Data breach incident management and recovery

AI security tech is making waves in incident response

Experts weigh in on the latest smart cybersecurity tools -- how they work, the implications for your IT security team and whether the investment is worth the expense. Continue Reading

CW ASEAN: Trend Watch – Security

Artificial intelligence tools are becoming a vital part of the security arsenal for organizations and cyber criminals alike. In this handbook, Computer Weekly looks at how ASEAN firms are using AI to combat cyber threats and experts discuss the latest smart cyber security tools. Continue Reading

Some Australian firms still in the dark about cyber security

A report suggesting Australian firms are experiencing fewer cyber incidents has left its co-author perplexed with the findings. Continue Reading

CW ANZ: Trend Watch – Security

With regulations pushing data protection up the business agenda, we look at how Australia’s Notifiable Data Breaches scheme has been received and consider why a survey that found Australian firms are experiencing fewer cyber breach incidents appears to conflict with anecdotal evidence that suggests the opposite. Continue Reading

Singapore shores up data protection capabilities

The Singapore government has developed a skills framework for data protection officers and is looking to certify organisations under a regional cross-border privacy rules system Continue Reading

By

• Aaron Tan, Informa TechTarget

Podcast: The Computer Weekly Downtime Upload – Episode 24

In this week’s episode of the Computer Weekly Downtime Upload podcast, Brian McKenna, Caroline Donnelly and Clare McDonald talk about using Alexa to search for medical advice, how a good cup of tea can solve most problems and whether more should be done to provide childcare at tech events Continue Reading

By

• Clare McDonald, Business Editor

BA/Marriott GDPR fines: What they were for and how to avoid them

We talk to Mathieu Gorge, CEO of Vigitrust, about the BA and Marriott GDPR fines and what organisations can do to ensure they achieve compliance with GDPR and similar regulations Continue Reading

By

• Antony Adshead, Storage Editor

UK boards ignoring £30bn cyber risk

Despite the danger posed by cyber attacks to mid-sized companies, boards are not prepared to manage the risk and firms are over-confident in their cyber capabilities, report finds Continue Reading

By

• Warwick Ashford, Senior analyst

St John Ambulance praised for response to ransomware attack

Charity’s response to ransomware attack demonstrates that it is possible to ensure minimal disruption if properly prepared Continue Reading

By

• Warwick Ashford, Senior analyst

APAC experts weigh in on cyber security trends

The onslaught of cyber attacks being reported each day has been a wake-up call, but experts say businesses need to be mindful of the limitations of certain security measures Continue Reading

By

• Aaron Tan, Informa TechTarget

Sweden’s Protective Security Act targets cyber risks

IT suppliers must comply with tighter cyber security requirements, but are being offered help from government agencies Continue Reading

By

• Gerard O'Dwyer

Comparing EDR tools: Cybereason vs. CrowdStrike vs. Carbon Black

Learn how tools from leading EDR vendors Cybereason, CrowdStrike and Carbon Black compare when it comes to helping security teams fight endpoint threats and respond to incidents. Continue Reading

By

• Kevin Beaver, Principle Logic, LLC

How to prevent cybersecurity attacks using this 4-part strategy

It can be daunting to defend an enterprise against cyberattacks, but these four defensive moves can help fortify and repel whatever comes your way. Continue Reading

By

• Dave Shackleford, Voodoo Security

Dutch bank and researchers begin defence against quantum computing’s dark side

ABN Amro is working with QuTech to ensure that banks can protect data against quantum computers in the future Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Singapore government forms digital industry office

New office will help local tech firms grow their regional footprint and build new capabilities in order to thrive in APAC’s booming digital economy Continue Reading

By

• Aaron Tan, Informa TechTarget

Online porn age-verification checks delayed for six months

Changes to force UK internet users to prove their age to access adult content are postponed for a third time because of failure to notify the European Commission of key policy details Continue Reading

By

• Angelica Mari

Singapore faced fewer cyber threats in 2018

Despite the fall in the number of common cyber threats last year, Singapore will continue to face advanced persistent threats, CSA warns Continue Reading

By

• Aaron Tan, Informa TechTarget

How ASEAN firms are using AI to combat cyber threats

Artificial intelligence tools are becoming a vital part of the security arsenal for organisations and cyber criminals alike Continue Reading

By

• Ai Lei Tao

Making threat intelligence greater than the sum of its parts

Organisations can become more secure if they join up their varied sources of intelligence about business threats, and avoid losing valuable information within individual silos Continue Reading

By

• Elliott Rose & Matthew Arnold

Businesses investing blindly in cyber security

Businesses need to find out what their real cyber risks and weaknesses are before investing in new technologies, says ethical hacker Continue Reading

By

• Warwick Ashford, Senior analyst

Australia’s Notifiable Data Breaches scheme drives compliance but issues remain

Australia’s data breach notification rules have largely been complied with, but some quarters are calling for more clarity on the reporting threshold and tougher action against errant firms Continue Reading

By

• Beverley Head

Facebook loses bid to halt European court decision on EU-US data sharing

Irish Supreme Court dismisses attempt by Facebook to prevent the European Court of Justice considering the validity of US-EU data transfers, after Austrian lawyer Max Schrems argued that they put the privacy of EU citizens at risk Continue Reading

By

• Bill Goodwin, Computer Weekly

Perfect storm for data science in security

After nearly 20 years of research, the perfect storm of computing technologies is finally enabling data science to realise its potential to make valuable contributions to improving cyber security capabilities Continue Reading

By

• Warwick Ashford, Senior analyst

Singapore proposes data portability provisions

The Personal Data Protection Commission is seeking public feedback on proposed provisions that will let consumers move their personal data across organisations Continue Reading

By

• Aaron Tan, Informa TechTarget

Norwegian industry and state must combine to counter cyber threats

Norway has been targeted by two large ransomware attacks in recent months – and public and private organisations must react in a coordinated way Continue Reading

By

• Gerard O'Dwyer

Security Think Tank: Proper segregation is more important than ever

What are the security benefits and challenges of segregating IT environments, and how best are these challenges overcome? Continue Reading

By

• Emma Bickerstaffe, Information Security Forum (ISF)

APAC firms on the back foot in cyber security

Most Asia-Pacific organisations did not consider cyber security until after their digital transformation projects had begun, new survey finds Continue Reading

By

• Aaron Tan, Informa TechTarget

National Crime Agency calls for additional funding to tackle 21st century crime

Organised criminal gangs represent the biggest cyber threat to the UK, and law enforcement has identified rogue servers hosted in the UK Continue Reading

By

• Cliff Saran, Managing Editor

Security Think Tank: Surviving the existential cyber punch, part 3

How should businesses plan to survive a potential cyber attack extinction event? Continue Reading

By

• Gregory Touhill, ISACA

Dutch businesses not yet implementing NIS Directive

Little urgency to comply with the Network and Information Systems Security Act, which seeks to protect the Netherlands’ vital infrastructure and digital services from cyber attack Continue Reading

By

• Kim Loohuis

Some Australian firms still in the dark about cyber security

A report suggesting Australian firms are experiencing fewer cyber incidents has left its co-author perplexed with the findings Continue Reading

By

• Beverley Head

Privileged access management moving to cloud

Survey shows nearly half of information security professionals are either planning to move privileged access management to the cloud or are exploring the possibility Continue Reading

By

• Warwick Ashford, Senior analyst

Top lessons learned from cyber attacks

Cyber security experts weigh in on lessons learned from cyber attack experiences, underlining that recovery capability is as important as defence Continue Reading

AWS to power Australia’s 2021 online census

PwC Australia, one of two firms appointed by the government to run the next Census, will build and operate an online form and a website on Amazon Web Services Continue Reading

By

• Aaron Tan, Informa TechTarget

Australians lost half a billion dollars to scams in 2018

Most of the losses went to investment scams as tricksters found innovative ways to dupe victims into parting with their money Continue Reading

By

• Aaron Tan, Informa TechTarget

Security Think Tank: Surviving the existential cyber punch part 2

How should businesses plan to survive a potential cyber attack extinction event? Continue Reading

By

• Gregory Touhill, ISACA

Top lessons from cyber attacks

Cyber security experts weigh in on lessons learned from cyber attack experiences, underlining that recovery capability is as important as defence Continue Reading

By

• Warwick Ashford, Senior analyst

GDPR cases drive bigger budgets for Nordic regulators

High-profile General Data Protection Regulation cases in Finland and Sweden have increased the workload for regulators, which are to receive an increase in funding Continue Reading

By

• Gerard O'Dwyer

Wipro admits to potential breach to employee accounts by phishing attack

Indian IT services company Wipro is investigating a phishing attack, which hit some staff email accounts and launched attacks on customer environments Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

How Palo Alto Networks fends off its cyber adversaries

Palo Alto Networks CIO Naveen Zutshi talks up the company’s approach in keeping threat actors at bay Continue Reading

By

• Aaron Tan, Informa TechTarget

Facebook takes extraordinary legal steps to contain document leak

Facebook targets journalists and news organisations for computer searches Continue Reading

By

• Bill Goodwin, Computer Weekly

NCSC seeks new breed of cyber security startups

The UK intelligence community is seeking to promote a new breed of technology startup to help detect, respond to and facilitate rapid recoveries from cyber attacks on the UK Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Aim for integrated resilience, continuity and recovery

How should businesses plan to survive a potential cyber attack extinction event? Continue Reading

By

• Mike Gillespie

Most organisations still lack incident response plans

Most companies lack incident response plans, others fail to test them and nearly half are not GDPR compliant, but some report improved security through automation, a study shows Continue Reading

By

• Warwick Ashford, Senior analyst

CW Middle East: Visibility and security of networks are top IT priorities

The 2019 Computer Weekly/TechTarget IT Priorities survey shows that enterprise buyers in the Middle East, like those in the UK and Europe, are looking to lock down their networks in the face of an almost constant barrage of threats and malicious actors. Also read how Facebook planned to use its Android app to track the location of its customers and to allow advertisers to send political advertising, and what further details operator O2 has revealed about how it is planning for the advent of 5G. Continue Reading

Security Think Tank: Incident response vital to guard against catastrophic cyber attack

How should businesses plan to survive a potential cyber attack extinction event? Continue Reading

By

• Maxine Holt, Omdia

Security Think Tank: BC/DR plan key to cyber attack survival

How should businesses plan to survive a potential cyber attack extinction event? Continue Reading

By

• Petra Wenham

How APAC firms can tame the data beast

Companies and data management experts across Asia-Pacific reveal how they are tackling data management challenges that have been compounded by growing cloud usage and compliance requirements Continue Reading

By

• Aaron Tan, Informa TechTarget

Security Think Tank: How to reduce the impact of a potential cyber extinction event

How should businesses plan to survive a potential cyber attack extinction event? Continue Reading

By

• Andy Jones, Information Security Forum (ISF)

Cyber attacks increasingly exploiting supply chain weaknesses

Cyber attacks are increasingly characterised by supply chain attacks, counter incident response and lateral movement, research reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Black Hat Asia 2019: Get ready for the cyber arms race

The arms race is now squarely in the cyber realm as defence teams and threat actors arm themselves with AI tools Continue Reading

By

• Ai Lei Tao

Singapore government to review data security in public sector

A high-level committee comprising ministers and private sector security experts will review data security practices and recommend measures to better protect citizens’ data Continue Reading

By

• Aaron Tan, Informa TechTarget

Government cyber security strategy is ‘chaotic’

Responding to potential threats at a national level is unfeasible given the time ministers are currently dedicating to Brexit negotiations, says shadow Cabinet Office minister Continue Reading

By

• Angelica Mari

Police investigate Norsk Hydro ransomware attack

Ransomware attack on one of the world’s largest aluminium producers is under police investigation Continue Reading

By

• Warwick Ashford, Senior analyst

How IT leaders should work with marketing

In this week’s Computer Weekly, we hear expert advice on how IT and marketing chiefs can work together to deliver a high-quality customer experience. We examine how supercomputers are transforming science by processing large-scale data analytics. And we look at one of the key ethical aspects of artificial intelligence (AI) – how to explain the decisions an AI makes. Read the issue now. Continue Reading

Podcast: The Computer Weekly Downtime Upload – Episode 7

In this week’s episode of The Computer Weekly Downtime Upload podcast, the team talks cyber attacks against the NHS, the everywoman in Tech Forum, 5G connected cows, and covers off the latest round of revelations about Facebook’s data processing procedures Continue Reading

By

• Computer Weekly Staff

Security Think Tank: Is it true you can't manage what you don't measure?

What should be the key cyber security risk indicator for any business? Continue Reading

By

• Vladimir Jirasek, Foresight Cyber

Citrix breach once again highlights password weaknesses

A reported breach of Citrix, which has potentially exposed data at hundreds of thousands of customer organisations, has once again highlighted the need for an alternative to passwords and the importance of supply chain security Continue Reading

By

• Warwick Ashford, Senior analyst

ICO data raises doubts over UK firms’ ability to manage breaches

Most ICO data breach reports late and incomplete prior to full GDPR implementation, FoI request data reveals, raising doubts about breach prevention, detection and response capabilities Continue Reading

By

• Warwick Ashford, Senior analyst

Cyber espionage group behind SingHealth attack

A cyber espionage group dubbed Whitefly has been identified as the perpetrators behind Singapore’s largest data breach to date Continue Reading

By

• Aaron Tan, Informa TechTarget

Facebook facing 10 GDPR investigations in Ireland

Ireland’s Data Protection Commission has revealed it has 10 active probes into Facebook, Instagram and WhatsApp, as well as Apple, LinkedIn and Twitter, on its books Continue Reading

By

• Alex Scroxton, Security Editor

How CIOs can earn respect from business peers

CIOs recognise that standing out means being more like a business manager than a technology guru Continue Reading

By

• Cliff Saran, Managing Editor

Toyota Australia under cyber attack

The company has confirmed the attempted attack that took out its email system, forcing employees to turn to other forms of communication to continue working Continue Reading

By

• Aaron Tan, Informa TechTarget

Huawei faces battle to win Nordic trust

Nordic countries are investigating the spying allegations made against Chinese networking supplier Huiawei Continue Reading

By

• Gerard O'Dwyer

Cybersecurity needs both psychologists and field marshals

Many cybersecurity professionals like military analogies. Indeed, some security pros are ex-military. But after a recent security exercise involving IBM’s new lorry-mounted SOC (security operations ... Continue Reading

By

• Bryan Betts, Freeform Dynamics

Activist Lauri Love’s computer ‘contained hacked data’, says judge

Lauri Love, who has been accused of hacking into US government computer systems, has lost a legal action against the NCA for the return of his computers and storage device Continue Reading

By

• Bill Goodwin, Computer Weekly

Healthcare providers should press on with digital transformation

Healthcare providers should continue digitisation efforts with security in mind amid looming cyber threats, says a top T-Systems executive Continue Reading

By

• Aaron Tan, Informa TechTarget

Finding security in the cloud

When choosing a cloud security provider, enterprises will need to consider the level of data privacy and data security risk involved Continue Reading

By

• Krishna Balakrishnan

APAC healthcare providers losing $23m to cyber attacks

Healthcare organisations in the Asia-Pacific region could lose an average of $23.3m to cyber attacks, including losses from productivity and customer churn, a study finds Continue Reading

By

• Aaron Tan, Informa TechTarget

Mumsnet denies 'thousands' affected by software glitch-induced data breach

Parenting advice site Mumsnet moves to clear up reports that thousands of users have been affected by its recent data breach Continue Reading

By

• Caroline Donnelly, Senior Editor, UK

A guide to choosing cloud-based security services

Cloud-based security services can help organisations with a growing cloud footprint to reduce cost and address the manpower crunch in cyber security Continue Reading

By

• Aaron Tan, Informa TechTarget

Data breaches in Australia show no sign of abating

Australia’s privacy watchdog recorded over 800 cases of data breaches, nearly one year into the country’s mandatory data breach notification regime Continue Reading

By

• Beverley Head

Innocent people arrested following surveillance blunders, IPCO reveals

Interception of communications commissioner Adrian Fulford warns of “grave” repercussions for people wrongly identified as suspects due to errors made when government bodies access email, phone and telephone data Continue Reading

By

• Bill Goodwin, Computer Weekly

How traffic scrubbing can guard against DDoS attacks

Although most scrubbing services can help fend off distributed denial of service attacks, a more comprehensive mitigation strategy is required to remain unscathed Continue Reading

By

• Ai Lei Tao

DCMS funding fuels cyber diversity drive

The Department for Digital, Culture, Media and Sport is investing in four new projects to drive the number of diverse candidates considered for cyber careers Continue Reading

By

• Clare McDonald, Business Editor

IBM mobile cyber range starts European tour in London

IBM’s mobile cyber range is kicking of a tour in London to raise awareness around the need for tried and tested cyber attack responses among organisations in Europe Continue Reading

By

• Warwick Ashford, Senior analyst

CenturyLink opens Singapore SOC amid security services boom

US telco’s second Asia-Pacific security operations centre in Singapore is one of eight globally as it bids to carve a slice of the security services market Continue Reading

By

• Aaron Tan, Informa TechTarget

New Zealand faces more state-sponsored attacks

Nearly four in 10 cyber security incidents recorded by the National Cyber Security Centre were the work of state-sponsored threat actors Continue Reading

By

• Aaron Tan, Informa TechTarget

SingHealth and IT supplier fined S$1m for data breach

Singapore’s data protection commission considered the fact that both SingHealth and its IT supplier fell prey to sophisticated threat actors, among other factors, when meting out the fine Continue Reading

By

• Aaron Tan, Informa TechTarget

Podcast: Storage and compliance priorities in 2019

Mathieu Gorge, CEO of Vigitrust, looks ahead to key areas in compliance in 2019, including mushrooming data volumes, GDPR fines and the California Consumer Privacy Act Continue Reading

By

• Antony Adshead, Storage Editor

Singapore Airlines’ software glitch exposed customer data

More than 280 members of the Krisflyer frequent flyer programme had their personal information compromised by a one-off software bug Continue Reading

By

• Aaron Tan, Informa TechTarget

Ticketmaster breach: How did this card skimming attack work?

The hacking group Magecart was recently found to have run a card skimming campaign that put customer information at risk. Learn how this attack worked from Nick Lewis. Continue Reading

By

• Nick Lewis

Marriott data breach losses could be over half a billion dollars

Direct losses related to a huge data breach at US hotel group could reach $600m Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Top 10 Australia IT stories of 2018

Australia continues to cement its position as a leader in mastering and deploying advanced information and communications technology across a large segment of its economy Continue Reading

By

• Aaron Tan, Informa TechTarget

Lauri Love battles police for return of computers as NCA confirms live investigation

The National Crime Agency (NCA) confirms there is a live investigation into Lauri Love in the UK, as Love brings legal action against UK police for the return of seized computer equipment Continue Reading

By

• Bill Goodwin & Julia Gregory

APAC cyber security landscape to be more tumultuous in 2019

Amid growing cyber threats, the Asia-Pacific cyber security landscape will not get any rosier in 2019 unless organisations start shoring up their cyber hygiene Continue Reading

By

• Aaron Tan, Informa TechTarget

Top 10 ASEAN stories of 2018

Organisations across Southeast Asia have been doubling down on efforts to take the lead in digital transformation initiatives Continue Reading

By

• Aaron Tan, Informa TechTarget

FCA deeply concerned as no end in sight for IT failures in banking

The FCA has reported a massive increase in the number of banking IT failures in the UK and admitted there is no end in sight Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

How voice biometrics catches fraudsters

Telephone banking is often seen as the forgotten channel in multi-channel banking, something that fraudsters are now exploiting Continue Reading

By

• Cliff Saran, Managing Editor

Credit card fraud in ANZ showing no signs of abating

The value of fraudulent transactions more than doubled that of legitimate purchases during the third quarter this year Continue Reading

By

• Beverley Head

UK firms in the dark around the impact of cyber attacks

UK firms have a long way to go in building the business resilience required to withstand cyber threats and other major disruptions, a study shows Continue Reading

By

• Warwick Ashford, Senior analyst

Australia’s health sector reports most data breaches again

In the first full quarter since Australia’s mandatory breach disclosure scheme came into effect, healthcare providers reported the most data breaches amid controversy over the national health record system. Continue Reading

New Zealand to run national cyber security exercise

The island-nation will test the resilience of its critical infrastructure in November 2018, bringing together multiple agencies to protect assets of national significance. Continue Reading

Enterprises lack capability against persistent cyber attacks

A report urges organisations to strengthen their cyber defence capabilities to pre-empt, detect and respond to post-breach attacks Continue Reading

By

• Warwick Ashford, Senior analyst

Government considering dedicated internet regulator, says digital minister

An upcoming white paper is likely to set out proposals for an internet regulator, a House of Lords committee has been told Continue Reading

By

• Alex Scroxton, Security Editor

Norway’s IT industry must tackle security vulnerabilities

Report reveals growing threat posed by “hostile foreign actors” against Norway’s IT systems and critical national infrastructure Continue Reading

By

• Gerard O'Dwyer

Making the UK the safest place to live and work online

Government, industry and individuals all have to play their part in enhancing cyber security practices Continue Reading

By

• Cate Pye, EY

Facebook to appeal EU-US data transfer ruling in Irish Supreme Court

Facebook will appeal a decision by the Irish High Court to refer questions over the legality of EU-US data transfers to the European Court of Justice in January, as the Dublin court rejects attempt by a UK IT expert to join the case Continue Reading

By

• Bill Goodwin, Computer Weekly

Australia’s data breaches are a ‘sign of naiveté’

McAfee executive attributes Australia’s poor cloud security record to the lack of data protection measures amid “new and confusing” cloud configurations Continue Reading

By

• Beverley Head

British Airways data breach worse than thought

British Airways has admitted that up to 185,000 more people than first thought may have had personal details compromised in August’s data breach Continue Reading

By

• Alex Scroxton, Security Editor