News

Network security management

March 03, 2022 03 Mar'22
Direct action is a risky business for Ukraine's volunteer hackers

Hackers have been responding to Ukraine’s call to create an IT army, but there are many reasons why taking direct action in a kinetic conflict is a bad idea
March 02, 2022 02 Mar'22
Cyber companies step up support for Ukraine

Security companies Bitdefender and Vectra AI are both to offer products and services in support of Ukraine
March 01, 2022 01 Mar'22
BBC blasted with millions of malicious emails

Responding to an FoI request, the BBC has revealed it receives more than 300,000 malicious email attacks every day
March 01, 2022 01 Mar'22
DCMS opens consultation on telecoms cyber standards

Proposed rules will set out the specific measures telecoms providers need to take to fulfil their legal duties under the Telecommunications Security Act

March 01, 2022 01 Mar'22
ESET details new IsaacWiper malware used on Ukraine

Having been among the first to report on the HermeticWiper malware used against Ukraine last week, ESET has now identified another destructive malware called IsaacWiper
February 28, 2022 28 Feb'22
Ukraine cyber attacks seen spiking, but no destructive cyber war yet

While cyber attacks linked to Russia’s war on Ukraine are taking place, they are having little impact beyond the region
February 28, 2022 28 Feb'22
Cloudflare: Our network is our product

Cloudflare’s chief product officer explains why its network is its product and how it protects organisations against cyber threats
February 25, 2022 25 Feb'22
Mass phishing attacks against Ukrainian citizens reported

The Ukrainian cyber authorities are alerting people located in the country to be alert to phishing attacks
February 24, 2022 24 Feb'22
Researchers link Dridex botnet to emergent Entropy ransomware

A little-known new ransomware called Entropy contains significant code similarities to the general purpose Dridex botnet, suggesting some kind of link between the two
February 24, 2022 24 Feb'22
KnowBe4 cyber drama tackles Colonial Pipeline in fourth season

KnowBe4’s ongoing cyber security training drama, The Inside Man, reaches its fourth season with a plot drawing inspiration from one of the most impactful cyber attacks of 2021

February 24, 2022 24 Feb'22
New wave of cyber attacks on Ukraine preceded Russian invasion

A wave of DDoS attacks, and a second data wiper attack, were seen hitting Ukraine in the hours leading up to the Russian invasion
February 24, 2022 24 Feb'22
New cyber guidelines to safeguard construction sector

NCSC launches sector-specific security guidance for organisations in the construction industry, with input from the Chartered Institute of Building
February 24, 2022 24 Feb'22
Russia behind dangerous Cyclops Blink malware

Joint NCSC CISA advisory attributes a dangerous malware, dubbed Cyclops Blink, to Russia’s Sandworm APT, likely a GRU unit, with WatchGuard users at particular risk
February 23, 2022 23 Feb'22
Microsoft extends Defender umbrella to Google Cloud Platform

Redmond says extending Defender for Cloud native capabilities to the Google Cloud Platform will help simplify security for organisations pursuing multicloud strategies by eliminating the gaps where the bad guys can get in
February 23, 2022 23 Feb'22
IBM opens cyber security hub in India

Big Blue’s new cyber security hub, comprising a cyber range, software development facilities and a security operations centre, will serve enterprises across the Asia-Pacific region
February 21, 2022 21 Feb'22
Zoom gains NCSC Cyber Essentials Plus and NHS security badges

Video platform Zoom has added a number of UK-specific cyber certifications to help it demonstrate its platform is safeguarded against common threats
February 21, 2022 21 Feb'22
UK joins US in pinning Ukraine DDoS attacks on Russia

A series of DDoS attacks on Ukrainian defence and banking organisations last week is now being firmly attributed to Russian action
February 16, 2022 16 Feb'22
2021 another record year for UK cyber investment

Total revenue generated by the UK’s cyber sector was up 14% last year, and UK-registered security firms raised over £1bn in investment
February 15, 2022 15 Feb'22
Botched third-party configuration exposes Internet Society data to web

Personal data on members of The Internet Society was exposed after a supplier failed to secure its Azure storage
February 11, 2022 11 Feb'22
Lack of knowledge disastrous for effective security strategy within Dutch companies

Most Dutch companies still haven’t realised that security is an integral part of their IT and company strategy
February 11, 2022 11 Feb'22
Why security professionals should pay attention to what Russia is doing

Even though the average organisation is an unlikely target for a Russian state cyber attack, here's why security teams still need to watch what Russian threat groups are up to
February 09, 2022 09 Feb'22
Linux-based clouds an open door for attackers, says VMware

Its prevalence as a cloud operating system means Linux is becoming a meal ticket for malicious actors, but the security industry does not seem to have cottoned on to this yet, says VMware
February 09, 2022 09 Feb'22
Ransomware ever more sophisticated and impactful, warns NCSC

UK’s National Cyber Security Centre teams up with US and Australian partners in a joint advisory warning organisations of the increasing sophistication exhibited by criminal ransomware gangs
February 08, 2022 08 Feb'22
The Security Interviews: Building the UK’s future cyber ecosystem

As the government lays out the next iteration of its Cyber Security Strategy, we speak to Plexal and Lorca’s Saj Huq about his work building a cyber ecosystem to support the UK’s future ambitions
February 04, 2022 04 Feb'22
Cyber attacks on European oil facilities spreading

Following a cyber attack on distribution facilities in Germany, more incidents have been reported in Belgium and the Netherlands, but it is too early to necessarily draw a link between them
February 04, 2022 04 Feb'22
Check Point looks to plug ASEAN’s cyber security gap

Check Point is shoring up its sales force and partner ecosystem to address the cyber security needs of small and mid-sized businesses in a region that is highly targeted by threat actors
February 03, 2022 03 Feb'22
BlackCat crew supposedly behind OilTanking ransomware heist

Preliminary reports from Germany’s national cyber authority indicate the recent OilTanking ransomware attack may have been the work of the BlackCat group
February 03, 2022 03 Feb'22
Crisp supply shortage looms after KP Snacks hit by ransomware

Supplies of Hula Hoops and many other snack brands are under threat after a ransomware attack on the systems of KP Snacks
February 03, 2022 03 Feb'22
French Supreme Court raises constitutional questions over EncroChat hacking secrecy

Conseil Constitutionnel to decide whether ‘defence secrecy’ over state EncroChat cryptophone hacking breaches French constitution
February 02, 2022 02 Feb'22
Zero-trust to soar in 2022, but dogged by implementation challenges

IT leaders are keen to invest in zero-trust, but face issues around a lack of expertise, and selling the concept into the C-suite
February 01, 2022 01 Feb'22
German fuel supplier taken offline in cyber attack

Cyber attack against Germany’s Oiltanking, a major fuel logistics company, affects 13 distribution terminals across Germany, in an incident with echoes of last year’s hit on Colonial Pipeline
February 01, 2022 01 Feb'22
Over one-fifth of ransomware attacks target financial sector

Newly published data reveals a significant uptick in cyber attacks against the financial services sector during the third quarter of 2021
January 31, 2022 31 Jan'22
Data on children of armed forces personnel exposed in breach

Data on 4,142 children of serving armed forces personnel was exposed in a data breach at the Ministry of Defence
January 27, 2022 27 Jan'22
CISOs must get out in front of Ukraine cyber crisis, says NCSC

The National Cyber Security Centre is urging UK organisations to take steps to bolster their cyber security resilience in response to the ongoing Ukraine crisis
January 27, 2022 27 Jan'22
DCMS taps Arqit for 5G project to provide Open RAN security by default

Quantum platform-as-a-service provider joins government’s programme to drive diversity in comms technology supply with the aim of integrating a novel quantum encryption service to enable security by default
January 26, 2022 26 Jan'22
More intel emerges on WhisperGate malware that hit Ukraine

Security experts have been poring over the WhisperGate malware with which alleged Russia-backed entities targeted Ukrainian government websites
January 26, 2022 26 Jan'22
MPs to debate landmark IoT security law

Proposed bill mandates tighter protections for connected products, and adds new rules for broadband roll-out into the bargain
January 25, 2022 25 Jan'22
Prepare, but don’t panic, over supposed Russian cyber threat

A fresh alert from the US Department of Homeland Security may have IT security teams jumpy over the possibility that their organisations could be targeted by Russian state actors
January 25, 2022 25 Jan'22
Cyber Essentials programme gets biggest update since launch

NCSC implements a thorough revision of its Cyber Essentials scheme to reflect the changing security landscape
January 21, 2022 21 Jan'22
Cyber pros: Don’t revel in REvil’s downfall just yet

The arrests of REvil’s alleged kingpins is a welcome step, but as with any disruption to cyber criminal activity, it is never wise to assume law enforcement action means the threat has passed entirely
January 21, 2022 21 Jan'22
New normal sees SASE, SD-WAN surge as MPLS is phased out

Research confirms that MPLS is ‘out’ and SD-WAN and SASE systems are the clear winners in enterprise networking as more and more European organisations are eliminating all on-prem datacentres, with cloud adoption steaming ahead
January 20, 2022 20 Jan'22
Ransomware attacks dropped 37% in December, claims NCC

Latest monthly data reveals a significant decline in ransomware attacks at the end of 2021, but a new, emergent gang is making waves
January 20, 2022 20 Jan'22
Updated cyber security regulations proposed for managed services sector

The Network and Information Systems regulations are to be updated to include MSPs and outsourcers, following a spate of supply chain attacks
January 20, 2022 20 Jan'22
Data of 515,000 vulnerable people stolen in Red Cross attack

The International Committee of the Red Cross is probing a cyber attack that has already seen the personal data of hundreds of thousands of the world’s most vulnerable people compromised
January 19, 2022 19 Jan'22
Chasm exists between ‘true’ and portfolio SASE approaches

Survey of enterprise IT leaders finds little difference between respondents without SASE and those who adopted SASE product portfolios regarding issues such as trade-offs between performance and security
January 19, 2022 19 Jan'22
Trellix looks to democratise access to XDR in APAC

The company formed from the merger of FireEye Enterprise and McAfee will team up with managed service providers, among other efforts, to democratise access to extended detection and response capabilities in the region
January 19, 2022 19 Jan'22
Trellix XDR platform forged out of McAfee, FireEye union

The private equity owners of McAfee Enterprise and FireEye are merging the companies into a new entity to ‘define the future’ of cyber security through XDR technology
January 18, 2022 18 Jan'22
Exium, Teneo team to deliver digital experience, 5G-capable SASE platform

Work-from-anywhere IT services company and cyber security provider enter into partnership to assist lean enterprise IT teams in their transition to a secure access service edge
January 18, 2022 18 Jan'22
Cobalt Strike still C2 infrastructure of choice

Its utility and ease of use, coupled with explosive growth in ransomware actions, makes Cobalt Strike Team Servers the C2 infrastructure of choice for malicious actors
January 13, 2022 13 Jan'22
Nordic companies targeted in wave of cyber attacks

After a slew of cyber attacks hit major companies in the Nordics at the end of last year, we look at how they were affected and how they have recovered