News

IT security

• March 15, 2021 15 Mar'21

  UK plans ‘full spectrum’ approach to national cyber security

  PM Boris Johnson expands on proposed National Cyber Force and plans to set up a north of England Cyber Corridor

• March 15, 2021 15 Mar'21

  Microsoft Exchange ProxyLogon attacks spike 10 times in four days

  Exploitations of the Microsoft Exchange ProxyLogon vulnerabilities have increased tenfold in just four days

• March 15, 2021 15 Mar'21

  Judges refuse EncroChat defendants’ appeal to Supreme Court

  Experts suggest Parliament and Investigatory Powers Tribunal need to consider the implications of a court decision on police use of data from the EncroChat phone network

• March 14, 2021 14 Mar'21

  Arrest warrants issued for Canadians behind Sky ECC cryptophone network used by organised crime

  The US has issued arrest warrants for the CEO of Sky Global and a former distributor for racketeering, aiding and abetting the distribution of illegal drugs by supplying encrypted phones to criminals

• March 12, 2021 12 Mar'21

  NCSC issues emergency alert on Microsoft Exchange patch

  UK’s national cyber agency calls on organisations affected by the ProxyLogon vulnerabilities to patch their Microsoft Exchange Servers immediately

• March 12, 2021 12 Mar'21

  DearCry ransomware targets vulnerable Exchange servers

  As predicted, ransomware gangs have started to target vulnerable instances of Microsoft Exchange Server, making patching an even greater priority

• March 12, 2021 12 Mar'21

  Brewer Molson Coors targeted in cyber attack

  Cyber criminals have disrupted beer production at Molson Coors, one of the world’s largest brewers

• March 12, 2021 12 Mar'21

  CW Innovation Awards: Fighting fake Covid-19 vaccines with blockchain

  A blockchain-based system developed by Singapore-based Zuellig Pharma can help governments and healthcare providers weed out fake vaccines and manage vaccine distribution and administration

• March 11, 2021 11 Mar'21

  UK digital regulators set out plans to strengthen cooperation

  Digital Regulation Cooperation Forum outlines plans for the coming year, marking a shift towards a more collaborative regulatory approach

• March 11, 2021 11 Mar'21

  Attack on surveillance cameras a warning over security, ethics

  The attack on a video surveillance startup by a hacktivist group raises questions not just over cyber security, but the use and extent of surveillance technology

• March 11, 2021 11 Mar'21

  After Emotet takedown, Trickbot roars up threat charts

  Malicious actors are turning to new tricks as Emotet fades away

• March 11, 2021 11 Mar'21

  Norwegian government falls victim to Microsoft attacks

  Norway’s parliament, the Storting, suffers second major cyber incident in a year as threat groups capitalise on vulnerable Microsoft Exchange Servers

• March 10, 2021 10 Mar'21

  Patch Tuesday overshadowed by Microsoft Exchange attacks

  Microsoft’s March Patch Tuesday update drops amid ongoing fall-out from widespread Exchange attacks

• March 10, 2021 10 Mar'21

  Police crack world’s largest cryptophone network as criminals swap EncroChat for Sky ECC

  Belgian and Dutch police have breached the encryption of users of Sky ECC, the world’s largest cryptophone network. There are significant parallels with the international police operation against the EncroChat cryptophone network which led to ...

• March 09, 2021 09 Mar'21

  Belgian police raid 200 premises in drug operation linked to breach of encrypted phone network

  More than 1,600 police and law enforcement officials conduct drug raids after the compromise of an encrypted mobile phone network that has parallels with EncroChat

• March 09, 2021 09 Mar'21

  Significant jump in number of hackers reporting vulnerabilities to companies

  Since the onset of the Covid-19 pandemic, the number of hackers reporting security vulnerabilities and bugs to enterprises has increased by nearly two-thirds

• March 09, 2021 09 Mar'21

  EBA restores services after Microsoft Exchange attack

  European Banking Authority was breached through vulnerabilities in Microsoft Exchange Server, but is now back online

• March 09, 2021 09 Mar'21

  Private equity house buys McAfee enterprise business

  Deal to sell off enterprise unit will see McAfee become a pure-play consumer organisation

• March 08, 2021 08 Mar'21

  US teases retaliation over state-backed cyber attacks

  Consequences for alleged perpetrators of the SolarWinds attack are expected within the next few weeks

• March 05, 2021 05 Mar'21

  Williams F1 car launch disrupted by data leak

  Williams Formula One team forced to pull augmented reality app it had planned to use to launch its 2021 car at the last minute after an apparent cyber attack

• March 05, 2021 05 Mar'21

  Mandiant: MS Exchange bugs first exploited in January

  Analysis from technical teams at FireEye’s Mandiant tracked activity exploiting newly disclosed vulnerabilities in Microsoft Exchange Server more than a month ago

• March 05, 2021 05 Mar'21

  Nottinghamshire schools suspend online learning following cyber attack

  Cyber attack on central trust that manages secondary schools in Nottinghamshire leaves them unable to access IT systems and deliver remote lessons

• March 05, 2021 05 Mar'21

  Singapore Airlines the latest victim of supply chain attack

  A restricted set of data of over 580,000 frequent flyer members of Singapore Airlines was exposed in a supply chain attack against Sita’s passenger service system

• March 04, 2021 04 Mar'21

  Okta picks up Auth0 for $6.5bn

  Multibillion-dollar acquisition a vote of confidence in future of identity and access management services

• March 04, 2021 04 Mar'21

  Microsoft Exchange CVEs more widely exploited than thought

  US CISA issues emergency guidance as impact of four newly disclosed Microsoft Exchange vulnerabilities becomes clearer

• March 04, 2021 04 Mar'21

  Progress towards gender equality in cyber still slow

  The cyber security sector is making painfully slow progress towards gender equality, according to a report

• March 04, 2021 04 Mar'21

  Qualys caught up in Accellion FTA breach

  Security services supplier confirms that some of its data was stolen via vulnerabilities in Accellion’s file transfer product

• March 04, 2021 04 Mar'21

  UK contactless payment limit more than doubled

  UK increases the amount that can be spent in one go using a contactless payments card to £100

• March 04, 2021 04 Mar'21

  Veritas looks beyond NetBackup for growth in ASEAN

  Veritas has seen increased demand for its availability tools as it looks to address backup and recovery requirements from cloud, database and VMware workloads

• March 03, 2021 03 Mar'21

  Emergency patch addresses MS Exchange Server zero-days

  Microsoft releases an emergency patch to address multiple zero-day exploits directed at on-premise installations of Exchange Server

• March 02, 2021 02 Mar'21

  EU seeking pan-European Covid-19 passport solution

  The European Union’s proposal could see the creation of a Covid-19 vaccine passport to enable travel across the EU

• March 01, 2021 01 Mar'21

  Digital secretary Dowden outlines UK post-Brexit data approach

  The UK government is searching for a new information commissioner with an updated remit to use data to support growth and innovation, and plans on reaching new international data partnerships

• February 26, 2021 26 Feb'21

  Cyber extortionist threatened to bomb NHS targets

  A German court has convicted a 33-year-old Italian man for making extortion and bomb threats against NHS hospitals at the height of the Covid-19 pandemic’s first wave last year

• February 25, 2021 25 Feb'21

  NCSC Cyber Action Plan emphasises SME security

  NCSC self-assessment tool launched to help sole traders and micro-businesses tackle their cyber security challenges

• February 25, 2021 25 Feb'21

  GCHQ sets out rules of the road for AI in cyber

  A paper produced by GCHQ shows how the intelligence agency can use artificial intelligence responsibly as a tool to protect the UK’s national security

• February 25, 2021 25 Feb'21

  Npower shuts off app after credential stuffing attack

  Npower customers will have to log in to their accounts on its website after its app was withdrawn following a security breach

• February 25, 2021 25 Feb'21

  MHRA and other agencies to offer new resources for scam victims

  New landing page resources will replace .uk domains suspended for criminal activity to help members of the public access appropriate guidance

• February 24, 2021 24 Feb'21

  Transport for NSW hit by Accellion breach

  Australian state agency Transport for New South Wales is the latest victim of the supply chain attack against Accellion’s legacy file transfer system

• February 24, 2021 24 Feb'21

  Vaccine passports prove an ethical minefield

  Privacy campaigners warn that vaccine passports may turn out to be discriminatory and invasive, while technologists agree careful consideration must be given to their design

• February 24, 2021 24 Feb'21

  Is Clubhouse safe, and should CISOs stop its use?

  With more concerns being raised over the privacy and security of social media app Clubhouse, we consider whether security teams should consider restricting or stopping employees from using it

• February 24, 2021 24 Feb'21

  Babuk ransomware unsophisticated, but highly dangerous

  Intelligence gathered through McAfee’s Mvision service reveals more insight into the emerging Babuk ransomware

• February 24, 2021 24 Feb'21

  Bombardier is latest victim of Accellion supply chain attack

  Canadian aviation company joins the growing list of Accellion breach victims

• February 24, 2021 24 Feb'21

  Warning on security risk from virtual events platforms

  Vulnerabilities found in virtual events platforms could form part of a variant supply chain attack

• February 23, 2021 23 Feb'21

  XDR makes cyber a Stroll in the park for Aston Martin F1

  Aston Martin Cognizant Formula One team will run SentinelOne’s Singularity XDR platform under the bonnet

• February 23, 2021 23 Feb'21

  AI powers reputational damage insurance policy

  Reputational damage has an immediate impact on a company’s share price, and brand loyalty built over many years can be lost in an instant

• February 23, 2021 23 Feb'21

  CyberScotland offers centralised security resource hub

  Newly launched partnership brings together security resources for individuals and organisations across Scotland

• February 22, 2021 22 Feb'21

  Microphones, smartphones, laptops among items stolen from BBC

  A total of 105 devices have been stolen from the BBC in the past two years, some of which may have been spirited away by remote workers

• February 22, 2021 22 Feb'21

  Pandemic has exposed fractures in cyber fraud strategy

  RUSI report urges a bolder and more coordinated response to cyber-enabled fraud as the pandemic lays bear the scale of the problem

• February 19, 2021 19 Feb'21

  European Commission proposes UK data adequacy agreement

  The publication of two draft data adequacy decisions brings the UK closer to a final positive decision, which will enable the continued free flow of data between the EU and the UK if green-lit by member states

• February 19, 2021 19 Feb'21

  NCSC cyber defence scheme blocked thousands of scams in 2019

  The NCSC has reported another productive year for its Active Cyber Defence programme