLeaks founder Julian Assange argue that he has been charged with political offences and cannot be legally extradited to the US under the US-UK extradition treaty

• February 26, 2020 26 Feb'20

  FCA data breach could happen to anybody, but easy to avoid

  Minor data breach at the Financial Conduct Authority was the result of simple human error, and highlights the need for organisations to consider a wide range of potential threats

• February 26, 2020 26 Feb'20

  Met Police chief backs legislative framework for police tech

  Met Police commissioner has called for legislative framework to govern police use of new technologies, while defending the decision to use live facial recognition technology operationally without it

• February 26, 2020 26 Feb'20

  How tech suppliers are easing barriers to hybrid cloud adoption

  The tech industry has risen to the challenge of helping enterprises ease their transition to hybrid cloud, but issues remain

• February 25, 2020 25 Feb'20

  Julian Assange phoned White House to warn of risk to lives

  Julian Assange phoned the White House to warn officials that unredacted cables published on the web posed a risk to lives, a court heard yesterday

• February 25, 2020 25 Feb'20

  Google warns users not to mess with Huawei devices

  Google tells users of Huawei devices to try to avoid bypassing controls preventing them from loading its apps

• February 25, 2020 25 Feb'20

  Sports retailer Decathlon left employee data exposed

  More than 123 million records were accidentally exposed on an unsecured ElasticSearch server

• February 25, 2020 25 Feb'20

  The Security Interviews: Gil Shwed’s 10-year vision for security

  Check Point founder Gil Shwed discusses his new Infinity Next concept and how he plans to remodel the world of cyber security in the next 10 years

• February 25, 2020 25 Feb'20

  Mastercard creates 1,500 tech jobs in Ireland

  New roles at tech hub in Dublin will include professionals with expertise in artificial intelligence, cyber security, blockchain and user experience

• February 25, 2020 25 Feb'20

  Cloud data leaks compounded by lack of automation tools

  Data leaks caused by misconfigured clouds are being compounded because security teams lack appropriate automation and integration tools, according to a report

• February 25, 2020 25 Feb'20

  Cyber criminals targeting UK motorists, warns DVLA

  Cyber criminals are offering various services and tax refunds that purport to be from the DVLA

• February 24, 2020 24 Feb'20

  McAfee buys Light Point to enhance web browser protection

  Acquisition of Light Point Security will extend the capabilities of multiple McAfee products

• February 24, 2020 24 Feb'20

  Thai university to roll out data protection certification

  Thailand’s National Institute of Development Administration is offering a certification programme to get organisations ready for the country’s data protection regime

• February 24, 2020 24 Feb'20

  Assange extradition is a politically motivated ‘abuse of power’, court hears

  US government’s attempt to extradite WikiLeaks founder Julian Assange to face espionage charges in the US is politically motivated and an abuse of process, court told

• February 24, 2020 24 Feb'20

  WikiLeaks founder Assange ‘put lives at risk’ by disclosing names in leaked documents, court hears

  WikiLeaks founder Julian Assange ‘put lives of US informants at risk’ by publishing unredacted documents, lawyers for the US argued at the first day of a week-long extradition hearing

• February 24, 2020 24 Feb'20

  Open security group unveils common OpenDXL language

  Open Cybersecurity Alliance announces the availability of OpenDXL Ontology, the first open source language for connecting disparate security tools through a common messaging framework

• February 24, 2020 24 Feb'20

  Cisco goes all-in on security integration with SecureX platform

  CISOs are struggling to stitch together disparate cyber security products and services – Cisco believes its cloud-native SecureX platform will change their working lives for the better

• February 21, 2020 21 Feb'20

  Labour condemns Google data plans

  Shadow digital minister Chi Onwurah challenges the government to stop Google’s plans to move UK user data out of the EU

• February 21, 2020 21 Feb'20

  Malicious apps still getting past Google controls

  Check Point researchers have found multiple malware-infected apps in the Google Play store, including a clicker called Haken, which has been downloaded more than 50,000 times

• February 21, 2020 21 Feb'20

  F-Secure’s AI reads mean tweets to fight abuse and trolls

  Researchers working on F-Secure’s Project Blackfin have developed a model for clustering tweets to help pinpoint abuse and harassment

• February 20, 2020 20 Feb'20

  UK and US accuse Russian spooks of Georgia cyber attacks

  Foreign secretary describes 2019 campaign of cyber attacks as reckless, brazen and unacceptable

• February 20, 2020 20 Feb'20

  Google plans to send Brits’ data to US after Brexit

  Move puts British user data beyond the reach of the EU’s GDPR, makes it more accessible to UK and US law enforcement agencies, and has prompted anger

• February 20, 2020 20 Feb'20

  Facilities firm ISS World crippled by ransomware attack

  An apparent ransomware attack has compromised some IT and email systems at Danish facilities firm ISS World

• February 19, 2020 19 Feb'20

  Cost of cloud misconfigurations set at $5tn

  Cloud security outfit DivvyCloud says more than 33 billion records have been exposed in cloud misconfiguration incidents in the past 24 months

• February 19, 2020 19 Feb'20

  Blasé directors put business data at risk

  The higher up within a business you go, the more likely you are to find people intentionally leaking confidential data, says Egress

• February 19, 2020 19 Feb'20

  Questions raised over Office 365 shared content policy

  Buried 300 words into Microsoft’s standard service level agreement is a clause that affects intellectual property and privacy

• February 18, 2020 18 Feb'20

  US ‘breached due process’ in spying operation against Julian Assange’s lawyers

  Surveillance footage of Julian Assange’s meetings with lawyers and doctors in the Ecuadorian Embassy in London was an “abuse of process”

• February 18, 2020 18 Feb'20

  Girlguiding hosts interactive cyber security workshop

  100 Guides from South West England took part in an NCSC event to learn more about security fundamentals

• February 18, 2020 18 Feb'20

  Untrusted security teams being left out of business decisions

  Only a third of organisations are involving their cyber security function at the planning stage of business initiatives

• February 18, 2020 18 Feb'20

  Most CISOs ready to move jobs if something better comes along

  The shortage of skilled security pros is creating an active recruitment market, with over 80% of CISOs saying they would consider a new role if approached

• February 18, 2020 18 Feb'20

  Veeam Availability Suite v10 adds NAS backup and cloud tiering

  Availability Suite is mostly about consolidating the company’s data management platform idea, but it has added incremental forever NAS backup, cloud tiering and recovery to vSphere

• February 17, 2020 17 Feb'20

  Australians more savvy about cyber security

  More Australians look out for signs of security features such as SSL encryption even as they remain sceptical of the data protection capabilities of small businesses

• February 17, 2020 17 Feb'20

  Mastercard opens European security resilience unit

  Mastercard’s European Cyber Resilience Centre will bring together its partners and other industry bodies to support enterprise resilience

• February 17, 2020 17 Feb'20

  Ex-soldiers to become ethical hackers

  A new programme will give armed forces veterans in Scotland a grounding in cyber security skills, including penetration testing and ethical hacking

• February 14, 2020 14 Feb'20

  PM Johnson shuffles technology and digital ministers again

  Boris Johnson has changed all the key Cabinet appointments responsible for tech and digital policy for the second time since becoming prime minister last year

• February 13, 2020 13 Feb'20

  Cyber criminals spread coronavirus conspiracy theories

  The latest email campaigns identified by Proofpoint are spreading conspiracy theories about the coronavirus outbreak

• February 12, 2020 12 Feb'20

  Emotet evolving to exploit coronavirus fear

  With coronavirus cases now reported across the world, Emotet campaigns are exploiting legitimate fears to compromise their targets

• February 12, 2020 12 Feb'20

  Internet Explorer zero day among 99 Patch Tuesday problems

  After an eventful January Patch Tuesday that marked the end of support for Windows 7, the February 2020 update is another whopper, fixing close to 100 vulnerabilities

• February 11, 2020 11 Feb'20

  MI5 failed to disclose failings in handling intercepted data, court hears

  MI5 failed to disclose serious failures in the way it handled intelligence data to the Investigatory Powers Tribunal, the surveillance regulator and ministers.

• February 11, 2020 11 Feb'20

  Mac-based security threats outpacing Windows

  Security threats targeting Apple endpoints are growing more quickly than those targeting Windows machines, according to Malwarebytes

• February 11, 2020 11 Feb'20

  Chinese military personnel accused of Equifax hack

  A US federal grand jury has indicted four Chinese army personnel over the 2017 Equifax breach

• February 11, 2020 11 Feb'20

  Tencent Cloud gains multi-tier cloud security certification

  China's Tencent Cloud joins major cloud suppliers in securing tier three of Singapore’s Multi-Tier Cloud Security standard in a bid to grow its presence in Asia

• February 10, 2020 10 Feb'20

  Police use of facial recognition ‘unjustifiable’, says Scottish Justice Committee

  Members of the Scottish Parliament have said police use of live facial recognition technology is “not fit for purpose”

• February 10, 2020 10 Feb'20

  What should be in Australia’s next cyber security strategy

  The Australian government is reviewing the nation’s cyber security strategy, but is it looking at the right issues?

• February 10, 2020 10 Feb'20

  Norway braces for possible China backlash over 5G loss

  Norway fears trading relationship with China will suffer as a result of Huawei losing 5G contract to Ericsson

• February 10, 2020 10 Feb'20

  AI in public service must be accountable

  Committee on Standards in Public Life recommends that government departments make ethics a top priority when tendering artificial intelligence systems