News

Web application security

• January 11, 2018 11 Jan'18

  Mobile app flaws are a risk to industrial IT systems, says report

  Cyber security vulnerabilities in mobile applications could be exploited to compromise industrial network infrastructure, a report warns

• January 10, 2018 10 Jan'18

  UAE tech growth prompts firms to review internal IT security

  As IT becomes more prominent in the UAE economy, more and more internal connections between people and systems are created, all of which need to be secured

• January 09, 2018 09 Jan'18

  Cyber attacks in 2017 drive Nordic security efforts

  The volume of cyber attacks last year has increased boardroom focus on security in the Nordic region

• January 08, 2018 08 Jan'18

  Sweden steps up cyber defence measures

  Sweden is tightening up its cyber security defences as part of a wider national security strategy

• January 03, 2018 03 Jan'18

  Top IT priorities for Nordic CIOs in 2018

  Nordic CIOs tell Computer Weekly about their intentions for the year ahead

• December 20, 2017 20 Dec'17

  UK government blames North Korea for WannaCry cyber attack

  The UK and US governments say a North Korean group was responsible for the ransomware attacks that hit the NHS and other organisations globally this year

• December 04, 2017 04 Dec'17

  Barclays Bank stops offering Kaspersky software to new users

  Bank is no longer offering customers Kaspersky anti-virus software after UK security agency issues warning

• November 29, 2017 29 Nov'17

  Lauri Love would face ‘medieval’ conditions in US prison if extradited over hacking charges

  Engineering student Lauri Love should be tried in the UK, court hears, as new evidence is presented on the “medieval” conditions in US jails for people with medical problems

• October 17, 2017 17 Oct'17

  RSA’s Middle East cyber security conference gains its own identity

  RSA Abu Dhabi conference focuses on region’s cyber security needs as digital technology deployments expand

• October 05, 2017 05 Oct'17

  Singapore’s public sector finds agility and speed in AWS

  City-state’s government has been able to meet peak demands and address security issues through a cloud-based web-hosting platform powered by Amazon Web Services

• September 05, 2017 05 Sep'17

  People with non-IT backgrounds could help fill cyber security skills gap

  Organisations should look to fill cyber security roles with people who are curious and have work experience rather than focusing solely on graduates

• July 14, 2017 14 Jul'17

  Australia to push ahead with decryption plans

  The Australian government remains undaunted in requiring tech firms to provide access to encrypted communications in law enforcement efforts

• June 27, 2017 27 Jun'17

  Another global ransomware attack underway as reports of Petya exploit spread

  Latest cyber attack appears to be based on the same EternalBlue exploit used by the WannaCry ransomware that hit the NHS in May

• June 14, 2017 14 Jun'17

  Microchips implanted in hands could be in use for payments in 20 years

  UK consumers are becoming more accepting that biometric authentication will become the norm for payments

• June 08, 2017 08 Jun'17

  Islamic State supporters shun Tails and Tor encryption for Telegram

  Confidential communications show terror group’s supporters are turning to simple mobile phone messaging apps to exchange messages and distribute propaganda

• May 04, 2017 04 May'17

  Testing is key to IoT security, says researcher

  Building an effective testing process across all elements associated with a product is key to securing the internet of things, according to a researcher in the field

• April 11, 2017 11 Apr'17

  Security as a service on the rise in the UAE

  Organisations in the United Arab Emirates are increasingly turning to security services

• April 06, 2017 06 Apr'17

  Interview: F-Secure’s Mikko Hyppönen on the Nordics, Russia and the internet of insecure things

  Computer Weekly sat down with Finnish cyber security expert Mikko Hyppönen to talk about security in the Nordics, Russia and the trouble with connected devices

• March 28, 2017 28 Mar'17

  Threats grow in Saudi Arabia’s cyber sector

  Saudi Arabia's wealth makes it an attractive target for cyber criminals, but what have been the recent trends in cyber crime?

• January 12, 2017 12 Jan'17

  Flawed GoDaddy security certificates show need for control

  Vulnerabilities in digital security certificates highlight the need for organisations to be able to exercise more control over those certificates

• January 04, 2017 04 Jan'17

  Flight booking systems easy to hack, researchers warn

  Malicious actors could infiltrate systems to alter passenger information and even cancel bookings, Chaos Communications Congress told

• December 21, 2016 21 Dec'16

  Top 10 IT security stories of 2016

  Here are Computer Weekly’s top 10 IT security stories of 2016:

• December 05, 2016 05 Dec'16

  Top 10 ANZ enterprise IT stories of 2016

  Here is a rundown of Computer Weekly’s most popular ANZ enterprise IT articles for 2016

• November 28, 2016 28 Nov'16

  IBM blamed for Australian census website crash

  Computer giant reportedly pays $30m to Australian government as reports are released from two inquiries into DDoS attacks on census website

• November 22, 2016 22 Nov'16

  Alleged hacker Lauri Love’s ‘life will be destroyed’ under Trump regime

  Supporters fear for activist Lauri Love if his extradition to face hacking charges to the US goes ahead

• November 15, 2016 15 Nov'16

  Amber Rudd orders Lauri Love extradition to US to face hacking charges

  Engineering student Lauri Love faces trials in three US states and a possible 99-year jail sentence for allegedly hacking into US government computer systems as part of a political protest, despite concerns over his health

• October 18, 2016 18 Oct'16

  Saving Lauri Love: activists plan their next move

  An eclectic bunch of activists, charity workers and reformed hackers spent a rainy Sunday afternoon plotting their next move in a campaign to save Lauri Love from extradition to the US on hacking charges

• July 12, 2016 12 Jul'16

  IBM sets up security centre in Canberra

  IBM leads the charge as large private businesses invest heavily in security resources across Australia in an attempt to close the security gap

• May 03, 2016 03 May'16

  Gov.uk Verify misses April go-live target

  The Government Digital Service didn’t meet its target of taking identity assurance service Verify out of beta by the end of April, but is “nearly there”, according to programme director Janet Hughes

• April 26, 2016 26 Apr'16

  Business failing to learn lessons of past cyber attacks, report shows

  Organisations are still failing to address basic security issues and well-known attack methods, Verizon’s latest Data Breach Investigations Report reveals

• April 15, 2016 15 Apr'16

  Israeli volunteers ready their cyber defences as Anonymous affiliates attack

  Every April, Israel braces itself for an onslaught from pro-Palestinian hackers, but the occupants of a small conference room in Tel Aviv stand in their way

• April 11, 2016 11 Apr'16

  Activist Lauri Love faces order to disclose encryption keys

  The UK’s National Crime Agency takes an unusual legal step to force a former university student accused of hacking to disclose encryption keys

• January 29, 2016 29 Jan'16

  HSBC online services hit by DDoS attack

  HSBC was hit by a distributed denial of service (DDoS) attack, which targeted its online personal banking services.

• December 24, 2015 24 Dec'15

  Top 10 IT security stories of 2015

  Computer Weekly looks back at the most significant stories on IT security in the past 12 months

• December 03, 2015 03 Dec'15

  Veracode finds most web apps fail Owasp security check list

  The findings of a report on critical vulnerabilities in most web applications is raising concerns over potential security vulnerabilities in millions of websites

• December 03, 2015 03 Dec'15

  Workday ringfences support in Europe after Safe Harbour ruled unsafe

  US cloud HR and financial services provider reponds to Safe Harbour failure by ringfencing European data

• October 06, 2015 06 Oct'15

  Researchers find credential-stealing webmail server APT attack

  Security researchers have discovered a new and unique advanced persistent threat (APT) technique that involves a malicious module loaded onto a webmail server

• September 09, 2015 09 Sep'15

  Security vulnerability management more than patching, warns Secunia

  Keeping track of what makes an IT environment vulnerable is an ongoing and complex task, according to Secunia

• April 30, 2015 30 Apr'15

  IoT benefits and privacy not mutually exclusive, says industry expert

  It is possible to mitigate the privacy and security risks of the internet of things (IoT) without losing its benefits, according to an industry expert

• April 22, 2015 22 Apr'15

  HSBC website mistake guides customers to porn

  HSBC’s Hong Kong website accidentally featured an out-of-date link that directed people to a porn site

• March 25, 2015 25 Mar'15

  UK government adds five authentication providers to Gov.uk Verify identity management system

  The Government Digital Service (GDS) adds five authentication providers to the Gov.uk Verify identity and access management scheme

• February 27, 2015 27 Feb'15

  Case study: Norwegian insurer invests in Darktrace machine-learning cyber defence

  Shipping insurance company DNK hopes to inspire the rest of the shipping industry to adopt Darktrace’s cyber defence system

• December 17, 2014 17 Dec'14

  Cabinet Office begins procurement for next stage of Gov.uk Verify

  The Cabinet Office has submitted a tender notice for a £150m three-year framework for the provision of identity assurance services

• November 28, 2014 28 Nov'14

  CGI secures communications between pilots and air traffic control

  Satellite communications firm Inmarsat has outsourced the provision of security IT and services to CGI

• October 09, 2014 09 Oct'14

  WordPress most attacked application

  Websites that run the WordPress content management system are attacked 24% more often than those using other systems

• October 08, 2014 08 Oct'14

  Malware being used to steal cash from ATMs

  Criminals are using malware to steal cash from ATMs without debit and credit cards

• September 16, 2014 16 Sep'14

  GDS unveils 'Gov.UK Verify' public services identity assurance scheme

  The Government Digital Service (GDS) debuts a system to prove users’ identities when using public services online, branded as 'Gov.UK Verify'

• August 27, 2014 27 Aug'14

  Security experts identify top 10 software design flaws

  The IEEE Center for Secure Design has published a report on how to avoid the top 10 software security design flaws

• August 11, 2014 11 Aug'14

  USB-connected devices present cyber vulnerabilities

  Connecting devices to computers using a USB port could lead to security breaches, say Berlin-based researchers

• July 22, 2014 22 Jul'14

  Hackers abuse Bitly API in novel attack, reports Websense

  A cyber attack targeting MSNBC highlights cybercriminals’ abuse of the public’s trust in news sites, says Websense Security Labs