News

Security policy and user awareness

• May 12, 2020 12 May'20

  Draft Covid-19 contact tracing legislation proposes formal oversight

  Human Rights Committee chair Harriet Harman has outlined a proposed bill to guarantee the security and privacy of data generated by the UK’s Covid-19 contact tracing app

• May 12, 2020 12 May'20

  MPs take part in first live test of remote voting during Covid-19 debate

  MPs will use phones and computers to vote from their homes in a House of Commons debate today in the biggest change in parliamentary procedure for 150 years

• May 12, 2020 12 May'20

  Pay the ransom and double your recovery costs, report warns

  Paying cyber criminals a ransom to recover your data adds over half a million dollars to the cost of organisational recovery, says Sophos

• May 12, 2020 12 May'20

  APAC firms still coming to grips with data protection

  More governments in Asia are implementing data protection regimes, but challenges such as checkbox compliance and the lack of effective staff training remain

• May 07, 2020 07 May'20

  SilverTerrier cyber crime group targets Covid-19 key workers

  Organisations on the front line in the fight against coronavirus are under attack from Nigeria’s SilverTerrier criminal gang

• May 07, 2020 07 May'20

  Contact-tracing app fails to protect privacy and human rights

  Reassurances over the security and human rights implications of NHSX’s approach to developing its Covid-19 contact-tracing app are insufficient, says the cross-bench Human Rights Committee

• May 07, 2020 07 May'20

  Next round of Zoom updates targets consumer security

  Casual consumer users of Zoom will get additional protections in an update to be released over the long weekend

• May 07, 2020 07 May'20

  NCSC Covid-19 scam reporting service sees more than 160,000 reports

  The general public has taken to the NCSC’s scam reporting service like ducks to water, with thousands of suspicious emails reported to it in just two weeks

• May 06, 2020 06 May'20

  Criminal justice system is failing cyber crime victims

  Victims of cyber crime face barriers to reporting, receiving support and achieving justice, says a Home Office-backed study

• May 06, 2020 06 May'20

  HMRC tackles almost 300 coronavirus phishing websites

  Of 292 websites removed since lockdown began on 23 March, 237 were proactively identified by HMRC and 55 were flagged by the public

• May 06, 2020 06 May'20

  End-users failing to protect themselves online

  Remote workers and stuck-at-home consumers are taking silly risks with their security during the coronavirus pandemic, according to a report

• May 05, 2020 05 May'20

  Coronavirus: NCSC issues urgent alert for healthcare sector

  UK National Cyber Security Centre and US Cybersecurity and Infrastructure Security Agency say they are seeing large-scale campaigns targeting healthcare bodies and medical research organisations

• May 05, 2020 05 May'20

  GoDaddy owns up to October 2019 data breach

  Web hosting services provider has suffered yet another security incident, confirming that an unauthorised individual accessed hosting accounts

• May 04, 2020 04 May'20

  IT Priorities 2020: Compliance and risk are top security concerns

  When it comes to security, buyers are prioritising solutions and services that address compliance issues, risk management and data protection, according to the Computer Weekly/TechTarget IT Priorities 2020 study

• May 01, 2020 01 May'20

  NCSC tackles unconscious bias in security terminology

  The terms whitelisting and blacklisting are out at the UK’s National Cyber Security Centre

• April 30, 2020 30 Apr'20

  Cyber security skills courses go online during pandemic

  The government is turning to online learning to find the next generation of cyber security talent

• April 30, 2020 30 Apr'20

  Critical SaltStack vulnerability affects thousands of datacentres

  Critical vulnerabilities in the Salt remote task and configuration framework enable hackers to take control of cloud servers and must be patched right away

• April 30, 2020 30 Apr'20

  Mobile banking customers at risk from new EventBot trojan

  Customers of Barclays, HSBC, Santander and many other banks should be alert to a dangerous new trojan

• April 29, 2020 29 Apr'20

  IMDA to issue 5G spectrum to Singtel and StarHub-M1 venture

  Singapore’s telco regulator will award 5G spectrum to major operators whose proposals have exceeded its requirements in some cases

• April 29, 2020 29 Apr'20

  Coronavirus: Call for extension to European payment security standard deadline

  Payment processors across Europe want more time to meet the SCA payment security standard

• April 28, 2020 28 Apr'20

  Under the spotlight, video apps rush to strengthen security

  Most popular videoconferencing applications now meet Mozilla’s minimum security standards, with fierce competition and public pressure driving rapid improvement

• April 28, 2020 28 Apr'20

  Almost half of security pros being redeployed during pandemic

  Close to half of cyber security professionals say they have been taken off some or all of their security duties to focus attention elsewhere during the Covid-19 coronavirus pandemic

• April 28, 2020 28 Apr'20

  Black Rose Lucy ransomware now posing as FBI porn warning

  A new strain of Russian-developed ransomware impersonates US federal law enforcement to force payment, says Check Point

• April 27, 2020 27 Apr'20

  Microsoft patches .gif file vulnerability in Teams

  Vulnerability could have enabled cyber criminals to use a malicious .gif file to scrape user data and take over Teams accounts

• April 24, 2020 24 Apr'20

  The Security Interviews: Can AV go from dodgy scareware to cyber hero?

  Alun Baker, CEO of Clario, is on a mission to rehabilitate the image of consumer security products and take the fear out of selling antivirus. We find out how things are changing

• April 23, 2020 23 Apr'20

  iOS zero-day leaves iPhone users dangerously exposed

  Researchers identify dangerous vulnerabilities in Apple’s iOS operating system that allow remote code execution on target devices

• April 23, 2020 23 Apr'20

  Zoom to roll out fresh cyber security updates

  New features include support for advanced AES 256-bit encryption

• April 22, 2020 22 Apr'20

  NCSC overwhelmed by response to coronavirus campaign

  The UK’s NCSC has taken down more than 80 malicious web campaigns and received 5,000 reports of suspicious emails within 24 hours of launching reporting service

• April 22, 2020 22 Apr'20

  Coronavirus: Banking and mobile sectors collaborate to stop text scams

  Initiative aims to protect 50 genuine brands and government organisations from being impersonated by cyber criminals

• April 22, 2020 22 Apr'20

  Coronavirus: Cyber criminals may be changing tactics

  Cyber criminals “may soon shift to heavier exploitation of footholds established through phishing and other scams”, warns Cyber Threat Coalition

• April 21, 2020 21 Apr'20

  Coronavirus: HMRC job retention scheme targeted by cyber criminals

  The UK government’s scheme to pay furloughed employees 80% of their wages is being targeted by cyber criminals

• April 21, 2020 21 Apr'20

  When data protection is not enough

  Organisations should take a holistic approach to data protection and cyber security in what the CEO of Acronis deems a “cyber protection” strategy

• April 20, 2020 20 Apr'20

  NCSC launches coronavirus cyber security campaign

  The National Cyber Security Centre has launched a reporting service for scam emails as part of a campaign to help people protect themselves from cyber criminals exploiting the pandemic

• April 20, 2020 20 Apr'20

  Zoom and WebEx users targeted by credential stealing attempts

  Videoconferencing apps such as Zoom and Cisco’s WebEx are being targeted by cyber criminals trying to steal users’ personal data

• April 20, 2020 20 Apr'20

  Dutch organisations address business email compromise fraud

  Public-private partnership in the Netherlands works to break the chains used by fraudsters to carry out BEC attacks

• April 20, 2020 20 Apr'20

  Australian workers are weakest link in fight against cyber attacks

  About four in 10 employees are sharing inappropriate data across mobile devices and half of all security incidents in 2019 occurred through inappropriate IT use, new study finds

• April 17, 2020 17 Apr'20

  Coronavirus: How Nominet fights back against malicious domains

  Domain name registry has thwarted hundreds of attempts to register malicious .uk domain names during the coronavirus pandemic

• April 17, 2020 17 Apr'20

  Coronavirus: Security certification body puts exams online

  Candidates for certification by the International Association of Privacy Professionals will now be able to sit their exams remotely

• April 16, 2020 16 Apr'20

  Check Point sounds alarm over double extortion ransomware threat

  Researchers say double extortion ransomware attacks are likely to increase in frequency, and warn organisations to be on guard

• April 15, 2020 15 Apr'20

  Coronavirus: ICO temporarily relaxes regulatory approach

  The Information Commissioner’s Office sets out a revised approach to its regulatory duties during the Covid-19 coronavirus pandemic

• April 15, 2020 15 Apr'20

  Coronavirus: Standard Chartered bans employees from Zoom

  Standard Chartered is the first bank to have instructed its staff to refrain from using Zoom

• April 15, 2020 15 Apr'20

  Coronavirus: Researcher finds security vulnerability in Slack

  Some common assumptions about the security of cloud-based messaging platform Slack may not be entirely accurate, says an Alien Labs researcher

• April 15, 2020 15 Apr'20

  Microsoft patches 19 critical bugs in another heavy Patch Tuesday

  The volume of vulnerabilities being uncovered by Microsoft remains high, with more than 100 fixes pushed out in April’s Patch Tuesday

• April 14, 2020 14 Apr'20

  Apple and Netflix most imitated brands in phishing attacks

  A new report highlights the brands which are being most frequently spoofed by cyber criminals in phishing attacks

• April 14, 2020 14 Apr'20

  Coronavirus: Zoom user credentials for sale on dark web

  IntSight researchers say they have found a database containing thousands of Zoom usernames and passwords being sold on the dark web

• April 10, 2020 10 Apr'20

  Coronavirus: Warning over surge in Zoom security incidents

  Check Point researchers have observed a surge in suspicious Zoom domains as cyber criminals target popular remote working and collaboration tools

• April 09, 2020 09 Apr'20

  Coronavirus: Zoom restricted or banned at multiple organisations

  Use of videoconferencing tool has been banned at Google and in parts of the German and US governments

• April 08, 2020 08 Apr'20

  Revealed: Estonia targeted by Russia-linked disinformation deluge

  Kremlin-linked threat actors are undermining the government of Estonia and its relationship with the European Union through a concerted disinformation campaign, with wider ramifications

• April 08, 2020 08 Apr'20

  Despite coronavirus, overall cyber crime volumes hold steady

  The UK’s NCSC and the US’s CISA see little change in overall volumes of cyber crime in spite of the coronavirus crisis – for the time being

• April 08, 2020 08 Apr'20

  Coronavirus: McAfee unearths dark web blood bank

  Cyber criminals are selling fake goods and running scams on online marketplaces during the Covid-19 pandemic. Don’t be taken in