News

Data breach incident management and recovery

• April 10, 2020 10 Apr'20

  Coronavirus: Warning over surge in Zoom security incidents

  Check Point researchers have observed a surge in suspicious Zoom domains as cyber criminals target popular remote working and collaboration tools

• April 08, 2020 08 Apr'20

  Coronavirus threats ramp up as more hospitals come under attack

  The Covid-19 Cyber Threat Coalition finds the majority of security pros have been targeted by cyber criminals exploiting the coronavirus pandemic, and adds to warnings of increased activity targeting the health sector

• April 06, 2020 06 Apr'20

  BA and Marriott get GDPR fine reprieve

  Both British Airways and Marriott International have had their General Data Protection Regulation fines deferred until later in 2020

• April 06, 2020 06 Apr'20

  Zero-day exploits increasingly commodified, say researchers

  The exploitation of zero-day vulnerabilities increasingly demonstrates access to cash, rather than skills

• April 05, 2020 05 Apr'20

  Interpol warns of more ransomware attacks against healthcare sector

  Purple notice issued to alert police forces around the world of ransomware attacks against hospitals and other healthcare institutions

• April 05, 2020 05 Apr'20

  Google data shows high interest in security and remote working

  An analysis of the most Googled technology terms during the Covid-19 coronavirus pandemic has highlighted the scale of the cyber security challenge presented by the crisis

• April 02, 2020 02 Apr'20

  Coronavirus: Magecart attacks on online retailers jump 20%

  RiskIQ researchers have observed a sharp uptick in Magecart credit card attacks, driven by increased traffic to online retailers during the coronavirus pandemic

• April 02, 2020 02 Apr'20

  Morrisons appeal success is cold comfort for enterprises

  The success of Morrisons’ appeal against judgments that it should be held vicariously liable for an insider data breach will be welcomed by businesses, but may be of limited comfort to them

• April 01, 2020 01 Apr'20

  What we can learn from Marriott’s new data breach embarrassment

  Marriott International has egg on its face once again following a second data breach in as many years, but there are encouraging signs in its response that suggest it is at least trying to learn from its experiences

• April 01, 2020 01 Apr'20

  Morrisons not liable for 2014 data breach, says Supreme Court

  Court allows supermarket chain’s appeal against judgments holding it liable for a 2014 insider data breach, saying previous rulings misunderstood the concept of vicarious liability

• March 31, 2020 31 Mar'20

  Nigerian email attacks evolving into credible, dangerous threat

  Palo Alto’s Unit 42 reports on Nigeria’s SilverTerrier cyber crime group, which is becoming a highly dangerous threat to businesses worldwide

• March 31, 2020 31 Mar'20

  Marriott International hotel chain in second data breach

  Marriott International notifies customers of a major data breach that unfolded earlier in 2020 – the second it has experienced in the past two years

• March 31, 2020 31 Mar'20

  Too late to protect online privacy, say Brits

  Most UK consumers are concerned about data privacy, but think it’s too late to do much about it, according to a report

• March 31, 2020 31 Mar'20

  Houseparty denies hack as credential stuffing attacks spread

  Social media service denies its service has been hacked, and is offering a million-dollar bounty to anybody who can prove otherwise

• March 27, 2020 27 Mar'20

  Insurance firm Chubb may be latest Maze ransomware victim

  Maze ransomware group claims to have stolen personal data from the systems of cyber security insurance firm Chubb

• March 27, 2020 27 Mar'20

  Lorca calls on security scaleups to tackle coronavirus challenge

  Lorca innovation programme has launched an open call for its next cohort of cyber security scaleups, with a timely focus on coronavirus challenges

• March 26, 2020 26 Mar'20

  Tupperware fixes hacked site, but questions remain over response

  Kitchenware brand removes active digital credit card skimmer from its website and insists it takes security seriously despite ignoring repeated attempts to contact it

• March 25, 2020 25 Mar'20

  Kitchenware brand Tupperware is ignoring hacked website

  Website has been hacked in a targeted cyber attack, and the dangerous vulnerability has not been addressed

• March 25, 2020 25 Mar'20

  Almost half of UK businesses suffered a cyber attack in past year

  Latest government statistics reveal the scale of the cyber security challenge facing UK plc, but reveals some cause for optimism

• March 23, 2020 23 Mar'20

  Interview: Jamil Farshchi, CISO, Equifax

  Equifax CISO Jamil Farshchi discusses public cloud and why it’s not something IT security professionals should be afraid of

• March 22, 2020 22 Mar'20

  Cyber gangsters hit UK medical firm poised for work on coronavirus with Maze ransomware attack

  The Maze ransomware group has published personal and medical details of thousands of former patients of a London-based medical research company after a failed attempt to disable the firm's computer systems

• March 19, 2020 19 Mar'20

  IT Priorities 2020: ANZ firms to spend more on cyber security

  Over half of respondents in Australia and New Zealand plan to invest more in cyber security, especially in key areas such as data loss prevention

• March 19, 2020 19 Mar'20

  Volume of computer misuse incidents falling, says ONS

  Downward trend comes despite an overall increase in fraud, according to new statistics

• March 18, 2020 18 Mar'20

  Prudential turns to AI to secure computer networks against cyber attacks

  Prudential, the UK’s largest listed insurer, is turning to artificial intelligence to protect its computer networks in the US, Asia and Africa from malware hackers and internal threats

• March 17, 2020 17 Mar'20

  Travelex under threat as insolvency risk, hacking costs and coronavirus take their toll

  Foreign exchange group’s future remains uncertain as its parent company, Finablr, prepares for potential insolvency

• March 17, 2020 17 Mar'20

  UK makes its case for post-Brexit data adequacy decision

  Government sets out an explanatory framework as it seeks adequacy decisions from the European Commission to maintain the free flow of personal data between the European Union, the UK and Gibraltar

• March 16, 2020 16 Mar'20

  NCSC issues coronavirus cyber security alert

  The UK’s National Cyber Security Centre has issued a public alert and fresh guidance as more cyber criminals get wise to the lucrative potential of Covid-19

• March 13, 2020 13 Mar'20

  Coronavirus-linked hacks likely as Czech hospital comes under attack

  The world of cyber security is on high alert to heightened vulnerabilities as the spread of the Covid-19 coronavirus changes daily life across Europe

• March 13, 2020 13 Mar'20

  UK’s security sector failing on most diversity measures

  A DCMS report on the state of the UK’s cyber security workforce highlights a huge lack of diversity and a substantial skills gap

• March 12, 2020 12 Mar'20

  Turla’s use of Iranian infrastructure probably opportunistic

  Turla, the Kremlin-linked APT group that last year hijacked an Iranian group’s infrastructure, was likely to have been operating opportunistically, according to researchers

• March 12, 2020 12 Mar'20

  Security pros just want to be loved, report finds

  Being valued by the business for their role in keeping the organisation safe and upholding ethical standards is a primary motivator for CISOs and other security professionals

• March 10, 2020 10 Mar'20

  Schoolgirl security experts prepare to do battle

  The finals of the CyberFirst Girls contest will take place on 16 March as the culmination of the NCSC’s annual competition to unearth future security talent

• March 10, 2020 10 Mar'20

  VAT software supplier exposed data of millions

  Eight million sales records belonging to UK and EU consumers left exposed due to misconfigured server

• March 10, 2020 10 Mar'20

  Inside Oracle’s cloud strategy

  Oracle may be late to the cloud infrastructure and platform game, but it believes it has what it takes to carve out a bigger slice of the Asia-Pacific’s cloud market

• March 06, 2020 06 Mar'20

  Virgin Media confirms 'misconfigured database' left personal data of 900,000 people exposed

  Telco provider Virgin Media confirms 'data incident' that left personal details of 900,000 people exposed, but denies its systems were hacked or that it suffered a data breach

• March 05, 2020 05 Mar'20

  Boots and Tesco loyalty card schemes plagued by security issues

  High-street retailers deal with fraudulent attempts to access the accounts of thousands of customers

• March 05, 2020 05 Mar'20

  Cathay Pacific hit with £500,000 data protection fine from ICO over 2018 breach

  Airline receives maximum financial penalty under Data Protection Act for data breach that led to nine million customers having their personal data accessed by hackers

• March 03, 2020 03 Mar'20

  Horangi and Tokio Marine team up on cyber security services

  Singapore-based Horangi will provide penetration testing, among other cyber security services, to Tokio Marine Insurance Singapore’s cyber risk insurance clients

• March 03, 2020 03 Mar'20

  Singapore among world’s top sources of online threats

  Singapore remained a hotspot for originating cyber attacks in 2019, with 11 million attacks launched from servers in the city-state

• March 02, 2020 02 Mar'20

  The Security Interviews: Inside the world of bug bounties

  You may not make a million as a bug bounty hunter, but you might help remove some of the stigma that persists around cyber security, says HackerOne’s Shlomie Liberow

• March 01, 2020 01 Mar'20

  Data breaches in Australia showing no signs of abating

  Compromised login credentials and human error were the most common causes of data breaches reported under Australia’s notifiable data breach regime from July to December 2019

• February 28, 2020 28 Feb'20

  NCSC makes ransomware attack guidance more accessible

  Following a swathe of high-profile ransomware attacks, the UK’s National Cyber Security Centre has made changes to its guidance, emphasising the importance of offline backups

• February 27, 2020 27 Feb'20

  Clearview hack fuels debate over facial recognition

  Customers of Clearview AI, a controversial startup that scrapes and sells billions of photos of people from social media to police forces, have found themselves at the centre of a major data breach

• February 27, 2020 27 Feb'20

  Redcar & Cleveland Council confirms ransomware attack

  Local authority’s systems are still offline nearly three weeks after being attacked

• February 27, 2020 27 Feb'20

  Kr00k vulnerability compromises billions of Wi-Fi devices

  Billions of Wi-Fi chips used in IoT devices, laptops, smartphones and tablets are vulnerable to a serious vulnerability

• February 26, 2020 26 Feb'20

  Cloud Snooper firewall bypass may be work of nation state

  Cloud Snooper deploys a combination of specialised techniques to sneak past enterprise firewalls, warns Sophos

• February 26, 2020 26 Feb'20

  FCA data breach could happen to anybody, but easy to avoid

  Minor data breach at the Financial Conduct Authority was the result of simple human error, and highlights the need for organisations to consider a wide range of potential threats

• February 25, 2020 25 Feb'20

  Sports retailer Decathlon left employee data exposed

  More than 123 million records were accidentally exposed on an unsecured ElasticSearch server

• February 25, 2020 25 Feb'20

  The Security Interviews: Gil Shwed’s 10-year vision for security

  Check Point founder Gil Shwed discusses his new Infinity Next concept and how he plans to remodel the world of cyber security in the next 10 years

• February 24, 2020 24 Feb'20

  WikiLeaks founder Assange ‘put lives at risk’ by disclosing names in leaked documents, court hears

  WikiLeaks founder Julian Assange ‘put lives of US informants at risk’ by publishing unredacted documents, lawyers for the US argued at the first day of a week-long extradition hearing