News

Network security management

February 03, 2022 03 Feb'22
French Supreme Court raises constitutional questions over EncroChat hacking secrecy

Conseil Constitutionnel to decide whether ‘defence secrecy’ over state EncroChat cryptophone hacking breaches French constitution
February 02, 2022 02 Feb'22
Zero-trust to soar in 2022, but dogged by implementation challenges

IT leaders are keen to invest in zero-trust, but face issues around a lack of expertise, and selling the concept into the C-suite
February 01, 2022 01 Feb'22
German fuel supplier taken offline in cyber attack

Cyber attack against Germany’s Oiltanking, a major fuel logistics company, affects 13 distribution terminals across Germany, in an incident with echoes of last year’s hit on Colonial Pipeline
February 01, 2022 01 Feb'22
Over one-fifth of ransomware attacks target financial sector

Newly published data reveals a significant uptick in cyber attacks against the financial services sector during the third quarter of 2021

January 31, 2022 31 Jan'22
Data on children of armed forces personnel exposed in breach

Data on 4,142 children of serving armed forces personnel was exposed in a data breach at the Ministry of Defence
January 27, 2022 27 Jan'22
CISOs must get out in front of Ukraine cyber crisis, says NCSC

The National Cyber Security Centre is urging UK organisations to take steps to bolster their cyber security resilience in response to the ongoing Ukraine crisis
January 27, 2022 27 Jan'22
DCMS taps Arqit for 5G project to provide Open RAN security by default

Quantum platform-as-a-service provider joins government’s programme to drive diversity in comms technology supply with the aim of integrating a novel quantum encryption service to enable security by default
January 26, 2022 26 Jan'22
More intel emerges on WhisperGate malware that hit Ukraine

Security experts have been poring over the WhisperGate malware with which alleged Russia-backed entities targeted Ukrainian government websites
January 26, 2022 26 Jan'22
MPs to debate landmark IoT security law

Proposed bill mandates tighter protections for connected products, and adds new rules for broadband roll-out into the bargain
January 25, 2022 25 Jan'22
Prepare, but don’t panic, over supposed Russian cyber threat

A fresh alert from the US Department of Homeland Security may have IT security teams jumpy over the possibility that their organisations could be targeted by Russian state actors

January 25, 2022 25 Jan'22
Cyber Essentials programme gets biggest update since launch

NCSC implements a thorough revision of its Cyber Essentials scheme to reflect the changing security landscape
January 21, 2022 21 Jan'22
Cyber pros: Don’t revel in REvil’s downfall just yet

The arrests of REvil’s alleged kingpins is a welcome step, but as with any disruption to cyber criminal activity, it is never wise to assume law enforcement action means the threat has passed entirely
January 21, 2022 21 Jan'22
New normal sees SASE, SD-WAN surge as MPLS is phased out

Research confirms that MPLS is ‘out’ and SD-WAN and SASE systems are the clear winners in enterprise networking as more and more European organisations are eliminating all on-prem datacentres, with cloud adoption steaming ahead
January 20, 2022 20 Jan'22
Ransomware attacks dropped 37% in December, claims NCC

Latest monthly data reveals a significant decline in ransomware attacks at the end of 2021, but a new, emergent gang is making waves
January 20, 2022 20 Jan'22
Updated cyber security regulations proposed for managed services sector

The Network and Information Systems regulations are to be updated to include MSPs and outsourcers, following a spate of supply chain attacks
January 20, 2022 20 Jan'22
Data of 515,000 vulnerable people stolen in Red Cross attack

The International Committee of the Red Cross is probing a cyber attack that has already seen the personal data of hundreds of thousands of the world’s most vulnerable people compromised
January 19, 2022 19 Jan'22
Chasm exists between ‘true’ and portfolio SASE approaches

Survey of enterprise IT leaders finds little difference between respondents without SASE and those who adopted SASE product portfolios regarding issues such as trade-offs between performance and security
January 19, 2022 19 Jan'22
Trellix looks to democratise access to XDR in APAC

The company formed from the merger of FireEye Enterprise and McAfee will team up with managed service providers, among other efforts, to democratise access to extended detection and response capabilities in the region
January 19, 2022 19 Jan'22
Trellix XDR platform forged out of McAfee, FireEye union

The private equity owners of McAfee Enterprise and FireEye are merging the companies into a new entity to ‘define the future’ of cyber security through XDR technology
January 18, 2022 18 Jan'22
Exium, Teneo team to deliver digital experience, 5G-capable SASE platform

Work-from-anywhere IT services company and cyber security provider enter into partnership to assist lean enterprise IT teams in their transition to a secure access service edge
January 18, 2022 18 Jan'22
Cobalt Strike still C2 infrastructure of choice

Its utility and ease of use, coupled with explosive growth in ransomware actions, makes Cobalt Strike Team Servers the C2 infrastructure of choice for malicious actors
January 13, 2022 13 Jan'22
Nordic companies targeted in wave of cyber attacks

After a slew of cyber attacks hit major companies in the Nordics at the end of last year, we look at how they were affected and how they have recovered
January 12, 2022 12 Jan'22
UK government bodies challenged on secure identity

Public sector bodies in the UK recognise secure identity and access management as critical to the roll-out of digital services, but face challenges in addressing this
January 12, 2022 12 Jan'22
Macquarie joins NSW government’s cloud supplier panel

New South Wales state agencies will be able to access Macquarie’s sovereign cyber expertise and secure cloud, network and datacentre services
January 05, 2022 05 Jan'22
Google buys Siemplify in first phase of cyber investment

Once integrated into Google Cloud, Siemplify’s platform will serve as the basis for deeper security development at Google
January 04, 2022 04 Jan'22
Admins warned that Exchange date fix will take time to roll out

At the start of the New Year, Exchange 2016 and 2019 email servers started queuing email messages due to a date bug
January 03, 2022 03 Jan'22
How APAC firms can stay ahead of cyber threats

Organisations will need to develop behavioural detection, machine learning and threat hunting capabilities to keep pace with the onslaught of cyber attacks
December 23, 2021 23 Dec'21
Top 10 cyber security stories of 2021

Cyber security dominated the headlines in 2021, making it hard to gain a clear picture of what to pay attention to. What is an IT buyer to do?
December 15, 2021 15 Dec'21
After Log4j, December Patch Tuesday piles on the pressure

December’s Patch Tuesday update from Microsoft contains several critical CVEs, but this month all attention is focused on the fall-out from Log4Shell, and burn-out is becoming a real issue
December 15, 2021 15 Dec'21
UK government to take ‘whole-of-society’ approach to cyber

Second iteration of the UK’s National Cyber Strategy broadens its focus to build a ‘whole-of-society’ security posture
December 13, 2021 13 Dec'21
What is Log4Shell, and why are we panicking about it?

It’s been described as a ‘design failure of catastrophic proportions’ that threatens the very fabric of the digital world. Find out what the Log4j2 Log4Shell panic is all about, and what you should do about it
December 09, 2021 09 Dec'21
UK and US to collaborate on privacy innovation contest

Joint UK-US innovation challenge contest centring on privacy-enhancing technology announced at Summit for Democracy in Washington DC
December 09, 2021 09 Dec'21
Aryaka announces ‘all-in-one’ SD-WAN, SASE offerings for hybrid workplace

Cloud-first software-defined wide area network firm claims hybrid network innovation breakthrough, enabling businesses of all sizes to navigate change while focusing on growth and digital transformation
December 08, 2021 08 Dec'21
Number of .uk domain suspensions at record low

Statistics from Nominet show how effective law enforcement action against cyber crime in the UK is paying off
December 07, 2021 07 Dec'21
Investigation mounted into Spar supermarket cyber attack

Possible supply chain cyber attack left more than 300 Spar supermarkets unable to process credit card payments
December 06, 2021 06 Dec'21
Surge in Nobelium-linked supply chain attacks

Mandiant’s researchers share new intel on two distinct clusters of Russian APT activity, linked to the Nobelium SolarWinds attackers
December 02, 2021 02 Dec'21
GTT teams with Palo Alto to power SASE platform

Secure access service edge platform will offer advanced security techniques, fortifying network access from any location
November 30, 2021 30 Nov'21
HP patches bugs in over 150 printer models

More than 150 HP multifunction printers are at risk of compromise through a series of newly disclosed vulnerabilities, one of them wormable
November 30, 2021 30 Nov'21
Recovering from ransomware: One organisation’s inside story

In February 2021, French office equipment supplier Manutan fell victim to a DoppelPaymer ransomware hit. IT ops director Jérôme Marchandiau tells the inside story of the incident
November 24, 2021 24 Nov'21
Apple sues under-fire malware firm NSO

Lawsuit alleges spyware firm NSO Group targeted Apple’s users, adding to the pressure on the under-fire company
November 22, 2021 22 Nov'21
Upcoming holidays prompt ransomware warning from authorities

Ransomware gangs know how calendars work, and may target their attacks around major holidays to take advantage of more people being off work, according to a new alert
November 22, 2021 22 Nov'21
Black Friday cyber warning for 4,000 card-skimming victims

NCSC warns thousands of small retailers that their websites are being exploited to steal customer data
November 19, 2021 19 Nov'21
Why is Emotet back, and should we be worried about it?

The sudden reappearance of Emotet this week has security teams on high alert, but do we need to be worried about its return, and what should we be doing about it?
November 18, 2021 18 Nov'21
Memento ransomware gang quick to retool for ‘optimum’ outcome

The operators of a new ransomware called Memento are quick to retool for ‘success’ if they run up against a competent defender, says Sophos
November 18, 2021 18 Nov'21
Alert over spate of Iran-linked BitLocker attacks

A joint advisory from western cyber agencies warns of a campaign of ‘ongoing malicious activity’ by an Iran-linked APT group exploiting BitLocker to extort its targets
November 18, 2021 18 Nov'21
Sky ECC provided free cryptophones to a Canadian police force

Internal emails disclosed in a US court show how Sky Global supplied sample encrypted phones to a Canadian police force before its phone users became subject to an international police investigation
November 17, 2021 17 Nov'21
Security startups line up on Cyber Runway

Some 108 cyber security startups representing the UK’s most cutting-edge innovators are to join Plexal’s Cyber Runway accelerator
November 16, 2021 16 Nov'21
One-fifth of NCSC-supported cyber incidents linked to Covid-19

National Cyber Security Centre has helped to thwart multiple cyber incidents that could have seriously disrupted the UK’s response to the pandemic
November 15, 2021 15 Nov'21
UK government proposes new rules for digital supply chain security

Proposals could see IT service providers legally required to adhere to the NCSC’s Cyber Assessment Framework, among other things
November 12, 2021 12 Nov'21
BT applies Covid-19 R number modelling to threat response

A prototype cyber security tool developed at BT uses epidemiological principles to detect and respond to cyber threats