News
Security policy and user awareness
-
July 13, 2020
13
Jul'20
Zoom zero-day a reminder to stop using Windows 7
Researchers have disclosed a newly discovered zero-day vulnerability to videoconferencing service Zoom, which only affects users of Windows 7 systems
-
July 09, 2020
09
Jul'20
HSBC customers targeted in new smishing scam
SMS phishing scam is targeting HSBC customers in the UK to trick them into handing over their bank account details
-
July 09, 2020
09
Jul'20
Majority of security pros fed up with alert fatigue
A vast majority of security professionals say they experience alert fatigue, and 88% are facing challenges with their current SIEM setup, according to a report
-
July 09, 2020
09
Jul'20
Clearview AI faces ICO investigation over facial recognition
Controversial company that scraped data from the public internet to build its facial recognition algorithm faces a joint UK-Australian investigation into its practices
-
July 09, 2020
09
Jul'20
Most finance firms are multicloud, but many are unprepared for public cloud cyber attacks
Financial services firms are moving to the cloud at pace, but many are uncertain whether they could cope with an attack on an application based in the public cloud
-
July 09, 2020
09
Jul'20
Pubs and restaurants failing on cyber fraud protection
Virtually all of the UK’s most popular restaurant and pub brands are failing to proactively block fraudulent emails from reaching their targets
-
July 08, 2020
08
Jul'20
Political awareness needed to ethically handle migration data, panel claims
Understanding the political, social and economic relationships between different groups in society is needed to ensure location data is not used in ways that further endanger already vulnerable people on the move
-
July 08, 2020
08
Jul'20
Use of spyware apps linked to domestic abuse soars in lockdown
The rise in domestic violence during the pandemic has been linked to increase use of stalkerware apps by abusers
-
July 08, 2020
08
Jul'20
Cosmic Lynx cyber crime group takes BEC to new heights
Newly identified Russian threat group targets large organisations with increasingly dangerous business email compromise attacks
-
July 08, 2020
08
Jul'20
Over 15 billion credentials for sale on dark web
Research by Digital Shadows reveals the scale of the security threat facing consumers as it uncovers 15 billion usernames and passwords stolen in more than 100,000 different data breaches
-
July 07, 2020
07
Jul'20
Cyber4Summer scheme to divert young people from cyber crime
Cyber4Summer platform will offer 100 different tracks covering a range of security skills to divert them from falling into a life of cyber crime
-
July 06, 2020
06
Jul'20
CIO interview: David Allison, global head of IT, First Quantum Minerals
For his first global CIO role, the IT chief had to tackle unusual challenges such as reliable networking and IT use in inhospitable mining environments in developing countries
-
July 03, 2020
03
Jul'20
Chinese law may require companies to disclose cyber-security preparations outside China
Companies with Chinese operations may have to disclose information about the security of their networks in other countries under China’s draft data security law
-
July 02, 2020
02
Jul'20
Locked-down teens flock to NCSC CyberFirst training scheme
A record number of 14 to 17-year-olds have signed up to the National Cyber Security Centre’s CyberFirst summer school
-
July 01, 2020
01
Jul'20
UK’s unsung cyber security heroes sought
Nominations have opened for the fifth annual Security Serious Unsung Heroes Awards
-
July 01, 2020
01
Jul'20
Zoom making progress on cyber security and privacy, says CEO
Three months after being hit by a spate of security incidents, Zoom’s CEO, Eric Yuan, has been discussing progress towards a more secure product
-
July 01, 2020
01
Jul'20
Remote workers more aware of security, but still flout the rules
Almost three-quarters of remote workers reckon they have gained in cyber security awareness during lockdown, but don’t seem to be especially bothered about keeping themselves safe
-
July 01, 2020
01
Jul'20
Mysterious EvilQuest macOS ransomware spreads through torrents
A new strain of ransomware, dubbed EvilQuest, is threatening Apple Mac environments, and seems to behave quite oddly
-
July 01, 2020
01
Jul'20
FakeSpy Android malware targets Royal Mail app users
The FakeSpy malware was first identified in October 2017 but is now significantly more powerful and dangerous
-
June 30, 2020
30
Jun'20
Australia to invest a record A$1.35bn in cyber security
The Australian government is making its largest ever investment in cyber security over the next decade to identify cyber threats, disrupt foreign cyber criminals and build new capabilities
-
June 30, 2020
30
Jun'20
ReversingLabs makes over 100 Yara rules publicly available
Threat intelligence specialist is making its IP available on GitHub to support malware hunters in their work
-
June 30, 2020
30
Jun'20
The Security Interviews: What CISOs can learn from Covid-19
Mike Lloyd, CTO at Redseal, holds 21 cyber security patents and a PhD in stochastic epidemic modelling from Heriot-Watt University in Edinburgh, so is probably the man to talk to when it comes to cyber security in the world of Covid-19
-
June 30, 2020
30
Jun'20
Complex security estates hinder incident response
The more disparate security tools in use in an organisation, the harder it becomes to mount an effective incident response
-
June 29, 2020
29
Jun'20
Phishing back in vogue as ransomware vector
Researchers have observed an increase in phishing as a means to deliver ransomware payloads – and organisations don’t appear to be prepared
-
June 29, 2020
29
Jun'20
Evil Corp’s latest ransomware project spreading fast
A new ransomware strain dubbed WastedLocker is spreading rapidly and targeting major corporations
-
June 29, 2020
29
Jun'20
Out of date security laws leave UK plc at risk during pandemic
The CyberUp coalition has written to Boris Johnson to urge him to reform the UK’s 30 year-old cyber crime laws
-
June 26, 2020
26
Jun'20
Coronavirus: Cyber crime landscape evolving as lockdown eases
As some countries begin to gradually ease Covid-19 lockdown measures, cyber criminals’ tactics are changing, but the pandemic remains a tempting lure
-
June 25, 2020
25
Jun'20
Pub ‘check-in’ apps provoke fresh privacy concerns
With pubs and restaurants required to collect customer data for contact tracing when they reopen, data privacy risks will be heightened
-
June 24, 2020
24
Jun'20
NCSC catches a million phishes in its nets
The NCSC has racked up a million suspicious email reports from the public just two months after launching a reporting service, but the lucky sender won’t be receiving a grand prize
-
June 24, 2020
24
Jun'20
EU judges GDPR an overall success, but changes still needed
Two years after its implementation, an EU report says that the GDPR is achieving what it set out to do, with a few reservations
-
June 24, 2020
24
Jun'20
Brits will sell their personal data for pennies
Surprising findings from an Okta report on digital identity suggest Brits would be willing to part with valuable personal data for a surprisingly low amount
-
June 23, 2020
23
Jun'20
Neurodiversity on the rise among career hackers
More diverse hackers enhance the ability of both traditional and cutting-edge cyber security solutions to find and fix vulnerabilities, according to a new report from Bugcrowd
-
June 23, 2020
23
Jun'20
Flash-based MacOS malware hides in plain sight
By masquerading as a legitimate Adobe web application, the new malware strains can trick Mac users into bypassing their on-board defences
-
June 23, 2020
23
Jun'20
Concern over digital risk falls dramatically during pandemic
Brits are understandably more worried about the NHS than personal cyber security
-
June 21, 2020
21
Jun'20
APAC still hotbed for cyber attacks
Individuals and organisations in APAC are encountering malware more frequently than the rest of the world, study finds
-
June 18, 2020
18
Jun'20
Cisco patches dangerous Webex vulnerability
CVE-2020-3347 bug enables cyber criminals to steal meeting records from within Cisco’s Webex service
-
June 18, 2020
18
Jun'20
Check Point uncovers targeted Microsoft Office 365 phishing campaign
Organised criminal campaign exploited Adobe, Oxford University and Samsung web domains to trick users into giving up their passwords
-
June 18, 2020
18
Jun'20
Zoom U-turns on end-to-end encryption
Embattled video-conferencing provider Zoom backtracks on previous refusals to provide end-to-end encryption to free users
-
June 17, 2020
17
Jun'20
Coronavirus: 50% of security pros had no pandemic contingency plan
A survey of security professionals conducted on behalf of Bitdefender reveals the lack of forward planning for events such as the Covid-19 coronavirus pandemic
-
June 16, 2020
16
Jun'20
UK-US data deal puts Brexit data adequacy pact at risk
European Data Protection Board writes to MEPs saying the UK is at risk of failing to strike a post-Brexit data adequacy accord if its data protection agreements with the US don’t strike the right note
-
June 16, 2020
16
Jun'20
Activists call on Zoom to implement encryption for all
A coalition of tech organisations and nonprofits have urged Zoom CEO Eric Yuan to make end-to-end encryption available to all users
-
June 15, 2020
15
Jun'20
Banking trojans roar back to prominence in May
Check Point sees an upswing in malicious activity around a number of classic banking trojan malware variants
-
June 15, 2020
15
Jun'20
Accessories store Claire’s hit by Magecart credit card fraudsters
Attackers gained access to retailer’s website as long ago as March
-
June 12, 2020
12
Jun'20
NHS email service users ensnared in phishing attack
More than 100 accounts on the NHSmail service were affected by attack, but health service says no patient data was accessed
-
June 12, 2020
12
Jun'20
Fake contact-tracing apps delivering banking trojans
Spoof government coronavirus apps are popping up all over the world, says the Anomali Threat Research team
-
June 12, 2020
12
Jun'20
100,000 cheap wireless cameras vulnerable to hacking
Active devices built by Chinese firm HiChip have been sold in the UK as webcams and connected baby monitors
-
June 11, 2020
11
Jun'20
Coronavirus: Bungled British response leads to rise in security risks
Covid-19 cyber security threats are evolving over the course of the pandemic, becoming more targeted to virus hotspots such as the UK
-
June 10, 2020
10
Jun'20
Decade-old vulnerability among 129 Patch Tuesday fixes
A 10 year-old bug in Windows Group Policies could easily enable attackers to gain highly privileged user status on target systems, opening the doors to a wave of cyber attacks
-
June 10, 2020
10
Jun'20
Nasty surprises lurking in furloughed employees’ inboxes
Research conducted by KnowBe4 points to a looming email security problem as furloughed employees head back to work
-
June 10, 2020
10
Jun'20
CaixaBank introduces facial recognition ATMs
Spanish bank broadens its use of facial recognition technology on cash machines