News
IT security
-
September 27, 2019
27
Sep'19
Five million DoorDash customers’ details lost in data breach
Takeaway delivery service was breached in May 2019, resulting in the data of millions of users and delivery drivers being stolen
-
September 27, 2019
27
Sep'19
GDPR compliance: Whose job is it and is it really possible?
Nobody seems to have a good handle on business GDPR compliance, how many businesses are compliant, or indeed what compliance really is, but according to security experts, it very much depends on who you talk to
-
September 26, 2019
26
Sep'19
Attackers breached supplier systems to steal Airbus secrets
Airbus has been the subject of at least four major cyber attacks in the past 12 months, with contractors and suppliers targeted through their VPNs
-
September 26, 2019
26
Sep'19
Overinvestment breeds overconfidence among security pros
CISOs have made an abundance of security investments in multiple suppliers, but this might not be the right approach
-
September 26, 2019
26
Sep'19
Teen TalkTalk hacker accused of cryptocurrency fraud in US
Elliott Gunton, one of the teenage hackers who broke into TalkTalk’s systems in 2015, faces extradition to the US to face fraud charges
-
September 26, 2019
26
Sep'19
Instagram and WhatsApp – the new tools of social media propaganda
Facebook and Twitter have been cast as the villains of the piece, but social media disinformation and propaganda are evolving in new and alarming directions, say Oxford University researchers
-
September 24, 2019
24
Sep'19
Latest Lorca cyber security challenge has IoT focus
Government-backed cyber security innovation centre Lorca has issued new challenges around connectivity for its next intake of scaleups
-
September 24, 2019
24
Sep'19
Singapore payment card data compromised by JavaScript sniffers
Raw data of thousands of payment cards issued by Singapore banks stolen by the online equivalent of a traditional card sniffer
-
September 24, 2019
24
Sep'19
GandCrab ransomware writers still active despite ‘retirement’
Apparent links between an emerging ransomware family known as REvil and GandCrab suggests the GandCrab authors are keeping busy despite having “retired” in June
-
September 24, 2019
24
Sep'19
Enterprises exposed to data loss by cloud configuration errors
Only 1% of misconfigured cloud environments are spotted and attackers are capitalising on this, claims McAfee
-
September 24, 2019
24
Sep'19
Google pushes back on scale of YouTube phishing threat
Millions of YouTubers may be at risk after some high-profile influencers reported their accounts were compromised in an apparent phishing attack, but the platform’s owner, Google, is not so sure
-
September 19, 2019
19
Sep'19
Government insists 'nothing sinister' about web user data gathering
Government Digital Service responds to allegations that personal data gathered through Gov.uk portal could be used to target political messaging to citizens
-
September 18, 2019
18
Sep'19
Facebook automatically generates pages for Islamic State and Al-Qaeda
Facebook algorithms have auto-generated hundreds of Facebook pages for the Islamic State, Al-Qaeda and Ansar al-Sharia, according to a whistleblower
-
September 18, 2019
18
Sep'19
Universities tempting targets for cyber criminals, warns NCSC
As hundreds of thousands of students prepare for the new academic year, universities have been warned that they are at high risk of cyber attack
-
September 18, 2019
18
Sep'19
WannaCry variants accidentally protecting against WannaCry
New variants of the infamous WannaCry malware continue to emerge, and many of them have accidentally turned themselves into a somewhat effective, although ill-advised, vaccine against infection
-
September 18, 2019
18
Sep'19
Emotet phishing botnet returns from summer vacation
The Emotet phishing trojan-turned-botnet is back in action after a three-and-a-half month break, say threat researchers
-
September 17, 2019
17
Sep'19
Ecuador citizens’ data breach holds lessons for enterprises
What caused the mass breach of Ecuadorian citizens’ data, and what can businesses learn from it?
-
September 17, 2019
17
Sep'19
US lawmakers demand internal Facebook, Google, Apple and Amazon documents in antitrust probe
US lawmakers have given big tech companies a deadline to disclose a wide range of documents as the House Judiciary Committee’s bipartisan investigation into competition gathers pace
-
September 16, 2019
16
Sep'19
Ensign InfoSecurity opens global headquarters in Singapore
The Singapore-based cyber security firm’s new headquarters will also be home to a new security operations centre that will be supported by Singapore-centric threat intelligence
-
September 16, 2019
16
Sep'19
Police use of algorithms needs stronger safeguards to prevent bias, report says
A study by the Royal United Services Institute calls for new code of practice to guide use of algorithmic tools in policing
-
September 13, 2019
13
Sep'19
European court to decide on legality of bulk phone and internet surveillance
The European Court of Justice will decide whether intelligence agencies across Europe can continue to lawfully collect the telephone and internet communications data of citizens, following a two-day hearing this week
-
September 13, 2019
13
Sep'19
Ditch hoodies and hackers to encourage diverse security recruitment
The cyber security industry needs to address a systemic image problem if it is to succeed in recruiting more diverse teams
-
September 13, 2019
13
Sep'19
When AIs go to war: Autonomous cyber weapons ‘inevitable’
CISOs must start thinking about how to engage with intelligent, adaptive, non-human attackers, says Trend Micro’s Rik Ferguson
-
September 13, 2019
13
Sep'19
Dutch banks to work together in fight against money laundering
Dutch banks are sharing expertise and resources to help reduce money laundering through their accounts
-
September 12, 2019
12
Sep'19
Government seeks views on post-Brexit security alignment
The government has called for views on its proposals to align the UK’s post-Brexit cyber security policy to that of the European Union
-
September 12, 2019
12
Sep'19
ICO to probe government over Gov.uk data collection plan
The ICO is to look into the government’s leaked data collection plans over fears they may breach the law
-
September 12, 2019
12
Sep'19
UN agency Unicef praised for response to accidental data leak
The UN’s children’s agency has disclosed an inadvertent leak of personal data belonging to users of its online learning platform Agora
-
September 12, 2019
12
Sep'19
IBM introduces z15 mainframe with security data passport
In the new z15 enterprise server, IBM has focused on making data secure and auditable wherever it resides.
-
September 12, 2019
12
Sep'19
Mirai descendants dominate IoT threat environment
Attacks leveraging compromised IoT devices are growing in size, scale and frequency, report security experts at F-Secure and Trend Micro, with Mirai-related botnets a major source of trouble
-
September 11, 2019
11
Sep'19
Equifax and Heartbleed are most-Googled cyber security terms
Analysis of 15 years’ worth of Google search data has revealed some insight into what cyber security trends are capturing the imagination
-
September 11, 2019
11
Sep'19
Nordic countries deepen collaboration with Estonia-based cyber security operation
Nordic countries are now working closer with Nato’s Estonia-based centre of excellence in cyber security
-
September 11, 2019
11
Sep'19
GDPR non-compliance worse than feared
Over half of UK businesses do not yet appear to be fully GDPR-compliant, and many have de-prioritised their compliance efforts
-
September 10, 2019
10
Sep'19
UK calls for cyber capacity-building at UN security group
The UK’s representative to a United Nations cyber security working group has called for increased investment in capacity around cyber security
-
September 10, 2019
10
Sep'19
BT gears up to take on rogue drones
BT’s Enterprise unit is offering customers an anti-drone security solution to protect their physical sites from intrusion
-
September 10, 2019
10
Sep'19
How Zuellig Pharma is fighting fake drugs with blockchain
The Asia-Pacific pharmaceutical giant is using a blockchain platform from SAP to help consumers identify the provenance of medicine
-
September 09, 2019
09
Sep'19
Terror watchlist faces reform after court rules it violates rights of people entering US
A secret US terrorist database containing information on more than 1.2 million people – who face repeated interrogations, detentions and electronic searches – violates constitutional rights, a US judge said last week
-
September 09, 2019
09
Sep'19
Social engineering a factor in virtually all cyber attacks, report claims
Almost every single cyber attack will, at some stage, require a human to be tricked into doing something, according to research by Proofpoint
-
September 06, 2019
06
Sep'19
Data-driven marketing, the real risk boards are missing
Boards need to act to break the cycle of privacy compliance failures, and shift focus to aligning business purpose with privacy and dealing with the real risk of data driven marketing, warns PwC’s GDPR and data protection lead
-
September 06, 2019
06
Sep'19
Australia government to chart 2020 cyber security strategy
Australia’s home affairs ministry has released a discussion paper to seek views from all segments of society on the country’s next cyber security blueprint
-
September 05, 2019
05
Sep'19
Singapore’s SecureAge eyes US market
The Singapore-based supplier of encryption and anti-malware tools has set up a new office in Greater Washington, DC as the next logical step in its global expansion plan
-
September 05, 2019
05
Sep'19
Police use of controversial facial recognition technology deemed lawful
In a landmark hearing, the High Court has ruled that police use of automatic facial recognition technology is lawful, but that it still infringes on privacy rights
-
September 05, 2019
05
Sep'19
Security pros doubt officials can enact effective security laws
Elected officials cannot be trusted to enact effective cyber security legislation and social media firms should be subject to strict privacy regulation, according to most information security professionals in a survey
-
September 05, 2019
05
Sep'19
Tide Foundation aims to boost password security
While passwordless security remains just out of reach, a non-profit organisation has developed a mechanism that it says makes passwords exponentially more difficult to crack
-
September 05, 2019
05
Sep'19
Latest Facebook security lapse exposes millions to account hijack
18 million UK users are among the more than 400 million at risk of account hijacking after phone numbers linked to their Facebook accounts were found in an open online database
-
September 04, 2019
04
Sep'19
Check Point warns of Android phishing attacks
Researchers at Check Point have identified a security flaw in Android-based smartphones that exposes vulnerable users to phishing attacks
-
September 04, 2019
04
Sep'19
TrickBot Trojan switches to stealthy Ostap downloader
Operators of the TrickBot banking Trojan have switched to a new downloader to evade detection and analysis for a high-volume malicious spam campaign targeting business, researchers warn
-
September 03, 2019
03
Sep'19
Cyber criminals tap into web social engineering toolkit
Security researchers have discovered a web social engineering toolkit that enables cyber criminals to create fake update notification campaigns
-
September 03, 2019
03
Sep'19
CISOs think cloud safer, but security fears remain
The majority of information security leaders think cloud is now safer than on-premise, but security fears remain, with recently breached and highly regulated organisations most concerned, poll reveals
-
September 03, 2019
03
Sep'19
At least 47,000 servers vulnerable to remote attack
All organisations using Supermicro servers are being urged to update firmware to block remote attacks exploiting vulnerabilities in baseboard management controllers
-
September 02, 2019
02
Sep'19
UK organisations join quantum comms pilot
Four UK companies are taking part in a pilot project to build the most secure communication infrastructure in Europe