News
IT security
-
February 04, 2021
04
Feb'21
CDEI: Local government data use must keep up Covid momentum
The Centre for Data Ethics and Innovation says momentum in local authority data use during the Covid-19 pandemic is in danger of being dissipated without central government investment and support for data skills development
-
February 03, 2021
03
Feb'21
Crypto malware targets Kubernetes clusters, say researchers
Newly identified Hildegaard malware targets Kubernetes clusters and seems to herald a new campaign from the TeamTNT gang
-
February 03, 2021
03
Feb'21
Foxtons rejects claims of slow reaction to data leak
Investigators have unearthed 16,000 data records that seem to have been stolen in an attack on property firm Foxtons last year, but the organisation says it acted by the book in dealing with the incident
-
February 03, 2021
03
Feb'21
‘Classic’ Cerber ransomware targets health sector in high volumes
Cerber ransomware-as-a-service seems to have re-emerged as one of the most critical cyber threats facing healthcare organisations, reports VMware Carbon Black
-
February 03, 2021
03
Feb'21
SolarWinds patches two critical CVEs in Orion platform
New vulnerabilities disclosed as SolarWinds reels from December 2020 Solorigate/Sunburst attack – but do not appear to have been exploited yet
-
February 03, 2021
03
Feb'21
Tata Communications grows IoT footprint
India’s Tata Communications has been shoring up its IoT capabilities through a handful of acquisitions and partnerships with telcos
-
February 02, 2021
02
Feb'21
Agent Tesla trojan finds new ways to sneak past defences
Updated versions of Agent Tesla Rat include new techniques that fiddle with code to disable endpoint protection tools on target systems
-
February 01, 2021
01
Feb'21
Serco confirms Babuk ransomware attack
Outsourcing firm was hit by the ransomware last week but insists most of its operations are running as normal
-
February 01, 2021
01
Feb'21
UKRI suspends services after ransomware attack
UK Research and Innovation was hit by an undisclosed strain of ransomware at the end of January
-
February 01, 2021
01
Feb'21
CISOs invisible to their organisations, says BT report
Ignorance of cyber issues is leading to misplaced confidence in security in many organisations, as CISOs struggle to make themselves seen and heard
-
February 01, 2021
01
Feb'21
‘Victory for free speech and openness’ after tribunal confirms no territorial restrictions to FOIA
Freedom of information tribunal rules that investigative journalists and others can use the Freedom of Information Act if they live outside the UK or are not British citizens
-
February 01, 2021
01
Feb'21
SBRC picks Check Point to support cyber helpline
The Scottish Business Resilience Centre has enlisted Check Point as the first security supplier to join its incident response partnership programme
-
January 31, 2021
31
Jan'21
Indian firms see growing value of data
Half of Indian IT leaders see a permanent increase in value of data as their organisations come under threat from mounting cyber attacks amid the pandemic
-
January 29, 2021
29
Jan'21
Hunting and anti-hunting groups locked in tit-for-tat row over data gathering
The leaking of internal documents has prompted a row between pro- and anti-hunting groups about the legality of the other’s data collection practices
-
January 29, 2021
29
Jan'21
Biometrics ethics group addresses public-private use of facial recognition
Home Office’s Biometrics and Forensics Ethics Group releases briefing note on the use of live facial recognition in public–private collaborations following a year-long investigation
-
January 29, 2021
29
Jan'21
Revealed: Brits who fuelled ‘vicious’ conspiracy theory by Trump supporters
Trump supporters have apologised and paid millions in damages to the family of murdered Democratic Party staffer Seth Rich for promoting false allegations that Rich – not Russian agents – stole emails from the Democratic National Committee
-
January 29, 2021
29
Jan'21
Manufacturing particularly at risk of Solorigate-linked breaches
Every fifth victim of the SolarWinds Solorigate/Sunburst attack was a manufacturing organisation, say researchers
-
January 29, 2021
29
Jan'21
Human factor dominates Australia’s latest data breach numbers
The number of data breaches resulting from human error increased by 18% in the second half of 2020, according to Australian government’s latest notifiable data breaches report
-
January 28, 2021
28
Jan'21
Apprenticeships may be a solution to cyber skills shortage, say insiders
Cyber security professionals are open to new approaches to finding sorely needed talent, according to a poll
-
January 28, 2021
28
Jan'21
End of Emotet: A blow to cyber crime, but don’t drop your guard
The takedown of Emotet is a huge event with repercussions that will reverberate across the cyber criminal world, but unfortunately that’s not to say there will be much of a long-term impact
-
January 27, 2021
27
Jan'21
Pandemic response has improved privacy posture, says Cisco
Data privacy seems to be ‘coming of age’ to some extent and organisational responses to Covid-19 may be partly responsible, according to a report
-
January 27, 2021
27
Jan'21
Mimecast breach was work of SolarWinds attackers
Mimecast’s investigation into a January 2021 breach of its systems turns up evidence that the culprit was the same group that targeted SolarWinds in December
-
January 27, 2021
27
Jan'21
Emotet botnet goes offline as cops seize servers
The Emotet botnet has been disrupted and knocked offline after a major international effort by law enforcement
-
January 27, 2021
27
Jan'21
Grindr complaint results in €9.6m GDPR fine
Norway’s data protection authority plans to apply a fine totalling 10% of LGBTQ+ dating app Grindr’s revenues over its data sharing practices
-
January 27, 2021
27
Jan'21
Emergency Apple updates patch exploited zero-days
Three vulnerabilities could give attackers full control of their target Apple devices, and must be patched immediately
-
January 27, 2021
27
Jan'21
Global VPN downloads surge in 2020
Repressive regimes’ regulatory demands and remote working see virtual private network usage rocket over the past 12 months
-
January 26, 2021
26
Jan'21
Conservatives broke data law to racially profile millions
The Conservative Party acted illegally in collecting data that inferred voters’ ethnicity and religious background, a Select Committee has heard
-
January 26, 2021
26
Jan'21
North Korean state attacks legitimate security researchers
Threat researchers specialising in vulnerability research and development appear to be being targeted by a North Korean state-backed group
-
January 26, 2021
26
Jan'21
Saudi IT spending to hit $11bn in 2021
Saudi Arabian organisations will spend about $11bn on IT this year, with emerging technologies high on shopping lists
-
January 26, 2021
26
Jan'21
ICO extends commissioner Denham’s term of office
Extension of Elizabeth Denham’s tenure as information commissioner will give the government more time to appoint her successor
-
January 26, 2021
26
Jan'21
Cyber fraud a national security issue, says Rusi report
A report from the Rusi think tank calls for fresh approaches to how we think about fighting fraud
-
January 26, 2021
26
Jan'21
Gartner: IT budgets shift to mature processes around remote business
The pandemic forced businesses to work remotely. Now, almost a year on, CIOs must consider the IT to run long-term remote business strategies
-
January 25, 2021
25
Jan'21
Cracking the message in a bottle
Between 2016 and 2019, a number of bottles washed ashore in Hamburg, each containing an ‘uncrackable’ message
-
January 25, 2021
25
Jan'21
Are banks overburdened with responsibility for money lost to online scams?
Bank boss calls for cross-industry cooperation to reduce scams that trick people into making instant payments online
-
January 22, 2021
22
Jan'21
ICO resumes adtech investigation
The UK Information Commissioner’s Office was criticised for ending its investigation into alleged malpractice in advertising technology, but has now resumed its probe
-
January 22, 2021
22
Jan'21
Sepa data leaks as agency resists ransom demands
The Scottish Environment Protection Agency is resisting extortion demands from a ransomware gang, but has suffered a data leak in retaliation
-
January 22, 2021
22
Jan'21
Google threatens to cut off Australia
Google’s threat to end its Australian Search operation comes in the face of new legislation that would force it to pay media publishers for news content
-
January 21, 2021
21
Jan'21
Immigration exemption in data protection law faces further legal challenge
Human rights groups set to take legal challenge against immigration exemption to Court of Appeal on the basis that everyone, regardless of their nationality or residence, should have their fundamental rights and freedoms protected as stated in the ...
-
January 21, 2021
21
Jan'21
Hackney Council tenders for cyber security upgrade
Suppliers are being invited to tender for enhanced cyber security capabilities at ransomware victim Hackney Council
-
January 21, 2021
21
Jan'21
Gamarue malware found on government-issued school laptops
Devices handed out by the government to support vulnerable children contain malware that appears to be contacting C2 infrastructure in Russia
-
January 21, 2021
21
Jan'21
Two-thirds of CISOs say they’ll be cyber attack victims this year
Security professionals are ever alert to the threats they face, but some still seem to think it is unlikely they will be attacked
-
January 21, 2021
21
Jan'21
Interview: Tony Porter, chief privacy officer, Corsight AI
Tony Porter speaks to Computer Weekly about the changes in facial-recognition during his time as surveillance camera commissioner, the ethics of using the technology, and his new role as chief privacy officer at Corsight AI
-
January 21, 2021
21
Jan'21
Incompetent cyber criminals leak data in opsec failure
Even cyber criminals need to pay attention to their information security posture, as this cautionary tale uncovered by Check Point reveals
-
January 20, 2021
20
Jan'21
Should I be worried about MFA-bypassing pass-the-cookie attacks?
Malicious actors bypassed multi-factor authentication using so-called pass-the-cookie attacks, but how worrying is this and what is the risk to organisations?
-
January 20, 2021
20
Jan'21
Malwarebytes also hit by SolarWinds attackers
The nation state group that attacked SolarWinds in December got inside Malwarebytes by exploiting privileged access to its Microsoft Office 365 tenant, the firm reveals
-
January 19, 2021
19
Jan'21
Legacy security architectures threaten to disrupt remote working
Annual survey of IT leaders finds network security is of prime concern as most companies continue with work-from-home policies
-
January 19, 2021
19
Jan'21
Questions raised by New Zealand central bank boss, following cyber attack investigation
The governor of New Zealand’s central bank said the organisation must answer questions about its security following a ‘significant’ attack
-
January 19, 2021
19
Jan'21
UK fraud agency deploys ArcGIS dashboard for data sharing
The National Fraud Intelligence Bureau says it has achieved improved transparency with the public, as well as saving 3,500 staff hours and £100,000
-
January 19, 2021
19
Jan'21
Value of GDPR fines shows dramatic increase in 2020
European regulators imposed almost €160m worth of fines during the past 12 months, a substantial rise
-
January 19, 2021
19
Jan'21
Click fraud levels reach new heights in pandemic
Small companies risk losing £10,000 a year, and enterprises as much as £520,000, to cyber criminals as click fraud volumes spike