News

Data breach incident management and recovery

• September 24, 2021 24 Sep'21

  How Australia punches above its weight in cyber security

  Australia is playing to its strengths in niche areas such as governance and deep tech to punch above its weight in the cyber security industry

• September 23, 2021 23 Sep'21

  Fresh alert over Conti ransomware surge

  Conti ransomware crew appears increasingly active, prompting fresh warnings from the US authorities

• September 23, 2021 23 Sep'21

  MoD in second leak of Afghan citizens’ data

  A second breach of data relating to Afghan citizens at risk of Taliban reprisals has been reported by the Ministry of Defence

• September 21, 2021 21 Sep'21

  US sanctions Suex crypto exchange over ransomware links

  US Treasury cracks down on cryptocurrency exchange that supposedly facilitated proceeds from multiple ransomware gangs

• September 21, 2021 21 Sep'21

  Investigation launched after MoD email blunder

  Exposure of PII on Afghan interpreters who worked with the UK may put hundreds at risk of Taliban reprisals

• September 21, 2021 21 Sep'21

  BlackMatter gang ramps up attacks on multiple victims

  A wave of new BlackMatter ransomware attacks is hitting organisations around the world, even as the US authorities mull new sanctions on ransom payment infrastructure

• September 16, 2021 16 Sep'21

  Dutch education administrators underestimate threat of cyber crime

  Research shows educational establishments in the Netherlands are becoming favoured targets of cyber criminals and administrators are underestimating the risks

• September 16, 2021 16 Sep'21

  Bitdefender launches free REvil ransomware decryptor

  Working alongside law enforcement partners, Bitdefender has developed and released a tool to help REvil victims recover their data for free

• September 16, 2021 16 Sep'21

  Travel-themed phishing lures spiked this summer

  As people begin to take holidays again after more than a year of restrictions and lockdowns, opportunist cyber criminals have taken note, according to new data from Palo Alto’s Unit 42

• September 15, 2021 15 Sep'21

  Australia and Singapore have higher incidences of insecure databases

  Five-year longitudinal study by Imperva shows the proportion of databases with at least one known vulnerability in Australia and Singapore are among the world’s highest

• September 14, 2021 14 Sep'21

  Mass health tracker data breach has UK impact

  The leak of a database of 61 million users of health-tracking devices includes records on individuals located in the UK

• September 14, 2021 14 Sep'21

  Cost of ransomware attack in financial sector exceeds $2m

  Mid-sized financial services organisations worldwide spend an average of over $2m recovering from ransomware attacks

• September 14, 2021 14 Sep'21

  Apple patches ForcedEntry vulnerability used by spyware firm NSO

  Apple patches ForcedEntry vulnerability that was used to target political activists with spyware

• September 13, 2021 13 Sep'21

  Olympus likely victim of BlackMatter ransomware

  Key IT systems remain shut off at Olympus, five days after what seems to have been a BlackMatter ransomware attack

• September 09, 2021 09 Sep'21

  UK GDPR faces changes under planned reforms

  DCMS is launching a major consultation on proposed changes to the UK’s data protection regime, under which several key elements of the GDPR are likely to change

• September 08, 2021 08 Sep'21

  REvil reappearance may herald new ransom campaigns

  The re-emergence of the infamous REvil ransomware gang is a likely sign that more high-profile attacks will unfold over the coming weeks

• September 08, 2021 08 Sep'21

  Stolen credit card data worth about £13 on dark web, PayPal worth more

  The average price of a stolen credit card on a dark web marketplace comes in at around $17.40, or £12.60, according to new data – but the real money for cyber criminals is in hacked PayPal accounts

• September 07, 2021 07 Sep'21

  OT security in APAC remains work in progress

  Two operational technology security experts shed light on the state of OT security in the region, and what’s being done to address skills, competency and organisational challenges

• September 03, 2021 03 Sep'21

  Mandiant, Sophos detail dangerous ProxyShell attacks

  Threat researchers and incident responders continue to track threat activity around the dangerous ProxyShell Microsoft Exchange vulnerabilities, including impactful ransomware hits

• September 03, 2021 03 Sep'21

  China accused of cyber attacks on Norwegian IT systems

  China-based cyber attackers have been blamed for multiple assaults on IT systems in Norway

• September 02, 2021 02 Sep'21

  Finance firms faced up to £760,000 costs per DNS attack during pandemic

  Financial services firms have been the focus of attacks by cyber criminals during the Covid-19 crisis

• September 01, 2021 01 Sep'21

  Experts warn on Office 365 phishing attacks

  Newly observed campaign is particularly dangerous because it appears to neutralise one of the most widely known anti-phishing techniques

• August 31, 2021 31 Aug'21

  GovTech launches vulnerability rewards programme

  Vulnerability rewards programme will offer rewards ranging from $250 to $5,000 to white hat hackers who find vulnerabilities in critical government systems

• August 27, 2021 27 Aug'21

  Are proposed data protection changes a threat to UK citizens’ privacy?

  Though changes are as-yet undefined pending an upcoming consultation, concerns are already being expressed over the government’s plan to liberalise data protection laws in the service of innovation and growth

• August 26, 2021 26 Aug'21

  Tech giants commit to Biden's cyber security action plan

  Some of the world’s most prominent tech giants have made a series of commitments to enhance the US’ national cyber security posture following a high-profile meeting with president Biden

• August 26, 2021 26 Aug'21

  Government unveils post-Brexit data flow proposals

  The government will pursue data partnerships with countries including Australia, South Korea and the US as part of a post-Brexit data regime that may also see substantial changes to the UK’s data protection law

• August 26, 2021 26 Aug'21

  NZ privacy lead John Edwards named new information commissioner

  DCMS has named John Edwards, currently New Zealand privacy commissioner, to succeed Elizabeth Denham as UK information commissioner

• August 25, 2021 25 Aug'21

  Calling the cops for ransomware attacks doesn’t help, say cyber pros

  A new study for the #Ransomaware campaign reveals some insight into why so few victims report ransomware attacks

• August 24, 2021 24 Aug'21

  13 million malware attacks on Linux seen in wild

  Cryptominers, web shells and ransomware are the most common varieties of malwares targeting Linux systems, thanks to its prevalence as the backbone of most public cloud services

• August 24, 2021 24 Aug'21

  Half of MS Exchange servers at risk in ProxyShell debacle

  Up to 50% of MS Exchange users in the UK are exposed to three vulnerabilities that are now being actively exploited

• August 24, 2021 24 Aug'21

  Over a million opt out of NHS data-sharing

  Failure to communicate benefits of data-sharing proposals and privacy concerns are prompting large numbers of people to opt out of a proposed NHS Digital scheme

• August 23, 2021 23 Aug'21

  Flexxon and Lenovo tie up on AI-infused SSDs

  Singapore-based Flexxon teams up with Lenovo to make its solid-state drive that uses artificial intelligence to fend off cyber threats available on ThinkPad-based laptops

• August 20, 2021 20 Aug'21

  Swedish IT industry braced for China’s response to Huawei 5G ban

  Swedish IT and communications equipment suppliers fear economic backlash from China following Huawei ban

• August 19, 2021 19 Aug'21

  IT leaders fear ‘trickle-down’ of nation-state cyber attacks

  Three-quarters of IT decision-makers are concerned that the tactics, techniques and procedures used by nation-state attackers could be used against them

• August 18, 2021 18 Aug'21

  MoD seeks security tech to harden military systems

  The Defence and Security Accelerator has launched a programme to root out technology that will reduce the military’s exposure to cyber attacks

• August 17, 2021 17 Aug'21

  Educational publisher Pearson fined for data breach cover-up

  Securities and Exchange Commission says publisher misled its investors over the extent of a 2018 data breach

• August 16, 2021 16 Aug'21

  Nearly half of retailers hit by ransomware in 2020

  In the face of increasingly prevalent and sophisticated ransomware attacks, retail organisations need to develop alternative ways of restoring lost or encrypted data, as paying the ransom does not guarantee its return in almost a third of cases

• August 13, 2021 13 Aug'21

  Cyber Runway programme supports new security businesses

  The Cyber Runway programme is a government-backed scheme to support entrepreneurs, startups and scaleups in launching and growing new security businesses

• August 11, 2021 11 Aug'21

  US wins bid to widen grounds of appeal in Julian Assange extradition case

  The US government accused medical expert professor Michael Kopelman of misleading the court by failing to disclose details of Assange’s relationship 

• August 11, 2021 11 Aug'21

  The Netherlands still lacks digital resilience, says report

  Report by National Coordinator for Counterterrorism and Security says the Netherlands’ digital resilience has improved, but is still insufficient

• August 10, 2021 10 Aug'21

  Dutch lead the way in protecting themselves against internet risks

  Dutch citizens come top in a study on awareness of internet risks in Europe, which showed major differences across the continent

• August 09, 2021 09 Aug'21

  Possible ransomware attack hits Italian vaccine booking system

  It is still unclear who is behind the attack that caused Covid-19 vaccine bookings in Lazio, Italy, to grind to a halt, as despite masses of files being encrypted no specific ransom demands have been made for the decryptor

• August 05, 2021 05 Aug'21

  Cloud misconfiguration a growing cause of security incidents

  Rapid cloud adoption during the pandemic has increased the attack surface and heightened the risk of misconfiguring services, leaving organisations more vulnerable to cyber attacks

• August 04, 2021 04 Aug'21

  Six Isle of Wight schools hit by ransomware attack

  Authorities are still working to manage the fallout from the attack, which has already forced at least one school to delay the start of the new term in September

• August 03, 2021 03 Aug'21

  Destruction and integrity cyber attacks on the rise

  Cyber security professionals have reported a sharp rise in debilitating attacks aimed at destroying or manipulating data

• July 29, 2021 29 Jul'21

  Technical hiccups force Babuk ransomware gang to change tactics

  The Babuk ransomware operation backed away from encrypting its victims’ files, and technical difficulties may be to blame, reports McAfee

• July 28, 2021 28 Jul'21

  Top vulnerabilities target perimeter devices

  The most frequently exploited CVEs of the year so far are to be found in perimeter and network access devices, according to a joint advisory from the NCSC and partners

• July 28, 2021 28 Jul'21

  COP26 cyber resource hub launched for Glasgow businesses

  New digital information hub for Glasgow business to help organisations keep secure both physically and online ahead of major climate change summit

• July 27, 2021 27 Jul'21

  ICO ends its involvement in dispute between NatWest Bank and data breach whistleblower

  The Information Commissioner’s Office has ended its involvement in a dispute between a data breach whistleblower and NatWest bank

• July 27, 2021 27 Jul'21

  US lawmakers call for probe into ‘arrogant’ spyware firm

  US members of Congress have called for an investigation into NSO Group, the spyware supplier at the centre of a massive surveillance scandal