News
IT strategy
-
September 05, 2023
05
Sep'23
NCSC names ex-NCC man as new CTO
New NCSC CTO Ollie Whitehouse joins from NCC Group, having also worked at BlackBerry and Symantec
-
September 05, 2023
05
Sep'23
Plymouth Uni spearheads research into wind farm cyber resilience
Project hosted at the University of Plymouth in Devon aims to develop cyber security measures to protect the UK’s increasingly important offshore wind farm assets
-
September 04, 2023
04
Sep'23
How startup Once.net and Cloudflare secured the 2023 Eurovision vote
When the Eurovision Song Contest introduced paid-for public voting from outside Europe in 2023, it faced new cyber challenges. Learn how Dutch startup Once.net and Cloudflare teamed up to secure and support the big night
-
September 01, 2023
01
Sep'23
Police Scotland five-year digital strategy approved
Police Scotland’s new strategy outlines how the force will approach and invest in its digital transformation over the next five years, but notes its ability to achieve its ambitions is subject to the availability of funding
-
September 01, 2023
01
Sep'23
Threat actors exploiting unpatched Juniper Networks devices
A series of vulnerabilities in Juniper Networks firewalls and switches appear to be being exploited in the wild to enable remote code execution, with thousands of devices thought to be exposed
-
September 01, 2023
01
Sep'23
Google Cloud eyes bigger market share with AI
Google Cloud CEO Thomas Kurian is confident the company’s generative AI capabilities will enable it to grow faster than the market and narrow the gap with rivals
-
August 31, 2023
31
Aug'23
Sandworm attacks Ukraine with Infamous Chisel malware
The UK and its allies have attributed a novel malware campaign against Ukrainian state targets to the Russian intelligence-backed Sandworm APT
-
August 31, 2023
31
Aug'23
Ducktail social media marketing malware rears its head again
Use of the Ducktail infostealer, which first popped up in 2022 targeting Meta Business accounts, seems to be increasing
-
August 31, 2023
31
Aug'23
Home Office and MoD seeking new facial-recognition tech
The UK’s Defence and Security Accelerator is running a ‘market exploration’ exercise on behalf of the Home Office to identify new facial-recognition capabilities for security and policing bodies in the UK
-
August 30, 2023
30
Aug'23
Cyber world hails downfall of Qakbot trojan
A multinational law enforcement hacking operation disrupted the botnet infrastructure used to distribute the Qakbot trojan at the weekend, in a major setback for the cyber criminal underworld
-
August 30, 2023
30
Aug'23
NCSC warns over possible AI prompt injection attacks
The UK’s NCSC says it sees alarming potential for so-called prompt injection attacks driven by the large language models that power AI chatbots
-
August 29, 2023
29
Aug'23
Zero-day that forced Barracuda users to bin kit was exploited by China
Mandiant has published details of how a Chinese threat actor targeted high-profile users of Barracuda Networks' Email Security Gateway appliances, including government agencies of interest to Beijing's intelligence goals
-
August 29, 2023
29
Aug'23
Top-performing CISOs reserve time for professional development
Survey of chief information security officers conducted by Gartner sheds light on habits shared by the top-performing members of the profession
-
August 29, 2023
29
Aug'23
More Aussie apartments to get high-speed fibre
NBN will enter into Area Switch Agreements with corporate bodies to deliver high-speed fibre to some 700,000 apartments across Australia
-
August 28, 2023
28
Aug'23
India gets ready for new data protection regime
The Digital Personal Data Protection Act will shape the way businesses collect, secure and use personal data as India looks to protect data privacy while driving innovation and economic growth
-
August 24, 2023
24
Aug'23
Google bets on AI-backed cyber controls for Workspace users
Zero-trust and digital sovereignty controls are the focus of a series of enhancements being made for Google Workspace users
-
August 23, 2023
23
Aug'23
Inside Micron Singapore’s sustainability journey
The chipmaker has been doubling down on sustainability efforts in Singapore by tapping solar power, recycling water and waste, as well as treating greenhouse gases, in a bid to achieve net zero by 2050
-
August 23, 2023
23
Aug'23
St Helens Council in Merseyside hit by ransomware attack
St Helens Borough Council is investigating a suspected ransomware incident targeting its systems, and is advising residents to be on the alert for follow-on phishing attacks
-
August 23, 2023
23
Aug'23
Cyber attacks in 2023 develop quicker as average dwell times plummet
The median attacker dwell time shrunk from 10 to eight days in the first seven months of 2023, and in the case of ransomware attacks it is down to just five days
-
August 23, 2023
23
Aug'23
Innovative UK SMEs spend half of turnover on tech
UK SMEs are increasing spending on technology, with dedicated IT teams set up to enable them to keep pace with tech change
-
August 22, 2023
22
Aug'23
Clop’s MOVEit attacks drive ransomware volumes to record high
Such has been the scope of Clop’s activity since May that ransomware attack volumes have more than doubled year on year, according to the latest data
-
August 21, 2023
21
Aug'23
Red Hat CEO on AI moves and source code kerfuffle
Matt Hicks talks up Red Hat’s efforts to support generative AI adoption through OpenShift AI and weighs in on the issues surrounding the company’s decision to limit access to RHEL source code
-
August 21, 2023
21
Aug'23
Simplyblock targets ‘complex’ Ceph with software-defined NVMe
German startup Simplyblock aims to deliver low-cost high-performance flash and NVMe-over-TCP storage for service provider customers, and has Ceph deployments in its sights
-
August 21, 2023
21
Aug'23
Cyber attack on Aussie energy services firm may hit UK CNI
Energy One, an Australia-based supplier of tech services to the energy sector, is investigating the possibility that some UK customers may have been caught up in an ongoing cyber attack on its systems
-
August 21, 2023
21
Aug'23
Cyber Explorers programme reaches 50,000 11-14 year olds in 18 months
The government-backed Cyber Explorers programme has reached 50,000 students in its first 18 months, and more schools are being invited to sign up for the Autumn Term
-
August 18, 2023
18
Aug'23
MongoDB secures IRAP certification
MongoDB’s certification from Australia’s Information Security Registered Assessor Program will pave the way for federal government agencies to use its Atlas database service for protected workloads
-
August 17, 2023
17
Aug'23
Researchers demo fake airplane mode exploit that tricks iPhone users
Exploit chain that tricks a victim into believing their iOS device is offline in airplane mode when it is not could open the door to grave privacy concerns
-
August 17, 2023
17
Aug'23
Top marks for graduates of CIISec vocational cyber course
132 young people who sat the UK’s first Extended Project Qualification in Cyber Security have received their results today
-
August 16, 2023
16
Aug'23
NCSC expands Cyber Incident Response service more widely
The NCSC has added a level to its CIR programme to enable more cyber attack victims to take advantage of the service, which offers access to assured incident response specialists
-
August 16, 2023
16
Aug'23
ITAM influence on cyber risk becoming a factor in credit ratings
Credit agency S&P Global Ratings warns that organisations that pay inadequate attention to IT asset management as a factor in their cyber risk management processes may find their creditworthiness takes a dive
-
August 15, 2023
15
Aug'23
Nutanix GPT-in-a-Box aims hyper-converged at AI/ML use cases
Nutanix targets a pre-configured bundle of AI/ML and GPT software with hyper-converged infrastructure and GPT to help organisations safely take advantage of learning networks
-
August 15, 2023
15
Aug'23
Online safety message failing to get through to women
The security community could be doing a lot more to make its advice and guidance more accessible to women, according to a study
-
August 14, 2023
14
Aug'23
US Cyber Board to probe cloud security after latest Exchange hack
CSRB review of cloud security comes in the wake of a major Chinese cyber attack on US government bodies orchestrated through Microsoft’s cloud services
-
August 12, 2023
12
Aug'23
Datacentre management vulnerabilities leave public clouds at risk
At the annual DEF CON hacking convention, researchers from Trellix have disclosed multiple vulnerabilities in key datacentre products underpinning the world’s public cloud infrastructure
-
August 11, 2023
11
Aug'23
Google Help workers claim layoffs are retaliation for unionising
More than 100 Google Help workers claim that Google and Accenture’s decision to layoff two-thirds of the team was done in retaliation for their attempts to form a union, while companies claim decision was made well in advance of unionisation attempt
-
August 10, 2023
10
Aug'23
Cisco: Hybrid work needs to get better
Cisco’s head of collaboration and security talks up the state of hybrid work and calls for organisations to create magnets rather than mandates for workers to collaborate in the workplace
-
August 09, 2023
09
Aug'23
AI interview: Krystal Kauffman, lead organiser, Turkopticon
Remote Mechanical Turk workers are responsible for training artificial intelligence algorithms and completing other data-related business processes - we hear about the workplace issues they face
-
August 09, 2023
09
Aug'23
Microsoft addresses Office vulnerability attacked by Russian spooks in latest update
Microsoft has issued fixes for over 70 vulnerabilities in its August Patch Tuesday drop, including remedies for CVE-2023-36884, which was disclosed without a fix in July and has been the subject of Kremlin-backed cyber attacks
-
August 09, 2023
09
Aug'23
Northern Irish police expose staff data in botched FoI response
Human error is being blamed for the leak of personally identifiable information on all serving officers and civilian staff at the Police Service of Northern Ireland
-
August 08, 2023
08
Aug'23
UK voter data hacked in cyber attack on election watchdog
An unknown threat actor who attacked the UK’s Electoral Commission had access to data on millions of UK voters for over a year, the watchdog has revealed
-
August 08, 2023
08
Aug'23
Black Basta, Hive and Royal ransomware gangs may share real-world connection
At Black Hat USA, Sophos X-Ops researchers share data revealing potential connections between three active ransomware crews
-
August 08, 2023
08
Aug'23
Many UK organisations considering ChatGPT bans on employee devices
More than 60% of organisations in the UK have either banned, or are considering banning, the use of generative AI tools on employee- or business-owned devices
-
August 07, 2023
07
Aug'23
HPE’s Alletra MP marries storage to cloud and software-defined choices
HPE’s Alletra was launched in April with an architecture that ties in with GreenLake consumption purchasing, SaaS configuration and addition of software-defined storage services
-
August 04, 2023
04
Aug'23
Log4Shell, ProxyShell still among most widely exploited flaws
Statistics released by the collective Five Eyes cyber agencies reveals insight into the most exploited vulnerabilities of 2022, and unsurprisingly there are some old ‘friends’ on the list
-
August 04, 2023
04
Aug'23
Biden’s SBOM mandate a ‘shot heard around the world’, report says
Two years and three months after Joe Biden mandated new standards in supply chain security, over 40% of UK respondents to a survey say they have implemented new SBOM policies in direct response
-
August 03, 2023
03
Aug'23
Plexal takes on new cohort for cyber security leadership scheme
Six more cyber security startup founders have been selected to take part in Plexal’s latest Cyber Runway Ignite programme, which is designed to help them develop their leadership skills
-
August 03, 2023
03
Aug'23
Microsoft attacked over ‘grossly irresponsible’ security practice
The CEO of Tenable has launched a scathing attack on Microsoft, asserting that the organisation is deliberately keeping its Azure cloud customers in the dark about dangerous vulnerabilities and accusing it of a culture of ‘toxic obfuscation’
-
August 02, 2023
02
Aug'23
Ivanti MDM users told to patch against two dangerous flaws
Users of Ivanti’s mobile device management platform have been warned to act now to patch two vulnerabilities that were chained by a threat actor in a series of cyber attacks on the Norwegian government
-
August 02, 2023
02
Aug'23
Cubbit offers cut-price cloud with DS3 distributed storage
Cubbit’s DS3 offers cloud at up to 20% the cost of the main providers via on-premise software that builds a cloud with other users and targets unstructured data use cases such as backup
-
August 01, 2023
01
Aug'23
Vast Data Platform aims at storage everywhere for AI/ML workloads
Vast Data to offer storage with data lake and warehouse functionality built in natively, in anticipation of a huge surge in AI/ML workloads and a need for ever-larger data stores