News

IT security

September 18, 2019 18 Sep'19
Universities tempting targets for cyber criminals, warns NCSC

As hundreds of thousands of students prepare for the new academic year, universities have been warned that they are at high risk of cyber attack
September 18, 2019 18 Sep'19
WannaCry variants accidentally protecting against WannaCry

New variants of the infamous WannaCry malware continue to emerge, and many of them have accidentally turned themselves into a somewhat effective, although ill-advised, vaccine against infection
September 18, 2019 18 Sep'19
Emotet phishing botnet returns from summer vacation

The Emotet phishing trojan-turned-botnet is back in action after a three-and-a-half month break, say threat researchers
September 17, 2019 17 Sep'19
Ecuador citizens’ data breach holds lessons for enterprises

What caused the mass breach of Ecuadorian citizens’ data, and what can businesses learn from it?

September 17, 2019 17 Sep'19
US lawmakers demand internal Facebook, Google, Apple and Amazon documents in antitrust probe

US lawmakers have given big tech companies a deadline to disclose a wide range of documents as the House Judiciary Committee’s bipartisan investigation into competition gathers pace
September 16, 2019 16 Sep'19
Ensign InfoSecurity opens global headquarters in Singapore

The Singapore-based cyber security firm’s new headquarters will also be home to a new security operations centre that will be supported by Singapore-centric threat intelligence
September 16, 2019 16 Sep'19
Police use of algorithms needs stronger safeguards to prevent bias, report says

A study by the Royal United Services Institute calls for new code of practice to guide use of algorithmic tools in policing
September 13, 2019 13 Sep'19
European court to decide on legality of bulk phone and internet surveillance

The European Court of Justice will decide whether intelligence agencies across Europe can continue to lawfully collect the telephone and internet communications data of citizens, following a two-day hearing this week
September 13, 2019 13 Sep'19
Ditch hoodies and hackers to encourage diverse security recruitment

The cyber security industry needs to address a systemic image problem if it is to succeed in recruiting more diverse teams
September 13, 2019 13 Sep'19
When AIs go to war: Autonomous cyber weapons ‘inevitable’

CISOs must start thinking about how to engage with intelligent, adaptive, non-human attackers, says Trend Micro’s Rik Ferguson

September 13, 2019 13 Sep'19
Dutch banks to work together in fight against money laundering

Dutch banks are sharing expertise and resources to help reduce money laundering through their accounts
September 12, 2019 12 Sep'19
Government seeks views on post-Brexit security alignment

The government has called for views on its proposals to align the UK’s post-Brexit cyber security policy to that of the European Union
September 12, 2019 12 Sep'19
ICO to probe government over Gov.uk data collection plan

The ICO is to look into the government’s leaked data collection plans over fears they may breach the law
September 12, 2019 12 Sep'19
UN agency Unicef praised for response to accidental data leak

The UN’s children’s agency has disclosed an inadvertent leak of personal data belonging to users of its online learning platform Agora
September 12, 2019 12 Sep'19
IBM introduces z15 mainframe with security data passport

In the new z15 enterprise server, IBM has focused on making data secure and auditable wherever it resides.
September 12, 2019 12 Sep'19
Mirai descendants dominate IoT threat environment

Attacks leveraging compromised IoT devices are growing in size, scale and frequency, report security experts at F-Secure and Trend Micro, with Mirai-related botnets a major source of trouble
September 11, 2019 11 Sep'19
Equifax and Heartbleed are most-Googled cyber security terms

Analysis of 15 years’ worth of Google search data has revealed some insight into what cyber security trends are capturing the imagination
September 11, 2019 11 Sep'19
Nordic countries deepen collaboration with Estonia-based cyber security operation

Nordic countries are now working closer with Nato’s Estonia-based centre of excellence in cyber security
September 11, 2019 11 Sep'19
GDPR non-compliance worse than feared

Over half of UK businesses do not yet appear to be fully GDPR-compliant, and many have de-prioritised their compliance efforts
September 10, 2019 10 Sep'19
UK calls for cyber capacity-building at UN security group

The UK’s representative to a United Nations cyber security working group has called for increased investment in capacity around cyber security
September 10, 2019 10 Sep'19
BT gears up to take on rogue drones

BT’s Enterprise unit is offering customers an anti-drone security solution to protect their physical sites from intrusion
September 10, 2019 10 Sep'19
How Zuellig Pharma is fighting fake drugs with blockchain

The Asia-Pacific pharmaceutical giant is using a blockchain platform from SAP to help consumers identify the provenance of medicine
September 09, 2019 09 Sep'19
Terror watchlist faces reform after court rules it violates rights of people entering US

A secret US terrorist database containing information on more than 1.2 million people – who face repeated interrogations, detentions and electronic searches – violates constitutional rights, a US judge said last week
September 09, 2019 09 Sep'19
Social engineering a factor in virtually all cyber attacks, report claims

Almost every single cyber attack will, at some stage, require a human to be tricked into doing something, according to research by Proofpoint
September 06, 2019 06 Sep'19
Data-driven marketing, the real risk boards are missing

Boards need to act to break the cycle of privacy compliance failures, and shift focus to aligning business purpose with privacy and dealing with the real risk of data driven marketing, warns PwC’s GDPR and data protection lead
September 06, 2019 06 Sep'19
Australia government to chart 2020 cyber security strategy

Australia’s home affairs ministry has released a discussion paper to seek views from all segments of society on the country’s next cyber security blueprint
September 05, 2019 05 Sep'19
Singapore’s SecureAge eyes US market

The Singapore-based supplier of encryption and anti-malware tools has set up a new office in Greater Washington, DC as the next logical step in its global expansion plan
September 05, 2019 05 Sep'19
Police use of controversial facial recognition technology deemed lawful

In a landmark hearing, the High Court has ruled that police use of automatic facial recognition technology is lawful, but that it still infringes on privacy rights
September 05, 2019 05 Sep'19
Security pros doubt officials can enact effective security laws

Elected officials cannot be trusted to enact effective cyber security legislation and social media firms should be subject to strict privacy regulation, according to most information security professionals in a survey
September 05, 2019 05 Sep'19
Tide Foundation aims to boost password security

While passwordless security remains just out of reach, a non-profit organisation has developed a mechanism that it says makes passwords exponentially more difficult to crack
September 05, 2019 05 Sep'19
Latest Facebook security lapse exposes millions to account hijack

18 million UK users are among the more than 400 million at risk of account hijacking after phone numbers linked to their Facebook accounts were found in an open online database
September 04, 2019 04 Sep'19
Check Point warns of Android phishing attacks

Researchers at Check Point have identified a security flaw in Android-based smartphones that exposes vulnerable users to phishing attacks
September 04, 2019 04 Sep'19
TrickBot Trojan switches to stealthy Ostap downloader

Operators of the TrickBot banking Trojan have switched to a new downloader to evade detection and analysis for a high-volume malicious spam campaign targeting business, researchers warn
September 03, 2019 03 Sep'19
Cyber criminals tap into web social engineering toolkit

Security researchers have discovered a web social engineering toolkit that enables cyber criminals to create fake update notification campaigns
September 03, 2019 03 Sep'19
CISOs think cloud safer, but security fears remain

The majority of information security leaders think cloud is now safer than on-premise, but security fears remain, with recently breached and highly regulated organisations most concerned, poll reveals
September 03, 2019 03 Sep'19
At least 47,000 servers vulnerable to remote attack

All organisations using Supermicro servers are being urged to update firmware to block remote attacks exploiting vulnerabilities in baseboard management controllers
September 02, 2019 02 Sep'19
UK organisations join quantum comms pilot

Four UK companies are taking part in a pilot project to build the most secure communication infrastructure in Europe
September 02, 2019 02 Sep'19
CISOs turn to AI, detection, response and education

Information security leaders are looking to artificial intelligence, better detection and response capabilities and user education in the face of cyber threats, but need more budget, a study shows
August 30, 2019 30 Aug'19
Social media and enterprise apps pose big security risks

The lack of security policies in many business applications is putting enterprise data at risk and social media apps are the biggest source of malware, a poll of IT professionals reveals
August 29, 2019 29 Aug'19
UK gets first millionaire ethical hacker

Six months after the first millionaire ethical hacker was announced, five more have been recognised, including a Briton, who have collectively discovered nearly 5,000 vulnerabilities
August 29, 2019 29 Aug'19
Finland’s security agencies collaborate after cyber attacks

National Bureau of Investigations and National Cyber Security Centre aim to increase expertise and capability to defend Finland’s critical IT infrastructure
August 29, 2019 29 Aug'19
UK firms getting on top of IT downtime costs

Despite data breach headlines, UK firms are generally improving in their data protection, business continuity, cyber preparedness and understanding of downtime costs, study shows
August 29, 2019 29 Aug'19
Dutch regulator reveals potential Microsoft privacy breach

Netherlands privacy watchdog has revealed potential breaches while testing Microsoft software changes
August 28, 2019 28 Aug'19
Targeted cyber attacks, including ransomware, on the rise

Governments and healthcare institutions are prime targets of ransomware operators, a report shows
August 28, 2019 28 Aug'19
Most UK firms ignore security in tech investments

Less than a quarter of UK firms prioritise security when investing in new technology, despite the threat of cyber attacks and data protection regulations, a survey reveals
August 28, 2019 28 Aug'19
Ransomware has evolved into a serious enterprise threat

Ransomware has seen a resurgence since the start of 2019, with cyber criminals changing code and tactics to target enterprises and local authorities for higher ransom payments, McAfee researchers warn
August 27, 2019 27 Aug'19
Employees, MSPs and developers top third-party risks

Employees, managed service providers and developers are the top sources of third-party risks in terms of data security, a survey reveals, highlighting the value of workplace monitoring
August 26, 2019 26 Aug'19
VMware’s latest acquisitions point to emerging platform war

VMware’s buyout of Carbon Black and Pivotal is a sign of an emerging platform war following the IBM-Red Hat deal
August 23, 2019 23 Aug'19
Three more identity providers to withdraw from troubled Gov.uk Verify programme

Three of the five companies supporting the government's troubled digital identity scheme are pulling out, raising further questions over the viability of the £175m programme
August 23, 2019 23 Aug'19
Majority of organisations struggling with cloud security

The majority of organisations find securing the cloud difficult and more than a quarter feel the shared security responsibility model is unclear, according to a survey of information security professionals