News

IT security

• October 22, 2019 22 Oct'19

  Malware volumes decline, but risks are higher

  More insidious and targeted strains of malware are going after high-quality targets, rather than a large volume of targets

• October 22, 2019 22 Oct'19

  Attacker hit VPN firm Avast through its VPN

  Avast has published details of how attackers attempted to gain access to its network over a five month period

• October 22, 2019 22 Oct'19

  Over-30s tend to do better at cyber security than younger colleagues

  Attitudes to workplace cyber security differ by age group, but not in the way one might imagine, according to a new study by NTT Security

• October 21, 2019 21 Oct'19

  Equifax lawsuit offers more evidence against passwords

  Equifax’s internal security policies were a mess and directly led to one of the largest recorded data breaches in history, according to a lawsuit, demonstrating fundamental insecurities inherent in the use of passwords

• October 21, 2019 21 Oct'19

  Alleged state hackers adapting to cover their tracks, says NCSC

  A group called Turla with suspected links to the Russian government stole Iranian tools and infrastructure to obscure the origins of attacks on multiple other countries, according to new evidence

• October 21, 2019 21 Oct'19

  Trend Micro buys cloud security firm to broaden offering

  Acquisition of Cloud Conformity will address often overlooked cloud security fundamentals

• October 21, 2019 21 Oct'19

  Sodinokibi emerging as a diverse, multi-vector threat to businesses

  McAfee shares insight into the Sodinokibi ransomware campaign gleaned from its network of honeypots

• October 18, 2019 18 Oct'19

  Huge rise in rogue banking apps driving fraud attacks

  Fraud perpetrated through fake mobile apps purporting to be from legitimate banks has seen a statistically significant spike, says RSA

• October 18, 2019 18 Oct'19

  Amazon consumer devices vulnerable to two-year-old exploit

  Millions of older Amazon Echo and Kindle devices are still susceptible to a Wi-Fi vulnerability that was first disclosed in 2017

• October 17, 2019 17 Oct'19

  BEIS launches multimillion-pound security investment package

  Government is making available more than £50m to support a range of new cyber security initiatives and collaborations, including the latest phase of its Digital Security by Design programme

• October 17, 2019 17 Oct'19

  NHSX could transform NHS security capabilities

  The health sector is increasingly confident that NHSX can deliver a streamlined, effective cyber security policy for the health service

• October 17, 2019 17 Oct'19

  Security threat landscape becomes more organised and business-like

  Approaches to securing the enterprise need to change in the face of a rapidly maturing threat landscape

• October 17, 2019 17 Oct'19

  Emerging markets’ mobile financial services transactions set to surpass $1tn in by 2024

  Mobile financial services transaction value will grow by 70% from 2019 to 2014 to total more than $1tn, driven by markets such as Latin America and Cico transactions

• October 16, 2019 16 Oct'19

  Pitney Bowes ‘considering options’ after malware attack

  Mailing and shipping services firm in recovery mode after key systems were encrypted by a malware attack

• October 16, 2019 16 Oct'19

  Sweden’s first GDPR fine sets regulatory tone

  Secondary school fined for breaching General Data Protection Regulation, signalling the attitude of Sweden’s Data Protection Authority

• October 15, 2019 15 Oct'19

  Attackers hunt iPhone jailbreakers in click fraud campaign

  Research by Cisco’s Talos threat intel unit has identified a new click fraud campaign targeting people looking to jailbreak their iPhone devices

• October 14, 2019 14 Oct'19

  Private equity swoops on Sophos

  British cyber security star picked up by technology sector investors for $3.9bn

• October 14, 2019 14 Oct'19

  Researchers reveal the cyber campaign that built China's new airliner

  CrowdStrike has published details of a coordinated campaign of cyber espionage and hacking, forced technology transfer and physical theft as China seeks to gain an advantage in the commercial aviation industry

• October 14, 2019 14 Oct'19

  The Security Interviews: Applying AI to Lego, and security

  Ann Johnson, Microsoft corporate vice-president of cyber security, is on a mission to prove that artificial intelligence holds great promise for the security sector, and she has the analogies to back it up

• October 11, 2019 11 Oct'19

  Zuckerberg’s mentor condemns Facebook’s business practices

  Long-time Silicon Valley investor speaks out against surveillance capitalism and the lack of rules and regulations governing big tech’s behaviour

• October 09, 2019 09 Oct'19

  US likely to concede on Huawei export ban

  The US government may make some concessions over the future of Huawei before the end of the year

• October 08, 2019 08 Oct'19

  CIO interview: Matt Harris, head of IT, Mercedes-AMG Petronas Motorsport

  The IT chief at the world-leading Formula 1 team is focused on using technology to support and deliver marginal gains in performance for the team’s drivers

• October 08, 2019 08 Oct'19

  How APAC enterprises can keep pace with container security

  For all the promises of containers, changes in architecture and practices associated with the technology bring new challenges and opportunities

• October 08, 2019 08 Oct'19

  IBM, McAfee among founders of open source security alliance

  A group of cyber security suppliers have come together to form the Open Cybersecurity Alliance

• October 07, 2019 07 Oct'19

  Government departments sign up to web data-sharing plan

  All but four Whitehall departments have so far agreed to share web analytics data to allow the government to monitor user behaviour across the Gov.uk domain

• October 04, 2019 04 Oct'19

  UK and US call on Facebook to walk back encryption plans

  The US, Australian and UK governments have asked Facebook to ditch plans to deploy end-to-end encryption across Facebook Messenger, Instagram and WhatsApp

• October 03, 2019 03 Oct'19

  IT contractor charged over cyber attack on property valuation firm

  Australian police charge 49-year-old man with stealing and posting more than 170,000 data records belonging to ASX-listed Landmark White on the dark web

• October 03, 2019 03 Oct'19

  Why data-driven applications need a governance framework

  Data is the new oil – but without tight control, how can business determine that the data is valid? Data catalogues are back in vogue

• October 03, 2019 03 Oct'19

  LogRhythm touts unlimited data plan for SIEM systems

  SIEM supplier introduces three-year, term-based pricing plan that lets enterprises ingest as much data as they want without breaking the bank

• October 03, 2019 03 Oct'19

  Local authorities hit by 800 cyber attacks every hour

  Local authorities and councils in the UK have reported being hit by more than 263 million cyber attacks in the first six months of this year

• October 03, 2019 03 Oct'19

  New threat group behind Airbus cyber attacks, claim researchers

  Context Information Security’s threat intel and response teams says it has evidence that the recent supply chain attacks on Airbus are the work of a newly identified group called Avivore

• October 03, 2019 03 Oct'19

  Cyber war as big a threat as nuclear war, says ex-RSA head Coviello

  Former RSA chairman Art Coviello has been speaking about the devastating potential of cyber weapons, and warned that humanity must learn from history in order to control them

• October 01, 2019 01 Oct'19

  A security breach is inevitable, IT leaders warned

  No matter how much IT security tech and training is in place, sophisticated, targeted attacks are going to breach company defences, Carbon Black warns

• October 01, 2019 01 Oct'19

  Singapore outlines initiatives to tackle OT and IoT security

  The Cyber Security Agency of Singapore has developed a blueprint to secure operational technology systems in critical sectors, among other measures to secure cyber-physical systems and the internet of things

• September 30, 2019 30 Sep'19

  CIO interview: Michael Ibbitson, executive VP for technology and infrastructure, Dubai Airports

  Former CIO at Gatwick Airport took flight to the Middle East three years ago, and is using data to transform the technology and infrastructure at Dubai Airports

• September 27, 2019 27 Sep'19

  ABN Amro investigation lends weight to anti-money laundering collaboration by Dutch banks

  Dutch authorities are investigating ABN Amro for possible failures to monitor and report potential money laundering activity

• September 27, 2019 27 Sep'19

  Nodersok malware campaign is infecting thousands, Microsoft warns

  Thousands of Windows endpoints in the US and Europe have been infected by a new fileless malware campaign in the past few weeks

• September 27, 2019 27 Sep'19

  Five million DoorDash customers’ details lost in data breach

  Takeaway delivery service was breached in May 2019, resulting in the data of millions of users and delivery drivers being stolen

• September 27, 2019 27 Sep'19

  GDPR compliance: Whose job is it and is it really possible?

  Nobody seems to have a good handle on business GDPR compliance, how many businesses are compliant, or indeed what compliance really is, but according to security experts, it very much depends on who you talk to

• September 26, 2019 26 Sep'19

  Attackers breached supplier systems to steal Airbus secrets

  Airbus has been the subject of at least four major cyber attacks in the past 12 months, with contractors and suppliers targeted through their VPNs

• September 26, 2019 26 Sep'19

  Overinvestment breeds overconfidence among security pros

  CISOs have made an abundance of security investments in multiple suppliers, but this might not be the right approach

• September 26, 2019 26 Sep'19

  Teen TalkTalk hacker accused of cryptocurrency fraud in US

  Elliott Gunton, one of the teenage hackers who broke into TalkTalk’s systems in 2015, faces extradition to the US to face fraud charges

• September 26, 2019 26 Sep'19

  Instagram and WhatsApp – the new tools of social media propaganda

  Facebook and Twitter have been cast as the villains of the piece, but social media disinformation and propaganda are evolving in new and alarming directions, say Oxford University researchers

• September 24, 2019 24 Sep'19

  Latest Lorca cyber security challenge has IoT focus

  Government-backed cyber security innovation centre Lorca has issued new challenges around connectivity for its next intake of scaleups

• September 24, 2019 24 Sep'19

  Singapore payment card data compromised by JavaScript sniffers

  Raw data of thousands of payment cards issued by Singapore banks stolen by the online equivalent of a traditional card sniffer

• September 24, 2019 24 Sep'19

  GandCrab ransomware writers still active despite ‘retirement’

  Apparent links between an emerging ransomware family known as REvil and GandCrab suggests the GandCrab authors are keeping busy despite having “retired” in June

• September 24, 2019 24 Sep'19

  Enterprises exposed to data loss by cloud configuration errors

  Only 1% of misconfigured cloud environments are spotted and attackers are capitalising on this, claims McAfee

• September 24, 2019 24 Sep'19

  Google pushes back on scale of YouTube phishing threat

  Millions of YouTubers may be at risk after some high-profile influencers reported their accounts were compromised in an apparent phishing attack, but the platform’s owner, Google, is not so sure

• September 19, 2019 19 Sep'19

  Government insists 'nothing sinister' about web user data gathering

  Government Digital Service responds to allegations that personal data gathered through Gov.uk portal could be used to target political messaging to citizens

• September 18, 2019 18 Sep'19

  Facebook automatically generates pages for Islamic State and Al-Qaeda

  Facebook algorithms have auto-generated hundreds of Facebook pages for the Islamic State, Al-Qaeda and Ansar al-Sharia, according to a whistleblower