News

Network security strategy

• November 22, 2023 22 Nov'23

  CISA reveals how LockBit hacked Boeing via Citrix Bleed

  As alarm grows around the world about the impact of the so-called Citrix Bleed vulnerability, Boeing has shared details of its experience at the hands of the LockBit ransomware crew

• November 15, 2023 15 Nov'23

  Russian cyber criminal pleads guilty to running IPStorm botnet

  Sergey Manikin faces years in jail after his illicit proxy botnet service was taken down by US law enforcement

• November 15, 2023 15 Nov'23

  US government reinforces ICBC hack link to Citrix Bleed

  US Treasury adds weight to reports that a ransomware gang gained access to the systems of Chinese bank ICBC by exploiting a critical Citrix flaw

• November 02, 2023 02 Nov'23

  Admins told to take action over F5 Big-IP platform flaws

  Two vulnerabilities in the widely used F5 Networks Big-IP platform are now being exploited in the wild

• October 31, 2023 31 Oct'23

  SEC sues SolarWinds, alleging serious security failures

  SolarWinds and its CISO have been charged with fraud and internal control failures by the US authorities amid allegations of a series of cyber security failings leading up to the 2020 Sunburst attacks

• October 27, 2023 27 Oct'23

  Tech firms cite risk to end-to-end encryption as Online Safety Bill gets royal assent

  Tech firms continue to be concerned that the Online Safety Bill could undermine end-to-end encryption despite government reassurances

• October 26, 2023 26 Oct'23

  Exploitation of Citrix NetScaler vulns reaching dangerous levels

  Observed activity exploiting two new Citrix NetScaler vulnerabilities disclosed earlier this month is ramping up, and users may be running out of time to patch lest they be attacked

• October 24, 2023 24 Oct'23

  Cisco hackers likely taking steps to avoid identification

  Cisco confirms that a drop in detections of devices compromised by two zero-days was likely the result of reactive measures taken by the threat actors to avoid discovery

• October 23, 2023 23 Oct'23

  Cisco pushes update to stop exploitation of two IOS XE zero-days

  Cisco releases updates to thwart exploitation of two flaws affecting users of its IOS XE software

• October 19, 2023 19 Oct'23

  Fears grow over extent of Cisco IOS XE zero-day

  Researchers have identified spiking numbers of victims of a recently disclosed Cisco zero-day, as users of the networking supplier’s IOS XE software are urged to take defensive measures

• October 18, 2023 18 Oct'23

  Networking and security teams converging

  Study finds more than 80% of IT leaders are consolidating security and networking teams or have a management directive to improve collaboration, with 75% believing using one platform for both purposes would provide benefits across the board

• October 17, 2023 17 Oct'23

  Alert sounded over dangerous Cisco IOS XE zero-day

  Cisco warns customers using its IOS XE software of a newly discovered vulnerability that could enable a threat actor to take over their systems

• September 19, 2023 19 Sep'23

  New revelations from the Snowden archive surface

  A decade after Snowden exposed NSA’s mass surveillance in cooperation with the British GCHQ, only about 1% of the documents have been published – but three major facts can finally be revealed thanks to a doctoral thesis in applied cryptography by ...

• September 19, 2023 19 Sep'23

  Nominet and European counterparts link up on intelligence sharing

  The new European TLD ISAC, a collaborative project between top-level domain providers across Europe, aims to enhance their collective security posture to better protect internet users

• September 14, 2023 14 Sep'23

  Google, Microsoft and Mozilla push browser updates to foil zero-day

  A zero-day in Google’s Chrome browser was first reported by surveillance researchers at The Citizen Lab and Apple, but also affects other browsers

• September 14, 2023 14 Sep'23

  As vehicle safety regulations loom, carmakers fret over cyber risks

  Global, UN-backed car safety and security regulations come into force next year, and automotive bosses say they are not only unprepared, but “swamped” by a tide of compliance and security risks

• September 11, 2023 11 Sep'23

  Networking tech firms scrum down for Rugby World Cup

  Leading communications providers look to form off-pitch connectivity spine of team with infrastructures using advanced networking and mixed reality technologies at pinnacle of world rugby

• September 08, 2023 08 Sep'23

  How Netskope is driving growth in APAC

  Netskope is growing at over 50% year on year in the Asia-Pacific region, but the single-vendor SASE supplier is not limiting its customers to its own offerings

• September 04, 2023 04 Sep'23

  How startup Once.net and Cloudflare secured the 2023 Eurovision vote

  When the Eurovision Song Contest introduced paid-for public voting from outside Europe in 2023, it faced new cyber challenges. Learn how Dutch startup Once.net and Cloudflare teamed up to secure and support the big night

• September 01, 2023 01 Sep'23

  Threat actors exploiting unpatched Juniper Networks devices

  A series of vulnerabilities in Juniper Networks firewalls and switches appear to be being exploited in the wild to enable remote code execution, with thousands of devices thought to be exposed

• August 17, 2023 17 Aug'23

  Carlsberg turns tap on massive global SASE deployment

  Global brewer addresses strategic IT challenges at scale, improving application delivery, modernising network security capabilities and standardising IT service delivery across more than 200 locations and 25,000 remote users

• August 15, 2023 15 Aug'23

  Nokia, Nomios Group to triple capacity for GÉANT European research network

  10-year frame agreement pegs comms provider as sole IP critical-network provider for massive backbone network migration to deliver capacity to support long-term scientific collaboration

• July 25, 2023 25 Jul'23

  Tetra radio users’ comms may have been exposed for years

  A number of flaws in the encryption algorithms used in the secure Tetra radio communications standard have potentially left users exposed to snooping

• July 24, 2023 24 Jul'23

  Citrix NetScaler users told to patch new zero-day urgently

  A vulnerability disclosed and patched last week by Citrix appears to be being exploited by China-backed threat actors as a zero-day, prompting warnings from government cyber bodies

• July 21, 2023 21 Jul'23

  Government boosts protection for encryption in Online Safety Bill but civil society groups concerned

  House of Lords adopts amendment to require Ofcom to commission a report before requiring technology companies to scan encrypted messages, but drops proposals for judicial oversight

• July 20, 2023 20 Jul'23

  Attention-seeking KillNet hacktivists becoming more dangerous

  The KillNet DDoS gang seems to be becoming more dangerous, but its primary goal remains to create a lot of noise and draw media attention, according to latest analysis

• July 17, 2023 17 Jul'23

  Shift towards ‘smarter’ digital life as broadband security, sustainability become key needs

  Cisco survey finds consumer expectations will reshape the needs and economics of the internet

• July 05, 2023 05 Jul'23

  Germany: European Court of Justice hears arguments on lawfulness of EncroChat cryptophone evidence

  The European Court of Justice will decide whether the collection and sharing of data intercepted by law enforcement from EncroChat crypto phone network is compatible with European law

• July 04, 2023 04 Jul'23

  How Maxeon is forging the path to SASE

  Maxeon Solar Technologies is building out its security service edge capabilities with an eye on a SASE implementation that combines best of breed offerings from different suppliers

• June 28, 2023 28 Jun'23

  Dubai Smart IoT unclear on deadline, but not ambition

  While the Dubai Smart IoT strategy reads like any other ambitious – and equally ambiguous – plan for the overhaul of a gulf state economy, there is still a clear message that the country is serious about technology

• June 28, 2023 28 Jun'23

  Stolt-Nielsen SASE looks to optimise global connectivity, security for hybrid workers

  Bulk liquid logistics and sustainable land-based aquaculture expert advances secure digital transformation plans and operational efficiency

• June 27, 2023 27 Jun'23

  Three years on, EncroChat cryptophone hack nets 6,500 arrests and seizures of €900m

  French and Dutch prosecutors say three years after they infiltrated the EncroChat cryptophone network in a novel hacking operation, Europe’s courts are opening the way for more collaboration and data sharing between law enforcement agencies

• June 22, 2023 22 Jun'23

  Orange Business leads team to deliver cloud-native managed SASE to enterprises

  Enterprise division of the global telco taps in-house cyber security practice and leading cyber security technology provider to offer simpler operational model for customers with end-to-end accountability, improved agility, efficiency and performance

• June 19, 2023 19 Jun'23

  Huawei slams EU high-risk supplier claims as against principles of free trade

  Comms tech giant comes out swinging against being singled out by EC commissioner as having high-risk supplier status in 5G mobile infrastructures

• June 19, 2023 19 Jun'23

  Early June Microsoft outages were result of large-scale DDoS hit

  Investigations into recent outages on Microsoft Azure and Outlook services have turned up evidence of a massive distributed denial-of-service attack

• June 09, 2023 09 Jun'23

  Extreme Networks emerges as victim of Clop MOVEit attack

  Network equipment and services supplier Extreme Networks has revealed its instance of Progress Software’s MOVEit tool was compromised in the ongoing Clop cyber attack

• June 09, 2023 09 Jun'23

  Barracuda ESG users told to throw away their hardware

  Owners of Barracuda Email Security Gateway appliances are being told that they will need to throw out and replace their kit after it emerged that a patch for a recently disclosed vulnerability had not done the job

• May 16, 2023 16 May'23

  Executive interview: DNS designer David Holtzman discusses net security

  How is it possible for criminals to lure people onto fake websites? Holtzman says it’s because DNS is fundamentally insecure

• May 11, 2023 11 May'23

  Investigatory Powers Tribunal finds NCA EncroChat hacking warrants were lawful

  Investigatory Powers Tribunal refers questions over whether messages obtained from the EncroChat encrypted phone network are legally admissible back to the criminal court

• May 10, 2023 10 May'23

  MPLS and SD-WAN fail to meet needs of modern enterprise

  Study from network architect argues modern uses cases have broken the network edge, with both traditional topology and much-touted software-defined replacement not cutting it

• May 08, 2023 08 May'23

  Chat control: EU lawyers warn plans to scan encrypted messages for child abuse may be unlawful

  Leaked legal advice warns that European ‘chat control’ proposals to require tech companies to scan private and encrypted messages for child abuse are likely to breach EU law

• May 05, 2023 05 May'23

  IT Priorities 2023: Distributed IT and hybrid work drive adoption of new networks

  Research shows security continues to dominate networking needs, along with the need to support users wherever they are, with firms more than ready to invest in future of work initiatives

• April 24, 2023 24 Apr'23

  Emergency alert test review confirmed after ‘small number’ of mobile users excluded

  In wake of emergency alert test on 23 April, government confirms review into why some 4G and 5G mobile phones were excluded

• April 19, 2023 19 Apr'23

  Orange joins forces with industry, academia to build French quantum comms

  Leading telco joins industry leaders, start-ups and academic players announce the official launch of a programme in charge of deploying Quantum secure communications networks in France.

• April 19, 2023 19 Apr'23

  Cisco urges users to keep its network hardware up-to-date

  In the wake of a campaign of threat activity targeting a six-year-old Cisco router vulnerability, the networking giant has warned users to be on high alert and update their hardware

• April 18, 2023 18 Apr'23

  Enterprise networking sees age of SASE and network as a service

  Report reveals complexity of third workspace has transformed how modern IT organisations view network and security, with 98% of IT executives planning to increase investment in cloud services

• April 18, 2023 18 Apr'23

  Tech companies and NGOs urge rewrite of Online Safety Bill to protect encrypted comms

  The Online Safety Bill faces amendments in the House of Lords amid concerns that it could weaken the security of end-to-end encrypted communications for UK citizens

• April 13, 2023 13 Apr'23

  Thousands at risk from critical RCE bug in legacy MS service

  Thousands of organisations worldwide are at risk from three vulnerabilities – one critical – in a legacy Microsoft service that they may not be aware they are running

• April 12, 2023 12 Apr'23

  Netskope claims hybrid work ‘revolution’ with SASE client and endpoint SD-WAN

  Netskope looks to deliver consistent security and superior user experience for hybrid workers through reduced costs and complexity from extended borderless SD-WAN and SASE

• March 07, 2023 07 Mar'23

  APAC IT leaders bullish on tech spending

  Over half of respondents in this year’s IT Priorities study have bigger IT budgets as they continue to make strategic investments in cyber security, cloud and automation, among other areas