Network security management

EasyJet to be sued over customer data breach

If successful, airline’s potential liability for the loss of millions of customer records could be as high as £18bn Continue Reading

Top 5 VPN myths and misconceptions for IT organizations

Although VPN technology has its challenges, various misconceptions exist that can muddle IT teams' understandings of VPNs. Here are five common VPN misconceptions debunked. Continue Reading

NCSC discloses multiple vulnerabilities in contact-tracing app

National Cyber Security Centre has received mountains of feedback on the security of the government’s Covid-19 contact-tracing app, and has now taken the step of making multiple disclosures Continue Reading

Cancelled NCSC CyberUK event gets green light for 2021

The NCSC’s popular CyberUK event has been rescheduled to next year, and will again take place in Newport in south Wales Continue Reading

Questions raised after UK’s electrical grid shrugs off cyber attack

Attack on Elexon was resolved within hours with no impact on the national electricity supply, but it could have been much worse Continue Reading

China targeting Covid-19 researchers through IT suppliers, claims US

The US CISA says it is seeing targeting and attempted network compromise of Covid-19 research centres by China Continue Reading

SK Telecom brings quantum security to the masses

The South Korean telco is readying the world’s first 5G smartphone equipped with a quantum random number generator chipset Continue Reading

Report reveals inadequate cyber security at Schiphol Airport

A report has revealed problems with critical security systems in Amsterdam’s Schiphol Airport Continue Reading

Nation state APT groups prefer old, unpatched vulnerabilities

The Cybersecurity and Infrastructure Security Agency and the FBI have published details of the most commonly exploited vulnerabilities of recent years, and there are some “classics” on the list Continue Reading

European comms bodies set up standards group, call for vigilance on contact-tracing apps

New ETSI group will develop standardisation framework for secure smartphone-based proximity tracing systems, helping to break Covid-19 transmission chains Continue Reading

Details released of second UK contact-tracing app development

Contractual documents show Zuhlke Engineering receiving an official start date of 6 May to supply a managed delivery team to support and run proximity mobile application and services for the UK Continue Reading

Security Think Tank: Create healthy habits to avoid burnout

Cyber criminals are enjoying a boom during the Covid-19 pandemic, and security teams are working overtime as a result. How can security professionals manage their increased workload, safeguard their mental well-being and avoid burnout? Continue Reading

What are the security priorities for the post-coronavirus world?

The Covid-19 pandemic is forcing massive change across the business world and things may never go back to normal. What does security look like in this new world, and what will buyers be prioritising? Continue Reading

Zoom buys secure messaging service Keybase

Unified comms platform Zoom says the acquisition of Keybase will finally let it bring end-to-end encryption to the table Continue Reading

Contact-tracing app fails to protect privacy and human rights

Reassurances over the security and human rights implications of NHSX’s approach to developing its Covid-19 contact-tracing app are insufficient, says the cross-bench Human Rights Committee Continue Reading

Security Think Tank: Security teams are key workers and need support

Cyber criminals are enjoying a boom during the Covid-19 pandemic, and security teams are working overtime as a result. How can security pros manage their increased workload, safeguard their mental wellbeing, and avoid burnout? Continue Reading

Contact tracing: The privacy vs protection debate

The Covid-19 pandemic has necessitated extreme measures not seen in peacetime for over 100 years. Contact-tracing apps are being developed as a tool for managing the pandemic, but are they a step too far? Continue Reading

GoDaddy owns up to October 2019 data breach

Web hosting services provider has suffered yet another security incident, confirming that an unauthorised individual accessed hosting accounts Continue Reading

Xen Orchestra latest victim of Salt cryptojackers

More victims of cyber criminals exploiting two critical Salt vulnerabilities are coming forward Continue Reading

Blogging platform Ghost hacked through Salt vulnerability

Publishing service’s network was taken over by illicit cryptominers after failing to patch a critical vulnerability Continue Reading

IT Priorities 2020: Compliance and risk are top security concerns

When it comes to security, buyers are prioritising solutions and services that address compliance issues, risk management and data protection, according to the Computer Weekly/TechTarget IT Priorities 2020 study Continue Reading

IMDA to issue 5G spectrum to Singtel and StarHub-M1 venture

Singapore’s telco regulator will award 5G spectrum to major operators whose proposals have exceeded its requirements in some cases Continue Reading

Almost half of security pros being redeployed during pandemic

Close to half of cyber security professionals say they have been taken off some or all of their security duties to focus attention elsewhere during the Covid-19 coronavirus pandemic Continue Reading

A carrot-and-stick approach to fixing cyber security complacency

With a majority of IT decision-makers holding the opinion that their employers are complacent when it comes to data protection, we look at what needs to be fixed, and how to fix it Continue Reading

Coronavirus: Cyber criminals may be changing tactics

Cyber criminals “may soon shift to heavier exploitation of footholds established through phishing and other scams”, warns Cyber Threat Coalition Continue Reading

Revealed: The man behind the first major computer virus pandemic

After 20 years of silence, Onel de Guzman has admitted unleashing the “Love Bug”, the computer virus that caused havoc by infecting 45 million machines around the world Continue Reading

NCSC launches coronavirus cyber security campaign

The National Cyber Security Centre has launched a reporting service for scam emails as part of a campaign to help people protect themselves from cyber criminals exploiting the pandemic Continue Reading

Dutch organisations address business email compromise fraud

Public-private partnership in the Netherlands works to break the chains used by fraudsters to carry out BEC attacks Continue Reading

A glossary of the VPN terminology you need to know

For organizations with remote workforces, VPNs can be an essential part of daily life. This VPN glossary explores the essential terms and phrases that constitute VPN services. Continue Reading

EU warns no compromise on privacy as NHS clashes with tech firms on contact tracing

EU and UK regulators express data privacy concerns days after Silicon Valley giants announce collaboration on contact-tracing apps to prevent the spread of the Covid-19 coronavirus Continue Reading

Check Point sounds alarm over double extortion ransomware threat

Researchers say double extortion ransomware attacks are likely to increase in frequency, and warn organisations to be on guard Continue Reading

Coronavirus: India eases lockdown restrictions for IT service providers

Indian government allows IT services firms to bring half their staff back to delivery centres Continue Reading

NHS Wales to get free security services during coronavirus pandemic

NHS Wales Informatics Services enlists Thales to help it face down security threats and let its teams focus on the Covid-19 coronavirus crisis Continue Reading

Coronavirus: Cyber attacks on banks seen spiking, says Carbon Black

VMware’s Carbon Black observes a spike in cyber attacks on financial services organisations Continue Reading

Coronavirus puts brakes on 5G core deployments

Research firm identifies short- and long-term impacts that global pandemic will have on 5G core and edge networks Continue Reading

Coronavirus: Warning over surge in Zoom security incidents

Check Point researchers have observed a surge in suspicious Zoom domains as cyber criminals target popular remote working and collaboration tools Continue Reading

Coronavirus: Criminals using Zoom installer to spread cryptominer

Videoconferencing application targeted to deliver cryptomining malware to unsuspecting victims Continue Reading

Zero-day exploits increasingly commodified, say researchers

The exploitation of zero-day vulnerabilities increasingly demonstrates access to cash, rather than skills Continue Reading

Security Think Tank: Why and how cyber criminals exploit world events

In our globalised world, high-profile events such as Covid-19 have huge business impacts, some of which may be felt by CISOs. What responsibilities do security professionals have in such circumstances? Continue Reading

Google data shows high interest in security and remote working

An analysis of the most Googled technology terms during the Covid-19 coronavirus pandemic has highlighted the scale of the cyber security challenge presented by the crisis Continue Reading

Coronavirus: What does the ‘new normal’ mean for how we work?

Examining the long-term impact of the Covid-19 coronavirus pandemic on the world of work, security, privacy and networks Continue Reading

Security Think Tank: Continuity planning doesn’t have to be complex

In our globalised world, high-profile events such as Covid-19 have huge business impacts, some of which may be felt by CISOs. What responsibilities do security professionals have in such circumstances? Continue Reading

Coronavirus: Is Zoom safe and should security teams ban it?

Zoom’s rapid rise to prominence has highlighted a score of security problems with the service. Should CISOs try to steer their organisations away from it, or ban it outright? Continue Reading

CDN and cloud suppliers join routing security initiative

Akamai and Amazon Web Services are among a group of cloud and content delivery network providers to participate in a global initiative to address the security threats to internet routing systems Continue Reading

Marriott International hotel chain in second data breach

Marriott International notifies customers of a major data breach that unfolded earlier in 2020 – the second it has experienced in the past two years Continue Reading

How IT leaders and their teams are supporting employees through the coronavirus crisis

We talk to four top IT chiefs across the UK to find out how their teams are supporting their organisations and staff to keep working through the Covid-19 outbreak Continue Reading

Too late to protect online privacy, say Brits

Most UK consumers are concerned about data privacy, but think it’s too late to do much about it, according to a report Continue Reading

Insurance firm Chubb may be latest Maze ransomware victim

Maze ransomware group claims to have stolen personal data from the systems of cyber security insurance firm Chubb Continue Reading

Lorca calls on security scaleups to tackle coronavirus challenge

Lorca innovation programme has launched an open call for its next cohort of cyber security scaleups, with a timely focus on coronavirus challenges Continue Reading

Coronavirus: What are the latest free cyber security offers?

We round up the latest free offers on cyber security products and services being made available during the Covid-19 coronavirus crisis Continue Reading

Legacy AV defenceless against onslaught of evasive malware

More than two-thirds of malware detected by WatchGuard in the last three months of 2019 was able to evade signature-based antivirus products, rendering them effectively useless in most instances Continue Reading

The AWS bucket list: Keep your cloud secure

Misconfigured cloud installations risk billions of records being exposed, damaging organisations’ finances and reputations. Paying attention to securing AWS storage buckets is a simple matter Continue Reading

Coronavirus: UK mobile operators discuss sharing crowd movement data with government

Reports emerge of unprecedented cooperation between UK telcos and government to provide people-modelling data to prevent spread of coronavirus Continue Reading

Unpatched Zyxel storage devices co-opted into IoT botnet

Owners of Zyxel network-attached storage devices are in danger of being hijacked by Mukashi, a descendant of the infamous Mirai botnet, if they don’t patch a critical vulnerability Continue Reading

Coronavirus: How to implement safe and secure remote working

Find out what CIOs and CISOs need to know to enable their end-users to work remotely and stay secure during the Covid-19 coronavirus crisis, and learn how users can help themselves Continue Reading

Coronavirus: Can the networks take the strain?

It was predicted that the mass roll-out of computer networks would mean at some point that there was no difference between work and home as a working location. These assumptions are about to be tested to the full Continue Reading

Coronavirus now possibly largest-ever cyber security threat

The cumulative volume of coronavirus-related email lures and other threats is the largest collection of attack types exploiting a single theme for years, possibly ever Continue Reading

Prudential turns to AI to secure computer networks against cyber attacks

Prudential, the UK’s largest listed insurer, is turning to artificial intelligence to protect its computer networks in the US, Asia and Africa from malware hackers and internal threats Continue Reading

Security Think Tank: Amid panic, how to find a sound level of security

In our globalised world, high-profile events such as Covid-19 have huge business impacts, some of which may be felt by CISOs. What responsibilities do security professionals have in such circumstances? Continue Reading

Covid-19: NCSC issues secure remote working guidance

With hundreds of thousands likely to be working remotely for some time, the UK’s NCSC has issued best practice guidance to enable security teams to support them Continue Reading

SentinelOne makes security platform free to support remote workers

Endpoint protection platform service will be made free until 16 May 2020 to help protect remote workers during the Covid-19 coronavirus crisis Continue Reading

Security Think Tank: To tackle Covid-19, be prepared, flexible and resilient

In our globalised world, high-profile events such as Covid-19 have huge business impacts, some of which may be felt by CISOs. What responsibilities do security professionals have in such circumstances? Continue Reading

Coronavirus-linked hacks likely as Czech hospital comes under attack

The world of cyber security is on high alert to heightened vulnerabilities as the spread of the Covid-19 coronavirus changes daily life across Europe Continue Reading

Security Think Tank: A guide to security best practice for pandemics

In our globalised world, high-profile events such as Covid-19 have huge business impacts, some of which may be felt by CISOs. What responsibilities do security professionals have in such circumstances? Continue Reading

UK’s security sector failing on most diversity measures

A DCMS report on the state of the UK’s cyber security workforce highlights a huge lack of diversity and a substantial skills gap Continue Reading

Security Think Tank: Coronavirus crisis helps put security in context

In our globalised world, high-profile events such as Covid-19 have huge business impacts, some of which may be felt by CISOs. What responsibilities do security professionals have in such circumstances? Continue Reading

Microsoft locks down new vulnerability with EternalBlue echoes

Microsoft has moved to get ahead of a serious remote code execution vulnerability in Microsoft Server Message Block 3.1.1, which was accidentally disclosed then missed in its March Patch Tuesday update Continue Reading

Security Think Tank: ID-driven security helps safeguard the workforce

In our globalised world, high-profile events such as Covid-19 have huge business impacts and some of these impacts may be felt by CISOs. What responsibilities do security pros have in such circumstances, and what steps can they take to shore up their defences? Continue Reading

Security Think Tank: Covid-19 highlights need for embedded security

In our globalised world, high-profile events such as Covid-19 have huge business impacts and some of these impacts may be felt by CISOs. What responsibilities do security pros have in such circumstances, and what steps can they take to shore up their defences? Continue Reading

Is technology innovation broken?

In this week’s Computer Weekly, despite its reputation for fresh thinking the tech sector is stuck in old ways that prevent true innovation – an expert explains why. Our buyer’s guide examines how networking is affected by the growth of cloud-native applications. And we look at the key tech-related compliance issues for SMEs. Read the issue now. Continue Reading

Huawei: MPs air concerns over security risks in code and managed contracts

The risk Huawei poses to the UK's 5G network roll out was raised during a recent Westminster Hall debate Continue Reading

5G security is a concern for most companies

A study has found that decision-makers fear that 5G technology will make organisations more vulnerable to cyber attacks and will raise security-related costs Continue Reading

Horangi and Tokio Marine team up on cyber security services

Singapore-based Horangi will provide penetration testing, among other cyber security services, to Tokio Marine Insurance Singapore’s cyber risk insurance clients Continue Reading

The Security Interviews: Inside the world of bug bounties

You may not make a million as a bug bounty hunter, but you might help remove some of the stigma that persists around cyber security, says HackerOne’s Shlomie Liberow Continue Reading

Redcar & Cleveland Council confirms ransomware attack

Local authority’s systems are still offline nearly three weeks after being attacked Continue Reading

Kr00k vulnerability compromises billions of Wi-Fi devices

Billions of Wi-Fi chips used in IoT devices, laptops, smartphones and tablets are vulnerable to a serious vulnerability Continue Reading

Fake CDNs obscuring credit card fraudsters

Fake content delivery networks and ngrok servers are being pressed into service to obscure credit card skimming activities Continue Reading

Cloud Snooper firewall bypass may be work of nation state

Cloud Snooper deploys a combination of specialised techniques to sneak past enterprise firewalls, warns Sophos Continue Reading

WikiLeaks founder Julian Assange cannot be legally extradited for ‘political offences’, say lawyers

Lawyers for WikiLeaks founder Julian Assange argue that he has been charged with political offences and cannot be legally extradited to the US under the US-UK extradition treaty Continue Reading

Sports retailer Decathlon left employee data exposed

More than 123 million records were accidentally exposed on an unsecured ElasticSearch server Continue Reading

The Security Interviews: Gil Shwed’s 10-year vision for security

Check Point founder Gil Shwed discusses his new Infinity Next concept and how he plans to remodel the world of cyber security in the next 10 years Continue Reading

Cloud data leaks compounded by lack of automation tools

Data leaks caused by misconfigured clouds are being compounded because security teams lack appropriate automation and integration tools, according to a report Continue Reading

WikiLeaks founder Assange ‘put lives at risk’ by disclosing names in leaked documents, court hears

WikiLeaks founder Julian Assange ‘put lives of US informants at risk’ by publishing unredacted documents, lawyers for the US argued at the first day of a week-long extradition hearing Continue Reading

Open security group unveils common OpenDXL language

Open Cybersecurity Alliance announces the availability of OpenDXL Ontology, the first open source language for connecting disparate security tools through a common messaging framework Continue Reading

Trusty methods to keep out intruders

Today’s hyper-connected world means trust can no longer be taken for granted to keep networks secure – enter the zero-trust model Continue Reading

Cisco goes all-in on security integration with SecureX platform

CISOs are struggling to stitch together disparate cyber security products and services – Cisco believes its cloud-native SecureX platform will change their working lives for the better Continue Reading

Addressing the IoT security challenge

We consider how best to address some of the critical security challenges around the internet of things Continue Reading

UK and US accuse Russian spooks of Georgia cyber attacks

Foreign secretary describes 2019 campaign of cyber attacks as reckless, brazen and unacceptable Continue Reading

Facilities firm ISS World crippled by ransomware attack

An apparent ransomware attack has compromised some IT and email systems at Danish facilities firm ISS World Continue Reading

Untrusted security teams being left out of business decisions

Only a third of organisations are involving their cyber security function at the planning stage of business initiatives Continue Reading

Security Think Tank: Zero trust strategies must start small, then grow

In theory, the elimination of trust on the network simplifies IT security, but zero trust also brings new complications and new challenges. How should CISOs approach moving their organisations from traditional network security to a zero-trust architecture? Continue Reading

Australians more savvy about cyber security

More Australians look out for signs of security features such as SSL encryption even as they remain sceptical of the data protection capabilities of small businesses Continue Reading

Mastercard opens European security resilience unit

Mastercard’s European Cyber Resilience Centre will bring together its partners and other industry bodies to support enterprise resilience Continue Reading

Ex-soldiers to become ethical hackers

A new programme will give armed forces veterans in Scotland a grounding in cyber security skills, including penetration testing and ethical hacking Continue Reading

Zero trust: Taking back control of IT security

Trust on the network is a crucial factor in security risk, and zero trust changes the traditional model of ‘trust but verify’ Continue Reading

Security Think Tank: Ask yourself if zero trust is right for you

In theory, the elimination of trust on the network simplifies IT security, but zero trust also brings new complications and new challenges. How should CISOs go about moving their organisations from traditional network security to a zero-trust architecture? Continue Reading

Security Think Tank: How zero trust lets you take back control

In theory, the elimination of trust on the network simplifies IT security, but zero trust also brings new complications and new challenges. How should CISOs go about moving their organisations from traditional network security to a zero trust architecture? Continue Reading

Security Think Tank: Practical steps to achieve zero trust

In theory, the elimination of trust on the network simplifies IT security, but zero trust also brings new complications and new challenges. How should CISOs go about moving their organisations from traditional network security to a zero-trust architecture? Continue Reading

Inside the SOC: the nerve centre of security operations

Security operations centres are the bedrock of any cyber defence strategy, but operating one is increasingly challenging, with mounting workloads and a shortage of skilled personnel Continue Reading

Chinese military personnel accused of Equifax hack

A US federal grand jury has indicted four Chinese army personnel over the 2017 Equifax breach Continue Reading