News

Security policy and user awareness

• October 14, 2020 14 Oct'20

  Public sector security failings leave UK at risk, says think tank

  Reform report urges adoption of new policies in the next version of the UK’s National Cyber Security Strategy

• October 14, 2020 14 Oct'20

  US Elections: Malicious internet domains spike as campaigns heat up

  Internet domains related to the US presidential election are 56% more likely to be malicious than regular ones

• October 14, 2020 14 Oct'20

  Fintech ‘unicorn’ Klarna probed over data misuse

  Online bank blames misuse of user data on human error as Information Commissioner’s Office weighs in

• October 14, 2020 14 Oct'20

  Microsoft fixes 87 bugs in October 2020 Patch Tuesday

  Smaller October Patch Tuesday update includes fixes for critical bugs in Windows 10 and Windows Server 2019

• October 13, 2020 13 Oct'20

  Suppliers neglecting virtual appliance security, putting users at risk

  Software suppliers are often distributing their products on virtual appliances that contain known vulnerabilities or are running outdated or unsupported operating systems, according to a report

• October 12, 2020 12 Oct'20

  Five Eyes spy group again demands access to private messages

  Spooks are once again calling for the tech industry to break end-to-end encryption in messaging platforms

• October 12, 2020 12 Oct'20

  Cyber security skills ad branded ‘crass’ by minister

  Security skills campaign advert depicting a ballet dancer comes in for criticism as the arts sector struggles in the pandemic

• October 12, 2020 12 Oct'20

  Making sense of zero-trust security

  Implementing zero-trust security is not an easy feat, but enterprises can still get it right if they approach it from a process perspective and get a handle on their infrastructure footprint

• October 08, 2020 08 Oct'20

  NCSC relaunches SME security guide with home working focus

  The NCSC is issuing an updated version of its guide to security for SMEs, reflecting the long-lasting changes to the world of work seen in 2020

• October 08, 2020 08 Oct'20

  Emotet rated September’s ‘most popular’ malware

  The current resurgence of Emotet is attracting attention as governments issue new warnings and cyber criminals rush to exploit the chaotic US election

• October 08, 2020 08 Oct'20

  Crown Prosecution Service suffers 1,600 data breaches in 12 months

  CPS sees a spike in data security incidents, many of them serious enough to be reported to the Information Commissioner’s Office

• October 08, 2020 08 Oct'20

  Threat of GDPR fines increasingly driving security buying decisions

  Scaring the people who hold the purse strings may be the best option for CISOs who need a little extra budget

• October 07, 2020 07 Oct'20

  Southeast Asia remains hotspot for cyber attacks

  Geopolitics and Covid-19 have been fodder for cyber criminals to advance their motives in Southeast Asia in 2020

• October 06, 2020 06 Oct'20

  EU’s top court questions legality of UK phone and internet data surveillance

  European Court of Justice rules that the UK and EU member states must comply with EU privacy laws when harvesting people’s sensitive communications data from telecoms and internet companies

• October 06, 2020 06 Oct'20

  Ransomware attacks go through the roof

  The volume of ransomware attacks has jumped 50% in the past three months, according to data produced at Check Point

• October 05, 2020 05 Oct'20

  MosaicRegressor APT campaign using rare malware variant

  Kaspersky researchers have shared details of a APT campaign utilising a rarely seen and hard-to-stop variety of malware

• October 05, 2020 05 Oct'20

  Fake news tops list of online concerns worldwide

  Receiving false information is a greater worry than other online risks such as cyber bullying and fraud, says the Lloyd’s Register Foundation

• October 05, 2020 05 Oct'20

  HMRC warns locked-down freshers of ‘wave’ of tax scams

  New university intake may be being targeted by cyber criminals amid Covid-19 confusion

• October 02, 2020 02 Oct'20

  Honesty is the best policy: Forging a security culture in the NHS

  Clinician and technologist Sam Shah helped set up NHSX in 2019. Now he’s helping advance digital transformation in healthcare from the outside, and a big part of that is addressing security in the sector

• October 02, 2020 02 Oct'20

  Security pros face sanctions if they help ransomware victims pay

  New advisory from the US government warns cyber insurance and incident response specialists that they could be skating on thin ice if they help ransomware victims pay their attackers off

• October 02, 2020 02 Oct'20

  Find and fix your Adobe Flash dependencies, says NCSC

  As Adobe’s Flash Player approaches end-of-life, the National Cyber Security Centre is urging organisations to fix their Flash dependencies

• September 29, 2020 29 Sep'20

  Threat actors becoming vastly more sophisticated

  Malicious actors have been busily honing their craft and cyber security incidents are up across the board as a result, according to a Microsoft report

• September 29, 2020 29 Sep'20

  NCSC expands schools programme to north-east England and Northern Ireland

  Following an initial roll-out in Gloucestershire and Wales, the NCSC’s CyberFirst Schools programme is being extended to north-east England and Northern Ireland

• September 29, 2020 29 Sep'20

  NatWest offers online banking customers free security services

  Bank responds to a surge in cyber crime targeting users of online banking services

• September 29, 2020 29 Sep'20

  Ryuk attack downs private health provider in major incident

  Private healthcare provider UHS has been been hit by a major big game hunting cyber attack that infected its systems with the Ryuk ransomware

• September 28, 2020 28 Sep'20

  TikTok ban stayed after last-minute court case

  TikTok’s lawyers have staved off an imminent ban for the time being, after successfully arguing that it infringed rights guaranteed under the Constitution of the United States

• September 28, 2020 28 Sep'20

  Police Scotland to set up new cyber crime centre

  National Centre of Excellence will employ specially trained officers to tackle a vertiginous rise in cyber crime

• September 28, 2020 28 Sep'20

  Security now main driving force behind digital transformation

  Organisations are urgently remodelling their core technology stack in the light of the Covid-19 pandemic, and this is pushing security to the top of the agenda

• September 28, 2020 28 Sep'20

  Airbnb hosts’ account data exposed in internal leak

  Data exposure within Airbnb’s system was the result of a technical issue but was swiftly fixed, says the firm

• September 24, 2020 24 Sep'20

  Third-party code bug left Instagram users at risk of account takeover

  A critical vulnerability in Instagram’s image processing could have allowed attackers to take over not just their victim’s account, but their entire device

• September 24, 2020 24 Sep'20

  NHS whistleblower privacy concerns passed on to regulator, but campaigners not holding their breath

  NHS Improvement chair Dido Harding acknowledges receiving concerns raised about the anonymity of whistleblowers, but campaigners have little faith that anything will be done

• September 24, 2020 24 Sep'20

  Government blasted over ‘reckless’ contact-tracing security

  The Open Rights Group and Big Brother Watch accuse the government of endangering public health with a reckless attitude to contact-tracing data security

• September 23, 2020 23 Sep'20

  Public admires security professionals, but doesn’t want their jobs

  (ISC)² research finds attitudes towards security roles are increasingly positive, but not many people fancy joining the fight against cyber crime

• September 23, 2020 23 Sep'20

  Video gamers barraged with cyber attacks

  From credential stuffing to SQL injection and DDoS, video game producers and players are seeing massive volumes of cyber attacks

• September 23, 2020 23 Sep'20

  US agencies warn of election disinformation and cyber attacks

  Federal agencies are warning of heightened disinformation as the crucial 2020 presidential election nears

• September 22, 2020 22 Sep'20

  Activision shoots down data breach claims

  Gaming company denies there has been any data breach after up to 500,000 accounts appeared to have been compromised, but evidence mounts that credential stuffing attacks are to blame

• September 22, 2020 22 Sep'20

  Scam mobile apps spreading via rogue TikTok accounts

  Malicious TikTok accounts are promoting a number of adware scam mobile apps

• September 21, 2020 21 Sep'20

  Trump implicated in plans to prosecute Assange over war leaks

  US journalist and Trump supporter, Cassandra Fairbanks, said she was given advanced details of US plans to oust Wikileaks founder Julian Assange from the Ecuadorian Embassy and to arrest him for over documents leaked by former soldier Chelsea Manning

• September 18, 2020 18 Sep'20

  German authorities probe ransomware hospital death

  Hackers failed to extort a ransom from University Hospital Düsseldorf, but indirectly caused the death of a patient

• September 18, 2020 18 Sep'20

  Rampant Kitten spent six years hacking Iranian dissidents

  Details emerge of an ongoing campaign by Tehran-backed threat actors targeting dissidents and activists

• September 17, 2020 17 Sep'20

  Saudi Arabia sees cyber security boom as coronavirus bites

  Saudi Arabian CIOs have been forced to increase their security posture as the Covid-19 pandemic transforms working methods

• September 17, 2020 17 Sep'20

  What are the habits of highly effective CISOs?

  Data crunched by Gartner analysts reveals the behaviours that differentiate the top-performing chief information security officers from the pack

• September 16, 2020 16 Sep'20

  NCSC steps up ransomware support for schools and universities

  New alert and updated guidance comes after several academic institutions were targeted in ransomware attacks

• September 15, 2020 15 Sep'20

  Gartner Security Summit: Covid-19 brings agile security to the fore

  The evolving threat landscape is the top driver impacting cyber security during the next three to five years, and Covid-19 has accelerated the trend towards more agile security deployments

• September 15, 2020 15 Sep'20

  Risky development practice leaves company access keys exposed

  Database stores, cloud storage and myriad other services are being put at risk by the accidental exposure of company access keys during development

• September 15, 2020 15 Sep'20

  Data of every Welsh Covid-19 patient leaked online

  Data on all 18,105 people in Wales who have received positive tests for the coronavirus was uploaded to a public-facing web server in error

• September 14, 2020 14 Sep'20

  Julian Assange faces solitary confinement if extradited, court hears

  WikiLeaks founder Julian Assange will be held under special administrative measures if extradited to the US, said Eric Lewis, a US legal expert, effectively placing him in solitary confinement

• September 14, 2020 14 Sep'20

  Microsoft drops out of TikTok talks, paves way for Oracle partnership

  Microsoft confirms it is dropping out of the running to acquire the US operations of TikTok, leaving the way clear for an imminent partnership deal with Oracle

• September 10, 2020 10 Sep'20

  Cyber security is next frontier for open source

  Open security will facilitate the interoperability and capabilities of cyber security tools while alleviating vendor lock-in for enterprises, says IBM

• September 10, 2020 10 Sep'20

  Government launches £500k healthcare security plan

  A £500,000 funding pot from the government aims to help support small and mid-sized healthcare firms during the pandemic