News

Data breach incident management and recovery

• February 24, 2020 24 Feb'20

  Cisco goes all-in on security integration with SecureX platform

  CISOs are struggling to stitch together disparate cyber security products and services – Cisco believes its cloud-native SecureX platform will change their working lives for the better

• February 20, 2020 20 Feb'20

  UK and US accuse Russian spooks of Georgia cyber attacks

  Foreign secretary describes 2019 campaign of cyber attacks as reckless, brazen and unacceptable

• February 20, 2020 20 Feb'20

  Google plans to send Brits’ data to US after Brexit

  Move puts British user data beyond the reach of the EU’s GDPR, makes it more accessible to UK and US law enforcement agencies, and has prompted anger

• February 20, 2020 20 Feb'20

  Facilities firm ISS World crippled by ransomware attack

  An apparent ransomware attack has compromised some IT and email systems at Danish facilities firm ISS World

• February 19, 2020 19 Feb'20

  Cost of cloud misconfigurations set at $5tn

  Cloud security outfit DivvyCloud says more than 33 billion records have been exposed in cloud misconfiguration incidents in the past 24 months

• February 19, 2020 19 Feb'20

  Blasé directors put business data at risk

  The higher up within a business you go, the more likely you are to find people intentionally leaking confidential data, says Egress

• February 18, 2020 18 Feb'20

  Girlguiding hosts interactive cyber security workshop

  100 Guides from South West England took part in an NCSC event to learn more about security fundamentals

• February 18, 2020 18 Feb'20

  Untrusted security teams being left out of business decisions

  Only a third of organisations are involving their cyber security function at the planning stage of business initiatives

• February 17, 2020 17 Feb'20

  Mastercard opens European security resilience unit

  Mastercard’s European Cyber Resilience Centre will bring together its partners and other industry bodies to support enterprise resilience

• February 13, 2020 13 Feb'20

  Cyber criminals spread coronavirus conspiracy theories

  The latest email campaigns identified by Proofpoint are spreading conspiracy theories about the coronavirus outbreak

• February 12, 2020 12 Feb'20

  Emotet evolving to exploit coronavirus fear

  With coronavirus cases now reported across the world, Emotet campaigns are exploiting legitimate fears to compromise their targets

• February 11, 2020 11 Feb'20

  Chinese military personnel accused of Equifax hack

  A US federal grand jury has indicted four Chinese army personnel over the 2017 Equifax breach

• February 06, 2020 06 Feb'20

  Stressed, overworked CISOs losing £23k a year in unpaid overtime

  Nominet’s latest CISO Stress Report has revealed the extent to which organisations are taking advantage of their security staff, and the deleterious effects of overwork and stress on mental health

• February 05, 2020 05 Feb'20

  Web app ubiquity gives cyber criminals new opportunities

  The popularity and ubiquity of web-based apps such as Office 365 and Salesforce is a temptation too good to miss for cyber criminals

• February 03, 2020 03 Feb'20

  NHS adds supplier security audits to procurement platform

  A new feature in the NHS’s Edge4Health procurement platform will help NHS suppliers improve their cyber security posture and NHS organisations make better buying decisions

• January 31, 2020 31 Jan'20

  Davos: The clock is ticking on climate change but cyber crime and emerging technologies add to risks

  Climate change, natural disasters, extreme weather and loss of biodiversity are the greatest risks we face. With cyber conflicts, state-sponsored hacking and internet fragmentation, doing nothing is not an option, says the World Economic Forum

• January 31, 2020 31 Jan'20

  UK police arrest three over Maltese cyber bank robbery

  The NCA has made three arrests in Belfast and London following an investigation into money laundering linked to a cyber heist on a bank in Malta

• January 30, 2020 30 Jan'20

  NCSC launches study on cyber security diversity

  The UK’s National Cyber Security Centre wants to improve the diversity of the cyber security sector

• January 29, 2020 29 Jan'20

  UK cyber security sector worth more than £8bn

  The UK’s cyber security industry employs 43,000 full-time workers, and contributed nearly £4bn to the UK economy in 2019, according to DCMS

• January 29, 2020 29 Jan'20

  NHS suffers fewer ransomware attacks, but threat persists

  Ransomware attacks against the NHS have tapered off dramatically, according to statistics obtained under FoI legislation, but this does not mean the threat has diminished

• January 28, 2020 28 Jan'20

  Met Police could deploy facial recognition against protesters

  Live facial recognition will be rolled out operationally by the Met Police, but police monitoring group Netpol believes it will hamper people’s ability to exercise their rights to protest

• January 28, 2020 28 Jan'20

  Organisations losing control of cloud data

  Data is more widely dispersed in enterprise clouds than most organisations think, and as a result they are at risk of losing control of it, according to a report

• January 28, 2020 28 Jan'20

  Data privacy benefits outweigh spend, says Cisco

  Cisco’s 2020 data privacy study shows organisations can generate substantial returns on their data privacy and protection spending

• January 24, 2020 24 Jan'20

  Cyber gangsters publish staff passwords following ‘Sodinokibi’ attack on car parts group Gedia

  Sodinokibi hacking group steps up pressure on German automotive manufacturer by publishing information, including the CEO’s computer password and sensitive details of its IT systems, on the internet

• January 23, 2020 23 Jan'20

  Travelex hackers shut down German car parts company Gedia in massive ‘cyber attack’

  Car parts manufacturer says cyber attack will have far-reaching consequences for its business, and it has put emergency plans in place to continue deliveries

• January 23, 2020 23 Jan'20

  CISOs fear becoming the next Travelex

  Poll of security professionals by the organisers of the Infosecurity Europe trade fair highlights huge gaps in incident response capabilities

• January 23, 2020 23 Jan'20

  End-user security ignorance laid bare in new report

  Proofpoint’s 2020 State of the Phish report highlights an urgent need for better user training and reporting

• January 22, 2020 22 Jan'20

  Citrix releases IoC scanner for ADC and Gateway vulnerabilities

  As patches for its compromised NetScaler ADC and Gateway products begin to roll out, Citrix enlists FireEye Mandiant to develop an indicator of compromise scanner for end-users

• January 22, 2020 22 Jan'20

  Internal error left Microsoft customer service data exposed

  Customer service and support records of nearly 250 million Microsoft customers left exposed after database misconfiguration

• January 21, 2020 21 Jan'20

  5G builders test vulnerabilities in Finnish hackathon

  University hackathon puts 5G security to the test as new wireless technology’s roll-out nears

• January 21, 2020 21 Jan'20

  High-street banks face disruption three weeks after Travelex hack

  Foreign exchange services still disrupted, three weeks after Travelex received a $6m ransom demand from cyber gangsters

• January 20, 2020 20 Jan'20

  Exposed AWS buckets again implicated in multiple data leaks

  A series of data leaks in the past week have once again implicated poorly secured Amazon S3 buckets, which are supposed to be private by default

• January 20, 2020 20 Jan'20

  GDPR nets more than €100m in fines, with more to come

  Fines totalling €114m have already been collected under GDPR, and this figure will spike in 2020 if the UK regulator succeeds in imposing record fines on BA and Marriott

• January 17, 2020 17 Jan'20

  Cops take down data wholesale operation

  The Police Service of Northern Ireland and the Dutch cyber crime unit have made two arrests in an operation targeting a website that provided criminals with access to billions of personal credentials

• January 16, 2020 16 Jan'20

  Thailand gets ready for data protection law

  Thailand’s personal data protection law comes into effect in May 2020, subjecting organisations to new rules that safeguard the personal data of individuals

• January 15, 2020 15 Jan'20

  Lorca announces new cohort of 20 security scaleups

  20 scaleups will focus their attention on automation, zero trust and supply chain security

• January 15, 2020 15 Jan'20

  Travelex warns customers to be alert to phone scams

  Under-fire forex provider warns that criminals may try to take advantage of its predicament to scam customers

• January 15, 2020 15 Jan'20

  Threat landscape grew in complexity in 2019, no respite in sight

  Check Point’s annual state of security report shares some 2019 trends and looks ahead to 2020

• January 14, 2020 14 Jan'20

  Two-thirds of UK healthcare organisations breached last year

  The majority of healthcare organisations in the UK experienced a cyber security incident during 2019, with almost half the result of viruses and malware introduced on third party devices

• January 14, 2020 14 Jan'20

  Researchers find cryptojacker hiding in Wav audio file

  Victim network was compromised by obfuscated malware hiding a Monero cryptominer, lurking inside a Wav audio file

• January 14, 2020 14 Jan'20

  Cyber criminals spend three months lurking in target networks

  Cyber criminals are spending longer hiding in target networks before launching their attacks, as more organised groups turn to business disruption to achieve their objectives

• January 13, 2020 13 Jan'20

  Travelex to begin restoring foreign exchange services two weeks after ‘Sodinokibi’ attack

  Travelex says it is making “good progress” in its recovery and is to begin restoring electronic foreign exchange services, but is silent about whether it has agreed to pay hackers a $6m ransom to decrypt computer files

• January 10, 2020 10 Jan'20

  National Lottery hacker jailed for nine months

  Small-time cyber criminal jailed for his role in a cyber attack on lottery operator Camelot that netted him just £5

• January 09, 2020 09 Jan'20

  Travelex hackers threaten to sell credit card data on dark web

  Sodinokibi cyber gangsters have threatened to sell Travelex customers’ private data on a Russian underground cyber crime forum if it fails to pay a $6m ransom

• January 09, 2020 09 Jan'20

  Retail group Dixons Carphone fined £500,000 over data breach

  Dixons Carphone receives maximum possible pre-GDPR fine from the ICO following a 2018 data breach

• January 09, 2020 09 Jan'20

  Don’t become the next Travelex: Get ready for ransomware

  With Travelex’s IT still in disarray and banks and travellers left without access to funds more than a week after it was hit by a ransomware attack, we ask what others can learn from the foreign exchange services company’s response to the incident

• January 09, 2020 09 Jan'20

  PowerTrick backdoor used to target high-value businesses

  Threat actors are exploiting a PowerShell-based backdoor called PowerTrick to go after high-value targets, warns SentinelLabs

• January 09, 2020 09 Jan'20

  New GDPR service aims to ease compliance challenges

  Security consultants claim their software platform will address a pressing need for an effective and efficient means of complying with data protection rules

• January 08, 2020 08 Jan'20

  TikTok video-sharing app left user data exposed

  Check Point uncovered serious vulnerabilities in the TikTok video-sharing app that left users exposed

• January 06, 2020 06 Jan'20

  Cyber gangsters demand payment from Travelex after ‘Sodinokibi’ attack

  Cyber criminals are demanding payment to decrypt Travelex’s computer files after a devastating malware attack. New questions have been raised about the security of Travelex’s computer network after it emerged the company waited eight months to patch...