News

Endpoint security

• January 19, 2021 19 Jan'21

  Click fraud levels reach new heights in pandemic

  Small companies risk losing £10,000 a year, and enterprises as much as £520,000, to cyber criminals as click fraud volumes spike

• January 19, 2021 19 Jan'21

  MAS offers guidance on mitigating supply chain threats

  Monetary Authority of Singapore revises its technology risk management guidelines to help the financial sector guard against supply chain attacks

• January 18, 2021 18 Jan'21

  MoD reports 18% rise in data loss incidents

  The Ministry of Defence reported more than five hundred data security incidents in 2019-20, with seven serious enough to warrant disclosure to the ICO

• January 18, 2021 18 Jan'21

  Australians lost A$176m to scams in 2020

  Investment scams topped the list of scams, which grew by 23.1% in 2020 as criminals exploited human psychology using social engineering

• January 14, 2021 14 Jan'21

  APAC firms grapple with cyber security amid pandemic

  Some aspects of cyber security have taken a backseat as companies across the Asia-Pacific region rush to shore up their infrastructure to cope with the demands of remote work

• January 13, 2021 13 Jan'21

  Critical zero-day features in first Patch Tuesday of 2021

  Microsoft releases fixes for 84 bugs on the first Patch Tuesday of 2021, including a critical zero-day vulnerability in Microsoft Defender

• January 12, 2021 12 Jan'21

  Palo Alto Networks opens Australia cloud location

  The cyber security company’s Australia cloud location will address data localisation requirements amid growing adoption of cloud-based security services

• January 12, 2021 12 Jan'21

  Mimecast latest security firm to be compromised

  Users of a specific Mimecast certificate used to authenticate services to Microsoft Office 365 may be at risk of compromise in an attack that may relate to the ongoing SolarWinds incident

• January 12, 2021 12 Jan'21

  Early stage UK security startups face funding crisis

  Overall cyber security funding since the advent of the pandemic is well up, but investment is dominated by safe, later-stage firms while those raising capital for the first time fall away

• January 08, 2021 08 Jan'21

  Which? online banking investigation reveals ‘worrying gaps’ in security

  Consumer rights organisation has ranked the security of UK online current account providers

• January 05, 2021 05 Jan'21

  Scammers impersonating the ACSC on the prowl

  The Australian Cyber Security Centre warns of scammers who are using its name to gain control of personal computers and trick users into revealing personal information

• January 05, 2021 05 Jan'21

  Banking trade body calls for increased contactless payment limit

  UK Finance proposes an increase in the limit on spending using contactless cards

• December 24, 2020 24 Dec'20

  Top 10 cyber crime stories of 2020

  Here are Computer Weekly’s top 10 cyber crime stories of 2020

• December 23, 2020 23 Dec'20

  Top 10 cyber security stories of 2020

  Here are Computer Weekly’s 10 top cyber security stories of 2020

• December 22, 2020 22 Dec'20

  Top 10 end-user computing stories of 2020

  Here are Computer Weekly’s top 10 end-user computing stories of 2020

• December 17, 2020 17 Dec'20

  Dodgy browser extensions put social media users at risk

  More than three million users of third-party browser extensions for Instagram, Facebook, Vimeo and others have been infected with malware, according to Avast

• December 17, 2020 17 Dec'20

  NHS Scotland taps Check Point to secure Covid-19 data

  NHS National Services Scotland is working with security firm Check Point to safeguard its sensitive data in the cloud and support its work on the coronavirus

• December 14, 2020 14 Dec'20

  FireEye identifies flaw in networking monitoring software as US agencies attacked

  Cyber security company says investigations have revealed security breach occurred because of a flaw in a network monitoring software

• December 11, 2020 11 Dec'20

  Disputed PostgreSQL bug exploited in cryptomining botnet

  PGMiner cryptomining botnet remained unnoticed by exploiting a disputed CVE in PostgreSQL

• December 11, 2020 11 Dec'20

  Surge in Covid-19 vaccine phishing scams reported

  Check Point and KnowBe4 share details of a growing number of phishing campaigns using the prospect of a Covid-19 vaccine as a lure

• December 10, 2020 10 Dec'20

  After critical year, Vodafone trains security sights on CNI market

  Vodafone’s security head Steve Knibbs explains how he plans to bring the lessons of a transformative few years in cyber security to bear on new markets

• December 09, 2020 09 Dec'20

  Amnesia:33 IoT flaws dangerous and patches unlikely, say experts

  The disclosure of multiple flaws by Forescout has raised big questions for the developers of connected products, and for their users

• December 09, 2020 09 Dec'20

  Patch Tuesday: Microsoft presents just 58 CVEs for Christmas

  The final Patch Tuesday of 2020 contains 58 fixes, a minnow compared to some recent drops, but many are still of high importance

• December 09, 2020 09 Dec'20

  There’s no going back to pre-pandemic security approaches

  The cyber security world will probably never return to its pre-pandemic state, and different approaches to security will come to the fore in 2021

• December 09, 2020 09 Dec'20

  Top IT predictions in APAC in 2021

  The Asia-Pacific region will continue to be a cradle for technology innovation in the new year, whether it is 5G services, artificial intelligence, cloud computing or cyber security

• December 08, 2020 08 Dec'20

  Multiple D-Link routers found vulnerable to attack

  Digital Defense discloses a remotely exploitable root command injection flaw in a number of D-Link wireless router devices

• December 08, 2020 08 Dec'20

  Russian state actors exploiting VMware bug to hijack data, users warned

  Russian APT groups are actively exploiting a vulnerability in VMware products to access protected data, according to latest warnings

• December 07, 2020 07 Dec'20

  HMRC referred 11 data security incidents to ICO in 2019-20

  HM Revenue & Customs shares details of a number of data security incidents that occurred during the 2019-20 financial year in its annual report

• December 07, 2020 07 Dec'20

  Grindr and others patch critical Android bug

  Fixes for CVE-2020-8913 deployed as app developers shore up their defences against a disclosed Google Play vulnerability

• December 04, 2020 04 Dec'20

  Opportunistic Egregor ransomware is an emerging and active threat

  Researchers at Recorded Future’s Insikt Group highlight links between the emerging Egregor ransomware and other strains, and offer guidance on defending against it

• December 04, 2020 04 Dec'20

  Avast and Borsetta to support Intel’s AI security project

  Security firm Avast and AI security specialist Borsetta have signed up to support an Intel-led artificial intelligence security research project

• December 03, 2020 03 Dec'20

  Lax Android app developers putting millions of users at risk

  Eight months after Google patched a critical vulnerability, developers have failed to update their apps, putting millions of users of apps such as dating services Bumble and Grindr at risk

• December 03, 2020 03 Dec'20

  Dangerous Trickbot evolves to target UEFI/BIOS firmware

  Dubbed Trickboot by researchers, Trickbot’s new features enable malicious actors to read, write or even erase UEFI/BIOS firmware

• November 26, 2020 26 Nov'20

  APAC plagued by APT, ransomware attacks

  The Asia-Pacific region was a primary target of advanced persistent threat groups, mostly from China, Iran, North Korea and Russia, that carried out 34 campaigns between June 2019 to June 2020

• November 25, 2020 25 Nov'20

  Use of abusive stalkerware against women skyrocketed in 2020

  Rise in the use of malicious stalkerware correlates closely to increased domestic violence during lockdown

• November 24, 2020 24 Nov'20

  Belgian security researcher hacks Tesla with Raspberry Pi

  Belgian security researcher Lennert Wouters once again succeeds in hacking a Tesla vehicle, this time by exploiting the Bluetooth Low Energy standard

• November 23, 2020 23 Nov'20

  Finnish finance giant pilots fingerprint payments

  OP Financial introduces biometric security technology to enable higher-value payments to be made safely using contactless cards

• November 23, 2020 23 Nov'20

  MPs subjected to over 22 million malicious email attacks in 2020

  Members of Parliament are targeted by millions of spam and phishing emails every month, according to a Freedom of Information disclosure

• November 18, 2020 18 Nov'20

  2021 the year of commodity ransomware, says Sophos

  Sophos researchers anticipate a trickle-down effect in the cyber criminal underground

• November 18, 2020 18 Nov'20

  How Aarogya Setu is addressing scale and security challenges

  India’s contact-tracing platform leverages microservices, encryption techniques and cloud-based visibility tools to address scale and security requirements

• November 12, 2020 12 Nov'20

  IT Priorities 2020: Budgets rejigged to support 2021 recovery

  IT has been essential in helping organisations remain operational. IT chiefs are now considering the IT to drive a sustained business recovery

• November 11, 2020 11 Nov'20

  What businesses can learn from GovTech’s digital strategy

  Modernising its infrastructure and putting digital at its core has given Singapore’s Government Technology Agency the agility it needs to respond to the Covid-19 pandemic

• November 11, 2020 11 Nov'20

  Security pros coped admirably with remote working transition

  Despite facing tight timescales at the onset of the pandemic, security professionals have come through the transition to remote working remarkably well, according to a report

• November 11, 2020 11 Nov'20

  Gartner: IT spending to focus on fast time to value

  There are no surprises in Gartner’s latest forecast. IT budgets are being spent on supporting remote workers, but CIOs have new metrics

• November 11, 2020 11 Nov'20

  Microsoft drops fix for serious zero-day among 112 Patch Tuesday updates

  November’s Patch Tuesday contains fixes for 112 bugs, including a potentially serious zero-day exploit that malicious actors are already taking advantage of

• November 10, 2020 10 Nov'20

  Intel and AMD processors affected by another side-channel exploit

  Two years after Spectre and Meltdown, the x86 processor faces another side-channel exploit – only this time, it is based on sensing temperature

• November 10, 2020 10 Nov'20

  IT Priorities 2020: After Covid-19, security goes back to basics

  This year’s transition to remote working highlighted big gaps in the fundamentals of security, as updated TechTarget/Computer Weekly data reveals

• November 09, 2020 09 Nov'20

  EU moves closer to encryption ban after Austria, France attacks

  Draft resolution document setting up an EU-wide ban on end-to-end encryption is set to be waved through this week

• November 05, 2020 05 Nov'20

  Microsoft to support next generation of security startups

  Tech giant lends its support to the NCSC Cyber Accelerator scheme, which is seeking its seventh cohort of startups

• November 05, 2020 05 Nov'20

  Consumer rights organisation warns of computer takeover scams

  Consumers warned to be on guard against criminals pretending to be IT support staff to gain access to personal banking information