News

Data breach incident management and recovery

• July 24, 2020 24 Jul'20

  A question of trust: University and supplier on the hook for data breach

  Data on students at the University of York was stolen in a ransomware attack on a supplier two months ago, and the response of both parties raises serious questions

• July 22, 2020 22 Jul'20

  NCSC reveals scale of cyber attacks on UK sports industry

  The UK’s sports industry is under near constant cyber attack, according to new statistics from the National Cyber Security Centre

• July 22, 2020 22 Jul'20

  No let-up in cyber attacks as lockdown eases

  Cyber attacks are up by one-third as the coalescence of cyber activity and nation state-linked threats around the pandemic bears fruit for bad actors

• July 22, 2020 22 Jul'20

  US charges Chinese nationals with Covid-19 research hacking

  The two hackers allegedly worked with the Chinese Ministry of State Security, targeting intellectual property and confidential business information

• July 21, 2020 21 Jul'20

  Russia Report reveals long-running cyber warfare campaign against UK

  Russia has been hacking the UK for years and the British government has also known about it for years, according to the Intelligence and Security Committee’s report

• July 21, 2020 21 Jul'20

  Australian industry panel calls for ‘clear consequences’ of cyber attacks

  A government-appointed panel recommends strong deterrence and other measures to be implemented in Australia’s next cyber security strategy

• July 20, 2020 20 Jul'20

  Test and Trace programme unlawful, admits government

  The Department of Health and Social Care failed in its legal obligation to complete a mandatory Data Protection Impact Assessment

• July 17, 2020 17 Jul'20

  Twitter hack fallout: Investigators on trail of cyber criminals

  Investigators are hunting the cyber criminals who broke into Twitter’s systems to hijack prominent accounts, amid concerns that more attacks may come

• July 16, 2020 16 Jul'20

  Russian state hackers attacking Covid-19 researchers

  Kremlin-linked APT29 group, also known as Cozy Bear, is conducting a campaign against Covid-19 researchers around the world

• July 16, 2020 16 Jul'20

  Cryptocurrency scammers attack Twitter in insider breach

  Apparent insider breach at Twitter saw so-called “blue tick” accounts of business people, politicians and celebrities hijacked to promote a Bitcoin scam

• July 16, 2020 16 Jul'20

  Coronavirus shines spotlight on cyber security

  Programme committee chair of this year's RSA Conference Asia-Pacific and Japan talks up the challenges that IT security professionals in APAC are facing to mitigate security risks amid the Covid-19 pandemic

• July 15, 2020 15 Jul'20

  Video providers slammed by credential stuffing attacks

  Attacks on the media sector are spiking as cyber criminals try to gain access to valuable consumer accounts

• July 14, 2020 14 Jul'20

  Recon vulnerability puts thousands of SAP customers at risk

  Users of multiple SAP products including S4/HANA should apply the security update as soon as possible to protect their systems

• July 14, 2020 14 Jul'20

  ‘Name-and-shame’ ransomware attacks increasing in prevalence

  Since emerging at the tail-end of 2019, double extortion, or exfiltration and encryption, ransomware attacks have become highly popular, and now account for a significant number of incidents, according to Emsisoft research

• July 14, 2020 14 Jul'20

  Australian enterprises facing more cyber attacks

  The volume of cyber attacks in Australia jumped from 90% in October 2019 and 81% in February 2019, underscoring the worsening threat landscape in the country

• July 13, 2020 13 Jul'20

  NCSC launches pen testing service for remote workers

  An expansion to the successful Exercise in a Box toolkit will enable SMEs to probe the cyber security defences of remote workers

• July 09, 2020 09 Jul'20

  Clearview AI faces ICO investigation over facial recognition

  Controversial company that scraped data from the public internet to build its facial recognition algorithm faces a joint UK-Australian investigation into its practices

• July 09, 2020 09 Jul'20

  Most finance firms are multicloud, but many are unprepared for public cloud cyber attacks

  Financial services firms are moving to the cloud at pace, but many are uncertain whether they could cope with an attack on an application based in the public cloud

• July 09, 2020 09 Jul'20

  More Joker malware apps chucked off Google Play Store

  Infamous Joker billing fraud malware continues to sneak past Google’s security controls

• July 08, 2020 08 Jul'20

  Over 15 billion credentials for sale on dark web

  Research by Digital Shadows reveals the scale of the security threat facing consumers as it uncovers 15 billion usernames and passwords stolen in more than 100,000 different data breaches

• July 07, 2020 07 Jul'20

  Cyber4Summer scheme to divert young people from cyber crime

  Cyber4Summer platform will offer 100 different tracks covering a range of security skills to divert them from falling into a life of cyber crime

• July 07, 2020 07 Jul'20

  MSP Xchanging attacked in ransomware incident

  Specialist managed services provider is restoring customer access to systems after an unspecified ransomware incident

• July 06, 2020 06 Jul'20

  Lorca scale-ups bring diverse security to the fore

  London Office for Rapid Cybersecurity Advancement announces the cyber security scale-ups that will make up its fifth cohort

• July 06, 2020 06 Jul'20

  North Korea behind spate of Magecart attacks

  The Magecart credit card skimmer found on the website of retailer Claire’s Accessories was likely put there by the Lazarus or Hidden Cobra North Korean APT group, reports Sansec

• July 02, 2020 02 Jul'20

  Cops take out encrypted comms to disrupt organised crime

  The UK’s National Crime Agency, alongside other law enforcement agencies in France and the Netherlands, have busted illicit arms and drugs rings after disabling an encrypted comms platform

• July 02, 2020 02 Jul'20

  Locked-down teens flock to NCSC CyberFirst training scheme

  A record number of 14 to 17-year-olds have signed up to the National Cyber Security Centre’s CyberFirst summer school

• July 02, 2020 02 Jul'20

  Sodinokibi gang begins dark web celebrity data auctions

  Group claims to be auctioning confidential legal data on pop stars Mariah Carey, Nicki Minaj and basketball player LeBron James

• July 01, 2020 01 Jul'20

  UK’s unsung cyber security heroes sought

  Nominations have opened for the fifth annual Security Serious Unsung Heroes Awards

• June 30, 2020 30 Jun'20

  Australia to invest a record A$1.35bn in cyber security

  The Australian government is making its largest ever investment in cyber security over the next decade to identify cyber threats, disrupt foreign cyber criminals and build new capabilities

• June 30, 2020 30 Jun'20

  ReversingLabs makes over 100 Yara rules publicly available

  Threat intelligence specialist is making its IP available on GitHub to support malware hunters in their work

• June 30, 2020 30 Jun'20

  BNP Paribas uses biometrics to increase contactless payment limit

  French bank BNP Paribas is enabling customers to make higher value contactless payments through fingerprint-recognition technology

• June 29, 2020 29 Jun'20

  Phishing back in vogue as ransomware vector

  Researchers have observed an increase in phishing as a means to deliver ransomware payloads – and organisations don’t appear to be prepared

• June 29, 2020 29 Jun'20

  Evil Corp’s latest ransomware project spreading fast

  A new ransomware strain dubbed WastedLocker is spreading rapidly and targeting major corporations

• June 29, 2020 29 Jun'20

  Making the case for cloud-based security

  Cloud-based security tools can hasten threat detection and response, but adoption will depend on where an enterprise is on the cloud readiness scale

• June 29, 2020 29 Jun'20

  Out of date security laws leave UK plc at risk during pandemic

  The CyberUp coalition has written to Boris Johnson to urge him to reform the UK’s 30 year-old cyber crime laws

• June 24, 2020 24 Jun'20

  Brits will sell their personal data for pennies

  Surprising findings from an Okta report on digital identity suggest Brits would be willing to part with valuable personal data for a surprisingly low amount

• June 23, 2020 23 Jun'20

  Neurodiversity on the rise among career hackers

  More diverse hackers enhance the ability of both traditional and cutting-edge cyber security solutions to find and fix vulnerabilities, according to a new report from Bugcrowd

• June 23, 2020 23 Jun'20

  Twitter contacts business users over data exposure

  Issue relates to how web browsers cached confidential data entered in Twitter’s ads and analytics services, but is unlikely to have resulted in compromise

• June 21, 2020 21 Jun'20

  APAC still hotbed for cyber attacks

  Individuals and organisations in APAC are encountering malware more frequently than the rest of the world, study finds

• June 19, 2020 19 Jun'20

  Australian prime minister confirms country is suffering repeated nation-state cyber attacks

  Concern over critical national infrastructure as cyber attackers repeatedly try to gain access to network of organisations operating in multiple sectors

• June 17, 2020 17 Jun'20

  Cosmetics company Avon offline after cyber attack

  Representatives left unable to place orders after company’s back-end systems went offline over a week ago

• June 15, 2020 15 Jun'20

  Accessories store Claire’s hit by Magecart credit card fraudsters

  Attackers gained access to retailer’s website as long ago as March

• June 14, 2020 14 Jun'20

  Coronavirus: Enterprise VPN adoption in India set to rise

  Advancement in cloud technologies and secured remote access to applications will significantly contribute to the overall growth of India’s VPN market, says GlobalData

• June 12, 2020 12 Jun'20

  NHS email service users ensnared in phishing attack

  More than 100 accounts on the NHSmail service were affected by attack, but health service says no patient data was accessed

• June 12, 2020 12 Jun'20

  100,000 cheap wireless cameras vulnerable to hacking

  Active devices built by Chinese firm HiChip have been sold in the UK as webcams and connected baby monitors

• June 10, 2020 10 Jun'20

  Unsecured Elasticsearch server breached in eight hours flat

  Comparitech’s Bob Diachenko wanted to find out how long it would take for hackers to find and attack an unsecured, public internet-facing database, so he set up a honeypot

• June 10, 2020 10 Jun'20

  Virtual GP practice accidentally exposes patient video calls

  A small number of users of Babylon’s GP at Hand service were briefly able to view other patients’ video GP consultations thanks to a bug in a new software feature

• June 10, 2020 10 Jun'20

  How Australian firms can defend against supply chain attacks

  Supply chain security risks can wreak havoc if measures are not taken to deter cyber attackers from exploiting a supplier’s security gaps to target another firm

• June 09, 2020 09 Jun'20

  Honda investigates suspected Snake ransomware attack

  Attack disrupts global operations at carmaker, with assembly lines falling silent and sales suspended

• June 09, 2020 09 Jun'20

  Poorly-secured AWS buckets used to launch Magecart attacks

  Cyber criminals are exploiting misconfigured AWS S3 buckets to run credit card fraud and malvertising campaigns, according to new data