News

Privacy and data protection

September 07, 2016 07 Sep'16
NSA used Iraq war to develop surveillance capability, documents show

As the controversial Investigatory Powers Bill inches closer to becoming law, NSA documents reveal that the agency used the Iraq war to develop and expand its surveillance infrastructure
September 07, 2016 07 Sep'16
Basic security could have prevented OPM breach, says report

Basic security controls and malware-detection tools could have prevented the breach of more than 21 million records at the US Office of Personnel Management in 2015, claims a congressional report
September 06, 2016 06 Sep'16
Use ransomware to get security buy-in, says Trend Micro CTO

Ransomware is one of the top cyber threats to business, but organisations should use that to engage stakeholders and review processes and defences, says Trend Micro CTO Raimund Genes
September 01, 2016 01 Sep'16
Lessons from the Dropbox breach

Dropbox is the latest major company to confirm a data breach, albeit four years old, but – as with all recent data breaches by cloud-based services – it highlights some key security lessons

August 31, 2016 31 Aug'16
Evidence of DNS tunnelling in two-fifths of business networks

Cyber criminals are capitalising on the failure of many businesses to examine their DNS traffic for malware insertion and data exfiltration, according to Infoblox
August 30, 2016 30 Aug'16
Westpac bank launches Databank data protection service

Australia's Westpac bank is offering organisations that share customer data a service that it says securely locks down personal information
August 30, 2016 30 Aug'16
Encryption hiding malware in half of cyber attacks

Cyber attackers are using encryption to hide malicious activity, making it increasingly difficult to find as more organisations turn to encryption to protect data, a study has revealed
August 26, 2016 26 Aug'16
Law firms planning litigation market for GDPR

Businesses should be preparing for the storm of litigation that is likely to be unleashed when the GDPR goes into force, warns Stewart Room of PwC Legal
August 25, 2016 25 Aug'16
French submarine maker data breach highlights challenges of IP security

French naval contractor data breach proves that protecting intellectual property is challenging, say security experts
August 19, 2016 19 Aug'16
Expect ransomware arrests soon, says bitcoin tracking firm Chainalysis

Law enforcement organisations are set to ramp up arrests of cyber criminals behind ransomware attacks, according to financial technology startup Chainalysis

August 19, 2016 19 Aug'16
Police arrest woman in connection with Sage data breach

A woman has been arrested on suspicion of fraud in connection with a data breach at accounting software firm Sage
August 16, 2016 16 Aug'16
Cerber ransomware service reaps $195,000 profit in a month

Franchises such as Cerber are making highly profitable ransomware available to a broader range of cyber criminals, according to a report by security firm Check Point
August 15, 2016 15 Aug'16
Financial sector faces era of cyber mega heists

Banks and other financial institutions are threatened by a new breed of elite cyber criminals running professional operations that will use any means to achieve their goals, says Barclays security chief
August 15, 2016 15 Aug'16
Sage data breach underlines insider threat

Organisations need to take insider threats more seriously say security experts, as Sage warns that a data breach using an internal log-in may have compromised employee data at nearly 300 UK firms
August 10, 2016 10 Aug'16
MI5 staff repeatedly overrode data surveillance rules

Security service MI5 is responsible for 210 “clear contraventions” over five years for the way it accessed private internet and telephone data
August 08, 2016 08 Aug'16
Strider cyber attack group deploying malware for espionage

Symantec security researchers have uncovered a spying campaign by a previously unknown group using modular malware as stealthware
August 05, 2016 05 Aug'16
Banner Health cyber breach underlines need for faster intrusion detection

A data breach at Banner Health has highlighted the importance of intrusion detection and prompted calls for greater cyber security investment in the increasingly targeted healthcare industry
August 05, 2016 05 Aug'16
Artificial intelligence takes centre stage in cyber security

Artificial intelligence-led cyber security technology has been in the spotlight at two major industry conferences in Las Vegas, signalling a firm trend in cyber defence research
August 04, 2016 04 Aug'16
Italian-based Android RAT spies on mobiles in Japan and China, say researchers

Researchers discover an Italian-based Android RAT designed for spying that is targeting mobile devices using their unique identification codes
July 28, 2016 28 Jul'16
UK’s top security judges struggle to assess privacy threats

Technological advancements make it difficult for the Investigatory Powers Tribunal to assess privacy threats, say the tribunal’s own judges
July 26, 2016 26 Jul'16
Date set for landmark hearing into EU-US data transfers

Irish court hearing triggered by Austrian law student Max Schrems could have huge implications for EU-US trade and the data privacy rights of millions of EU citizens
July 21, 2016 21 Jul'16
Security industry welcomes cyber crime’s inclusion in official stats

The security industry welcomes the inclusion of cyber crime statistic in official crime reports to highlight the size and nature of the threat
July 21, 2016 21 Jul'16
Mobile payments get Isaca’s security approval

Mobile contactless payments enable three key security controls that make them more secure than physical and e-commerce payments, according to a report by Isaca
July 19, 2016 19 Jul'16
Carbon Black bets on next-generation antivirus

Carbon Black is betting on next-generation antivirus technology by acquiring Confer to extend the capability and appeal of its endpoint protection offerings
July 19, 2016 19 Jul'16
Case study: Rémy Cointreau boosts security and productivity

Drinks firm Rémy Cointreau uses Centrify’s identity and mobile management to simplify security, improve business agility and reduce IT costs
July 14, 2016 14 Jul'16
Cyber attacks cost UK business more than £34bn a year, study shows

Nearly half of UK firms lack advanced cyber defences, despite the high level of concern about cyber attacks and associated costs
July 12, 2016 12 Jul'16
IBM sets up security centre in Canberra

IBM leads the charge as large private businesses invest heavily in security resources across Australia in an attempt to close the security gap
July 11, 2016 11 Jul'16
Datadog calls for password reset after cyber breach

Monitoring and analytics firm detected unauthorised activity associated with production servers and database of user credentials
July 06, 2016 06 Jul'16
UK's Darktrace aims to lead the way to automatic cyber security

Darktrace hopes to be a leader in the move to automated cyber security to free up security professionals to focus on business risk and innovation
June 29, 2016 29 Jun'16
Lauri Love using illness as a shield against extradition, claims prosecution

Prosecution lawyer questions whether activist Lauri Love is not fit enough to stand trial in the US over hacking charges,as expert witnesses warn that US prisons are ill-equipped for people with mental health problems.
June 29, 2016 29 Jun'16
Most cyber security strategies ignore the way attackers really work

Cyber attackers use more legitimate software than malware, which means most organisations are incapable of detecting much of the malicious activity in their networks, a report reveals
June 29, 2016 29 Jun'16
Lauri Love may be faking mental illness claims lawyer for US

Prosecution lawyer Peter Caldwell questions whether activist Lauri Love is exaggerating mental health problems to avoid extradition to face hacking charges in the US
June 28, 2016 28 Jun'16
Lauri Love suicide risk if extradited to US over hacking allegations

Westminster Magistrates’ Court hears evidence from medical experts that alleged hacker Lauri Love is at risk of suicide if extradited to the US
June 21, 2016 21 Jun'16
Enterprises urged not to view security as a barrier to internet of things adoption

The Lower Colorado River Authority’s chief administrative officer urges enterprises to balance the risks of using the internet of things with the benefits connected devices can bring
June 21, 2016 21 Jun'16
Cyber security industry mostly welcomes report on TalkTalk breach

Most of the recommendations of a government committee inquiry into the TalkTalk breach have been welcomed, but pundits have expressed reservations about some, particularly proposed new fines
June 17, 2016 17 Jun'16
How MI5 and MI6 gather your personal data for surveillance

Publicly released documents shed light on the many databases and sources used by the intelligence services to gather bulk personal data about UK citizens
June 14, 2016 14 Jun'16
Shadow data and the risks posed by cloud storage and apps

Cloud storage and apps can open up an organisation to risks of data leakage. Computer Weekly looks at key areas of vulnerability and what you can do to prevent your data going viral
June 13, 2016 13 Jun'16
EU firms slow in detecting cyber attacks, study shows

European firms take an average of 469 days to discover a compromise, compared with an average of 146 days globally, according to Mandiant
June 12, 2016 12 Jun'16
Philippines government data breach is a warning to Asean region

Security is a rising concern in the Asean region, with fears fuelled by incidents such as the recent hacking incident in Manila
June 10, 2016 10 Jun'16
IoT security: Lack of expertise will hurt, says Bruce Schneier

Government action at national and international levels is essential for addressing IoT security issues, but the relevant expertise is lacking, according to security expert Bruce Schneier
June 10, 2016 10 Jun'16
Small businesses bearing the brunt of cyber crime, says FSB

The Federation of Small Businesses is calling for more government support for its members in defending against cyber threats
June 07, 2016 07 Jun'16
Millions of sensitive IT services exposed to the internet, study finds

Encryption should become the default as study reveals millions of sensitive services are exposed to the internet, says Rapid7
June 06, 2016 06 Jun'16
How emails sent to and from Parliament are monitored

Government officials deny that emails sent by MPs are open to surveillance by GCHQ and NSA - we examine the evidence
June 01, 2016 01 Jun'16
MPs’ private emails are routinely accessed by GCHQ

Computer Weekly investigation reveals the extent of interception of MPs’ and peers’ email communications and data
May 26, 2016 26 May'16
UK government details plans for National Cyber Security Centre

The objectives of the UK’s National Cyber Security Centre are to address systemic vulnerabilities, reduce risks, respond to serious incidents and nurture national cyber security capability
May 24, 2016 24 May'16
Network Collapse: Why the internet is flirting with disaster

It’s surprising the internet works at all, given the age of its core software. The question is, can we catch it before it falls over?
May 19, 2016 19 May'16
Lessons from LinkedIn data breach revelations

There are several important lessons to be learned from revelations about LinkedIn's 2012 data breach, say security experts
May 18, 2016 18 May'16
Cyber espionage campaign targets Ukraine separatists

Security researchers discover a surveillance operation against separatists in Eastern Ukraine using spear phishing attacks to spread previously unknown malware
May 17, 2016 17 May'16
Police set for better engagement with UK tech firms

The policing lead for digital investigation and intelligence says new structures will improve engagement and collaboration between the UK tech industry and police forces
May 13, 2016 13 May'16
Time to shift information security focus away from prevention, says Swiss bank CISO

Organisations need a new approach which recognises security is “breakable”, according to Michael Meli