News

Managing IT and business issues

• September 28, 2022 28 Sep'22

  UK suffers third highest number of ransomware attacks globally

  Based on an analysis of around 5,000 ransomware incidents, NordLocker has found that UK businesses, and small businesses in particular, are a priority target for ransomware gangs

• September 28, 2022 28 Sep'22

  Whistleblower Peter Duffy calls for oversight of NHS records to prevent evidence tampering

  A whistleblower has called for greater oversight in the handling of ‘safety-critical digital information’ across the NHS, in light of a number of cases that raise questions about data governance and record-keeping within the health service

• September 28, 2022 28 Sep'22

  Russia ready for complete switch to domestic IT infrastructure

  In a bid to counter sanctions imposed following its invasion of Ukraine, the Russian government is implementing a policy of import substitution in the country’s domestic IT sector

• September 28, 2022 28 Sep'22

  Online Safety Bill needs complete overhaul, say rights groups

  Civil society groups write to new digital minister to challenge various aspects of the upcoming Online Safety Bill, which they say threatens rights to privacy and freedom of expression

• September 28, 2022 28 Sep'22

  Most hackers exfiltrate data within five hours of gaining access

  Insights from more than 300 sanctioned adversaries, otherwise known as ‘ethical’ hackers, reveal that around two-thirds are able to collect and exfiltrate data within just five hours of gaining access

• September 27, 2022 27 Sep'22

  Fraudsters adapt phishing scams to exploit cost-of-living crisis

  Around 80,000 Brits a month are falling victim to phishing attacks as fraudsters switch up tactics to take advantage of cost-of-living crisis and behavioural changes prompted by pandemic

• September 26, 2022 26 Sep'22

  How Russian intelligence hacked the encrypted emails of former MI6 boss Richard Dearlove

  Hack by Russian-linked ColdRiver group exposed former MI6 chief Richard Dearlove’s contacts and email communications with government, military, intelligence and political officials

• September 26, 2022 26 Sep'22

  Data analysis and artificial intelligence key industrial strategy missions for Labour

  Shadow business secretary announces Labour’s proposed industrial strategy, in which data would take a central role

• September 26, 2022 26 Sep'22

  More than 30 startups to join Plexal’s Cyber Runway accelerator

  Now in its second year, the Cyber Runway accelerator has been designed to support firms at various stages of growth, as well as help the cyber security sector to improve on its diversity, inclusion and regional representation

• September 26, 2022 26 Sep'22

  FCSA calls for government clampdown on cloned umbrella companies

  One year has passed since the Freelancer and Contractor Services Association spoke out about the problem of umbrella company cloning, and it claims the authorities are not moving fast enough to tackle the issue

• September 23, 2022 23 Sep'22

  Threat actors abused lack of MFA, OAuth in spam campaign

  Microsoft threat researchers have reported on a series of cyber attacks in which enterprises with lax IAM policies had their systems hijacked to conduct spam email campaigns

• September 23, 2022 23 Sep'22

  How Great Eastern is transforming its IT organisation

  Singapore-based insurer Great Eastern made painstaking efforts to rid itself of legacy systems and transformed its IT organisation to become nimbler by building up its cloud and DevOps capabilities

• September 22, 2022 22 Sep'22

  Tech Nation announces 13 startups for 11th Future Fifty cohort

  Thirteen high-growth startups set to join Tech Nation’s 11th annual Future Fifty programme to help them scale further

• September 22, 2022 22 Sep'22

  Nordic private equity firms pursue cyber security acquisitions

  Increasing interest in the security sector from Nordic private equity firms is a reflection of growing threats and increasing enterprise security budgets

• September 22, 2022 22 Sep'22

  Inside SolarWinds’ observability playbook

  SolarWinds’ CEO Sudhakar Ramakrishna talks up the company’s observability playbook and offers a glimpse into its technology roadmap

• September 22, 2022 22 Sep'22

  ALPHV/BlackCat ransomware family becoming more dangerous

  Researchers from Symantec share fresh insight into the ongoing development of the ransomware-as-a-service family known variously as ALPHV, BlackCat and Noberus

• September 22, 2022 22 Sep'22

  American Express recruiting thousands of tech professionals

  Amex will add 5,000 IT professionals to its workforce in 2022 as digital products and services become the staple of the finance sector

• September 21, 2022 21 Sep'22

  Contractors call for IR35 review and tax cuts in Chancellor’s mini-Budget

  The contractor community is patiently awaiting the outcome of this Friday’s mini-Budget, with hopes for some concrete details on the Prime Minister’s proposed IR35 review and news of a corporation tax cut

• September 21, 2022 21 Sep'22

  NCSC publishes cyber guidance for retailers

  The NCSC has published tailored advice to support online retailers, hospitality providers and utility services in protecting themselves and their customers from cyber crime

• September 21, 2022 21 Sep'22

  15-year-old Python bug present in 350,000 open source projects

  A Python tarfile vulnerability first disclosed in 2007 still persists to this day, according to analysis from Trellix

• September 20, 2022 20 Sep'22

  Thousands of customers affected in Revolut data breach

  Digital challenger bank has warned its customers to be vigilant after their data was exposed in a cyber attack

• September 20, 2022 20 Sep'22

  IHG attackers phished employee to deploy destructive wiper

  A couple from Vietnam who claim to be behind a destructive wiper cyber attack on hotel operator IHG told the BBC how they orchestrated their operation

• September 20, 2022 20 Sep'22

  Reports Uber and Rockstar incidents work of same attacker

  Rockstar Games was hit over the weekend by an attacker who claimed to have accessed its Slack channel to steal data on an upcoming release, and may be the same person who compromised Uber

• September 20, 2022 20 Sep'22

  Dutch student team aims to enable uninterrupted drone cargo delivery

  Dutch student team aims to make the world of flying more sustainable by creating a global network of autonomously flying cargo drones that can have their batteries swapped mid-air

• September 20, 2022 20 Sep'22

  India ramps up on AI amid talent and scalability challenges

  Indian organisations are speeding up deployments of AI across multiple sectors, but legacy systems, siloed data and a shortage of AI-specific talent will stand in the way of greater adoption

• September 19, 2022 19 Sep'22

  How Mondelez is driving change with tech

  From empowering citizen developers to deploying drones to monitor the health of cocoa trees, Mondelez has been firing on all cylinders to disrupt the old ways of doing things

• September 16, 2022 16 Sep'22

  Barnet Council awards Capita contract extension

  Barnet Council has awarded Capita a contract extension as part of its transition away from a large contract with the supplier

• September 16, 2022 16 Sep'22

  Six new vulnerabilities added to CISA catalogue

  CISA adds six new vulnerabilities to its most-wanted list, including one that dates back to 2010

• September 16, 2022 16 Sep'22

  Uber suffers major cyber attack

  Details are trickling out of an apparent ‘near total’ compromise of ride-sharing service Uber by an alleged teenage hacktivist

• September 15, 2022 15 Sep'22

  EU Cyber Resilience Act sets global standard for connected products

  European Commission lays out proposed security regulations on device and software security to better protect consumers and drive global standards

• September 15, 2022 15 Sep'22

  Nominations closing soon for annual cyber awards

  Nominations for the annual Security Serious Unsung Heroes Awards closes 16 September

• September 15, 2022 15 Sep'22

  New player pioneers ‘active cyber insurance’ for UK market

  Arrival of US-based insurer Coalition in London will supposedly offer SMEs more options when it comes to cyber security insurance

• September 15, 2022 15 Sep'22

  Organisations failing to account for digital trust

  The vast majority of businesses are well aware of the importance of digital trust, yet very few have a dedicated staff role responsible for it, report finds

• September 15, 2022 15 Sep'22

  US charges three Iranians over CNI cyber attacks

  Three Iranian nationals have been indicted over a spate of ransomware attacks against organisations in the US, UK, Israel and Iran

• September 14, 2022 14 Sep'22

  FormBook knocks Emotet off top of malware chart

  FormBook emerged as the most widely seen malware in August, according to Check Point’s latest data

• September 14, 2022 14 Sep'22

  Ex-CISA head Krebs: Disrupt ransomware support networks to win the war

  Speaking at an event hosted by data protection specialist Rubrik, former CISA director Chris Krebs calls for the security community to work collectively to kick out the supports from under ransomware gangs

• September 14, 2022 14 Sep'22

  Microsoft patches 64 vulnerabilities on September Patch Tuesday

  Microsoft drops fixes for five critical vulnerabilities and one zero-day in its latest monthly update

• September 13, 2022 13 Sep'22

  Cloud compromise a doddle for threat actors as victims attest

  Two separate studies into the state of public cloud security reveal insight into the ease with which threat actors can compromise vast numbers of targets, and some of the challenges security teams are facing in the cloud

• September 13, 2022 13 Sep'22

  Users warned over Azure Active Directory authentication flaw

  Secureworks researchers found what they say is a serious vulnerability in an Azure Active Directory authentication method, but Microsoft says it should not pose a serious risk to users

• September 13, 2022 13 Sep'22

  Cisco confirms leaked data was stolen in Yanluowang ransomware hit

  Cisco has confirmed that data leaked last week by the Yanluowang ransomware gang was that stolen during a May 2022 cyber attack

• September 13, 2022 13 Sep'22

  Multi-persona impersonation adds new dimension to phishing

  Iranian APT used multiple personas on a single email thread to convince targets of the legitimacy of its phishing lures

• September 12, 2022 12 Sep'22

  Mandiant floats off into Google Cloud

  As planned, the acquisition of Mandiant will see the threat intel and incident response giant become a part of Google’s Cloud business

• September 12, 2022 12 Sep'22

  Mistakenly transferred $504m to be returned to Citigroup

  Judge rules that creditors should return $504m that was accidentally transferred to them by Citigroup

• September 12, 2022 12 Sep'22

  CISOs should spend on critical apps, cloud, zero-trust, in 2023

  Faced with a global recession next year, security buyers should try to direct investment towards technology that protects customer-facing and revenue-generating workloads, say analysts

• September 12, 2022 12 Sep'22

  Lloyd’s of London is digitally transforming through the front door

  Centuries-old financial services organisation is transforming its complex IT infrastructure through digital data

• September 09, 2022 09 Sep'22

  Third of IT decision-makers rely on gut feel when choosing network operator

  Study from customer experience technology provider shows lack of transparency is cited as the most consistent quality failure of network providers

• September 09, 2022 09 Sep'22

  Interview: Keeping an IT business going during the Russian invasion

  After heading home and discovering that his country had been invaded, Konstantin Klyagin was forced to make life-changing family and business decisions

• September 08, 2022 08 Sep'22

  NCSC CyberUK event heads to Belfast in 2023

  National Cyber Security Centre’s annual CyberUK roadshow is crossing the Irish Sea to Belfast in April 2023

• September 08, 2022 08 Sep'22

  Chinese APT using PlugX malware on espionage targets

  China’s Bronze President APT is once again targeting government officials of interest to its paymasters, this time using forged diplomatic correspondence, according to the Secureworks Counter Threat Unit

• September 08, 2022 08 Sep'22

  The changing role of CIO in Sweden

  New technologies and evolving business models are changing the missions of IT leaders around the world – and in most cases, the result is slightly different from one country to another