News

Web application security

• March 09, 2018 09 Mar'18

  Cryptojacking cyber criminals up their game

  Cyber criminals hijacking computing resources to mine for cryptocurrencies are raising their efforts to bypass enterprise security controls, researchers have found

• March 08, 2018 08 Mar'18

  Mac malware more than doubled in 2017

  Malware targeting Apple Mac computers more than doubled from 2016 to 2017, according to security firm Malwarebytes

• February 16, 2018 16 Feb'18

  Tech industry signs cyber security charter

  Nine technology organisations have signed a cyber security charter aimed at raising the level of cyber security internationally

• February 14, 2018 14 Feb'18

  Telegram zero-day exploit is a warning

  The discovery of an exploit of a zero-day vulnerability in the Telegram messaging app demonstrates that not all “secure” apps are automatically safe, security experts have warned

• February 12, 2018 12 Feb'18

  FS-ISAC enables safer financial data sharing with API

  The global financial industry's body for cyber and physical threat intelligence analysis and sharing has published an API to facilitate safer sharing of consumer financial information

• February 12, 2018 12 Feb'18

  Criminals hijack government sites to mine cryptocurrency used to hide wealth

  Europol says criminals are hiding billions in cryptocurrencies, as thousands of government and other websites have reportedly been used to hijack computers to mine more

• February 12, 2018 12 Feb'18

  PyeongChang Winter Games hit by cyber attack

  Although critical operations were not affected by the incident, event organisers at the PyeongChang Winter Olympics had to shut down servers and the official games website to prevent further damage

• February 05, 2018 05 Feb'18

  Lauri Love plans to use ‘internet as a force for good’

  Engineering student Lauri Love says he plans to help businesses fight cyber crime, after the court of appeal ruled that he can be tried in the UK for allegedly hacking US computer systems, rather than face extradition to the US

• February 05, 2018 05 Feb'18

  Researchers discover malicious Chrome extensions

  Security researchers have discovered a new botnet delivered via malicious Chrome extensions designed to hijack computers to mine cryptocurrency and record victims’ every move

• February 02, 2018 02 Feb'18

  ASEAN nations among worst hit by cryptocurrency-mining operation

  Thailand, Vietnam and Indonesia recorded high download numbers for the XMRig software that was surreptitiously slipped into user devices to mine Monero

• January 31, 2018 31 Jan'18

  Many businesses still using outdated security, says Troy Hunt

  Too many businesses are using out-of-date approaches to security, a world-renowned cyber security author and trainer warns

• January 31, 2018 31 Jan'18

  UK finance sector cyber security pros admit shocking practices

  UK financial sector IT security teams face immense challenges that are undermining business opportunities and continuity in financial services, a survey reveals

• January 23, 2018 23 Jan'18

  Facebook offers funding to secure the internet

  Facebook has announced that it is offering funding for research into ways of improving internet security

• January 22, 2018 22 Jan'18

  Taking complexity out of cyber security

  The key to improving the cyber security posture of organisations is to keep complexity at bay, according to a senior Microsoft executive

• January 11, 2018 11 Jan'18

  Mobile app flaws are a risk to industrial IT systems, says report

  Cyber security vulnerabilities in mobile applications could be exploited to compromise industrial network infrastructure, a report warns

• January 10, 2018 10 Jan'18

  UAE tech growth prompts firms to review internal IT security

  As IT becomes more prominent in the UAE economy, more and more internal connections between people and systems are created, all of which need to be secured

• January 09, 2018 09 Jan'18

  Cyber attacks in 2017 drive Nordic security efforts

  The volume of cyber attacks last year has increased boardroom focus on security in the Nordic region

• January 08, 2018 08 Jan'18

  Sweden steps up cyber defence measures

  Sweden is tightening up its cyber security defences as part of a wider national security strategy

• January 03, 2018 03 Jan'18

  Top IT priorities for Nordic CIOs in 2018

  Nordic CIOs tell Computer Weekly about their intentions for the year ahead

• December 20, 2017 20 Dec'17

  UK government blames North Korea for WannaCry cyber attack

  The UK and US governments say a North Korean group was responsible for the ransomware attacks that hit the NHS and other organisations globally this year

• December 04, 2017 04 Dec'17

  Barclays Bank stops offering Kaspersky software to new users

  Bank is no longer offering customers Kaspersky anti-virus software after UK security agency issues warning

• November 29, 2017 29 Nov'17

  Lauri Love would face ‘medieval’ conditions in US prison if extradited over hacking charges

  Engineering student Lauri Love should be tried in the UK, court hears, as new evidence is presented on the “medieval” conditions in US jails for people with medical problems

• October 17, 2017 17 Oct'17

  RSA’s Middle East cyber security conference gains its own identity

  RSA Abu Dhabi conference focuses on region’s cyber security needs as digital technology deployments expand

• October 05, 2017 05 Oct'17

  Singapore’s public sector finds agility and speed in AWS

  City-state’s government has been able to meet peak demands and address security issues through a cloud-based web-hosting platform powered by Amazon Web Services

• September 05, 2017 05 Sep'17

  People with non-IT backgrounds could help fill cyber security skills gap

  Organisations should look to fill cyber security roles with people who are curious and have work experience rather than focusing solely on graduates

• July 14, 2017 14 Jul'17

  Australia to push ahead with decryption plans

  The Australian government remains undaunted in requiring tech firms to provide access to encrypted communications in law enforcement efforts

• June 27, 2017 27 Jun'17

  Another global ransomware attack underway as reports of Petya exploit spread

  Latest cyber attack appears to be based on the same EternalBlue exploit used by the WannaCry ransomware that hit the NHS in May

• June 14, 2017 14 Jun'17

  Microchips implanted in hands could be in use for payments in 20 years

  UK consumers are becoming more accepting that biometric authentication will become the norm for payments

• June 08, 2017 08 Jun'17

  Islamic State supporters shun Tails and Tor encryption for Telegram

  Confidential communications show terror group’s supporters are turning to simple mobile phone messaging apps to exchange messages and distribute propaganda

• May 04, 2017 04 May'17

  Testing is key to IoT security, says researcher

  Building an effective testing process across all elements associated with a product is key to securing the internet of things, according to a researcher in the field

• April 11, 2017 11 Apr'17

  Security as a service on the rise in the UAE

  Organisations in the United Arab Emirates are increasingly turning to security services

• April 06, 2017 06 Apr'17

  Interview: F-Secure’s Mikko Hyppönen on the Nordics, Russia and the internet of insecure things

  Computer Weekly sat down with Finnish cyber security expert Mikko Hyppönen to talk about security in the Nordics, Russia and the trouble with connected devices

• March 28, 2017 28 Mar'17

  Threats grow in Saudi Arabia’s cyber sector

  Saudi Arabia's wealth makes it an attractive target for cyber criminals, but what have been the recent trends in cyber crime?

• January 12, 2017 12 Jan'17

  Flawed GoDaddy security certificates show need for control

  Vulnerabilities in digital security certificates highlight the need for organisations to be able to exercise more control over those certificates

• January 04, 2017 04 Jan'17

  Flight booking systems easy to hack, researchers warn

  Malicious actors could infiltrate systems to alter passenger information and even cancel bookings, Chaos Communications Congress told

• December 21, 2016 21 Dec'16

  Top 10 IT security stories of 2016

  Here are Computer Weekly’s top 10 IT security stories of 2016:

• December 05, 2016 05 Dec'16

  Top 10 ANZ enterprise IT stories of 2016

  Here is a rundown of Computer Weekly’s most popular ANZ enterprise IT articles for 2016

• November 28, 2016 28 Nov'16

  IBM blamed for Australian census website crash

  Computer giant reportedly pays $30m to Australian government as reports are released from two inquiries into DDoS attacks on census website

• November 22, 2016 22 Nov'16

  Alleged hacker Lauri Love’s ‘life will be destroyed’ under Trump regime

  Supporters fear for activist Lauri Love if his extradition to face hacking charges to the US goes ahead

• November 15, 2016 15 Nov'16

  Amber Rudd orders Lauri Love extradition to US to face hacking charges

  Engineering student Lauri Love faces trials in three US states and a possible 99-year jail sentence for allegedly hacking into US government computer systems as part of a political protest, despite concerns over his health

• October 18, 2016 18 Oct'16

  Saving Lauri Love: activists plan their next move

  An eclectic bunch of activists, charity workers and reformed hackers spent a rainy Sunday afternoon plotting their next move in a campaign to save Lauri Love from extradition to the US on hacking charges

• July 12, 2016 12 Jul'16

  IBM sets up security centre in Canberra

  IBM leads the charge as large private businesses invest heavily in security resources across Australia in an attempt to close the security gap

• May 03, 2016 03 May'16

  Gov.uk Verify misses April go-live target

  The Government Digital Service didn’t meet its target of taking identity assurance service Verify out of beta by the end of April, but is “nearly there”, according to programme director Janet Hughes

• April 26, 2016 26 Apr'16

  Business failing to learn lessons of past cyber attacks, report shows

  Organisations are still failing to address basic security issues and well-known attack methods, Verizon’s latest Data Breach Investigations Report reveals

• April 15, 2016 15 Apr'16

  Israeli volunteers ready their cyber defences as Anonymous affiliates attack

  Every April, Israel braces itself for an onslaught from pro-Palestinian hackers, but the occupants of a small conference room in Tel Aviv stand in their way

• April 11, 2016 11 Apr'16

  Activist Lauri Love faces order to disclose encryption keys

  The UK’s National Crime Agency takes an unusual legal step to force a former university student accused of hacking to disclose encryption keys

• January 29, 2016 29 Jan'16

  HSBC online services hit by DDoS attack

  HSBC was hit by a distributed denial of service (DDoS) attack, which targeted its online personal banking services.

• December 24, 2015 24 Dec'15

  Top 10 IT security stories of 2015

  Computer Weekly looks back at the most significant stories on IT security in the past 12 months

• December 03, 2015 03 Dec'15

  Veracode finds most web apps fail Owasp security check list

  The findings of a report on critical vulnerabilities in most web applications is raising concerns over potential security vulnerabilities in millions of websites

• December 03, 2015 03 Dec'15

  Workday ringfences support in Europe after Safe Harbour ruled unsafe

  US cloud HR and financial services provider reponds to Safe Harbour failure by ringfencing European data