News
Managing IT and business issues
-
January 28, 2022
28
Jan'22
Cyber skills gap affecting data privacy practice, finds ISACA
Organisations are struggling to fill both legal and technical privacy roles, with potentially damaging consequences, according to a report
-
January 27, 2022
27
Jan'22
CISOs must get out in front of Ukraine cyber crisis, says NCSC
The National Cyber Security Centre is urging UK organisations to take steps to bolster their cyber security resilience in response to the ongoing Ukraine crisis
-
January 27, 2022
27
Jan'22
Novel phishing campaign highlights need for MFA, says Microsoft
Microsoft details a new multi-stage phishing campaign that only affects victims without multifactor authentication in place
-
January 27, 2022
27
Jan'22
Barclaycard customers increase contactless spending following limit rise
Barclaycard customers have increased their contactless card spending by 40% with most of their card payments using the technology
-
January 27, 2022
27
Jan'22
Nightmare Log4Shell scenario averted by prompt, professional action
Prompt and professional community response to the Log4Shell disclosure means the dangerous and widespread vulnerability has not been exploited to the extent many had feared
-
January 27, 2022
27
Jan'22
Umbrella company cyber attacks prompt fresh calls for sector regulation to protect contractors
With the umbrella company industry increasingly finding itself under attack from cyber criminals, contracting market stakeholders embark on a fresh round of calls for the industry to be regulated
-
January 26, 2022
26
Jan'22
More intel emerges on WhisperGate malware that hit Ukraine
Security experts have been poring over the WhisperGate malware with which alleged Russia-backed entities targeted Ukrainian government websites
-
January 26, 2022
26
Jan'22
PwnKit bug endangers Linux distributions worldwide
Qualys researchers share intel on a memory corruption vulnerability in a program installed by default on every major Linux distribution
-
January 26, 2022
26
Jan'22
Demands on Fujitsu to contribute to £1bn Horizon scandal compensation costs
Fujitsu cannot hide away as taxpayers pick up the bill for the Post Office scandal triggered by its IT system, say peers
-
January 25, 2022
25
Jan'22
Prepare, but don’t panic, over supposed Russian cyber threat
A fresh alert from the US Department of Homeland Security may have IT security teams jumpy over the possibility that their organisations could be targeted by Russian state actors
-
January 25, 2022
25
Jan'22
Cyber Essentials programme gets biggest update since launch
NCSC implements a thorough revision of its Cyber Essentials scheme to reflect the changing security landscape
-
January 25, 2022
25
Jan'22
UK government launches internal cyber strategy
Multi-pronged government security strategy is designed to protect both core systems and public services
-
January 25, 2022
25
Jan'22
Subpostmaster campaign group to meet government over unfair compensation settlement
A group of subpostmasters excluded from fair compensation in the Horizon scandal is to meet government department to discuss their demands
-
January 25, 2022
25
Jan'22
Retailers mired by manual data integration
Retail relies on third-party data sources to drive business decisions and competitive pricing, but many struggle to pull in this data
-
January 21, 2022
21
Jan'22
Mandiant analysts: Russia-backed APTs likely to ramp up attacks
More cyber attacks like those perpetrated against targets in Ukraine are to be expected, and they may become more destructive
-
January 21, 2022
21
Jan'22
Cyber pros: Don’t revel in REvil’s downfall just yet
The arrests of REvil’s alleged kingpins is a welcome step, but as with any disruption to cyber criminal activity, it is never wise to assume law enforcement action means the threat has passed entirely
-
January 20, 2022
20
Jan'22
Ransomware attacks dropped 37% in December, claims NCC
Latest monthly data reveals a significant decline in ransomware attacks at the end of 2021, but a new, emergent gang is making waves
-
January 20, 2022
20
Jan'22
Updated cyber security regulations proposed for managed services sector
The Network and Information Systems regulations are to be updated to include MSPs and outsourcers, following a spate of supply chain attacks
-
January 20, 2022
20
Jan'22
Data of 515,000 vulnerable people stolen in Red Cross attack
The International Committee of the Red Cross is probing a cyber attack that has already seen the personal data of hundreds of thousands of the world’s most vulnerable people compromised
-
January 20, 2022
20
Jan'22
MoonBounce firmware bootkit shows advances in malicious implants
MoonBounce firmware bootkit shows evident technical improvements over others, making it a more dangerous threat to organisations. It is being used by Chinese state-backed actors
-
January 20, 2022
20
Jan'22
NCSC for Startups programme seeks ransomware-busters
Innovative ideas for ransomware-busting technology are being sought by the UK’s National Cyber Security Centre and startup incubator Plexal
-
January 19, 2022
19
Jan'22
Investigators find Beijing 2022 app riddled with security flaws
Security flaws in Olympic app may put personal health data at risk of compromise in a man-in-the-middle attack
-
January 19, 2022
19
Jan'22
Content removal will not stop misinformation, says Royal Society
Censorship of scientific misinformation online could exacerbate feelings of distrust, so government should look at information literacy and funding fact checkers instead, says report
-
January 19, 2022
19
Jan'22
Twelve million jobs to be lost to automation in Europe by 2040
Millions of current jobs in Europe will be carried out by robots as software robots automate processes
-
January 19, 2022
19
Jan'22
Trellix XDR platform forged out of McAfee, FireEye union
The private equity owners of McAfee Enterprise and FireEye are merging the companies into a new entity to ‘define the future’ of cyber security through XDR technology
-
January 18, 2022
18
Jan'22
Nordic fintech to use Google-inspired core banking from Thought Machine
Nordic fintech Lunar is modernising its banking platform as it sets out to expand free of the limitations of its current systems
-
January 18, 2022
18
Jan'22
Amazon puts UK Visa ban on hold
Online retail giant Amazon continues to allow UK Visa credit card payments as negotiations over fees with the card provider continue
-
January 18, 2022
18
Jan'22
Government widens subpostmaster miscarriage of justice compensation
Government changes its position in billion-pound Horizon scandal compensation
-
January 18, 2022
18
Jan'22
Police take down VPN linked to multiple ransomware hits
German police led a multinational effort to seize and take down the LabVPN service, which was allegedly used by cyber criminals to facilitate ransomware attacks
-
January 18, 2022
18
Jan'22
Cobalt Strike still C2 infrastructure of choice
Its utility and ease of use, coupled with explosive growth in ransomware actions, makes Cobalt Strike Team Servers the C2 infrastructure of choice for malicious actors
-
January 17, 2022
17
Jan'22
Umbrella firm Parasol confirms ‘malicious activity’ as root cause of ongoing systems outage
Umbella company confirms a ‘malicious activity on its network’ as the root cause of a systems outage that has delayed salary payments to thousands of contractors across the UK
-
January 14, 2022
14
Jan'22
Umbrella company Brookson self-refers to NCSC following cyber attack on its network
Contractor payroll, accounting and compliance firm confirms its networks have been targeted by an ‘extremely aggressive’ cyber attack that has resulted in some of its systems being proactively taken offline
-
January 14, 2022
14
Jan'22
Parasol systems outage leaves umbrella contractors facing late payments
Multi-day outage leaves umbrella company contractors working for payroll processing firm Parasol facing late salary payments, with the firm remaining tight-lipped over the cause of its technical difficulties
-
January 14, 2022
14
Jan'22
Post Office received £1bn taxpayer subsidy last year as part of IT scandal compensation
The Post Office has received over £1bn in taxpayer subsidies for its Horizon scandal compensation scheme
-
January 14, 2022
14
Jan'22
M1 rolls out voice bot for customer hotlines
The Singapore telco has rolled out a voice bot for a number of customer hotlines to improve customer experience and the productivity of call agents
-
January 13, 2022
13
Jan'22
Nordic companies targeted in wave of cyber attacks
After a slew of cyber attacks hit major companies in the Nordics at the end of last year, we look at how they were affected and how they have recovered
-
January 13, 2022
13
Jan'22
Councillors refuse public release of IT audit of Hackney Psya ransomware attack
Hackney councillors claim an IT audit report is exempt for disclosure as it relates to action taken in relation to the prevention, investigation or prosecution of crime
-
January 13, 2022
13
Jan'22
Ikano Bank’s team of robots exceeds 2021 targets
How the Swedish bank’s robotic automation project reached its time-saving target with time to spare, automating 168 processes, creating an in-house RPA team and embedding automation in every department’s thinking
-
January 13, 2022
13
Jan'22
IR35: Impact survey suggests downturn in use of HMRC CEST tool by enterprises
Latest tranche of data from IR35 Shield's Impacts Survey suggests enterprises are increasingly seeking out alternative methods to assess the tax status of contractors rather than rely on HMRC’s CEST tool
-
January 13, 2022
13
Jan'22
ICO investigates police use of app to covertly record calls from mobile phones
Surrey and Sussex police forces call in regulators after 1,000 police officers downloaded an app to covertly record phone calls on police-issued mobile phones
-
January 12, 2022
12
Jan'22
UK government bodies challenged on secure identity
Public sector bodies in the UK recognise secure identity and access management as critical to the roll-out of digital services, but face challenges in addressing this
-
January 12, 2022
12
Jan'22
Outsourced IT and business services hit record levels in 2021
Spending on IT and business process outsourcing services in Europe hits highest ever level in 2021, with cloud service spending continuing to grow rapidly
-
January 12, 2022
12
Jan'22
Microsoft fixes six zero-days in January Patch Tuesday update
A larger than of late Patch Tuesday update from Microsoft comes as defenders continue to grapple with Log4Shell
-
January 12, 2022
12
Jan'22
Dutch cyber volunteers receive major funding boost
The Dutch Institute for Vulnerability Disclosure has received a $100,000 donation to expand the scope of its work
-
January 11, 2022
11
Jan'22
Almost half of Log4j downloads still dangerously exposed
Whether by error or design is unclear, but a great many IT teams are still exposing themselves by downloading outdated, insecure versions of Apache Log4j
-
January 11, 2022
11
Jan'22
Post Office can’t access records of all money paid to it by victims of the Horizon scandal
A parliamentary select committee was told that the Post Office is unable to access information to accurately calculate compensation for some Horizon scandal victims
-
January 11, 2022
11
Jan'22
Banks accused of neglecting customer security measures
Which? singles out Metro Bank, Virgin Money and TSB over insecure online banking processes
-
January 11, 2022
11
Jan'22
Cyber security failure one of biggest risks facing countries and businesses, warns WEF
Cyber risks are among the top five risks facing organisations and governments over the next two to five years. Digital inequality and the over-crowding of space with communication satellites present further risks
-
January 10, 2022
10
Jan'22
Inside Kyndryl’s Southeast Asia playbook
Kyndryl will focus on building local partnerships and tapping opportunities in managed cloud services, among other areas, to stake a claim on the region’s managed services space
-
January 10, 2022
10
Jan'22
Public sector IT and communications spend down 4% last year
Public sector spending on IT and communications was down in 2021, but some departments bucked the trend with major investments