News

IT security

• March 18, 2022 18 Mar'22

  Ukrainian cyber defences prove resilient

  Thanks to a combination of prior experience and global support, Ukraine’s defences against cyber incidents are holding strong in the face of Russian attacks

• March 17, 2022 17 Mar'22

  NCSC catches 10 million phishes

  Nation Cyber Security Centre’s scam email reporting service enjoys great success as government embarks on new cyber awareness campaign

• March 17, 2022 17 Mar'22

  Kaspersky CEO: Ukraine war must end through diplomacy

  Eugene Kaspersky speaks out on the war in Ukraine, and rebuffs Germany’s BSI, branding its warnings over his company’s trustworthiness as insulting

• March 17, 2022 17 Mar'22

  Online Safety Bill introduced in Parliament

  The government has introduced its long-awaited Online Safety Bill in Parliament, alongside new criminal offences and sanctions for tech company execs

• March 17, 2022 17 Mar'22

  Alarm raised over ‘trickster’ LokiLocker ransomware

  The new LokiLocker ransomware is, like its namesake, adept at tricks and misdirection, say BlackBerry researchers

• March 17, 2022 17 Mar'22

  Value of contactless transactions doubles in two years

  Almost £166bn was spent in the UK last year using contactless technology, compared with £80.5bn in 2019

• March 17, 2022 17 Mar'22

  FCSA takes steps to help umbrella company members protect themselves better from cyber attacks

  After a spate of suspected ransomware attacks on its members, the Freelance and Contractor Services Association is partnering with a cyber security firm that can coach its umbrella firms on how to protect themselves better

• March 17, 2022 17 Mar'22

  Windstream claims North America’s ‘first and only comprehensive’ managed SASE

  Managed communications service provider sees new bundle enabling convergence of networking and security as addressing modern-day challenges of digital business transformation, cyber security and workforce mobility

• March 16, 2022 16 Mar'22

  Biden signs ransomware reporting mandate into law

  CNI operators in the US must now report cyber attacks within 72 hours, and ransomware payments within 24 hours

• March 16, 2022 16 Mar'22

  Two men convicted after using EncroChat cryptophones to plot killing

  Evidence from the encrypted phone network EncroChat led to the conviction of two men for conspiracy to murder

• March 16, 2022 16 Mar'22

  SentinelOne adds Attivo Networks to identity portfolio

  SentinelOne adds identity threat detection and response technology to its cyber portfolio, saying it will benefit zero-trust adoption among its customers

• March 16, 2022 16 Mar'22

  German authorities warn on Kaspersky but stop short of ban

  Germany authorities warn Kaspersky users to consider alternatives to the firm’s flagship antivirus software, citing national security concerns and the war on Ukraine

• March 16, 2022 16 Mar'22

  CaddyWiper is fourth new malware linked to Ukraine war

  ESET’s cyber security analysts have identified yet another destructive wiper malware being used against targets in Ukraine

• March 16, 2022 16 Mar'22

  Kubernetes vulnerability underscores repeated security warnings

  The disclosure of a new vulnerability in an important container runtime engine that underpins Kubernetes has drawn fresh warnings to pay attention to securing Kubernetes environments

• March 15, 2022 15 Mar'22

  Meta fined €17m over EU data breaches

  The Irish Data Protection Commissioner has fined Meta after finding it in breach of GDPR rules

• March 15, 2022 15 Mar'22

  Supreme Court refuses Julian Assange extradition appeal

  The case will be referred to the home secretary Priti Patel to make a decision. The WikiLeaks founder has yet to say whether he will file further appeals

• March 11, 2022 11 Mar'22

  Kaspersky forced to deny source code leak

  Kaspersky says an alleged leak of its source code was in fact material anyone could have gleaned from its public servers

• March 11, 2022 11 Mar'22

  Police EncroChat cryptophone hacking implant did not work properly and frequently failed

  Surveillance operation against EncroChat encrypted phone network had repeated technical failures

• March 10, 2022 10 Mar'22

  Tech brands sign on to HackerOne responsible security drive

  Tech companies sign HackerOne’s new corporate security responsibility pledge to bring cyber out of the shadows and promote effective, secure development practices

• March 10, 2022 10 Mar'22

  Orange Business Services and Fortinet seal SASE partnership

  Business services division of telco inks partnership with cyber security firm to gain differentiation for secure access service edge solution based on cloud-native technologies and using a dedicated global IP backbone to deliver expanded on-demand ...

• March 10, 2022 10 Mar'22

  Government to force tech firms to stop fraudsters using their platforms for scams

  Changes to legislation will make social media and search engine firms responsible for preventing fraudsters using their platforms to commit crimes

• March 09, 2022 09 Mar'22

  Paid-for advertising measures included in Online Safety Bill

  New measures to deal with fraudulent paid-for advertising have been included in the government’s draft Online Safety Bill, marking the fourth extension in two months

• March 09, 2022 09 Mar'22

  Strategic Review of Policing: Police tech needs better ethical scrutiny

  The Strategic Review of Policing confirms the central role that tech will be playing going forward, but warns of the need for greater ethical scrutiny to ensure public trust

• March 09, 2022 09 Mar'22

  China’s APT41 exploited Log4j within hours

  APT41 compromised multiple government organisations via the Log4Shell exploit within hours of its initial disclosure, Mandiant claims

• March 09, 2022 09 Mar'22

  Microsoft serves up three zero-days on March Patch Tuesday

  Three zero-days pop up in Microsoft’s March update, along with a number of other noteworthy concerns for defenders

• March 08, 2022 08 Mar'22

  Google buys Mandiant for £4bn

  Acquisition will see cyber defence and threat intelligence specialist folded into Google Cloud’s security suite

• March 07, 2022 07 Mar'22

  Ukraine joins Nato cyber knowledge hub

  Ukraine is to become a contributing participant in Nato’s Cooperative Cyber Defence Centre of Excellence

• March 04, 2022 04 Mar'22

  Scrapping NHS Digital a backward step for patient data rights

  Former NHS Digital chair Kingsley Manning has spoken out over proposals to fold NHS Digital into NHS England, saying that more oversight is needed to safeguard patient data in light of recent events

• March 04, 2022 04 Mar'22

  Microsoft stops sales of products and services to Russia

  Citing sanctions and cyber security concerns, Microsoft has become the latest company to withdraw from the Russian market

• March 03, 2022 03 Mar'22

  Boardroom does not see ransomware as a priority

  Less than a quarter of company directors think ransomware is a top priority for their security teams, according to Egress

• March 03, 2022 03 Mar'22

  Nato Cyber Security unit tests post-quantum VPN

  Nato’s Cyber Security Centre has successfully tested secure communication flows in a post-quantum world using a UK-designed VPN

• March 03, 2022 03 Mar'22

  Direct action is a risky business for Ukraine's volunteer hackers

  Hackers have been responding to Ukraine’s call to create an IT army, but there are many reasons why taking direct action in a kinetic conflict is a bad idea

• March 03, 2022 03 Mar'22

  Use of encrypted Telegram platform soars in Ukraine, Russia

  Encrypted messaging service Telegram is proving a valuable asset to both sides in Russia’s war on Ukraine

• March 02, 2022 02 Mar'22

  Eight schools recognised for quality security education

  Eight new schools and colleges around the UK have been recognised by the NCSC’s CyberFirst Schools initiative

• March 02, 2022 02 Mar'22

  Cyber companies step up support for Ukraine

  Security companies Bitdefender and Vectra AI are both to offer products and services in support of Ukraine

• March 02, 2022 02 Mar'22

  SunSeed malware hits those involved in Ukraine refugee relief

  European governments involved in managing the logistics of hundreds of thousands of people fleeing Ukraine have been targeted by a suspected state-backed actor

• March 02, 2022 02 Mar'22

  Ban predictive policing systems in EU AI Act, says civil society

  A coalition of civil society groups has called on European lawmakers to use the upcoming Artificial Intelligence Act as an opportunity to ban predictive policing systems

• March 01, 2022 01 Mar'22

  Toyota production to resume after supply chain attack

  Toyota production has been set back by over 10,000 vehicles following a cyber attack on a critical components supplier in Japan

• March 01, 2022 01 Mar'22

  BBC blasted with millions of malicious emails

  Responding to an FoI request, the BBC has revealed it receives more than 300,000 malicious email attacks every day

• March 01, 2022 01 Mar'22

  DCMS opens consultation on telecoms cyber standards

  Proposed rules will set out the specific measures telecoms providers need to take to fulfil their legal duties under the Telecommunications Security Act

• March 01, 2022 01 Mar'22

  ESET details new IsaacWiper malware used on Ukraine

  Having been among the first to report on the HermeticWiper malware used against Ukraine last week, ESET has now identified another destructive malware called IsaacWiper

• February 28, 2022 28 Feb'22

  Ukraine cyber attacks seen spiking, but no destructive cyber war yet

  While cyber attacks linked to Russia’s war on Ukraine are taking place, they are having little impact beyond the region

• February 28, 2022 28 Feb'22

  Online Safety Bill updated to deal with anonymous abuse

  Social media companies will be forced to deal with anonymous abuse online by the introduction of new measures in the Online Safety Bill

• February 28, 2022 28 Feb'22

  Cloudflare: Our network is our product

  Cloudflare’s chief product officer explains why its network is its product and how it protects organisations against cyber threats

• February 25, 2022 25 Feb'22

  Mass phishing attacks against Ukrainian citizens reported

  The Ukrainian cyber authorities are alerting people located in the country to be alert to phishing attacks

• February 25, 2022 25 Feb'22

  Irish data watchdog calls for ‘objective metrics’ for big tech regulation

  Helen Dixon, Ireland’s data protection commissioner, says EU regulators must agree on metrics to measure the effectiveness of data protection regulation

• February 25, 2022 25 Feb'22

  Darktrace buys attack surface management firm Cybersprint

  Emergent AI cyber specialist Darktrace is to pay £39.7m for Netherlands-based Cybersprint

• February 24, 2022 24 Feb'22

  Researchers link Dridex botnet to emergent Entropy ransomware

  A little-known new ransomware called Entropy contains significant code similarities to the general purpose Dridex botnet, suggesting some kind of link between the two

• February 24, 2022 24 Feb'22

  KnowBe4 cyber drama tackles Colonial Pipeline in fourth season

  KnowBe4’s ongoing cyber security training drama, The Inside Man, reaches its fourth season with a plot drawing inspiration from one of the most impactful cyber attacks of 2021

• February 24, 2022 24 Feb'22

  New wave of cyber attacks on Ukraine preceded Russian invasion

  A wave of DDoS attacks, and a second data wiper attack, were seen hitting Ukraine in the hours leading up to the Russian invasion