News

Network security management

• January 19, 2024 19 Jan'24

  ICO prompts confusion over police cloud legality

  The UK data regulator has suggested that, despite major data protection concerns, it is likely to greenlight police cloud deployments because of an information-sharing agreement with the US government

• January 19, 2024 19 Jan'24

  Neighbouring Kent councils hit by simultaneous cyber attacks

  Canterbury, Dover and Thanet Councils in Kent have all been struck by simultaneous cyber attacks knocking systems offline, with indications of a link between all three

• January 08, 2024 08 Jan'24

  Inside the Met Police’s investigation into EncroChat crime gangs

  The Met’s senior investigating officer responsible for investigating criminals using the EncroChat encrypted phone network tells the inside story of the UK’s biggest organised crime bust in a BBC podcast series released this week

• January 04, 2024 04 Jan'24

  Celona and Palo Alto partner to enhance private 5G network security

  Wireless services specialist Celona and security firm Palo Alto Networks are coming together to enhance device protection for organisations operating private mobile networks

• January 03, 2024 03 Jan'24

  Dutch working to promote cooperation in Europe to keep internet safe

  A Dutch cooperative approach offers national and international cooperation opportunities for ISPs to guard against DDoS attacks, lawful interception and detect abuse in networks

• January 02, 2024 02 Jan'24

  China’s UNC4841 pivots to new Barracuda ESG zero-day

  The Chinese state threat actor behind a series of cyber attacks on Barracuda Networks customers embarked on a campaign targeting the supplier’s email security products in the run-up to Christmas

• December 21, 2023 21 Dec'23

  Top 10 cyber crime stories of 2023

  Ransomware gangs dominated the cyber criminal underworld in 2023, a year that will prove notable for significant evolutionary trends in their tactics

• December 19, 2023 19 Dec'23

  Nokia and HellasQCI complete quantum-safe networks proof of concept

  Trial showcase by leading networking tech firm and communication infrastructure consortium shows hybrid approach with both classic and quantum physics key to reach goal of quantum-safe networks

• December 18, 2023 18 Dec'23

  Cathay takes off with global SASE deployment

  Unified secure access service edge services provider replaces legacy MPLS network for improved performance and observability, and unified end user security, access and application performance across global sites

• December 18, 2023 18 Dec'23

  How threat intelligence is applied in DNS security

  Infoblox’s director of security architecture explains how the company leverages its threat intelligence capabilities to help organisations stay ahead of DNS security threats

• December 14, 2023 14 Dec'23

  Cisco eyes opportunities in AI, sustainability in Australia

  Cisco is looking to tap opportunities in sustainability, AI and cyber security as it navigates Australia’s economic headwinds

• December 08, 2023 08 Dec'23

  Fancy Bear targets Nato entities via critical Outlook flaw

  A vulnerability patched in March has likely been exploited by the Russian state actor Fancy Bear, for over two years, according to the latest intelligence

• December 01, 2023 01 Dec'23

  Human augmentation tech requires dual use oversight

  Researchers investigating human augmentation technologies must acknowledge the potential military applications of their work, and military bodies cannot be allowed to dismiss ethical concerns in their pursuit of national security interests, says NGO...

• November 27, 2023 27 Nov'23

  The Security Interviews: Zeki Turedi, field CTO Europe, CrowdStrike

  Organisations are racing to keep their security up to date against the latest threats. CrowdStrike’s Zeki Turedi explains how to protect against novel and innovative cyber attacks

• November 24, 2023 24 Nov'23

  APAC organisations warm to microsegmentation

  Nearly two-thirds of organisations in the APAC region see microsegmentation as a way to protect their IT assets, but lack the skills to deploy the technology

• November 23, 2023 23 Nov'23

  Expereo on tap for Carlsberg to deliver connectivity in 40 countries

  SD-WAN/SASE and internet provider brings brewing giant ‘unrivalled’ connectivity in global network

• November 23, 2023 23 Nov'23

  North Korean APTs go all in on supply chain attacks, warns NCSC

  Threat actors linked to the North Korean regime are becoming more adept at targeting software supply chains in the service of their cyber attacks

• November 23, 2023 23 Nov'23

  Australia ups ante on cyber security

  Australia’s new cyber security strategy will focus on building threat-blocking capabilities, protecting critical infrastructure and improving the cyber workforce, among other priorities

• November 22, 2023 22 Nov'23

  CISA reveals how LockBit hacked Boeing via Citrix Bleed

  As alarm grows around the world about the impact of the so-called Citrix Bleed vulnerability, Boeing has shared details of its experience at the hands of the LockBit ransomware crew

• November 21, 2023 21 Nov'23

  Over half of SME cyber incidents now ‘malware-free’

  The age of malware-driven cyber attacks may have peaked, at least when it comes to incidents affecting small and medium sized enterprises

• November 20, 2023 20 Nov'23

  Defence lawyers seek appeal of tribunal ruling on police EncroChat cryptophone hack

  Defence lawyers are seeking leave to appeal against a tribunal ruling that found the National Crime Agency had lawfully obtained warrants to access messages from 9,000 cryptophones used in the UK

• November 15, 2023 15 Nov'23

  BlackCat affiliate seen using malvertising to spread ransomware

  Researchers at eSentire identified a wave activity from an ALPHV/BlackCat ransomware affiliate which has adopted a somewhat unusual approach to delivering its locker

• November 15, 2023 15 Nov'23

  Russian cyber criminal pleads guilty to running IPStorm botnet

  Sergey Manikin faces years in jail after his illicit proxy botnet service was taken down by US law enforcement

• November 15, 2023 15 Nov'23

  November Patch Tuesday heralds five new MS zero-days

  Microsoft pushes fixes for five new zero-days in its latest monthly update

• November 15, 2023 15 Nov'23

  US government reinforces ICBC hack link to Citrix Bleed

  US Treasury adds weight to reports that a ransomware gang gained access to the systems of Chinese bank ICBC by exploiting a critical Citrix flaw

• November 15, 2023 15 Nov'23

  How Gigamon is making its mark in deep observability

  Gigamon CEO Shane Buckley talks up the company’s ability to inspect encrypted network traffic for malicious activity, how it stands out with its deep observability capabilities and the tailwinds that are fuelling its growth

• November 14, 2023 14 Nov'23

  Fast-acting cyber gangs increasingly disabling telemetry logs

  Sophos guidance for security practitioners and defenders highlights a growing trend for threat actors to disable or wipe telemetry logs to cover their tracks

• November 07, 2023 07 Nov'23

  Researchers ‘break’ rule designed to guard against Barracuda vulnerability

  Vectra AI researchers found that a Suricata rule designed to detect exploitation of a dangerous Barracuda Email Security Gateway flaw was not entirely effective

• November 06, 2023 06 Nov'23

  How Trellix’s CISO keeps threat actors at bay

  Trellix’s chief information security officer, Harold Rivas, outlines how the company mitigates security threats through containment and by helping security analysts to respond faster to cyber incidents

• November 02, 2023 02 Nov'23

  Admins told to take action over F5 Big-IP platform flaws

  Two vulnerabilities in the widely used F5 Networks Big-IP platform are now being exploited in the wild

• October 31, 2023 31 Oct'23

  British Library falls victim to cyber attack

  The British Library is experiencing a major IT outage following a cyber incident of an undisclosed nature

• October 31, 2023 31 Oct'23

  SEC sues SolarWinds, alleging serious security failures

  SolarWinds and its CISO have been charged with fraud and internal control failures by the US authorities amid allegations of a series of cyber security failings leading up to the 2020 Sunburst attacks

• October 27, 2023 27 Oct'23

  Microsoft warns over growing threat from Octo Tempest gang

  The English-speaking Octo Tempest extortion gang – which became an ALPHV/BlackCat affiliate recently – presents one of the most significant and rapidly growing threats to large organisations at this time, says Microsoft

• October 27, 2023 27 Oct'23

  How Elastic manages cyber security threats

  Mandy Andress, CISO at Elastic, highlights the company’s approach to tackling evolving cyber threats through the use of AI tools and enhanced security measures while strengthening the capabilities of its security offerings

• October 26, 2023 26 Oct'23

  Exploitation of Citrix NetScaler vulns reaching dangerous levels

  Observed activity exploiting two new Citrix NetScaler vulnerabilities disclosed earlier this month is ramping up, and users may be running out of time to patch lest they be attacked

• October 25, 2023 25 Oct'23

  Demystifying the top five OT security myths

  Goh Eng Choon, president of ST Engineering’s cyber business, outlines the common myths around OT security in a bid to raise awareness of the security challenges confronting OT systems

• October 24, 2023 24 Oct'23

  Customers speak out over Okta’s response to latest breach

  Customers of identity specialist Okta have been attacked via a compromise of its systems, and are claiming Okta’s response leaves something to be desired

• October 23, 2023 23 Oct'23

  Cisco pushes update to stop exploitation of two IOS XE zero-days

  Cisco releases updates to thwart exploitation of two flaws affecting users of its IOS XE software

• October 20, 2023 20 Oct'23

  RagnarLocker cyber gang that pioneered double extortion busted

  Europol and the FBI have taken down the RagnarLocker ransomware crew, a long-standing gang that helped pioneer some now common tactics, taking its dark web negotiation and data leak sites offline

• October 19, 2023 19 Oct'23

  Fears grow over extent of Cisco IOS XE zero-day

  Researchers have identified spiking numbers of victims of a recently disclosed Cisco zero-day, as users of the networking supplier’s IOS XE software are urged to take defensive measures

• October 19, 2023 19 Oct'23

  Loughborough Uni to create five cyber AI research posts

  Supported by Darktrace, Loughborough University is to recruit five doctoral researchers focusing on cross-disciplinary research in AI and cyber security

• October 18, 2023 18 Oct'23

  What are the cyber risks from the latest Middle Eastern conflict?

  The outbreak of war between Hamas and Israel in October 2023 has seen a wide variety of accompanying cyber attacks from hacktivists and other groups. We look at the risks to organisations

• October 18, 2023 18 Oct'23

  Networking and security teams converging

  Study finds more than 80% of IT leaders are consolidating security and networking teams or have a management directive to improve collaboration, with 75% believing using one platform for both purposes would provide benefits across the board

• October 17, 2023 17 Oct'23

  Five Eyes issues five tips on thwarting nation state threats

  Intelligence chiefs from the UK, Australia, Canada, New Zealand and the US have published guidance on building resilience against nation state cyber threats

• October 17, 2023 17 Oct'23

  Alert sounded over dangerous Cisco IOS XE zero-day

  Cisco warns customers using its IOS XE software of a newly discovered vulnerability that could enable a threat actor to take over their systems

• October 10, 2023 10 Oct'23

  MGM faces £100m loss from cyber attack on its casinos

  MGM Resorts has provided further details on the fallout of the hack targeting its casinos in early September, confirming that a range of personal information has been stolen and that it will likely cost the firm around $100m

• October 05, 2023 05 Oct'23

  Ransomware dwell times now measured in hours, says Secureworks

  Ransomware payloads are now being deployed and executed within 24 hours in more than 50% of cases, according to Secureworks’ annual report

• October 03, 2023 03 Oct'23

  RSA and other crypto systems vulnerable to side-channel attack

  A researcher has found that a flaw in RSA is still vulnerable – a quarter of a century after it was first discovered

• October 03, 2023 03 Oct'23

  CIISec scores DSIT funding to expand successful CyberEPQ scheme

  DSIT has committed to enhanced funding to expand CIISec’s CyberEPQ education programme after recording excellent results to date

• September 28, 2023 28 Sep'23

  How Akamai is driving growth in APAC

  Akamai's managing director for the region outlines the company’s growth journey, how it sets itself apart from competitors, and its strategies to drive the next phase of growth