News

Network security management

• November 19, 2019 19 Nov'19

  Managed services fuelling APAC security market

  Spending on managed security services will account for almost half of Asia-Pacific’s cyber security market by 2023, as global and local providers shore up their offerings in the region

• November 15, 2019 15 Nov'19

  Notorious hackers claim responsibility for Labour DDoS

  Hackers claiming to represent Lizard Squad say they were behind a distributed denial of service attack on the UK’s Labour Party

• November 13, 2019 13 Nov'19

  11 new 5G hacks enable user device tracking and monitoring

  Researchers at Purdue University and the University of Iowa publish details of several new 5G mobile network vulnerabilities

• November 13, 2019 13 Nov'19

  Business leaders fibbing to cover up lax security posture

  Nominet study finds evidence that many businesses tout the robustness of their security posture as a selling point even though their security teams lack confidence in themselves

• November 13, 2019 13 Nov'19

  Attack on Labour shows need for DDoS defence but should alarm few

  After being hit by two DDoS attacks in the space of 24 hours, many commentators are convinced the UK’s Labour Party is the victim of foreign interference in the General Election campaign. It probably isn’t

• November 12, 2019 12 Nov'19

  Nordic SMEs lack the money needed for cyber security

  Businesses and governments in Denmark and Norway are working together to address a cyber security shortfall for SMEs in each country

• November 12, 2019 12 Nov'19

  ‘Robust’ security foils cyber attack on Labour Party

  Labour claims to have been the victim of a cyber attack, but says it is confident no data leaked

• November 12, 2019 12 Nov'19

  Shared responsibility model key to solving 5G security problem

  Both buyers and sellers need to cooperate to solve the thorny issues around 5G security

• November 07, 2019 07 Nov'19

  Amazon Ring video doorbell flaw left users open to attack

  A vulnerability in Amazon’s Ring video doorbells left the internet-of-things devices open to a variety of attacks

• November 07, 2019 07 Nov'19

  Saudis recruited Twitter employees to spy on critics

  Court documents reveal how the Saudi Arabian government targeted Twitter employees as part of a coordinated effort to gather information on known dissidents

• November 06, 2019 06 Nov'19

  Trend Micro insider breach exposes need for data-centric protection

  Simple measures could have saved consumer security product supplier from insider breach

• November 06, 2019 06 Nov'19

  Global security workforce must more than double to meet demand

  There are about 2.8 million cyber security professionals working today, and the world needs four million more

• November 05, 2019 05 Nov'19

  Ransomware authors seeking new ways to avoid being spotted

  Sector analysis from Sophos has revealed some insight into how malware authors are adapting to thwart cyber security controls

• November 01, 2019 01 Nov'19

  General Election sees UK government defer ‘high-risk’ 5G tech supplier review

  Decision on allowing so-called high-risk suppliers access to the UK’s market for 5G infrastructure delayed due to 12 December poll

• October 29, 2019 29 Oct'19

  NordVPN enlists ethical hackers, launches bug bounty programme

  Breached consumer VPN supplier details steps it is taking to shore up its cyber security posture after an unknown actor gained access to one of its servers

• October 29, 2019 29 Oct'19

  Fancy Bear resumes Olympic hacks ahead of Tokyo games

  Fancy Bear is back in action and once again targeting anti-doping bodies and sporting organisations, warns Microsoft

• October 24, 2019 24 Oct'19

  Endpoint security is a procurement issue, says HP, IDC study

  Report warns that buyers are falling at the first hurdle on security by not including it in their endpoint RFPs and tenders

• October 23, 2019 23 Oct'19

  Take responsibility for cyber security basics, urges NCSC CEO

  At the launch of its third annual review, NCSC head Ciaran Martin appealed for individuals and businesses to address the fundamentals of cyber security hygiene to help lighten the load

• October 22, 2019 22 Oct'19

  NordVPN blames datacentre provider for server breach

  VPN provider insists no user data was compromised in a March 2018 server breach, and says its datacentre provider failed to inform it of the issue

• October 22, 2019 22 Oct'19

  Attacker hit VPN firm Avast through its VPN

  Avast has published details of how attackers attempted to gain access to its network over a five month period

• October 21, 2019 21 Oct'19

  Alleged state hackers adapting to cover their tracks, says NCSC

  A group called Turla with suspected links to the Russian government stole Iranian tools and infrastructure to obscure the origins of attacks on multiple other countries, according to new evidence

• October 21, 2019 21 Oct'19

  Sodinokibi emerging as a diverse, multi-vector threat to businesses

  McAfee shares insight into the Sodinokibi ransomware campaign gleaned from its network of honeypots

• October 18, 2019 18 Oct'19

  Amazon consumer devices vulnerable to two-year-old exploit

  Millions of older Amazon Echo and Kindle devices are still susceptible to a Wi-Fi vulnerability that was first disclosed in 2017

• October 17, 2019 17 Oct'19

  BEIS launches multimillion-pound security investment package

  Government is making available more than £50m to support a range of new cyber security initiatives and collaborations, including the latest phase of its Digital Security by Design programme

• October 14, 2019 14 Oct'19

  Private equity swoops on Sophos

  British cyber security star picked up by technology sector investors for $3.9bn

• October 14, 2019 14 Oct'19

  The Security Interviews: Applying AI to Lego, and security

  Ann Johnson, Microsoft corporate vice-president of cyber security, is on a mission to prove that artificial intelligence holds great promise for the security sector, and she has the analogies to back it up

• October 08, 2019 08 Oct'19

  IBM, McAfee among founders of open source security alliance

  A group of cyber security suppliers have come together to form the Open Cybersecurity Alliance

• October 03, 2019 03 Oct'19

  IT contractor charged over cyber attack on property valuation firm

  Australian police charge 49-year-old man with stealing and posting more than 170,000 data records belonging to ASX-listed Landmark White on the dark web

• October 03, 2019 03 Oct'19

  LogRhythm touts unlimited data plan for SIEM systems

  SIEM supplier introduces three-year, term-based pricing plan that lets enterprises ingest as much data as they want without breaking the bank

• September 26, 2019 26 Sep'19

  Attackers breached supplier systems to steal Airbus secrets

  Airbus has been the subject of at least four major cyber attacks in the past 12 months, with contractors and suppliers targeted through their VPNs

• September 24, 2019 24 Sep'19

  Latest Lorca cyber security challenge has IoT focus

  Government-backed cyber security innovation centre Lorca has issued new challenges around connectivity for its next intake of scaleups

• September 18, 2019 18 Sep'19

  Universities tempting targets for cyber criminals, warns NCSC

  As hundreds of thousands of students prepare for the new academic year, universities have been warned that they are at high risk of cyber attack

• September 16, 2019 16 Sep'19

  Ensign InfoSecurity opens global headquarters in Singapore

  The Singapore-based cyber security firm’s new headquarters will also be home to a new security operations centre that will be supported by Singapore-centric threat intelligence

• September 10, 2019 10 Sep'19

  How Zuellig Pharma is fighting fake drugs with blockchain

  The Asia-Pacific pharmaceutical giant is using a blockchain platform from SAP to help consumers identify the provenance of medicine

• September 03, 2019 03 Sep'19

  At least 47,000 servers vulnerable to remote attack

  All organisations using Supermicro servers are being urged to update firmware to block remote attacks exploiting vulnerabilities in baseboard management controllers

• September 02, 2019 02 Sep'19

  UK organisations join quantum comms pilot

  Four UK companies are taking part in a pilot project to build the most secure communication infrastructure in Europe

• August 29, 2019 29 Aug'19

  Finland’s security agencies collaborate after cyber attacks

  National Bureau of Investigations and National Cyber Security Centre aim to increase expertise and capability to defend Finland’s critical IT infrastructure

• August 23, 2019 23 Aug'19

  Kaspersky eyes enterprise business, opens APAC transparency hub

  The security firm wants to engage with enterprises and use its newly launched Malaysian Transparency Centre to burnish its credentials

• August 21, 2019 21 Aug'19

  Healthcare faces triple cyber threat, says FireEye

  Criminal and nation-state cyber attackers are increasingly targeting the healthcare industry to steal data, carry out espionage and cause disruption, a report reveals

• August 21, 2019 21 Aug'19

  Silence APT group eyes APAC banks

  Russian-speaking advanced persistent threat group has set its sights on banks in the region, customising its arsenal for targeted attacks

• August 20, 2019 20 Aug'19

  Huawei to US: Ban violates free market principles

  Huawei has hit back at the US government’s latest moves to restrict its activities

• August 19, 2019 19 Aug'19

  US extends temporary stay on Huawei ban

  American network operators given extra wiggle room to wean themselves off Huawei’s hardware

• August 19, 2019 19 Aug'19

  How EDR is moving beyond the endpoint

  An emerging breed of detection and response offerings is going beyond endpoints to collect and decipher telemetry data from across the enterprise

• August 16, 2019 16 Aug'19

  Passwordless enterprise already possible, says RSA

  The passwordless enterprise is getting easier to attain as the security industry gears up to support a passwordless future, says RSA’s identity chief

• August 16, 2019 16 Aug'19

  New approach to risk management needed, says Gartner

  Most third-party risks are discovered after the initial due diligence period, Gartner study shows, highlighting the need for a new approach to risk management and the importance of effective access controls

• August 15, 2019 15 Aug'19

  Cisco frozen out of China as Trump’s trade war rages on

  Cisco CEO Chuck Robbins reveals the firm is being edged out of the Chinese market

• August 14, 2019 14 Aug'19

  DCMS funding aims to increase diversity in cyber sector

  A funding round has been announced as part of the Cyber Skills Immediate Impact Fund (CSIIF) with aims of encouraging more diverse talent into the UK’s cyber security sector

• August 14, 2019 14 Aug'19

  Digital domain identified as major security threat by Norway’s intelligence service

  Norway's intelligence services has revealed the extent of the threat posed to the country by cyber attacks

• August 14, 2019 14 Aug'19

  Norman evasive cryptominer conquers networks

  Cryptomining malware designed to evade detection is capable of invading every device in targeted companies, researchers warn

• August 12, 2019 12 Aug'19

  Phishing top security threat to business

  A new Telefónica security service for business shows that phishing is the most-blocked threat and smaller businesses are a popular attack target in the first two months of deployment

• August 09, 2019 09 Aug'19

  NCC Group warns of security risks of leading printers

  Researchers uncover more than 35 vulnerabilities in six leading enterprise printers, many of which could allow access to corporate networks, underlining the need to counter security risks of embedded systems

• August 06, 2019 06 Aug'19

  African bank foils suspected North Korean cyber attack

  An African bank is among the financial institutions to be targeted by North Korea’s multi-billion dollar cyber theft campaign to support its weapons programmes

• August 05, 2019 05 Aug'19

  DDoS on the rise, warns Kaspersky

  Security researchers at Kaspersky are among those warning business that, more than ever, mitigation of distributed denial of service attacks needs to be a key element of cyber defence strategies

• July 31, 2019 31 Jul'19

  Cisco pays $8.6m after whistleblower discloses security flaws in video surveillance system

  James Glenn, a video surveillance expert working for a Cisco reseller in Denmark, alerted Cisco to security faults and stands to gain a share of a multimillion-dollar settlement with the US government

• July 30, 2019 30 Jul'19

  Huawei ‘galvanised’ by Trump ban

  Huawei has found itself caught in the crossfire of the US president’s trade war with China, but chairman Liang Hua says the firm is rising to the challenge

• July 29, 2019 29 Jul'19

  Cyber kill chain is outdated, says Carbon Black

  The chief cyber security officer of Carbon Black calls for a new cognitive paradigm to fend off cyber adversaries that are now attacking in cycles

• July 23, 2019 23 Jul'19

  Government delays final decision on Huawei

  Culture secretary says he cannot yet make specific decisions about Huawei’s involvement in the UK’s telecoms and mobile networks due to a lack of clarity from the US, effectively green-lighting its use

• July 23, 2019 23 Jul'19

  Microsoft talks up benefits and pitfalls of machine learning in security

  Software giant Microsoft uses machine learning models to detect emerging threats while keeping an eye on potential bias in security data points that could derail its analysis

• July 22, 2019 22 Jul'19

  US fines Equifax $700m over 2017 breach

  Global settlement with US authorities follows systems breach that saw more than 140 million customer records stolen

• July 19, 2019 19 Jul'19

  HID weighs in the glacial move towards digital ID

  There are still concerns over data integrity, security and privacy of digital identities, but the convenience of the technology outweighs the risks, says a HID expert

• July 15, 2019 15 Jul'19

  UK launches 5G security inquiry

  The Joint Committee on the National Security Strategy is to probe the UK government’s approach to telecoms technology as a national security issue

• July 15, 2019 15 Jul'19

  No technical grounds to ban Huawei, DCMS told

  Science and Technology Committee tells Department for Digital, Culture, Media and Sport that there are no technical grounds for it to exclude Huawei

• July 04, 2019 04 Jul'19

  Security and privacy key to smart buildings and cities

  Security and privacy capabilities are essential for stakeholders if they are to realise the benefits of smart buildings and cities, says expert whitepaper

• July 04, 2019 04 Jul'19

  Implementing IoT – overcoming barriers to commercial adoption

  Tim Wright from the Institute of Telecoms Professionals reports from a recent seminar exploring questions around the barriers to commercial, at-scale adoption of the internet of things, and how to overcome them

• July 04, 2019 04 Jul'19

  APAC experts weigh in on cyber security trends

  The onslaught of cyber attacks being reported each day has been a wake-up call, but experts say businesses need to be mindful of the limitations of certain security measures

• July 03, 2019 03 Jul'19

  Cloudflare outage: Firm blames global website outage on routine software update gone rogue

  Content delivery provider traces outage back to failings that occurred during a routine update to its web application firewall service

• July 02, 2019 02 Jul'19

  Sweden’s Protective Security Act targets cyber risks

  IT suppliers must comply with tighter cyber security requirements, but are being offered help from government agencies

• July 01, 2019 01 Jul'19

  Huge jump in cyber incidents reported by finance sector

  The number of cyber incidents reported by financial services firms increased nearly 12-fold in 2018 from 2017, mainly due to third-party failures, highlighting several key areas that need improvement

• June 27, 2019 27 Jun'19

  Dutch bank and researchers begin defence against quantum computing’s dark side

  ABN Amro is working with QuTech to ensure that banks can protect data against quantum computers in the future

• June 25, 2019 25 Jun'19

  APT attack on telcos highlights need for comprehensive defence

  A global cyber attack against multiple telecommunications firms underlines need for comprehensive approach to cyber defence, say researchers and industry commentators

• June 20, 2019 20 Jun'19

  Enterprises challenged with security basics

  Visibility, security tool overload and manual reporting are cited as top concerns by UK security leaders, a report reveals

• June 19, 2019 19 Jun'19

  Converged security takes centre stage at IFSEC

  The importance and benefits of combining physical and cyber security was underlined in the opening session of the 2019 IFSEC security conference

• June 17, 2019 17 Jun'19

  Asco breaks silence on ransomware attack

  A week after reportedly being hit by a ransomware attack, Belgium-based mechanical equipment manufacturer Asco has finally provided some details

• June 17, 2019 17 Jun'19

  Inside F5’s cyber security playbook

  F5 Networks' CISO talks up measures that the application delivery and security specialist is employing to fend off cyber attackers that come knocking on its doors

• June 14, 2019 14 Jun'19

  Innovation drives Nominet to cyber security

  Embracing an innovation strategy for a mature organisation led domain name registry Nominet to found a cyber security business based on its core expertise, its CEO tells London Tech Week

• June 13, 2019 13 Jun'19

  AI-enabled cyber attacks a reality soon, warns Mikko Hypponen

  Technology continues to shape human conflict and artificial intelligence will be no exception, so business needs to up its ability to detect attacks and respond, says security expert

• June 11, 2019 11 Jun'19

  Cisco shows off AI-driven network analysis at customer event

  New tools to help IT departments better understand network behaviour and predict potential problems were among a series of announcements made on the opening day of Cisco Live in the US

• June 11, 2019 11 Jun'19

  MP brands Huawei exec a ‘moral vacuum’ as operators demand 5G clarity

  Huawei chief security officer John Suffolk faces tough questions from parliament’s Science and Technology Select Committee over the firm’s links to the Chinese government

• June 11, 2019 11 Jun'19

  Implementing Dmarc a top priority for UK

  Basic email security should be a top priority for UK firms, followed by reducing third-party web exposure and monitoring data flows leaving the enterprise, a Rapid7 study reveals

• June 10, 2019 10 Jun'19

  Large firms look to zero-trust security to reduce cyber risk

  In the face of increasing cyber breach risk as organisations move to hybrid multi-cloud IT environments, just over half of large firms in Europe are planning a zero-trust approach to security

• June 07, 2019 07 Jun'19

  NotPetya offers industry-wide lessons, says Maersk’s tech chief

  There are several key industry-wide lessons to be learned from the NotPetya attack in 2017, according to the information chief at one of the companies most heavily impacted

• June 07, 2019 07 Jun'19

  How ASEAN firms are using AI to combat cyber threats

  Artificial intelligence tools are becoming a vital part of the security arsenal for organisations and cyber criminals alike

• June 05, 2019 05 Jun'19

  DNS – a security opportunity not to be overlooked, says Nominet

  Domain name system data is the best-kept secret for eliminating network cyber threats, Nominet tells Infosecurity Europe attendees

• June 04, 2019 04 Jun'19

  Businesses investing blindly in cyber security

  Businesses need to find out what their real cyber risks and weaknesses are before investing in new technologies, says ethical hacker

• June 04, 2019 04 Jun'19

  Beware of security blind spots in encrypted traffic

  The growth of encrypted traffic has put the spotlight on intrusion prevention systems that help to surface cyber attacks conducted under the cloak of network encryption

• May 30, 2019 30 May'19

  2.3 billion business and consumer data files exposed online

  In the year since the GDPR compliance deadline, the number of data files exposed online without adequate protection is up more than 50% due to misconfigured security controls, report reveals

• May 29, 2019 29 May'19

  Turla APT group beefs up cyber attack tool

  An advanced persistent threat cyber espionage group has improved its tools to attack diplomatic targets, making their activities more difficult to detect and block

• May 23, 2019 23 May'19

  Lapse in LinkedIn security certificate update

  A lapse in the update of LinkedIn’s security certificate has once again underlined the importance of keeping track to avoid disruptions and phishing attacks, and how even big players are failing to get it right

• May 21, 2019 21 May'19

  US grants Huawei stay of execution

  US Commerce Department temporarily restores Huawei’s ability to maintain its existing networks and smartphone user base

• May 20, 2019 20 May'19

  Google cuts off Huawei from Android ecosystem

  Google decision follows an executive order signed by President Trump, but Huawei insists US businesses and consumers will be the real losers

• May 16, 2019 16 May'19

  Trump bans ‘adversary’ tech from US telecoms in blow at Huawei

  US president announced ban on telecoms equipment from designated “adversary” states, including China

• May 14, 2019 14 May'19

  APAC firms on the back foot in cyber security

  Most Asia-Pacific organisations did not consider cyber security until after their digital transformation projects had begun, new survey finds

• May 07, 2019 07 May'19

  Privileged access management moving to cloud

  Survey shows nearly half of information security professionals are either planning to move privileged access management to the cloud or are exploring the possibility

• May 03, 2019 03 May'19

  Zero trust: A 21st century security model

  Traditional corporate security models date back to a time when there were fewer, lower-level threats, but a zero trust model is better suited to the 21st century, according to the originator of the idea

• May 02, 2019 02 May'19

  Defence secretary sacked over Huawei leak

  Defence secretary Gavin Williamson has been sacked after leaking confidential discussions over the use of Huawei networking equipment

• May 01, 2019 01 May'19

  Get more proactive on cyber security, says ex Europol chief

  Business needs to get more proactive, collaborative, resilient and analytical to manage cyber risks posed by cyber criminals down to acceptable levels, says former Europol chief

• April 26, 2019 26 Apr'19

  Huawei leak inquiry launched

  Cabinet secretary Mark Sedwill has instituted an inquiry aimed at discovering who leaked confidential discussions about UK mobile operators’ use of Huawei in their future 5G networks to the press

• April 26, 2019 26 Apr'19

  GDPR cases drive bigger budgets for Nordic regulators

  High-profile General Data Protection Regulation cases in Finland and Sweden have increased the workload for regulators, which are to receive an increase in funding

• April 25, 2019 25 Apr'19

  No final decision taken on Huawei 5G ban, government claims

  Culture secretary tells MPs that a final decision on use of Huawei in UK 5G networks has not been taken, and says government is taking the leak of confidential discussions at the National Security Council very seriously

• April 25, 2019 25 Apr'19

  NCSC looks to industry to scale Active Cyber Defence

  The national cyber security agency is calling on wider government organisations as well as industry to help scale automated cyber attack blocking systems country-wide