News

Data breach incident management and recovery

• April 14, 2015 14 Apr'15

  Security risk potential linked to young, mobile users

  A study conducted by wireless supplier Aruba Networks has identified a distinct cohort of high-risk, security-agnostic workers

• March 19, 2015 19 Mar'15

  Target agrees to $10m breach compensation

  US retailer Target has agreed to a $10m compensation package for victims of its 2013 data breach

• March 18, 2015 18 Mar'15

  Premera hack exposes 11 million financial and medical records

  US health insurance firm Premera Blue Cross reveals an IT systems breach, exposing financial and medical records of 11 million customers

• March 09, 2015 09 Mar'15

  2015 IT priorities: SDN yet to prove itself, fear of network hacks growing

  In Computer Weekly’s 2015 IT priorities study, software-defined networking is still behind management and monitoring as a networking priority

• February 27, 2015 27 Feb'15

  Case study: Norwegian insurer invests in Darktrace machine-learning cyber defence

  Shipping insurance company DNK hopes to inspire the rest of the shipping industry to adopt Darktrace’s cyber defence system

• February 12, 2015 12 Feb'15

  Damballa report highlights the limitations of prevention-centric security

  Anti-virus (AV) suppliers can take more than six months to create signatures for malware, according to a report from security firm Damballa

• January 06, 2015 06 Jan'15

  Online money transfer provider Xoom suffers multimillion-dollar fraud

  Digital money transfer provider Xoom has admitted to suffering a $30.8m loss at the hands of fraudsters

• December 17, 2014 17 Dec'14

  Fears over the IT security of new banks are overblown

  Challenger banks such as PayPal are perceived to be less secure than traditional banks when protecting personal data. But is this the case?

• December 17, 2014 17 Dec'14

  Cabinet Office begins procurement for next stage of Gov.uk Verify

  The Cabinet Office has submitted a tender notice for a £150m three-year framework for the provision of identity assurance services

• December 17, 2014 17 Dec'14

  US interception in the EU faces new legal challenges

  US government orders against Microsoft to hand over email data 'infringes privacy legislation' in other countries

• November 28, 2014 28 Nov'14

  CGI secures communications between pilots and air traffic control

  Satellite communications firm Inmarsat has outsourced the provision of security IT and services to CGI

• November 17, 2014 17 Nov'14

  US State Department bolsters email security after suspected breach

  The US State Department took its unclassified email system offline to bolster security after a suspected breach in October 2014

• November 11, 2014 11 Nov'14

  US Postal Service latest government target for cyber attack

  Hackers breach the networks of the US Postal Service in the latest of a series of attacks on US government agencies

• October 30, 2014 30 Oct'14

  Many firms still unprepared for cyber attack, EY survey shows

  More than a third of organisastions have no real-time insight on cyber risks necessary to combat rising threats, a survey has shown

• October 28, 2014 28 Oct'14

  Most businesses do not understand risks of data breaches, study finds

  More than 70% of businesses do not understand fully the risks associated with data breaches, a study shows

• October 27, 2014 27 Oct'14

  Incident response: a common failing

  Organisations hit by cyber attacks often lack an effective incident response plan. Why are so many unprepared?

• October 27, 2014 27 Oct'14

  Cloud providers rush to build European datacentres over data sovereignty

  Cloud providers IBM and Google build datacentres in the EU as enterprises insist on keeping their data in Europe

• October 10, 2014 10 Oct'14

  Azure CTO Mark Russinovich's top ten public cloud security risks

  Microsoft Azure cloud CTO Mark Russinovich identified ten key security risks of public cloud services

• October 09, 2014 09 Oct'14

  WordPress most attacked application

  Websites that run the WordPress content management system are attacked 24% more often than those using other systems

• October 08, 2014 08 Oct'14

  Malware being used to steal cash from ATMs

  Criminals are using malware to steal cash from ATMs without debit and credit cards

• September 22, 2014 22 Sep'14

  Home Depot under fire for data breach notification

  US retailer Home Depot criticised for delays in telling customers their payment card details may have been compromised

• September 17, 2014 17 Sep'14

  KPMG: IoT, 3D printing and healthcare IT to have most impact

  Internet of things (IoT), 3D printing and biotech or healthcare IT are among the IT trends that will change the way people work and live

• September 15, 2014 15 Sep'14

  Salesforce issues advice on avoiding Dyreza attack

  Salesforce has issued a set of guidelines on tightening security after a number of its customers were targeted by the Dyreza email virus

• September 09, 2014 09 Sep'14

  EY seeks tech startups to address challenges of right to be forgotten

  Professional services firm Ernst & Young is looking for startups to find technology solutions to the ‘right to be forgotten’ regulation

• August 11, 2014 11 Aug'14

  USB-connected devices present cyber vulnerabilities

  Connecting devices to computers using a USB port could lead to security breaches, say Berlin-based researchers

• August 05, 2014 05 Aug'14

  Cyber Security Challenge UK takes on the internet of things

  The latest level of the Cyber Security Challenge will involve participants hacking devices connected to the internet of things

• July 31, 2014 31 Jul'14

  Paddy Power hit by data breach in 2010

  Gambling firm Paddy Power owns up to 2010 data breach after recovering a compromised dataset in Canada

• July 04, 2014 04 Jul'14

  Barclays passes government’s ‘internet-born threat’ test

  Barclays Bank has been awarded the government’s cyber security certificate for digital banking services after independent tests of services such as Pingit

• July 04, 2014 04 Jul'14

  Security Think Tank: The dos and don’ts of a good incident response plan

  What does a good information security incident response plan look like?

• July 02, 2014 02 Jul'14

  ISPs take legal action against GCHQ over mass network infrastructure surveillance

  Six global internet service providers (ISPs) have filed a legal complaint calling for a halt to GCHQ’s use of network infrastructure for surveillance

• June 17, 2014 17 Jun'14

  Domino’s breach underlines value of personal data, say experts

  The latest cyber breach to hit a high-profile brand underlines the high value of personal data, say security experts

• May 23, 2014 23 May'14

  eBay under fire over handling of data breach

  eBay is coming under increasing criticism over its handling of the data breach that exposed millions of user records

• May 21, 2014 21 May'14

  eBay reveals major security breach and urges users to change passwords

  eBay has revealed it was hit by a major cyber attack earlier this year, and is urging users to change their site passwords.

• May 20, 2014 20 May'14

  Shell thinks technology first in preparation for internet of everything

  Shell is reshaping its business to think technology first as it uses the internet of everything to change its business processes

• April 28, 2014 28 Apr'14

  US judge orders Microsoft to hand over email data held in Dublin

  A US Judge has ordered Microsoft to give the District Court access to the contents of one of its customer’s emails stored on a server located in Dublin

• April 25, 2014 25 Apr'14

  Cyber threat detection paramount, says SANS fellow

  Cyber threat prevention is ideal, but detection is a must, says Eric Cole, SANS Institute fellow

• April 17, 2014 17 Apr'14

  Datacentre lessons learnt from Heartbleed bug

  The Heartbleed bug, an OpenSSL flaw affecting millions of websites, has some lessons for datacentre providers and operators

• April 08, 2014 08 Apr'14

  Law Society advises legal industry's IT teams over cloud

  The Law Society has published best-practice advice for legal firms' IT teams that are considering using cloud computing, following increased use of the cloud to store data

• February 05, 2014 05 Feb'14

  Bank of England publishes Waking Shark II cyber security exercise results

  Bank of England publishes the results of its Waking Shark II security exercise, which tested financial institutions' contingency plans for cyber attack

• January 22, 2014 22 Jan'14

  CERT-UK to drive international cyber security collaboration

  The UK’s new national computer emergency response team (CERT-UK) is set to drive international cyber security collaboration once it becomes operational

• January 17, 2014 17 Jan'14

  Internet at risk of 'cybergeddon' says WEF

  Internet is at risk of fragmenting amid concerns over spying and cyber crime, says World Economic Forum

• January 15, 2014 15 Jan'14

  NSA uses secret radio tech to spy on offline computers

  The US National Security Agency (NSA) has the capacity to monitor, enter and alter data on computers even if the machines are not connected to the internet, it has emerged

• January 10, 2014 10 Jan'14

  More than 1,100 DWP workers disciplined over benefits snooping

  More than 1,100 employees at the Department for Work and Pensions have received official warnings since 2008 for prying into benefits records

• December 05, 2013 05 Dec'13

  UK citizen sues Microsoft over Prism private data leak to NSA

  A court action brought in the UK will test Microsoft's legal right to disclose private data on UK citizens to US intelligence services

• November 19, 2013 19 Nov'13

  Investec CISO warns that legacy tapes will fail on new hardware

  Many organisations may find that years of irreplaceable tape backups are inaccessible because modern machines cannot handle legacy format

• November 12, 2013 12 Nov'13

  Mass surveillance a bad idea, says Information Commissioner Christopher Graham

  Information Commissioner Christopher Graham says issues of national security must not overshadow concerns of legitimate public interest

• October 29, 2013 29 Oct'13

  Analysis: RSA says security needs to change, but what does that mean?

  RSA executive chairman Art Coviello has issued a call to action to the security industry to improve technology and collaboration

• September 30, 2013 30 Sep'13

  MoD announces specialist programme to fend off cyber attacks

  The Ministry of Defence (MoD) has announced a strategy to defend UK national security from the threat of cyber attacks

• September 27, 2013 27 Sep'13

  Ex-hackers best qualified to improve cyber security say 70% of IT firms

  Over half of businesses are not taking IT security seriously enough and almost three quarters of IT professionals think ex-hackers could be the right people to help businesses improve cyber-security.

• September 26, 2013 26 Sep'13

  Small businesses must encrypt customer data, says ICO

  The Information Commissioner’s Office (ICO) urges small businesses to encrypt customer data after a sole trader was fined for failing to do so