News

Data breach incident management and recovery

• January 29, 2020 29 Jan'20

  UK cyber security sector worth more than £8bn

  The UK’s cyber security industry employs 43,000 full-time workers, and contributed nearly £4bn to the UK economy in 2019, according to DCMS

• January 29, 2020 29 Jan'20

  NHS suffers fewer ransomware attacks, but threat persists

  Ransomware attacks against the NHS have tapered off dramatically, according to statistics obtained under FoI legislation, but this does not mean the threat has diminished

• January 28, 2020 28 Jan'20

  Met Police could deploy facial recognition against protesters

  Live facial recognition will be rolled out operationally by the Met Police, but police monitoring group Netpol believes it will hamper people’s ability to exercise their rights to protest

• January 28, 2020 28 Jan'20

  Organisations losing control of cloud data

  Data is more widely dispersed in enterprise clouds than most organisations think, and as a result they are at risk of losing control of it, according to a report

• January 28, 2020 28 Jan'20

  Data privacy benefits outweigh spend, says Cisco

  Cisco’s 2020 data privacy study shows organisations can generate substantial returns on their data privacy and protection spending

• January 24, 2020 24 Jan'20

  Cyber gangsters publish staff passwords following ‘Sodinokibi’ attack on car parts group Gedia

  Sodinokibi hacking group steps up pressure on German automotive manufacturer by publishing information, including the CEO’s computer password and sensitive details of its IT systems, on the internet

• January 23, 2020 23 Jan'20

  Travelex hackers shut down German car parts company Gedia in massive ‘cyber attack’

  Car parts manufacturer says cyber attack will have far-reaching consequences for its business, and it has put emergency plans in place to continue deliveries

• January 23, 2020 23 Jan'20

  CISOs fear becoming the next Travelex

  Poll of security professionals by the organisers of the Infosecurity Europe trade fair highlights huge gaps in incident response capabilities

• January 23, 2020 23 Jan'20

  End-user security ignorance laid bare in new report

  Proofpoint’s 2020 State of the Phish report highlights an urgent need for better user training and reporting

• January 22, 2020 22 Jan'20

  Citrix releases IoC scanner for ADC and Gateway vulnerabilities

  As patches for its compromised NetScaler ADC and Gateway products begin to roll out, Citrix enlists FireEye Mandiant to develop an indicator of compromise scanner for end-users

• January 22, 2020 22 Jan'20

  Internal error left Microsoft customer service data exposed

  Customer service and support records of nearly 250 million Microsoft customers left exposed after database misconfiguration

• January 21, 2020 21 Jan'20

  5G builders test vulnerabilities in Finnish hackathon

  University hackathon puts 5G security to the test as new wireless technology’s roll-out nears

• January 21, 2020 21 Jan'20

  High-street banks face disruption three weeks after Travelex hack

  Foreign exchange services still disrupted, three weeks after Travelex received a $6m ransom demand from cyber gangsters

• January 20, 2020 20 Jan'20

  Exposed AWS buckets again implicated in multiple data leaks

  A series of data leaks in the past week have once again implicated poorly secured Amazon S3 buckets, which are supposed to be private by default

• January 20, 2020 20 Jan'20

  GDPR nets more than €100m in fines, with more to come

  Fines totalling €114m have already been collected under GDPR, and this figure will spike in 2020 if the UK regulator succeeds in imposing record fines on BA and Marriott

• January 17, 2020 17 Jan'20

  Cops take down data wholesale operation

  The Police Service of Northern Ireland and the Dutch cyber crime unit have made two arrests in an operation targeting a website that provided criminals with access to billions of personal credentials

• January 16, 2020 16 Jan'20

  Thailand gets ready for data protection law

  Thailand’s personal data protection law comes into effect in May 2020, subjecting organisations to new rules that safeguard the personal data of individuals

• January 15, 2020 15 Jan'20

  Lorca announces new cohort of 20 security scaleups

  20 scaleups will focus their attention on automation, zero trust and supply chain security

• January 15, 2020 15 Jan'20

  Travelex warns customers to be alert to phone scams

  Under-fire forex provider warns that criminals may try to take advantage of its predicament to scam customers

• January 15, 2020 15 Jan'20

  Threat landscape grew in complexity in 2019, no respite in sight

  Check Point’s annual state of security report shares some 2019 trends and looks ahead to 2020

• January 14, 2020 14 Jan'20

  Two-thirds of UK healthcare organisations breached last year

  The majority of healthcare organisations in the UK experienced a cyber security incident during 2019, with almost half the result of viruses and malware introduced on third party devices

• January 14, 2020 14 Jan'20

  Researchers find cryptojacker hiding in Wav audio file

  Victim network was compromised by obfuscated malware hiding a Monero cryptominer, lurking inside a Wav audio file

• January 14, 2020 14 Jan'20

  Cyber criminals spend three months lurking in target networks

  Cyber criminals are spending longer hiding in target networks before launching their attacks, as more organised groups turn to business disruption to achieve their objectives

• January 13, 2020 13 Jan'20

  Travelex to begin restoring foreign exchange services two weeks after ‘Sodinokibi’ attack

  Travelex says it is making “good progress” in its recovery and is to begin restoring electronic foreign exchange services, but is silent about whether it has agreed to pay hackers a $6m ransom to decrypt computer files

• January 10, 2020 10 Jan'20

  National Lottery hacker jailed for nine months

  Small-time cyber criminal jailed for his role in a cyber attack on lottery operator Camelot that netted him just £5

• January 09, 2020 09 Jan'20

  Travelex hackers threaten to sell credit card data on dark web

  Sodinokibi cyber gangsters have threatened to sell Travelex customers’ private data on a Russian underground cyber crime forum if it fails to pay a $6m ransom

• January 09, 2020 09 Jan'20

  Retail group Dixons Carphone fined £500,000 over data breach

  Dixons Carphone receives maximum possible pre-GDPR fine from the ICO following a 2018 data breach

• January 09, 2020 09 Jan'20

  Don’t become the next Travelex: Get ready for ransomware

  With Travelex’s IT still in disarray and banks and travellers left without access to funds more than a week after it was hit by a ransomware attack, we ask what others can learn from the foreign exchange services company’s response to the incident

• January 09, 2020 09 Jan'20

  PowerTrick backdoor used to target high-value businesses

  Threat actors are exploiting a PowerShell-based backdoor called PowerTrick to go after high-value targets, warns SentinelLabs

• January 09, 2020 09 Jan'20

  New GDPR service aims to ease compliance challenges

  Security consultants claim their software platform will address a pressing need for an effective and efficient means of complying with data protection rules

• January 08, 2020 08 Jan'20

  TikTok video-sharing app left user data exposed

  Check Point uncovered serious vulnerabilities in the TikTok video-sharing app that left users exposed

• January 06, 2020 06 Jan'20

  Cyber gangsters demand payment from Travelex after ‘Sodinokibi’ attack

  Cyber criminals are demanding payment to decrypt Travelex’s computer files after a devastating malware attack. New questions have been raised about the security of Travelex’s computer network after it emerged the company waited eight months to patch...

• January 06, 2020 06 Jan'20

  UK cyber security boss Ciaran Martin to step down

  NCSC chief Ciaran Martin will leave his post in the summer of 2020

• January 03, 2020 03 Jan'20

  Suspected ransomware attack causes worldwide disruption for Travelex

  Travelex switches off computer systems and resorts to cash-only currency sales after malware attack. Insiders claim the currency exchange chain has been hit by ransomware which has left critical files containing customer data encrypted

• January 03, 2020 03 Jan'20

  How Darktrace is riding the AI boom

  Cyber security firm known for its artificial intelligence smarts doubled its headcount across Asia-Pacific last year in key markets including Australia and South Korea

• January 02, 2020 02 Jan'20

  California’s CCPA an opportunity for security industry to do better

  California’s consumer protection and data privacy laws came into effect on 1 January 2020, and present a golden opportunity for the cyber security practitioners

• December 31, 2019 31 Dec'19

  Top 10 ASEAN IT stories of 2019

  Here are Computer Weekly’s top 10 ASEAN IT stories of 2019

• December 24, 2019 24 Dec'19

  Top 10 cyber crime stories of 2019

  Here are Computer Weekly’s top 10 cyber crime stories of 2019

• December 23, 2019 23 Dec'19

  Top 10 cyber security stories of 2019

  Here are Computer Weekly’s top 10 cyber security stories of 2019

• December 20, 2019 20 Dec'19

  Finnish government supports local authorities in cyber security initiative

  The Finnish government has committed resources to a cyber security project aimed at local authorities

• December 18, 2019 18 Dec'19

  Top 10 Australia IT stories of 2019

  Here are Computer Weekly’s top 10 Australia IT stories of 2019

• December 17, 2019 17 Dec'19

  Group-IB CEO talks up global threat landscape

  Public attribution of cyber attacks could backfire while a global cyber norms framework won’t emerge until a catastrophic incident occurs, says the head of Singapore-based Group-IB

• December 13, 2019 13 Dec'19

  Alarm bells ring, the IoT is listening

  With Christmas bearing down on us, a series of vulnerability disclosures has drawn attention to the parlous state of IoT security, and serves as a timely warning to people planning to buy smart devices as gifts

• December 10, 2019 10 Dec'19

  Rapid evolution of quantum computing a concern for CISOs

  With the race to achieve so-called quantum supremacy hotting up, security pros are concerned that it will outpace the development of appropriate safeguards, according to a report

• December 09, 2019 09 Dec'19

  Public sector still losing user devices in high numbers

  The Ministry of Justice has lost 354 smartphones, PCs, laptops and tablets in the past 12 months, according to a Freedom of Information request, and other government departments are in the same boat

• December 06, 2019 06 Dec'19

  How commodities firm ED&F Man solved its threat detection challenges

  After a minor server breach, leading commodities trader turned to Vectra’s Cognito service to expose hidden threats, spot privilege misuse, and conduct conclusive investigations

• December 06, 2019 06 Dec'19

  Cyber security takes its place alongside UK’s armed services

  Head of armed services says cyber security will take its place alongside the army, navy and air force as a key pillar of the UK’s defence strategy

• December 06, 2019 06 Dec'19

  Great Cannon DDoS operation fires on Hong Kong protesters

  AT&T’s security unit has evidence that China is pressing its Great Cannon DDoS tool into service once again, specifically to target pro-democracy protests in Hong Kong

• December 05, 2019 05 Dec'19

  Two Russians indicted over Dridex and Zeus malware

  The US Department of Justice has indicted two Russian citizens over their alleged role in the distribution of the virulent Bugat, or Dridex, and Zeus banking trojans

• December 04, 2019 04 Dec'19

  Black Hat Europe: Red teams and blue teams must evolve in the 2020s

  The red team versus blue team dichotomy is somewhat arbitrary and risks pigeonholing skilled security professionals into certain roles, says Facebook’s Amanda Rousseau