Data breach incident management and recovery
-
News
20 Nov 2024
Apple addresses two iPhone, Mac zero-days
Two zero-day vulnerabilities uncovered in Apple’s operating systems could have allowed for arbitrary code execution and cross-site scripting attacks Continue Reading
-
Feature
19 Nov 2024
Storage technology explained: Ransomware and storage and backup
We look at ransomware attacks, and the importance of good backup practice as well as immutable snapshots, air-gapping, network segmentation, AI anomaly detection and supplier warranties Continue Reading
-
News
14 Oct 2020
Fintech ‘unicorn’ Klarna probed over data misuse
Online bank blames misuse of user data on human error as Information Commissioner’s Office weighs in Continue Reading
-
Opinion
14 Oct 2020
Security Think Tank: Adapting defences to evolving ransomware and cyber crime
The threat of identity theft via a data breach is heightened with the rise of attacks where ransomware threat actors both encrypt and ransom, and exfiltrate and leak their victims’ data. How does this evolution in cyber crime heighten risk for the enterprise, and what steps can we take to safeguard the personal data we hold? Continue Reading
-
News
13 Oct 2020
Suppliers neglecting virtual appliance security, putting users at risk
Software suppliers are often distributing their products on virtual appliances that contain known vulnerabilities or are running outdated or unsupported operating systems, according to a report Continue Reading
-
News
13 Oct 2020
Hackney Council services offline after ‘serious’ cyber attack
Services to residents of the London borough of Hackney are being disrupted by a cyber attack Continue Reading
-
Opinion
13 Oct 2020
Security Think Tank: What you need to know about addressing the doxing threat
The threat of identity theft via a data breach is heightened with the rise of attacks where ransomware threat actors both encrypt and ransom, and exfiltrate and leak their victims’ data. How does this evolution in cybercrime heighten risk for the enterprise, and what steps can we take to safeguard the personal data we hold? Continue Reading
-
News
12 Oct 2020
Trickbot forced offline in major cyber security victory
Coalition led by Microsoft obtained a court order enabling them to take down the infamous Trickbot botnet’s back-end server infrastructure Continue Reading
-
News
12 Oct 2020
Cyber security skills ad branded ‘crass’ by minister
Security skills campaign advert depicting a ballet dancer comes in for criticism as the arts sector struggles in the pandemic Continue Reading
-
News
12 Oct 2020
Software AG caught in double extortion ransomware hit
Data stolen from prominent German software company by Clop ransomware gang appears on the dark web Continue Reading
-
News
12 Oct 2020
Making sense of zero-trust security
Implementing zero-trust security is not an easy feat, but enterprises can still get it right if they approach it from a process perspective and get a handle on their infrastructure footprint Continue Reading
-
Opinion
12 Oct 2020
Security Think Tank: Tighten data and access controls to stop identity theft
The threat of identity theft via a data breach is heightened with the rise of attacks where ransomware threat actors both encrypt and ransom, and exfiltrate and leak their victims’ data. How does this evolution in cyber crime heighten risk for the enterprise, and what steps can we take to safeguard the personal data we hold? Continue Reading
-
News
09 Oct 2020
Magecart strikes website of school payments service Wisepay
Magecart credit card skimmer harvested financial data of users of Wisepay’s platform over a two-day period Continue Reading
-
News
08 Oct 2020
NCSC relaunches SME security guide with home working focus
The NCSC is issuing an updated version of its guide to security for SMEs, reflecting the long-lasting changes to the world of work seen in 2020 Continue Reading
-
News
08 Oct 2020
Emotet rated September’s ‘most popular’ malware
The current resurgence of Emotet is attracting attention as governments issue new warnings and cyber criminals rush to exploit the chaotic US election Continue Reading
-
News
08 Oct 2020
Crown Prosecution Service suffers 1,600 data breaches in 12 months
CPS sees a spike in data security incidents, many of them serious enough to be reported to the Information Commissioner’s Office Continue Reading
-
News
07 Oct 2020
UK accounts for 45% of Europe’s card fraud as criminals target online transactions
Payment card fraudsters steal €1.5bn, with card-not-present attacks accounting for three-quarters of this sum Continue Reading
-
News
07 Oct 2020
ICO wraps up Cambridge Analytica investigation
Information Commissioner’s Office concludes its investigation into Cambridge Analytica, saying no additional evidence has come to light that would change its previous assessments Continue Reading
-
News
07 Oct 2020
Southeast Asia remains hotspot for cyber attacks
Geopolitics and Covid-19 have been fodder for cyber criminals to advance their motives in Southeast Asia in 2020 Continue Reading
-
News
06 Oct 2020
Ransomware attacks go through the roof
The volume of ransomware attacks has jumped 50% in the past three months, according to data produced at Check Point Continue Reading
-
News
06 Oct 2020
CISOs struggle to keep up with MITRE ATT&CK framework
Despite its proven benefits for security, the MITRE ATT&CK framework is proving difficult for many, according to a joint study from McAfee and UC Berkeley Continue Reading
-
News
02 Oct 2020
Honesty is the best policy: Forging a security culture in the NHS
Clinician and technologist Sam Shah helped set up NHSX in 2019. Now he’s helping advance digital transformation in healthcare from the outside, and a big part of that is addressing security in the sector Continue Reading
-
News
02 Oct 2020
Security pros face sanctions if they help ransomware victims pay
New advisory from the US government warns cyber insurance and incident response specialists that they could be skating on thin ice if they help ransomware victims pay their attackers off Continue Reading
-
News
01 Oct 2020
Judge to give verdict on Julian Assange’s extradition after Christmas
Judge Vanessa Baraitser said today that she would make a ruling in early January on whether WikiLeaks founder Julian Assange should be extradited to the US Continue Reading
-
News
01 Oct 2020
Blackbaud admits hackers stole banking details, passwords
Software firm paid off a ransomware gang, believed its hackers when they said they had destroyed the data, and has now discovered the cyber criminals accessed even more sensitive information than it thought Continue Reading
-
News
29 Sep 2020
Threat actors becoming vastly more sophisticated
Malicious actors have been busily honing their craft and cyber security incidents are up across the board as a result, according to a Microsoft report Continue Reading
-
News
29 Sep 2020
NCSC expands schools programme to north-east England and Northern Ireland
Following an initial roll-out in Gloucestershire and Wales, the NCSC’s CyberFirst Schools programme is being extended to north-east England and Northern Ireland Continue Reading
-
News
29 Sep 2020
Ryuk attack downs private health provider in major incident
Private healthcare provider UHS has been been hit by a major big game hunting cyber attack that infected its systems with the Ryuk ransomware Continue Reading
-
News
28 Sep 2020
Security now main driving force behind digital transformation
Organisations are urgently remodelling their core technology stack in the light of the Covid-19 pandemic, and this is pushing security to the top of the agenda Continue Reading
-
News
28 Sep 2020
Airbnb hosts’ account data exposed in internal leak
Data exposure within Airbnb’s system was the result of a technical issue but was swiftly fixed, says the firm Continue Reading
-
News
25 Sep 2020
Forensic expert questions US claims that Julian Assange conspired to crack military password
Forensic computer expert Patrick Eller told the Old Bailey that US allegations that WikiLeaks founder Julian Assange attempted to decrypt a password to help former soldier Chelsea Manning leak sensitive government documents anonymously do not fit with the evidence Continue Reading
-
News
24 Sep 2020
Government blasted over ‘reckless’ contact-tracing security
The Open Rights Group and Big Brother Watch accuse the government of endangering public health with a reckless attitude to contact-tracing data security Continue Reading
-
Feature
24 Sep 2020
Top five ways backup can protect against ransomware
Ransomware threatens to put your data beyond reach, so the best way to prepare is to have good-quality data you can restore from backup. We look at the key things to consider Continue Reading
-
News
24 Sep 2020
Australians want more control over privacy
Nearly nine in 10 Australians want more control and choice over the collection and use of their personal information amid declining trust in how organisations handle personal data, survey finds Continue Reading
-
News
23 Sep 2020
WikiLeaks founder Julian Assange has Asperger syndrome and depression, court hears
Julian Assange is on the autistic spectrum and has a history of depression that would put him at risk of suicide if he is extradited to a US prison, psychiatrists tell the court Continue Reading
-
News
23 Sep 2020
Video gamers barraged with cyber attacks
From credential stuffing to SQL injection and DDoS, video game producers and players are seeing massive volumes of cyber attacks Continue Reading
-
News
22 Sep 2020
Activision shoots down data breach claims
Gaming company denies there has been any data breach after up to 500,000 accounts appeared to have been compromised, but evidence mounts that credential stuffing attacks are to blame Continue Reading
-
News
18 Sep 2020
Outgoing NCSC CEO: Ransomware threat kept us up at night
Former NCSC CEO Ciaran Martin sheds some light on some of the biggest cyber threats currently facing the UK Continue Reading
-
News
18 Sep 2020
Congressman offered Julian Assange a ‘win-win’ deal that would help President Trump
Details have emerged of US congressman Dana Rohrabacher’s offer of a pardon to WikiLeaks founder Julian Assange in a ‘win-win deal that would benefit US President Donald Trump Continue Reading
-
News
18 Sep 2020
US government deplatforms TikTok and WeChat
The Commerce Department of the US government has banned new downloads of TikTok and WeChat in the US, and announced new prohibitions on doing business with them Continue Reading
-
News
18 Sep 2020
German authorities probe ransomware hospital death
Hackers failed to extort a ransom from University Hospital Düsseldorf, but indirectly caused the death of a patient Continue Reading
-
News
17 Sep 2020
Maze ransomware borrows Ragnar Locker tactics to sneak past defences
New research from the Sophos threat response team has found the Maze ransomware gang has adopted techniques pioneered by the cyber criminals behind Ragnar Locker Continue Reading
-
News
17 Sep 2020
Saudi Arabia sees cyber security boom as coronavirus bites
Saudi Arabian CIOs have been forced to increase their security posture as the Covid-19 pandemic transforms working methods Continue Reading
-
News
17 Sep 2020
Seven charged in connection with Chinese state-backed cyber attacks
Attacks by APT41, or Wicked Panda, targeted hundreds of organisations, including the UK government Continue Reading
-
News
16 Sep 2020
NCSC steps up ransomware support for schools and universities
New alert and updated guidance comes after several academic institutions were targeted in ransomware attacks Continue Reading
-
News
16 Sep 2020
Julian Assange held back 15,000 documents to prevent harm to US government
Investigative journalist John Goetz said today that WikiLeaks held back publication of thousands of documents that could harm individuals Continue Reading
-
News
16 Sep 2020
Retailers urged to get to grips with Magento as attacks spike
A huge spike in online retailers being hacked with Magecart credit card skimmers is being blamed on unsupported versions of Adobe Magento Continue Reading
-
News
15 Sep 2020
Data of every Welsh Covid-19 patient leaked online
Data on all 18,105 people in Wales who have received positive tests for the coronavirus was uploaded to a public-facing web server in error Continue Reading
-
E-Zine
15 Sep 2020
How data has helped in the fight against coronavirus
In this week’s Computer Weekly, we talk to the Office for National Statistics about the important role data plays in the battle against Covid-19. We also look at the speedy deployment of the Scottish contact-tracing app and report on a discussion about the UK government’s delayed response to its digital identity consultation. Read the issue now. Continue Reading
-
E-Zine
14 Sep 2020
CW Europe: IT expertise in banks’ boardrooms reduces risk, says European regulator
Banks have for many years been underpinned by vast IT operations, but in the age of digital banking the IT is now front, centre and back of operations. It is therefore surprising that there are relatively few IT professionals sitting on the boards of Europe’s big banks. Read the issue now. Continue Reading
-
News
11 Sep 2020
Travel industry websites are laughably insecure, claims Which?
The travel industry is failing to take the data security of its customers seriously, according to a Which? investigation Continue Reading
-
News
10 Sep 2020
Cyber security is next frontier for open source
Open security will facilitate the interoperability and capabilities of cyber security tools while alleviating vendor lock-in for enterprises, says IBM Continue Reading
-
News
10 Sep 2020
Datacentre firm Equinix investigating ransomware attack
A number of internal systems at cloud and datacentre firm Equinix have been affected by a ransomware attack Continue Reading
-
News
08 Sep 2020
Julian Assange warned against interrupting witnesses in extradition hearing
On the second day of his extradition hearing at the Old Bailey, judge informs the WikiLeaks founder he could be removed and potentially banned from court for interrupting witnesses Continue Reading
-
News
07 Sep 2020
Court rejects request to exclude ‘11th hour’ US evidence against WikiLeaks founder Julian Assange
Lawyers for Julian Assange say the US has introduced an 11th hour indictment against the WikiLeaks founder that provides additional grounds for his extradition Continue Reading
-
News
06 Sep 2020
Why predictive threat intelligence is key
Threat intelligence startup Cyfirma is using virtual agents to gather intelligence on potential cyber attacks that are being coordinated in underground forums before they occur Continue Reading
-
News
03 Sep 2020
Phishing scam targets Lloyds Bank customers
Bank customers warned of emails and SMS messages that direct them to a fraudulent site and then request account log-in details Continue Reading
-
News
03 Sep 2020
UK businesses hardest hit financially by fallout from cyber attacks, research shows
Latest edition of Hiscox’s annual cyber readiness report suggests UK businesses are among those worst affected by the financial fallout from cyber attacks Continue Reading
-
News
02 Sep 2020
Northumbria University suffers major disruption after cyber attack
Some exams cancelled as university appoints external specialists to investigate incident Continue Reading
-
News
28 Aug 2020
Machine learning wards off threats at TV studio Bunim Murray
TV studio behind reality hits including The Real World and Keeping Up With The Kardashians turned to Darktrace’s Antigena email protection service to keep its people safe from Covid-19 threats Continue Reading
-
News
28 Aug 2020
Benefit fraud: Underground trade in stolen identities revealed
A roaring underground trade in stolen identities is undermining the Universal Credit system and could potentially defraud it out of millions of pounds Continue Reading
-
News
26 Aug 2020
Avaddon ransomware operators having a go at double extortion
The operators of the Avaddon ransomware seem to be tooling up to leak the data of their victims in addition to holding it to ransom, Cofense researchers confirm Continue Reading
-
Opinion
26 Aug 2020
What are the latest GDPR security breach enforcement trends?
A cyber breach specialist from Fieldfisher runs the rule over the latest trends in cyber security, data protection and GDPR Continue Reading
-
News
25 Aug 2020
North Korea’s Lazarus targets cryptocurrency vertical
APT group behind the infamous WannaCry incident is targeting cryptocurrency operators, according to new research Continue Reading
-
News
21 Aug 2020
Australian regulator sues RI Advice for cyber security lapses
The Australian Securities and Investments Commission is suing RI Advice for cyber security breaches at the financial firm’s authorised representatives Continue Reading
-
News
20 Aug 2020
Social media data leak highlights murky world of data scraping
A data brokerage left its database of 235 million Instagram, TikTok and YouTube profiles exposed to anybody who cared to access it Continue Reading
-
News
19 Aug 2020
Marriott slapped with class action lawsuit over 2018 breach
Group action brings together millions of victims who stayed at the Starwood hotel chain over a four-year period Continue Reading
-
News
18 Aug 2020
Carnival cruise lines hit by ransomware, customer data stolen
Cruise ship operator is likely to be the victim of a major data breach after customer information is apparently stolen in a ransomware attack Continue Reading
-
News
14 Aug 2020
US decision to file new charges against Julian Assange ‘astonishing and potentially abusive’
Lawyer for WikiLeaks founder slams US decision to serve a second indictment at the 11th hour alleging that Assange conspired with hackers, as a potential abuse of process Continue Reading
-
News
14 Aug 2020
Russia’s Fancy Bear targets Linux environments with Drovorub malware
The Russian intelligence-linked Fancy Bear group is deploying a new malware called Drovorub against Linux environments as part of a cyber espionage operation, according to US warnings Continue Reading
-
News
13 Aug 2020
APAC consumers do not feel responsible for data security
Just one in four consumers believe they should protect their own data, underscoring the tightrope between security and convenience that organisations have been walking on Continue Reading
- 12 Aug 2020
-
News
12 Aug 2020
How Dharma ransomware became an effective services business
New research looks under the bonnet of a Dharma ransomware attack, with the ransomware's ease of use being particularly dangerous for small to medium-sized enterprises Continue Reading
-
News
12 Aug 2020
Security training body Sans Institute hit by data breach
Around 28,000 items of personally identifiable data were lost in a phishing attack on Sans, proving that even the professionals can be caught out Continue Reading
-
News
11 Aug 2020
NHS hit by thousands of malicious emails at height of pandemic
The NHS received nearly 30,000 malicious emails at the height of the Covid-19 pandemic in March and April Continue Reading
-
News
11 Aug 2020
Coronavirus: Phishing lures pivot to exploit vaccine hopes
Phishing emails are increasingly luring in victims with subject lines relating to the development of a vaccine for Covid-19 Continue Reading
-
News
10 Aug 2020
Retailer Monsoon allegedly exposing data via Pulse Connect server
A researcher has found a critically insecure Pulse Connect Secure VPN version belonging to UK retailer Monsoon Accessorize, but claims the firm is ignoring his disclosures Continue Reading
-
News
07 Aug 2020
Capital One hit with $80m fine by US regulators over 2019 data breach
US regulator imposes fine over data breach that affected 106 million Capital One customers in the US and Canada Continue Reading
-
News
06 Aug 2020
Canon said to be latest Maze ransomware victim
Canon may have had up to 10TB of its data exfiltrated by the Maze ransomware gang Continue Reading
-
News
05 Aug 2020
Second wave of Covid-19 cyber attacks locked in
More cyber attacks exploiting the pandemic seem likely, says Interpol Continue Reading
-
News
04 Aug 2020
Five signs you’re about to get hit with ransomware
A series of Sophos reports on the ransomware threat landscape shows how security professionals can sniff out a potential ransomware attack before it happens Continue Reading
-
News
04 Aug 2020
Liam Fox hack raises questions over government security
The hack of a former cabinet minister’s emails casts doubt over the effectiveness of safeguards and security training processes at the highest levels of the British government Continue Reading
-
News
02 Aug 2020
More data breaches from ransomware attacks in Australia
The number of data breaches caused by ransomware rose to 33 in the first half of 2020 from 13 in the previous six-month period, according to the latest report from the Office of the Australian Information Commissioner Continue Reading
-
News
31 Jul 2020
Labour Party is latest victim of Blackbaud ransomware attack
Widening Blackbaud data breach ensnares the Labour Party as the cloud software firm continues to duck questions about its behaviour Continue Reading
-
News
31 Jul 2020
Twitter confirms it was hit by targeted spearphishing attack
Investigation into 15 July 2020 hack of a number of high-profile accounts by cryptocurrency scammers has found evidence of a targeted spearphishing incident Continue Reading
-
News
31 Jul 2020
EU sanctions China and Russia over cyber attacks
The EU is applying restrictive measure to six individuals and three entities accused of conducting disruptive cyber attacks in Europe, including the Russian GRU Continue Reading
-
News
30 Jul 2020
List of Blackbaud breach victims tops 120
More than 120 education and third-sector organisations may have had their data compromised through the breach of Blackbaud’s cloud platform Continue Reading
-
News
29 Jul 2020
Majority of organisations at risk of cloud data exposure
Report casts doubt on the effectiveness of the shared responsibility model of cloud security Continue Reading
-
News
29 Jul 2020
Cosmetics firm Avon faces new cyber security incident
Technical information relating to Avon’s web and mobile sites was inadvertently left exposed on an unsecured Microsoft Azure server Continue Reading
-
News
28 Jul 2020
De Montfort, KCL, Newcastle universities join list of Blackbaud victims
Embattled cloud services provider now has big questions to answer over its handling of data belonging to UK universities and charities Continue Reading
-
News
28 Jul 2020
Garmin may have paid hackers ransom, reports suggest
Garmin’s services are coming back online, but the company remains tight-lipped about what exactly happened to it Continue Reading
-
News
28 Jul 2020
NCSC names national security expert Lindy Cameron as new CEO
New National Cyber Security Centre head joins from the Northern Ireland Office and has spent 20 years in government at home and abroad Continue Reading
-
News
26 Jul 2020
Australia issues new cloud computing guidelines
The new guidance, which comes after the expiry of the government’s cloud services certification programme, will help to bolster Australia’s cyber security resilience Continue Reading
-
News
24 Jul 2020
Garmin outage prompts ransomware attack speculation
Details are thin on the ground following a major service outage at Garmin, prompting industry speculation that the firm has fallen victim to a ransomware attack Continue Reading
-
News
24 Jul 2020
A question of trust: University and supplier on the hook for data breach
Data on students at the University of York was stolen in a ransomware attack on a supplier two months ago, and the response of both parties raises serious questions Continue Reading
-
News
22 Jul 2020
NCSC reveals scale of cyber attacks on UK sports industry
The UK’s sports industry is under near constant cyber attack, according to new statistics from the National Cyber Security Centre Continue Reading
-
News
22 Jul 2020
No let-up in cyber attacks as lockdown eases
Cyber attacks are up by one-third as the coalescence of cyber activity and nation state-linked threats around the pandemic bears fruit for bad actors Continue Reading
-
News
22 Jul 2020
US charges Chinese nationals with Covid-19 research hacking
The two hackers allegedly worked with the Chinese Ministry of State Security, targeting intellectual property and confidential business information Continue Reading
-
News
21 Jul 2020
Russia Report reveals long-running cyber warfare campaign against UK
Russia has been hacking the UK for years and the British government has also known about it for years, according to the Intelligence and Security Committee’s report Continue Reading
-
News
21 Jul 2020
Australian industry panel calls for ‘clear consequences’ of cyber attacks
A government-appointed panel recommends strong deterrence and other measures to be implemented in Australia’s next cyber security strategy Continue Reading
-
News
20 Jul 2020
Test and Trace programme unlawful, admits government
The Department of Health and Social Care failed in its legal obligation to complete a mandatory Data Protection Impact Assessment Continue Reading
-
Feature
20 Jul 2020
Automating IT security
IT security’s battle with the hacking community has always been a game of cat and mouse, but it’s becoming increasingly automated Continue Reading
