News

Security policy and user awareness

• February 28, 2019 28 Feb'19

  Sextortion accounts for one in 10 spear-phishing emails

  Email sextortion scams have increased in frequency and scope in the past four months, as well as evolving to bypass spam filters and trick recipients into reading the messages, research shows

• February 26, 2019 26 Feb'19

  Cyber criminals earn $3bn a year exploiting social platforms

  Businesses urged to respond to research findings that the ready availability of hacking tools, wildfire spread of malware and proliferation of cryptocurrency mining has seen a 300-fold increase in social media-enabled cyber crimes in two years

• February 22, 2019 22 Feb'19

  Facebook planned to spy on Android phone users, internal emails reveal

  Facebook planned to use its Android app to track the location of its customers and to allow advertisers to send political advertising and invites to dating sites to ‘single’ people, confidential documents show

• February 19, 2019 19 Feb'19

  Finding security in the cloud

  When choosing a cloud security provider, enterprises will need to consider the level of data privacy and data security risk involved

• February 12, 2019 12 Feb'19

  Telegram bot gets users hooked

  Popular social media service provides a rich set of features for cyber criminals, RSA warns

• February 12, 2019 12 Feb'19

  APAC healthcare providers losing $23m to cyber attacks

  Healthcare organisations in the Asia-Pacific region could lose an average of $23.3m to cyber attacks, including losses from productivity and customer churn, a study finds

• February 07, 2019 07 Feb'19

  Data breaches in Australia show no sign of abating

  Australia’s privacy watchdog recorded over 800 cases of data breaches, nearly one year into the country’s mandatory data breach notification regime

• February 01, 2019 01 Feb'19

  New stolen credentials cache puts spotlight on authentication

  The discovery of billions more stolen usernames and passwords in Collections #2 to #5 have prompted fresh calls for the implementation of better authentication methods across industry

• January 30, 2019 30 Jan'19

  YouTuber impersonation scam not new, say researchers

  Scam that tricked users into clicking on phishing links has affected tens of thousands of victims and has been active for several years, say security researchers

• January 28, 2019 28 Jan'19

  Personal records of HIV-positive individuals in Singapore leaked online

  The personal information of 14,200 people with the human immunodeficiency virus was leaked by an American who lived in Singapore

• January 25, 2019 25 Jan'19

  Budding UK cyber strategists gear up for national competition 

  Teams of UK university students are preparing to compete for the second time in analysing the threat of a simulated cyber attack to develop policies and strategies

• January 22, 2019 22 Jan'19

  Young Dutch cyber criminals get re-education rather than jail time

  Young hackers in the Netherlands are being rehabilitated through punishments that educate rather than incarcerate

• January 16, 2019 16 Jan'19

  New Zealand faces more state-sponsored attacks

  Nearly four in 10 cyber security incidents recorded by the National Cyber Security Centre were the work of state-sponsored threat actors

• January 16, 2019 16 Jan'19

  Davos: World leaders need to grasp future technological risks

  Technological advancement is both a benefit and risk to society, but often the risks are not identified until they are exploited

• January 11, 2019 11 Jan'19

  AI application overlooked in cyber security research

  Despite the proliferation of cyber security products and services claiming to be driven by artificial intelligence, the application of the technology is being overlooked by research, a study shows

• January 10, 2019 10 Jan'19

  Germany races to boost cyber defences after breach

  Germany is scrambling to improve its cyber defences before the European parliamentary elections after a student leaked politicians’ personal data

• January 09, 2019 09 Jan'19

  2FA bypass tool highlights top business security vulnerabilities

  CEOs are the most likely target of two-factor authentication phishing bypasses, demonstrated by a security researcher’s proof-of-concept attack

• January 08, 2019 08 Jan'19

  Second Lorca cohort to focus on supply chain security

  The second cohort of companies to benefit from the new London cyber innovation centre will focus on user-centric security and securing supply chains

• December 21, 2018 21 Dec'18

  Top 10 cyber crime stories of 2018

  Here are Computer Weekly’s top 10 cyber crime stories of 2018

• December 18, 2018 18 Dec'18

  APAC cyber security landscape to be more tumultuous in 2019

  Amid growing cyber threats, the Asia-Pacific cyber security landscape will not get any rosier in 2019 unless organisations start shoring up their cyber hygiene

• December 14, 2018 14 Dec'18

  Iranian cyber espionage highlights human element

  State-backed hackers in Iran have reportedly upped efforts to compromise US officials’ email accounts using phishing scams

• December 13, 2018 13 Dec'18

  Social engineering at the heart of critical infrastructure attack

  Social engineering is the core technique used in a series of cyber attacks targeting government, defence, nuclear, energy and financial organisations around the world, which means people are key to defence

• December 07, 2018 07 Dec'18

  Half of business leaders unaware of BPC cyber attacks

  Half of management teams polled in 12 countries, including the UK, are unaware of business process compromise (BPC) attacks

• December 05, 2018 05 Dec'18

  Phishing at centre of cyber attack on Ukraine infrastructure

  Phishing is one of the key tools used by cyber attackers against critical national infrastructure (CNI), as highlighted by attacks on telecommunications in Ukraine

• November 29, 2018 29 Nov'18

  120,000 police officers to receive cyber security training

  Cisco is partnering with UK police forces to offer cyber security training through the Cisco Networking Academy

• November 27, 2018 27 Nov'18

  GDPR is encouraging UK IT directors to pay cyber ransoms

  As predicted ahead of the General Data Protection Regulation enforcement deadline, research shows that fear of fines under the new laws is making some firms more likely to pay cyber ransoms

• November 15, 2018 15 Nov'18

  Keep people at the centre of risk management, says consultant

  In assessing the cyber risks to a business, security professionals should start with the people in an organisation and keep them at the centre in identifying and mitigating risk, says consultant

• November 15, 2018 15 Nov'18

  DeepMind won’t share patient data with Google ‘at this stage’, says company’s health boss

  Amid concerns and questions around Google’s takeover of the DeepMind’s Streams app, Dominic King, the company’s health lead, promises that ‘at this stage’, nothing will change, and it won’t share any patient data with the internet giant

• November 02, 2018 02 Nov'18

  Facebook to appeal EU-US data transfer ruling in Irish Supreme Court

  Facebook will appeal a decision by the Irish High Court to refer questions over the legality of EU-US data transfers to the European Court of Justice in January, as the Dublin court rejects attempt by a UK IT expert to join the case

• October 26, 2018 26 Oct'18

  DNS attacks cost finance firms millions of pounds a year

  Average cost of recovering from a single DNS attack is $924,390 for a large financial services company, survey shows

• October 25, 2018 25 Oct'18

  Belgian startup makes a game of creating secure software code

  A global tech startup has placed its research and development centre in Belgium, taking advantage of regional financial support as well as cooperations with local educational organisations

• October 24, 2018 24 Oct'18

  Choose security tools wisely to gain upper hand

  The cyber threat landscape is continually changing, but staying abreast of attacker and defender innovation can help business leaders gain the upper hand, says KuppingerCole

• October 24, 2018 24 Oct'18

  Sibos 2018: ‘Black swan’ cyber event is inevitable

  With security experts and bankers expecting a 9/11-style cyber event, deeper collaboration between companies and governments is necessary to identify emerging threats before they occur

• October 22, 2018 22 Oct'18

  Centralised identity risky and not web 3.0 friendly, says entrepreneur

  User controlled identity is less risky than centralised identity and essential for the next evolution of the web, according to an entrepreneur and evangelist of self-sovereign identity and blockchain technologies

• October 22, 2018 22 Oct'18

  McAfee CTO raises concerns about election cyber security

  The security industry needs to look at the security of election processes around the world as well as the security of voting and counting machines, says McAfee CTO

• October 19, 2018 19 Oct'18

  Learn lessons from attacks, says McAfee investigations chief

  Organisations should use every cyber attack as an opportunity to learn, identify weaknesses and improve security posture, according to McAfee’s head of cyber investigations

• October 18, 2018 18 Oct'18

  Best of VMworld Europe 2018 Awards nominations now open until 26 October

  Read the criteria for the Best of VMworld Europe User Awards and find out how to submit your nomination

• October 16, 2018 16 Oct'18

  Zero-trust security model gaining traction

  The zero-trust model of security is finally gaining traction as security professionals tap into new tools and executive buy-in to support this approach in an effort to improve security posture and practices

• October 16, 2018 16 Oct'18

  UK faces 10 cyber attacks a week as hostile states step up hacking, says NCSC

  The UK’s National Cyber Security Centre has thwarted more than 1,600 attacks over the past two years – many by hostile nation states

• October 15, 2018 15 Oct'18

  IoT firms sign up to UK security code of practice

  Internet of things technology firms have begun signing up to a UK code of practice to strengthen the security of internet-connected devices. The code is expected to form the basis of an international standard

• October 12, 2018 12 Oct'18

  Some 10% of user-reported emails malicious

  On average, 1 in 10 user-reported emails is identified as malicious, and more than half can be tied to credential phishing, a Cofense report reveals

• October 12, 2018 12 Oct'18

  AI is no silver bullet for cyber security

  A security expert has called for businesses to manage the risks of adopting new technologies and improve their cyber hygiene, rather than see artificial intelligence as a panacea for their security woes

• October 11, 2018 11 Oct'18

  Crypto-mining malware poses as Flash updates

  Cryptocurrency mining malware is posing as Flash updates that appear to be legitimate, Palo Alto Networks security researchers warn

• October 11, 2018 11 Oct'18

  MEPs urge Facebook to roll out election fraud prevention measures

  Facebook is coming under pressure from European lawmakers to do more to prevent its user data from being misappropriated during elections

• October 10, 2018 10 Oct'18

  Detail of Dutch reaction to Russian cyber attack made public deliberately

  Four Russian intelligence officials were expelled from the Netherlands after an attempted hack on the global chemical weapons watchdog. The Dutch government has been open about the detail

• October 10, 2018 10 Oct'18

  Bug bounties not a silver bullet, Katie Moussouris warns

  Targeted bug bounties have a role to play in cyber security, but they are not a "silver bullet", and run the risk of wiping out talent pipelines if poorly implemented, warns bug bounty pioneer

• October 10, 2018 10 Oct'18

  NCSC head says attribution of GRU attacks important

  The head of the UK’s National Cyber Security Centre has described the attribution of a wave of cyber attacks to Russia’s military intelligence service as “historically important” at a conference in Poland

• October 08, 2018 08 Oct'18

  NCSC head calls for technocratic partnership to fix cyber risks

  The UK’s National Cyber Security Centre is appealing for collaboration with the technology industry to remedy key vulnerabilities in current IT

• October 08, 2018 08 Oct'18

  ICO hits Heathrow Airport with £120,000 data breach fine over lost USB stick

  Information Commissioner’s Office fines airport after a member of the public came across a USB stick containing sensitive personal information about airport staff

• October 08, 2018 08 Oct'18

  Google Safety Center goes live in the UK

  Google says its commitment to transparency is as strong as ever as its new Safety Center goes live in the UK to help keep businesses and consumers safe online