News

IT strategy

• August 03, 2022 03 Aug'22

  DrayTek patches SOHO router bug that left thousands exposed

  Network hardware supplier has fixed an unauthenticated RCE vulnerability in multiple routers in its Vigor line, after being alerted by Trellix researchers

• July 29, 2022 29 Jul'22

  Austrian data firm accused of selling malware, conducting cyber attacks

  Microsoft has accused DSIRF, an Austrian data services firm, of involvement in a string of cyber attacks

• July 28, 2022 28 Jul'22

  Ex-youth footballers kick-start cyber careers

  New programme aims to find fresh careers for former youth footballers in cyber security

• July 28, 2022 28 Jul'22

  H0lyGh0st ransomware gang faces challenges, but still a threat

  Digital Shadows reports on the recently identified H0lyGh0st ransomware outfit, a new threat actor operating out of North Korea that faces some clear challenges, but is nevertheless still a live threat

• July 28, 2022 28 Jul'22

  NCSC startups scheme turns focus to operational technology, SME security

  NCSC for Startups initiative turns its focus to supporting innovation around securing operational technology and addressing the challenges facing small businesses

• July 28, 2022 28 Jul'22

  Home Office selects CGI as strategic delivery partner

  IT services supplier will act as strategic delivery partner for the Home Office’s plans to modernise and join up UK law enforcement’s digital capabilities

• July 28, 2022 28 Jul'22

  Cyber criminals pivot away from macros as Microsoft changes bite

  As Microsoft resumes blocking macros by default in its Office application suite, reversing a temporary reversal, analysis from Proofpoint suggests the action has had a remarkable effect

• July 28, 2022 28 Jul'22

  Hibs push for the backup premier league with Acronis

  Hibernian FC signs Acronis to get top division data protection and make the most of ticketing information and match footage as it tries to gain more value from the data it holds

• July 28, 2022 28 Jul'22

  The verdict is Pure as Scottish prosecutor upgrades high-end storage

  Scotland’s prosecution service saw disk drives in the dock every week with EMC legacy storage. Now it’s got Pure all-flash and has turned over an (Evergreen) new leaf

• July 27, 2022 27 Jul'22

  Consumers left out of pocket as security costs soar

  As the average cost of a security incident reaches an all-time high of nearly $4.5m, an IBM Security study reveals how these costs are being passed on to ordinary people

• July 27, 2022 27 Jul'22

  US doubles bounty on Lazarus cyber crime group to $10m

  US State Department doubles a previously announced reward for information on North Korean cyber criminals, including the notorious Lazarus group

• July 27, 2022 27 Jul'22

  Google results show bigger GCP operating loss

  The company remains committed to the Google Cloud Platform, but continues to assess the value of extra datacentre investment

• July 27, 2022 27 Jul'22

  Retail software firm PrestaShop warns users about SQL injection attacks

  Open source e-commerce platform PrestaShop warns thousands of small retailers that their customers’ credit card details may be at risk of compromise

• July 27, 2022 27 Jul'22

  Cyber security training ‘boring’ and largely ignored

  Two-thirds of employees don’t bother to pay attention to cyber security training – and the fault does not lie with them

• July 27, 2022 27 Jul'22

  Telstra and Microsoft deepen cloud and connectivity ties

  Telstra will use Azure as a preferred cloud while Microsoft will look at boosting its capacity on Telstra’s subsea cable network in a wide-ranging deal

• July 26, 2022 26 Jul'22

  No More Ransom initiative helps 1.5 million people in six years

  One and a half million people have now taken advantage of free ransomware decryption tools offered by a joint European project

• July 26, 2022 26 Jul'22

  Ducktail infostealer targets Facebook Business users

  Newly uncovered Ducktail operation targets individuals with access to Facebook Business service and tries to steal their accounts

• July 25, 2022 25 Jul'22

  NCSC seeks community input for Cyber Advisor service

  The NCSC is proposing to establish a new Cyber Advisor service to train up experts in security guidance, and is inviting interested parties to come forward

• July 25, 2022 25 Jul'22

  Latest Atlassian Confluence vulnerability raises concerns

  CVE-2022-26138 is the second major vulnerability disclosure made for Atlassian’s Confluence collaboration platform in recent months

• July 25, 2022 25 Jul'22

  CDO interview: Brandon Hootman, director of digital data, Caterpillar

  Manufacturing giant is modernising its data management and turning to digital to steal a march on its competitors

• July 25, 2022 25 Jul'22

  The Security Interviews: Why you need to protect abandoned digital assets

  The war in Ukraine and subsequent boycott of Russia resulted in a swathe of digital infrastructure being abandoned, becoming a potential vulnerability for many organisations, says Cyberpion’s Ran Nahmias

• July 25, 2022 25 Jul'22

  CDO interview: Ian Rabagliati, product and experience director, Eurotunnel

  The Channel Tunnel operator is coming to terms with the realities of post-Covid European travel, and focusing on customer experience to bring it closer to its passengers

• July 21, 2022 21 Jul'22

  Buy ‘plug-n-play’ malware for the price of a pint of beer

  Three-quarters of malwares and almost 90% of exploits retail on the dark web for about £8.40 or less, according to a report

• July 21, 2022 21 Jul'22

  SSEN partners with Icebreaker One to break energy data silos

  Better access to, and sharing of, energy data will help direct the installation of new electric vehicle charging points, as well as help network operators to better understand the electricity grid’s capacity for the introduction of more renewables

• July 21, 2022 21 Jul'22

  Russia-linked APTs targeted fleeing Ukrainian civilians

  Mandiant and the US authorities have shared details of a phishing campaign that spoofed humanitarian information on evacuation procedures to target Ukrainians fleeing Russian bombardment

• July 21, 2022 21 Jul'22

  UK government introduces data reforms legislation to Parliament

  Proposed changes to UK’s data protection regime include new grounds for data processing, significant powers for the secretary of state to direct the regime’s application, and fewer restrictions on law enforcement’s use of data

• July 20, 2022 20 Jul'22

  Transatlantic PET contest open for entries

  A joint UK-US innovation prize challenge for developers of privacy-enhancing technologies has opened for entries

• July 20, 2022 20 Jul'22

  Cato aims to bust cyber myths as it extends network protections

  Cato Networks is beefing up its platform’s security features with ransomware and data loss protections, and the firm’s security strategy lead Etay Maor is using the occasion – and his unique access to billions of data points from the firm’s network ...

• July 20, 2022 20 Jul'22

  Management of IT pioneer dies

  IT heads in the 1970s could not have predicted today’s tech revolution, yet two IT experts established a business to consult on the imminent tsunami

• July 20, 2022 20 Jul'22

  Starling Bank withdraws application for licence in Ireland

  App-based bank decides against completing its application for a banking licence in Ireland after concluding it did not offer enough value

• July 20, 2022 20 Jul'22

  Barnet Council to bring work outsourced to Capita back in-house by 2026

  London borough is bringing swathes of outsourced services back in-house next year, with more to follow by 2026

• July 20, 2022 20 Jul'22

  How NEC is transforming its business

  While NEC is known for its public safety systems, the company has been expanding into new areas including e-government, financial services and customer experience in Asia-Pacific

• July 20, 2022 20 Jul'22

  Russia’s Cozy Bear abusing Dropbox, Google Drive to target victims

  Russian APT known as Cozy Bear has become adept at quickly incorporating popular cloud storage services into its attack chain to avoid detection

• July 18, 2022 18 Jul'22

  Putting automation into motion will put the wheels on UK economic growth

  Automation technologies and artificial intelligence will change the workplace for the better, giving people time to focus on high-value creative work

• July 18, 2022 18 Jul'22

  US cyber agency CISA to open London office

  The US Cybersecurity and Infrastructure Security Agency has chosen London to host its first office outside America

• July 15, 2022 15 Jul'22

  Log4Shell on its way to becoming ‘endemic’

  US government report concludes that, like Covid, Log4Shell will be with us for a long time to come

• July 14, 2022 14 Jul'22

  Videogame maker Bandai Namco confirms cyber attack

  Bandai Namco, developer of videogames including Pac-Man, Tekken and Dark Souls, has broken days of silence to confirm it has been hit by a cyber attack

• July 14, 2022 14 Jul'22

  How hostile government APTs target journalists for cyber intrusions

  Proofpoint shares data on multiple campaigns of cyber intrusions against journalists originating from threat actors aligned to the governments of China, Iran, North Korea and Turkey

• July 14, 2022 14 Jul'22

  ICO wants to ‘empower people through information’

  Information Commissioner’s Office sets out commitment to safeguard the information rights of the most vulnerable people in UK society

• July 14, 2022 14 Jul'22

  EC urged to rejig green power strategy to include greater use of energy storage tech

  Ten stakeholders from the world of energy storage systems have penned an open letter to the European Commission’s policymakers, urging them to factor in their technology to the EC’s green transition plans

• July 13, 2022 13 Jul'22

  APAC organisations renew focus on ERP

  Organisations in Asia-Pacific are looking to renew their enterprise resource planning systems as they emerge from the throes of the pandemic

• July 13, 2022 13 Jul'22

  Slippery phish wriggles around MFA protections, says Microsoft

  Microsoft’s threat researchers share details of a phishing campaign that hit 10,000 organisations, against which standard multifactor authentication provides little defence

• July 13, 2022 13 Jul'22

  July Patch Tuesday brings more than 80 fixes, one zero-day

  While some admins can put their feet up and let Windows Autopatch do the hard work of updating their Microsoft estates, for the rest of us, the Patch Tuesday bandwagon keeps on keeping on

• July 13, 2022 13 Jul'22

  Goldman Sachs hires Google incubator founder

  Bank recruits co-founder of Google’s incubator as it continues to transform its business through digital technology

• July 13, 2022 13 Jul'22

  NHS trust cuts costs and refresh cycle with Wasabi cloud storage

  Imperial College NHS Trust expects to saves 30% in storage costs and cut back on five-year refresh headaches in a move that has seen backup and archive data move to the Wasabi cloud

• July 12, 2022 12 Jul'22

  MaliBot Android malware spreading fast, says Check Point

  The MaliBot malware is becoming a persistent and widespread problem, and Android users should be on their guard, says Check Point

• July 12, 2022 12 Jul'22

  Microsoft Windows Autopatch now generally available

  Microsoft customers with Windows Enterprise E3 and E5 licences can now take full advantage of its new automated patching service

• July 11, 2022 11 Jul'22

  Oracle to open first sovereign cloud regions for EU-based users in 2023

  Database software giant Oracle has set out plans to provide private enterprises and public sector organisations with access to sovereign cloud regions, with the first set to open in Spain and Germany next year

• July 11, 2022 11 Jul'22

  NetApp Ontap to be sole vSAN storage alternative in the cloud

  NetApp Ontap storage will provide file access capacity to extend VMware data stores in AWS, Microsoft Azure and Google clouds as a cheaper alternative to VMware vSAN

• July 11, 2022 11 Jul'22

  Microsoft VBA macro block will return

  Microsoft provides more details about its sudden decision to rollback a landmark security policy, and reassures users it is a temporary measure