News

Privacy and data protection

• September 04, 2018 04 Sep'18

  UK and allies call for backdoors in encryption products

  The Five Eyes intelligence alliance is calling on tech firms to include backdoors in their encrypted products to give access to law enforcement authorities or face various measures

• September 03, 2018 03 Sep'18

  Majority of UK firms not insured for data breaches

  Many UK firms are not insured against information security breaches and data loss, and would have to spend £1m on average to recover from a breach, a report reveals

• August 31, 2018 31 Aug'18

  Security Serious Week to feature flash mob event

  “Flash mob” event will create a human collage, highlighting cyber security advice

• August 31, 2018 31 Aug'18

  Fraudulent money transfers are top aim of business email compromise

  Business email compromise is increasingly popular with cyber criminals to steal money and information as well as spread malware, security researchers find

• August 30, 2018 30 Aug'18

  Fourth man jailed for iCloud celebrity hacking

  The final hacker charged with leaking nude images of female celebrities in 2014 has been jailed

• August 30, 2018 30 Aug'18

  US and UK days away from European Parliament ultimatum to suspend data transfers to the US

  Threat to Privacy Shield as the European Union and US approach a critical European Parliament deadline to suspend data transfers from the EU to the US

• August 29, 2018 29 Aug'18

  Improving security is top driver for ISO 27001

  Organisations are implementing the ISO 27001 standard in recognition of the fact that cyber attacks are increasingly inevitable and that it is best to be well-prepared to fend off attacks and mitigate their effect

• August 28, 2018 28 Aug'18

  Challenge to anti-GDPR immigration exemption in DPA to go ahead

  Two human rights groups are challenging a controversial clause in new UK data protection legislation that they say is in conflict with the EU’s Charter of Fundamental Rights and undermines the General Data Protection Regulation

• August 28, 2018 28 Aug'18

  Sharp rise in business email compromise

  Cyber attackers are expanding their attack methods to steal money and to gain access to corporate and employee data, a report reveals

• August 24, 2018 24 Aug'18

  UK universities targeted by Iranian hackers

  UK universities are among those targeted by a cyber threat group associated with the Iranian government

• August 23, 2018 23 Aug'18

  Cryptographic agility is key to post-quantum security

  Although post-quantum security is not an issue for all organisations today, an expert believes that those needing to ensure data is secure for decades to come should aim to achieve cryptographic agility above all else

• August 23, 2018 23 Aug'18

  No Deal Brexit papers warn of stark future for UK tech

  The government has published the first of its No Deal Brexit contingency planning notices, containing sobering messages for the UK technology industry

• August 22, 2018 22 Aug'18

  European cloud adopters still lack basic security

  Despite outpacing the rest of the world, the majority of organisations adopting cloud in Europe, the Middle East and Africa lack basic security, a report reveals

• August 22, 2018 22 Aug'18

  Nearly a third of organisations still not GDPR ready

  As the UK and other states implement the EU’s GDPR, many organisations admit they are still not fully compliant, but most claim to be able to respond to data subject access requests

• August 22, 2018 22 Aug'18

  Superdrug denies data breach

  Superdrug has warned online customers it believes may have had personal details exposed, but claims its systems were not compromised, in what could be the first GDPR-related extortion attempt

• August 21, 2018 21 Aug'18

  Veritas aims to boost NetBackup with simplified UI and setup

  Two decades-old enterprise product upgraded with backups that can be set in three clicks, down from 30, plus instant VM workload recovery and capacity monitoring and planning

• August 21, 2018 21 Aug'18

  Retail and finance top cyber targets

  Retail and finance remain the top cyber attack targets, but the second quarter also saw a spike in attacks against the manufacturing industry and an increase in remote desktop attacks, a report reveals

• August 21, 2018 21 Aug'18

  Microsoft announces free election cyber defence tools

  Microsoft has revealed it recently disrupted domains associated with a Russian cyber attack group believed to be targeting US political groups ahead of the midterm elections

• August 21, 2018 21 Aug'18

  Malaysia’s financial sector warms up to cloud, but lacks security leadership

  Almost two-thirds of Malaysia’s financial services firms are developing a cloud strategy, but not all have a security plan in place

• August 20, 2018 20 Aug'18

  NHS trusts lose nearly 10,000 patient records a year

  Report calls for NHS trusts to work to abolish handwritten notes in hospitals to prevent loss of personal documents and to introduce a patient identity protocol

• August 20, 2018 20 Aug'18

  Planned Australian law raises tech firms’ security concerns

  A digital industry group representing some of the world’s largest tech firms is opposed to proposed Australian laws aimed at compelling them to help security agencies and police

• August 17, 2018 17 Aug'18

  Apple confirms teen hacker took no customer data

  Teenage “fan” who broke into Apple’s mainframe from his home in Melbourne is believed to have downloaded 90GB of secure files, but no customer data

• August 16, 2018 16 Aug'18

  Global infosec spending to top $114bn in 2018, says Gartner

  The need for improved detection, response and privacy is driving the demand for security products and services in response to security risks, business needs and industry changes, Gartner reveals

• August 16, 2018 16 Aug'18

  Google Chrome flaw puts privacy at risk

  Imperva security researcher urges Google Chrome users to update to the latest version after discovering a vulnerability that could be exploited to uncover private data

• August 14, 2018 14 Aug'18

  Businesses urged to patch Microsoft flaw allowing MFA bypass

  Security researchers are urging enterprises to update their software after the discovery of a vulnerability that could undermine the security provided by multifactor authentication

• August 13, 2018 13 Aug'18

  ICO strengthens commitment to technology and innovation

  Information Commissioner’s Office has demonstrated its commitment to technology and innovation by appointing a new executive director to focus on this area

• August 13, 2018 13 Aug'18

  Most security pros concerned about election infrastructure

  A majority of information security professionals believe that election infrastructure is vulnerable to cyber attack, a survey shows

• August 13, 2018 13 Aug'18

  UK firms concerned about cyber arms race

  Continuous investment and activity are key in the cyber arms race, according to Databarracks, as research shows UK firms are worried about keeping up with security challenges

• August 13, 2018 13 Aug'18

  Millions of businesses vulnerable to fax-based cyber attack

  Hackers could exploit security vulnerabilities in fax machines to launch cyber attacks in millions of organisations around the world, researchers warn, underlining the need for cyber resilience

• August 12, 2018 12 Aug'18

  Over 146 billion records to be stolen over next five years

  The US will bear the brunt of data exfiltration efforts by cyber criminals, though Asia-Pacific nations such as Singapore will not be spared

• August 10, 2018 10 Aug'18

  Butlin’s warns of potential personal data breach

  Holiday camp chain blames cyber breach on a phishing attack, implying that attackers were able to steal user credentials to access customer data – and underlining the need for security awareness training

• August 09, 2018 09 Aug'18

  ICO fines Emma’s Diary £140,000

  The UK’s privacy watchdog has fined a marketing company for illegally collecting and selling personal information for political campaigning

• August 09, 2018 09 Aug'18

  Incomplete visibility a top security failing

  Incomplete visibility of IT environments is among the most common basic enterprise security failings, as most organisations are still failing to achieve basic cyber security hygiene, a survey reveals

• August 08, 2018 08 Aug'18

  Cyber security double agents most common in the UK

  Cyber security professionals who alternate between criminal and legitimate activities or move full-time into cyber criminal activity are more common in the UK than other countries, a report reveals

• August 08, 2018 08 Aug'18

  Australia calls for interventionist approach in new cyber agenda

  The Australian government is forming a cyber defence network comprising security agencies and private sector partners to support a more interventionist approach towards cyber security

• August 06, 2018 06 Aug'18

  Mobile banking Trojans reach all-time high

  Mobile banking Trojans topped the list of cyber threats in the second quarter of the year, according to research by Kaspersky Lab

• August 06, 2018 06 Aug'18

  Half of UK consumers to exercise GDPR rights within a year

  More than half of UK consumers will exercise their General Data Protection Regulation rights within a year and almost two-thirds will retract or review data use because of the Facebook-Cambridge Analytica scandal, a study shows

• August 03, 2018 03 Aug'18

  UK security centre to launch IoT security standard

  The London-based Centre for Strategic Cyber Space and Security Science is working on an internet of things security standard and has roped in participants from eight markets

• August 03, 2018 03 Aug'18

  Google to alert firms of state-sponsored attacks on G Suite users

  As cyber security increasingly becomes a market differentiator, Google has announced that businesses using G Suite cloud-based software can opt in to cyber attack alerts

• August 02, 2018 02 Aug'18

  Gorgon Group shows simple cyber attacks remain effective

  A highly effective cyber attack group that appears to be based in Pakistan is carrying out targeted attacks against nation states at the same time as criminal operations, researchers have found

• August 02, 2018 02 Aug'18

  Reddit breach exposes 2FA flaws

  Reddit has reported a password breach despite using 2FA, exposing the weaknesses of two-factor authentication based on mobile text messages

• August 02, 2018 02 Aug'18

  GDPR harmonised with local laws in Nordic EU states

  Sweden provides an interesting challenge for the European Union’s data protection regulation due to its laws around freedom of press and free speech

• August 02, 2018 02 Aug'18

  Three Carbanak cyber heist gang members arrested

  Three alleged members of the Carbanak gang believed to be responsible for more than 100 cyber heists worldwide have been arrested, US authorities have announced

• August 01, 2018 01 Aug'18

  Bromium evolves virtualisation-based security

  Virtualisation-based security firm Bromium has evolved its technology to offer bidirectional protection for applications and underlying operating systems

• August 01, 2018 01 Aug'18

  Top dark web indicators of compromise

  There are 10 common activities on the dark web that indicate a data breach or some other security compromise has taken place, according to a specialist monitoring firm

• July 31, 2018 31 Jul'18

  UK business overestimating level of consumer trust, study shows

  UK consumer trust is low, with the majority of UK businesses admitting to selling customer data, a report reveals

• July 31, 2018 31 Jul'18

  Australia’s health sector reports most data breaches again

  In the first full quarter since Australia’s mandatory breach disclosure scheme came into effect, healthcare providers reported the most data breaches amid controversy over the national health record system

• July 31, 2018 31 Jul'18

  Dixons Carphone ups data breach figure to 10 million

  Dixons Carphone now believes the number of personal data records affected in 2017’s data breach is nearly 10 times greater than initially thought

• July 31, 2018 31 Jul'18

  Briton ran pro-Kremlin disinformation campaign that helped Trump deny Russian links

  A British IT manager and former hacker from Darlington ran a disinformation campaign that duped former US intelligence agents and provided Donald Trump with manufactured “evidence” to deny that Russia interfered with the US election

• July 30, 2018 30 Jul'18

  Pentagon flags risky software suppliers

  The Pentagon has drawn up a list of software suppliers that it wants the US military and defence contractors to avoid due to fears of risks to national security