News

Privacy and data protection

September 09, 2019 09 Sep'19
Social engineering a factor in virtually all cyber attacks, report claims

Almost every single cyber attack will, at some stage, require a human to be tricked into doing something, according to research by Proofpoint
September 06, 2019 06 Sep'19
Data-driven marketing, the real risk boards are missing

Boards need to act to break the cycle of privacy compliance failures, and shift focus to aligning business purpose with privacy and dealing with the real risk of data driven marketing, warns PwC’s GDPR and data protection lead
September 06, 2019 06 Sep'19
Australia government to chart 2020 cyber security strategy

Australia’s home affairs ministry has released a discussion paper to seek views from all segments of society on the country’s next cyber security blueprint
September 05, 2019 05 Sep'19
Singapore’s SecureAge eyes US market

The Singapore-based supplier of encryption and anti-malware tools has set up a new office in Greater Washington, DC as the next logical step in its global expansion plan

September 05, 2019 05 Sep'19
Police use of controversial facial recognition technology deemed lawful

In a landmark hearing, the High Court has ruled that police use of automatic facial recognition technology is lawful, but that it still infringes on privacy rights
September 05, 2019 05 Sep'19
Security pros doubt officials can enact effective security laws

Elected officials cannot be trusted to enact effective cyber security legislation and social media firms should be subject to strict privacy regulation, according to most information security professionals in a survey
September 05, 2019 05 Sep'19
Tide Foundation aims to boost password security

While passwordless security remains just out of reach, a non-profit organisation has developed a mechanism that it says makes passwords exponentially more difficult to crack
September 05, 2019 05 Sep'19
Latest Facebook security lapse exposes millions to account hijack

18 million UK users are among the more than 400 million at risk of account hijacking after phone numbers linked to their Facebook accounts were found in an open online database
September 04, 2019 04 Sep'19
Check Point warns of Android phishing attacks

Researchers at Check Point have identified a security flaw in Android-based smartphones that exposes vulnerable users to phishing attacks
September 04, 2019 04 Sep'19
TrickBot Trojan switches to stealthy Ostap downloader

Operators of the TrickBot banking Trojan have switched to a new downloader to evade detection and analysis for a high-volume malicious spam campaign targeting business, researchers warn

September 03, 2019 03 Sep'19
Cyber criminals tap into web social engineering toolkit

Security researchers have discovered a web social engineering toolkit that enables cyber criminals to create fake update notification campaigns
September 02, 2019 02 Sep'19
UK organisations join quantum comms pilot

Four UK companies are taking part in a pilot project to build the most secure communication infrastructure in Europe
September 02, 2019 02 Sep'19
CISOs turn to AI, detection, response and education

Information security leaders are looking to artificial intelligence, better detection and response capabilities and user education in the face of cyber threats, but need more budget, a study shows
August 29, 2019 29 Aug'19
Dutch regulator reveals potential Microsoft privacy breach

Netherlands privacy watchdog has revealed potential breaches while testing Microsoft software changes
August 28, 2019 28 Aug'19
Targeted cyber attacks, including ransomware, on the rise

Governments and healthcare institutions are prime targets of ransomware operators, a report shows
August 28, 2019 28 Aug'19
Ransomware has evolved into a serious enterprise threat

Ransomware has seen a resurgence since the start of 2019, with cyber criminals changing code and tactics to target enterprises and local authorities for higher ransom payments, McAfee researchers warn
August 23, 2019 23 Aug'19
Majority of organisations struggling with cloud security

The majority of organisations find securing the cloud difficult and more than a quarter feel the shared security responsibility model is unclear, according to a survey of information security professionals
August 23, 2019 23 Aug'19
Human rights group challenges police over counter-terrorism powers

Bringing into question the effectiveness of terror laws, a report by human rights group Cage highlights poor conviction rates and the discriminatory application of police powers at the border
August 22, 2019 22 Aug'19
Security pros reiterate warning against encryption backdoors

The majority of security professionals believe countries with government-mandated encryption backdoors are more susceptible to nation-state cyber attacks
August 22, 2019 22 Aug'19
A helping hand from the Nordics in the eye of the GDPR storm

Nordic IT companies are well suited to supporting enterprises in their data protection projects, even though openness is more natural to them
August 22, 2019 22 Aug'19
Tech firms join forces to boost cloud security

Top tech firms are to collaborate on open source technologies, tools, frameworks and standards that accelerate the adoption of confidential computing to boost security in cloud and edge computing
August 22, 2019 22 Aug'19
Cyber attackers exploiting poor cloud security

More than a third of organisations report a cyber attack on the cloud environment due to a lack of basic cloud security hygiene
August 21, 2019 21 Aug'19
Healthcare faces triple cyber threat, says FireEye

Criminal and nation-state cyber attackers are increasingly targeting the healthcare industry to steal data, carry out espionage and cause disruption, a report reveals
August 20, 2019 20 Aug'19
Human error a big risk to ICS cyber security, study shows

Despite the rise in automation, industrial processes are at risk due to human error, a report on industrial cyber security reveals
August 20, 2019 20 Aug'19
Huawei to US: Ban violates free market principles

Huawei has hit back at the US government’s latest moves to restrict its activities
August 19, 2019 19 Aug'19
UK financial account takeovers up, report warns

Commercial cyber criminal services are helping to drive up the number of account takeovers, a fraud report for the first half of the year shows
August 19, 2019 19 Aug'19
Q2 shows ransomware proliferation, Kaspersky warns

Ransomware modifications have more than doubled in the past year, the number of ransomware families has grown, and the number of attempted infections is up nearly 50%
August 19, 2019 19 Aug'19
US extends temporary stay on Huawei ban

American network operators given extra wiggle room to wean themselves off Huawei’s hardware
August 16, 2019 16 Aug'19
Passwordless enterprise already possible, says RSA

The passwordless enterprise is getting easier to attain as the security industry gears up to support a passwordless future, says RSA’s identity chief
August 16, 2019 16 Aug'19
New approach to risk management needed, says Gartner

Most third-party risks are discovered after the initial due diligence period, Gartner study shows, highlighting the need for a new approach to risk management and the importance of effective access controls
August 16, 2019 16 Aug'19
ICO to probe facial recognition at King’s Cross

UK privacy watchdog is to investigate whether the use of live facial recognition technology at King’s Cross complies with data protection laws
August 15, 2019 15 Aug'19
Australia needs to get digital identity right

A top Ping Identity executive urges Australia to put more focus on digital identity management following the government’s efforts to lay the groundwork for an open banking regime
August 15, 2019 15 Aug'19
2019 set to be another record year for data breaches

The number of data breach incidents continues to rise and looks set to reach another record this year, with the business sector first in the firing line, according to a mid-year breach report
August 15, 2019 15 Aug'19
Formjacking dominates web-related data breaches

Formjacking has become one of the most popular data stealing methods, say researchers, who urge commercial websites to review all third-party coding practices without delay
August 15, 2019 15 Aug'19
Melbourne researchers uncover privacy lapses in transport dataset

A team of University of Melbourne researchers has been able to re-identify individuals from a public transport dataset, raising serious privacy, safety and security issues
August 14, 2019 14 Aug'19
Publicly accessible biometric database highlights key failings

The discovery of a publicly accessible database of biometric information highlights failings by the supplier, the need for supply chain security, and the challenges of using biometric data
August 14, 2019 14 Aug'19
DCMS funding aims to increase diversity in cyber sector

A funding round has been announced as part of the Cyber Skills Immediate Impact Fund (CSIIF) with aims of encouraging more diverse talent into the UK’s cyber security sector
August 14, 2019 14 Aug'19
GDPR faces growing pains across Europe

The General Data Protection Regulation is over a year old now, but it faces challenges across Europe where compliance has taken place at different speeds
August 14, 2019 14 Aug'19
Cyber criminal collaboration intensifies

The level of cooperation between high-profile cyber threat groups has shifted up a gear, enabling a higher level of automation and making attribution more difficult, research shows
August 14, 2019 14 Aug'19
Digital domain identified as major security threat by Norway’s intelligence service

Norway's intelligence services has revealed the extent of the threat posed to the country by cyber attacks
August 14, 2019 14 Aug'19
British Airways e-ticketing system could expose passenger details

British Airways has not addressed a potential leak of passenger details despite warnings from security researchers, but says it is aware of the issue and is taking action
August 13, 2019 13 Aug'19
Breach cost $53m in Q2, says Desjardins

Credit union cooperative Desjardins reveals that a data breach in June cost the company $53m in the second quarter, but that could be just the start, warn industry commentators
August 13, 2019 13 Aug'19
BACnet IoT building automation devices vulnerable to attack

A security researcher has revealed that internet-connected building automating devices using the BACnet communication protocol are vulnerable to cyber attack
August 12, 2019 12 Aug'19
Phishing top security threat to business

A new Telefónica security service for business shows that phishing is the most-blocked threat and smaller businesses are a popular attack target in the first two months of deployment
August 12, 2019 12 Aug'19
Digital transformation driving security rethink

Organisations are focusing on internet of things and cloud in developing cyber defence systems, study shows
August 09, 2019 09 Aug'19
F-Secure warns of F5 Big IP-related security issue

F-Secure has discovered security issues relating to an F5 device that it says could potentially turn hundreds of thousands of load balancers into beachheads for cyber attacks
August 09, 2019 09 Aug'19
NCC Group warns of security risks of leading printers

Researchers uncover more than 35 vulnerabilities in six leading enterprise printers, many of which could allow access to corporate networks, underlining the need to counter security risks of embedded systems
August 09, 2019 09 Aug'19
Whistleblowers: James Glenn’s battle with Cisco opens new front on cyber security

James Glenn, a 42-year-old security specialist, fought a 10-year legal battle with Cisco after blowing the whistle on serious security flaws. He lost his job, but has no regrets
August 08, 2019 08 Aug'19
Ransomware a continued threat to business, report warns

Businesses are increasingly becoming the most popular targets for ransomware, which remains a top cyber threat around the world, especially in the US, a report reveals
August 08, 2019 08 Aug'19
Cyber criminals hijacking legitimate website comms

Criminals are exploiting firms’ use of online feedback methods to distribute spam and phishing emails, security researchers warn