News

Security policy and user awareness

• November 14, 2016 14 Nov'16

  412 million user accounts exposed in FriendFinder Networks hack

  Another huge data breach has exposed poor security of user details and continued poor user password practices

• November 11, 2016 11 Nov'16

  Russian banks hit by IoT-enabled DDoS attacks

  DDoS attacks on Russian banks have been linked to IoT botnets, further confirming this worrying trend and highlighting the need for IoT suppliers to improve security capabilties

• October 20, 2016 20 Oct'16

  Armed forces minister wants military recruiters to "think different" to attract cyber security pros

  Armed Forces minister Mike Penning says military must rethink how it recruits trainees to attract people with the cyber security skills the country needs to protect itself

• October 18, 2016 18 Oct'16

  Saving Lauri Love: activists plan their next move

  An eclectic bunch of activists, charity workers and reformed hackers spent a rainy Sunday afternoon plotting their next move in a campaign to save Lauri Love from extradition to the US on hacking charges

• October 18, 2016 18 Oct'16

  Most businesses vulnerable to cyber attacks through firmware, study shows

  Company culture and overall attitude to security is a major contribution to vulnerability to cyber attack through firmware, a study by Isaca has revealed

• October 13, 2016 13 Oct'16

  Almost two-thirds of US office workers unaware of ransomware threat

  Nearly half of ransomware attacks are aimed at office workers, but almost two-thirds of those polled in the US are unaware of the threat

• September 29, 2016 29 Sep'16

  NGOs challenge UK and US mass surveillance in human rights court

  Privacy International, Liberty and the American Civil Liberties Union are among 10 human rights groups backing a landmark challenge to mass surveillance in the European Court of Human Rights

• September 06, 2016 06 Sep'16

  Use ransomware to get security buy-in, says Trend Micro CTO

  Ransomware is one of the top cyber threats to business, but organisations should use that to engage stakeholders and review processes and defences, says Trend Micro CTO Raimund Genes

• August 10, 2016 10 Aug'16

  MI5 staff repeatedly overrode data surveillance rules

  Security service MI5 is responsible for 210 “clear contraventions” over five years for the way it accessed private internet and telephone data

• July 26, 2016 26 Jul'16

  Date set for landmark hearing into EU-US data transfers

  Irish court hearing triggered by Austrian law student Max Schrems could have huge implications for EU-US trade and the data privacy rights of millions of EU citizens

• July 14, 2016 14 Jul'16

  CIO Interview: Elly Resende, CIO, Rio 2016 Olympics

  As Rio de Janeiro gets ready to host the Olympics, Computer Weekly speaks to the man in charge of its IT

• July 12, 2016 12 Jul'16

  IBM sets up security centre in Canberra

  IBM leads the charge as large private businesses invest heavily in security resources across Australia in an attempt to close the security gap

• June 29, 2016 29 Jun'16

  Lauri Love may be faking mental illness claims lawyer for US

  Prosecution lawyer Peter Caldwell questions whether activist Lauri Love is exaggerating mental health problems to avoid extradition to face hacking charges in the US

• June 28, 2016 28 Jun'16

  Lauri Love suicide risk if extradited to US over hacking allegations

  Westminster Magistrates’ Court hears evidence from medical experts that alleged hacker Lauri Love is at risk of suicide if extradited to the US

• June 21, 2016 21 Jun'16

  Cyber security industry mostly welcomes report on TalkTalk breach

  Most of the recommendations of a government committee inquiry into the TalkTalk breach have been welcomed, but pundits have expressed reservations about some, particularly proposed new fines

• June 20, 2016 20 Jun'16

  Lower average cost of Australian data breaches is not a sign of comfort

  The average cost of a data breach to Australian organisations dropped in 2015, according to research

• May 20, 2016 20 May'16

  NHS data security standards to be designed around technology, people and processes

  The Care Quality Commission’s delayed review of NHS data security standards will encourage NHS organisations to have senior information risk owners and Caldicott Guardians at board level

• May 19, 2016 19 May'16

  Lessons from LinkedIn data breach revelations

  There are several important lessons to be learned from revelations about LinkedIn's 2012 data breach, say security experts

• April 26, 2016 26 Apr'16

  Business failing to learn lessons of past cyber attacks, report shows

  Organisations are still failing to address basic security issues and well-known attack methods, Verizon’s latest Data Breach Investigations Report reveals

• April 21, 2016 21 Apr'16

  GCHQ told analysts to assume surveillance 'bulk data' is legal

  Documents obtained by charity Privacy International reveal insights into GCHQ’s collection of sensitive bulk data, as lawyers question the impact of surveillance on legal privilege, fair trials and protection of whistleblowers

• April 19, 2016 19 Apr'16

  Employees’ use of personal devices puts firms at risk of malware infection, says report

  Downloaders care about their own security while grabbing pirated content, not that of their employers

• April 15, 2016 15 Apr'16

  Israeli volunteers ready their cyber defences as Anonymous affiliates attack

  Every April, Israel braces itself for an onslaught from pro-Palestinian hackers, but the occupants of a small conference room in Tel Aviv stand in their way

• April 13, 2016 13 Apr'16

  NCA attempts 'back door' access to obtain activist Lauri Love’s passwords

  Court told that use of civil proceedings to force disclosure of alleged hacker Lauri Love's passwords is disproportionate and would breach human rights law

• April 11, 2016 11 Apr'16

  QA launches cyber attack defence training facility in London

  Training firm QA launches a cyber attack simulation facility in London to enable organisations to test and learn cyber defence skills

• April 11, 2016 11 Apr'16

  Activist Lauri Love faces order to disclose encryption keys

  The UK’s National Crime Agency takes an unusual legal step to force a former university student accused of hacking to disclose encryption keys

• March 31, 2016 31 Mar'16

  DDoS attacks on universities normally performed by “disgruntled” students or employees

  The majority of distributed denial of service attacks on universities are made by students or employees, says the head of infrastructure services at the University of London

• March 18, 2016 18 Mar'16

  Most students say cyber security is a growing threat

  Some 70% of higher education students say they are aware that cyber crime and attacks are a threat, but less than half think security is their responsibility

• February 23, 2016 23 Feb'16

  Social engineering confirmed as top information security threat

  Cyber attackers shifted away from automated exploits in 2015 and instead tricked people into doing the dirty work, Proofpoint researchers found

• February 04, 2016 04 Feb'16

  Google’s Chrome to flag deceptive embedded content

  Browser will warn of any embedded content such as ads that pretend to act like, and look and feel like, a trusted entity

• January 29, 2016 29 Jan'16

  HSBC online services hit by DDoS attack

  HSBC was hit by a distributed denial of service (DDoS) attack, which targeted its online personal banking services.

• January 19, 2016 19 Jan'16

  Most Android devices running outdated versions

  Nearly a third of Android devices in enterprises today are running version 4.0 or older of the operating system, leaving them highly susceptible to vulnerabilities, a study shows

• January 13, 2016 13 Jan'16

  UK not involved in mass surveillance, says Theresa May

  Coffee shops and libraries could be the target of interception warrants, Theresa May tells MPs and peers

• January 06, 2016 06 Jan'16

  UK IoT research hub opens with support from academic world

  A consortium of nine UK universities have come together to work alongside the Engineering and Physical Sciences Research Council on research into the internet of things

• December 17, 2015 17 Dec'15

  National security ‘not affected’ by failed e-Borders programme, says Home Office

  Despite the key Warnings Index system suffering an average of two high-priority incidents a week – such as a system component not being available – Home Office officials deny it causes risk to national security

• December 07, 2015 07 Dec'15

  Cyber attacks an increasing concern for Asean countries

  Organisations in the Association of Southeast Asian Nations are increasingly the targets for cyber criminals, according to a report focused on the region

• December 03, 2015 03 Dec'15

  Workday ringfences support in Europe after Safe Harbour ruled unsafe

  US cloud HR and financial services provider reponds to Safe Harbour failure by ringfencing European data

• November 26, 2015 26 Nov'15

  Dridex banking Trojan regains strength to mount attacks on the UK

  Fresh Dridex banking Trojan campaigns target the US, UK and France – despite a recent law enforcement takedown operation – warn security researchers

• November 04, 2015 04 Nov'15

  UAE recognises importance of cyber security, says official

  Like the UK, the UAE federal government has identified the importance of creating an environment in which it is safe to do business online

• October 13, 2015 13 Oct'15

  Cyber security innovation is crucial, says security evangelist

  Visibility and automation are key areas of cyber security innovation, but firms should concentrate first on the basics and not overlook the human element of security

• September 22, 2015 22 Sep'15

  Is Microsoft Office 2016 reliable enough for business?

  A day after a major Skype outage, Microsoft unveils Office 2016, which, ironically, offers tight integration with Skype

• September 11, 2015 11 Sep'15

  Security industry welcomes GCHQ password guidelines

  GCHQ's guidance on password policy covers some of the most pressing issues facing UK businesses and employees today, according to Skyhigh Networks

• September 04, 2015 04 Sep'15

  US State Department plans cyber security playbook

  The US State Department issues a request for information to determine the capabilities of commercial industry to provide and maintain a cyber security playbook

• August 16, 2015 16 Aug'15

  Mobile phone users at risk as hackers bug and track victims

  An investigation by Australian TV show 60 Minutes demonstrates how hackers based thousands of miles away in Germany were able to record the calls of an Australian senator and track his movements

• July 29, 2015 29 Jul'15

  A third of employees will sell company data if the price is right, study reveals

  For £5,000, a quarter of employees polled said they would sell confidential company data, and risk both their job and criminal convictions

• July 10, 2015 10 Jul'15

  UK sales teams are the most exposed to cyber attacks, study reveals

  UK sales staff, callcentre agents and customer services teams are among the most highly targeted by cyber attacks, yet few firms give these groups IT security training, a study shows

• June 02, 2015 02 Jun'15

  The drivers and inhibitors of cyber security evolution

  A study shows a shift in IT security spending to detection and response – but why are most organisations falling way behind the more enlightened front runners?

• May 29, 2015 29 May'15

  Data classification key to IP protection, says Titus

  Data classification can help organisations get more value out of encryption and data loss prevention systems

• May 27, 2015 27 May'15

  Social engineering attacks more complex than ever, says expert

  Expert warns attackers are starting to use increasingly sophisticated ways to get people in organisations to help them circumvent security controls

• May 18, 2015 18 May'15

  Wi-Fi Global Congress: Hotspot 2.0 standard addresses wireless security holes

  At Wi-Fi Global Congress, Ruckus Wireless announces it will be first to market with the second release of Hotspot 2.0

• May 11, 2015 11 May'15

  PSNGB rebrands to drive information sharing across PSN

  PSNGB, the trade association set up to promote the Public Services Network, rebrands itself as Innopsis and says its work is far from over