News

IT security

• October 17, 2024 17 Oct'24

  EU cyber security bill NIS2 hits compliance deadline

  The EU’s NIS2 bill will harmonise how companies and member states approach cyber security, but its success will depend on how well it is implemented and enforced

• October 16, 2024 16 Oct'24

  Cato further expands SASE platform for ‘complete’ UK delivery

  Secure access service edge platform gains digital experience monitoring capability so enterprises can monitor user experiences and fix them online or in private datacentres

• October 15, 2024 15 Oct'24

  NCSC expands school cyber service to academies and private schools

  The National Cyber Security Centre is expanding its PDNS for Schools service to encompass a wider variety of institutions up and down the UK

• October 15, 2024 15 Oct'24

  Telefónica and Halotech integrate post-quantum encryption into IoT devices

  Leading global telco implements state-of-the-art cyber security through internet of things managed connectivity platform allowing devices to be controlled and monitored in real time and remotely

• October 14, 2024 14 Oct'24

  How Zoom is charting its course towards an AI-first platform

  Zoom CEO Eric Yuan talks up his vision for the future of work, the company's transition to an AI-powered platform and what it is doing to stay ahead of rivals

• October 11, 2024 11 Oct'24

  NFL and Cisco gain yardage with network and security partnership

  Cisco scores contract extension with US sports body NFL to connect and protect 2024 roster of International Games in the UK, Germany, Brazil and Spain in 2025

• October 10, 2024 10 Oct'24

  NCSC issues fresh alert over wave of Cozy Bear activity

  The NCSC, FBI and NSA publish updated warning about Cozy Bear’s activities, highlighting a range of vulnerabilities the threat actor is using to set up its cyber attacks

• October 10, 2024 10 Oct'24

  Government launches cyber standard for local authorities

  Local government bodies are being invited to take advantage of a new NCSC-derived Cyber Assessment Framework to help enhance their resilience and ward off cyber attacks

• October 10, 2024 10 Oct'24

  Internet Archive web historians target of hacktivist cyber attack

  The Internet Archive nonprofit digital library and Wayback Machine operator has been attacked by pro-Palestinian hacktivists

• October 10, 2024 10 Oct'24

  How Recorded Future finds ransomware victims before they get hit

  Threat intel specialists at Recorded Future have shared details of newly developed techniques they are using to disrupt Rhysida ransomware attacks before the gang even has a chance to execute them

• October 10, 2024 10 Oct'24

  UK and US pledge closer working on children’s online safety

  In their first agreement on the subject of children’s online safety, the UK and US governments have said they will create a new working group to boost cooperation

• October 10, 2024 10 Oct'24

  Australia bolsters cyber defences with security bill

  Legislation tackles IoT security and establishes a Cyber Incident Review Board to bolster Australia’s cyber resilience

• October 09, 2024 09 Oct'24

  MoneyGram customer data breached in attack

  MoneyGram confirms that customer data has been stolen in an incident that appears to have started with a social engineering attack on its IT helpdesk staff

• October 09, 2024 09 Oct'24

  Five zero-days to be fixed on October Patch Tuesday

  Stand-out vulnerabilities in Microsoft’s latest Patch Tuesday drop include problems in Microsoft Management Console and the Windows MSHTML Platform

• October 09, 2024 09 Oct'24

  UK Cyber Team seeks future security professionals

  Young people from across the UK have a chance to represent the country in international competitions and advance their future careers in cyber security

• October 08, 2024 08 Oct'24

  Secureworks: Ransomware takedowns didn’t put off cyber criminals

  The number of active cyber criminal ransomware gangs has surged by almost a third in the space of 12 months, according to the latest intelligence from Secureworks

• October 08, 2024 08 Oct'24

  UK’s cyber incident reporting law to move forward in 2025

  The UK government says that enforced cyber incident and ransomware reporting for critical sectors of the economy will help to build a better picture of the threat landscape and enable more proactive and preventative responses

• October 07, 2024 07 Oct'24

  IBM: Data breach cost in ASEAN hits new high

  The average cost of a data breach in ASEAN grew by 7% from last year, as organisations grapple with increasingly distributed IT environments and complex security systems

• October 04, 2024 04 Oct'24

  UK telcos including BT at risk from DrayTek router vulnerabilities

  A series of vulnerabilities in DrayTek's Vigor router product lines affects multiple comms service providers in the UK, according to new analysis

• October 04, 2024 04 Oct'24

  NCSC celebrates eight years as Horne blows in

  Outgoing NCSC interim leader Felicity Oswald shares her thoughts on the body’s work over the past eight years as she hands over the reins to incoming CEO Richard Horne

• October 04, 2024 04 Oct'24

  Cups Linux printing bugs open door to DDoS attacks, says Akamai

  The Cups Linux printing vulnerabilities disclosed at the end of September would seem to have a nasty sting in their tail, according to researchers at Akamai

• October 04, 2024 04 Oct'24

  Detective wrongly claimed journalist’s solicitor attempted to buy gun, surveillance tribunal hears

  Darren Ellis, who led a surveillance operation against journalists who exposed police failures, wrongly accused a solicitor of attempting to buy arms

• October 03, 2024 03 Oct'24

  Ex-PSNI officer seeking legal advice over comments made at Investigatory Powers Tribunal

   Ex PSNI officer ‘deeply angered’ by comments made by a former detective at a tribunal investigating allegations of unlawful surveillance against journalists

• October 03, 2024 03 Oct'24

  Microsoft files lawsuit to seize domains used by Russian spooks

  Microsoft has been given permission to seize multiple domains used by the Russian state threat actor Star Blizzard as part of a coordinated disruption effort undertaken ahead of the US elections

• October 03, 2024 03 Oct'24

  SOC teams falling out of love with threat detection tools

  Security operations centre practitioners are fed up of being flooded with pointless alerts and many no longer have much confidence in their threat detection tools, according to a report

• October 03, 2024 03 Oct'24

  Nutanix courts VMware customers in APAC amid Broadcom concerns

  Nutanix is driving double-digit growth across the region by capitalising on the evolving cloud landscape with its hybrid cloud and artificial intelligence offerings, as well as anxieties about the future direction of VMware under Broadcom’s ownership

• October 02, 2024 02 Oct'24

  UK and Singapore to collaborate on supporting ransomware victims

  At the fourth Counter Ransomware Initiative Summit in the US, both the UK and Singapore have committed to working on new guidance designed to better support victims and undermine cyber criminal business models

• October 02, 2024 02 Oct'24

  Detective behind ‘unlawful’ surveillance blamed Catholics for ‘perverse’ court decisions

  A former detective claimed Irish judges were ‘sectarians in robes’ after a court found police had unlawfully arrested journalists who produced a film exposing collusion with paramilitary murderers

• October 02, 2024 02 Oct'24

  Cyber UK’s quickest growing tech field, but skills gap remains

  More people than ever are joining the cyber security profession in the UK, according to a report, but there is still a serious shortage even with a doubling in numbers

• October 02, 2024 02 Oct'24

  Amazon Mechanical Turk workers suspended without explanation

  A likely glitch in Amazon Payments resulted in hundreds of Mechanical Turk workers being suspended from the platform without proper explanation or pay

• October 01, 2024 01 Oct'24

  Detective reported journalist’s lawyers to regulator in ‘unlawful’ PSNI surveillance case

  Former Durham detective Darren Ellis told the Investigatory Powers Tribunal that he had concerns about lawyers acting for journalists placed under surveillance by Northern Irish police

• October 01, 2024 01 Oct'24

  Unmasked: The Evil Corp cyber gangster who worked for LockBit

  The NCA has named and shamed a prominent member of the Evil Corp cyber crime collective who also worked as an affiliate of the LockBit ransomware gang as the UK unveils new sanctions against 16 Russian cyber criminals

• October 01, 2024 01 Oct'24

  Businesses are getting some value from AI, but struggling to scale

  Survey from KPMG reveals IT leaders struggling to keep up with the pace of technology innovation

• October 01, 2024 01 Oct'24

  Post Office ditches MoneyGram after cyber attack

  The Post Office offered a short extension to enable it to asses the impact of the MoneyGram cyber incident, but the contract has now expired and MoneyGram services are no longer available in Post Office branches

• October 01, 2024 01 Oct'24

  Cyber teams say they can’t keep up with attack volumes

  Over 60% of European security pros say their teams are understaffed, and over 50% don’t have enough budget, according to data from ISACA

• September 27, 2024 27 Sep'24

  UK on high alert over Iranian spear phishing attacks, says NCSC

  The NCSC and counterpart agencies in the US have issued a warning over enhanced Iranian spear phishing activity targeting politicians, journalists, activists and others with an interest in Middle Eastern affairs

• September 27, 2024 27 Sep'24

  Printing vulnerability affecting Linux distros raises alarm

  Security pros need to get in front of a series of vulnerabilities affecting the Cups Linux printing service after an apparently botched disclosure process saw technical details published in advance of a patch

• September 27, 2024 27 Sep'24

  How UEM Sunrise is driving transformation with Salesforce and AI

  Malaysian property developer UEM Sunrise is leveraging Salesforce and AI to boost sales and enhance customer experience while prioritising data sovereignty and a diversified cloud strategy

• September 26, 2024 26 Sep'24

  Racist Network Rail Wi-Fi hack was work of malicious insider

  Police have revealed that this week’s racist cyber attack on public Wi-Fi networks at stations across the UK appears to have been the work of a malicious insider, after arresting an employee of one of the service providers

• September 26, 2024 26 Sep'24

  Islamophobic cyber attack downs Wi-Fi at UK transport hubs

  An apparent hacktivist attack disrupted public-facing Wi-Fi networks at UK rail stations to display Islamophobic content

• September 25, 2024 25 Sep'24

  CrowdStrike apologises to US government for global mega-outage

  CrowdStrike executive Adam Meyers appears before a US government committee to explain the series of errors that led directly to one of the biggest IT outages in history

• September 25, 2024 25 Sep'24

  Splunk and Cisco integration moving apace

  Splunk is rapidly integrating with Cisco’s technology to enable seamless transitions between their platforms while delivering advanced threat detection capabilities

• September 24, 2024 24 Sep'24

  Money transfer firm MoneyGram rushes to contain cyber attack

  Money transfer specialist MoneyGram services remain down several days after a network outage developed into a full-blown cyber security incident

• September 24, 2024 24 Sep'24

  Unique malware sample volumes seen surging

  BlackBerry’s latest ‘Global threat intelligence’ report details a surge in unique malware samples as threat actors ramp up the pace of targeted attacks

• September 23, 2024 23 Sep'24

  Microsoft shares progress on Secure Future Initiative

  Microsoft has published a progress report on its Secure Future Initiative, launched last year in the wake of multiple security incidents, and made a series of commitments to improve its internal cyber culture

• September 23, 2024 23 Sep'24

  Home Office eVisa scheme is ‘broken’, says Open Rights Group

  Digital rights campaigners say the Home Office’s plan to make its new electronic Visa scheme a real-time online-only process is part and parcel of the 'hostile environment' around immigration status

• September 23, 2024 23 Sep'24

  UK, US and Canada to collaborate on AI and cyber security

  International collaboration agreement will see the governments of Canada, the UK and the US work together to research, evaluate and test new defence technologies

• September 23, 2024 23 Sep'24

  Medtech startup brings Oracle AI to bear on cancer drug research

  Learn how Oracle Cloud Infrastructure and its cutting-edge AI features are bringing new benefits to cancer care by helping doctors identify better treatment options

• September 19, 2024 19 Sep'24

  HSBC tests post-quantum VPN tunnel for digital ledgers

  Encryption required for post-quantum cryptography will have a material impact on the performance of distributed ledgers

• September 18, 2024 18 Sep'24

  NCSC exposes Chinese company running malicious Mirai botnet

  The NCSC and its Five Eyes allies have published details of the activities of a China-based cyber security company that is operating a Mirai IoT botnet in the service of government-backed intrusions