Data breach incident management and recovery
-
News
20 Nov 2024
Apple addresses two iPhone, Mac zero-days
Two zero-day vulnerabilities uncovered in Apple’s operating systems could have allowed for arbitrary code execution and cross-site scripting attacks Continue Reading
-
Feature
19 Nov 2024
Storage technology explained: Ransomware and storage and backup
We look at ransomware attacks, and the importance of good backup practice as well as immutable snapshots, air-gapping, network segmentation, AI anomaly detection and supplier warranties Continue Reading
-
News
21 Oct 2019
Sodinokibi emerging as a diverse, multi-vector threat to businesses
McAfee shares insight into the Sodinokibi ransomware campaign gleaned from its network of honeypots Continue Reading
-
News
17 Oct 2019
BEIS launches multimillion-pound security investment package
Government is making available more than £50m to support a range of new cyber security initiatives and collaborations, including the latest phase of its Digital Security by Design programme Continue Reading
-
News
17 Oct 2019
NHSX could transform NHS security capabilities
The health sector is increasingly confident that NHSX can deliver a streamlined, effective cyber security policy for the health service Continue Reading
-
News
17 Oct 2019
Security threat landscape becomes more organised and business-like
Approaches to securing the enterprise need to change in the face of a rapidly maturing threat landscape Continue Reading
-
News
16 Oct 2019
Pitney Bowes ‘considering options’ after malware attack
Mailing and shipping services firm in recovery mode after key systems were encrypted by a malware attack Continue Reading
-
Opinion
15 Oct 2019
Security Think Tank: Risk management must go beyond spreadsheets
How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision making? Continue Reading
-
News
14 Oct 2019
Researchers reveal the cyber campaign that built China's new airliner
CrowdStrike has published details of a coordinated campaign of cyber espionage and hacking, forced technology transfer and physical theft as China seeks to gain an advantage in the commercial aviation industry Continue Reading
-
Feature
10 Oct 2019
Data management strategies are evolving – so must enterprises
A growing number of data-driven initiatives, alongside heightened demand for security in governance, data management and compliance, has led to the rise of a more holistic approach – integrated risk management Continue Reading
-
Opinion
07 Oct 2019
Security Think Tank: Risk is unavoidable in digital transformation
How can security professionals help their organisations move from traditional governance, risk and compliance to integrated risk management that integrates risk activities from across an organisation to enable better strategic decision-making? Continue Reading
-
News
03 Oct 2019
IT contractor charged over cyber attack on property valuation firm
Australian police charge 49-year-old man with stealing and posting more than 170,000 data records belonging to ASX-listed Landmark White on the dark web Continue Reading
-
News
03 Oct 2019
LogRhythm touts unlimited data plan for SIEM systems
SIEM supplier introduces three-year, term-based pricing plan that lets enterprises ingest as much data as they want without breaking the bank Continue Reading
-
News
03 Oct 2019
Local authorities hit by 800 cyber attacks every hour
Local authorities and councils in the UK have reported being hit by more than 263 million cyber attacks in the first six months of this year Continue Reading
-
News
03 Oct 2019
New threat group behind Airbus cyber attacks, claim researchers
Context Information Security’s threat intel and response teams says it has evidence that the recent supply chain attacks on Airbus are the work of a newly identified group called Avivore Continue Reading
-
News
03 Oct 2019
Cyber war as big a threat as nuclear war, says ex-RSA head Coviello
Former RSA chairman Art Coviello has been speaking about the devastating potential of cyber weapons, and warned that humanity must learn from history in order to control them Continue Reading
-
News
01 Oct 2019
Singapore outlines initiatives to tackle OT and IoT security
The Cyber Security Agency of Singapore has developed a blueprint to secure operational technology systems in critical sectors, among other measures to secure cyber-physical systems and the internet of things Continue Reading
-
News
27 Sep 2019
Five million DoorDash customers’ details lost in data breach
Takeaway delivery service was breached in May 2019, resulting in the data of millions of users and delivery drivers being stolen Continue Reading
-
News
27 Sep 2019
GDPR compliance: Whose job is it and is it really possible?
Nobody seems to have a good handle on business GDPR compliance, how many businesses are compliant, or indeed what compliance really is, but according to security experts, it very much depends on who you talk to Continue Reading
-
News
26 Sep 2019
Attackers breached supplier systems to steal Airbus secrets
Airbus has been the subject of at least four major cyber attacks in the past 12 months, with contractors and suppliers targeted through their VPNs Continue Reading
-
News
26 Sep 2019
Overinvestment breeds overconfidence among security pros
CISOs have made an abundance of security investments in multiple suppliers, but this might not be the right approach Continue Reading
-
News
26 Sep 2019
Teen TalkTalk hacker accused of cryptocurrency fraud in US
Elliott Gunton, one of the teenage hackers who broke into TalkTalk’s systems in 2015, faces extradition to the US to face fraud charges Continue Reading
-
News
24 Sep 2019
Singapore payment card data compromised by JavaScript sniffers
Raw data of thousands of payment cards issued by Singapore banks stolen by the online equivalent of a traditional card sniffer Continue Reading
-
News
24 Sep 2019
Enterprises exposed to data loss by cloud configuration errors
Only 1% of misconfigured cloud environments are spotted and attackers are capitalising on this, claims McAfee Continue Reading
-
News
24 Sep 2019
Google pushes back on scale of YouTube phishing threat
Millions of YouTubers may be at risk after some high-profile influencers reported their accounts were compromised in an apparent phishing attack, but the platform’s owner, Google, is not so sure Continue Reading
-
News
18 Sep 2019
WannaCry variants accidentally protecting against WannaCry
New variants of the infamous WannaCry malware continue to emerge, and many of them have accidentally turned themselves into a somewhat effective, although ill-advised, vaccine against infection Continue Reading
-
News
18 Sep 2019
Emotet phishing botnet returns from summer vacation
The Emotet phishing trojan-turned-botnet is back in action after a three-and-a-half month break, say threat researchers Continue Reading
-
News
17 Sep 2019
Ecuador citizens’ data breach holds lessons for enterprises
What caused the mass breach of Ecuadorian citizens’ data, and what can businesses learn from it? Continue Reading
-
News
16 Sep 2019
Ensign InfoSecurity opens global headquarters in Singapore
The Singapore-based cyber security firm’s new headquarters will also be home to a new security operations centre that will be supported by Singapore-centric threat intelligence Continue Reading
-
News
13 Sep 2019
When AIs go to war: Autonomous cyber weapons ‘inevitable’
CISOs must start thinking about how to engage with intelligent, adaptive, non-human attackers, says Trend Micro’s Rik Ferguson Continue Reading
-
News
12 Sep 2019
UN agency Unicef praised for response to accidental data leak
The UN’s children’s agency has disclosed an inadvertent leak of personal data belonging to users of its online learning platform Agora Continue Reading
-
News
12 Sep 2019
Mirai descendants dominate IoT threat environment
Attacks leveraging compromised IoT devices are growing in size, scale and frequency, report security experts at F-Secure and Trend Micro, with Mirai-related botnets a major source of trouble Continue Reading
-
News
11 Sep 2019
Equifax and Heartbleed are most-Googled cyber security terms
Analysis of 15 years’ worth of Google search data has revealed some insight into what cyber security trends are capturing the imagination Continue Reading
-
News
11 Sep 2019
GDPR non-compliance worse than feared
Over half of UK businesses do not yet appear to be fully GDPR-compliant, and many have de-prioritised their compliance efforts Continue Reading
-
E-Zine
10 Sep 2019
A tech boost for social care
In this week’s Computer Weekly, we explore how local authorities across the UK have been looking at assistive technologies, ranging from collaborative robots to voice assistants, to support delivery of adult social care services. We also look into the ramifications of HMRC targeting 1,500 GlaxoSmithKline IT contractors. Read the issue now. Continue Reading
-
News
09 Sep 2019
Social engineering a factor in virtually all cyber attacks, report claims
Almost every single cyber attack will, at some stage, require a human to be tricked into doing something, according to research by Proofpoint Continue Reading
-
News
06 Sep 2019
Australia government to chart 2020 cyber security strategy
Australia’s home affairs ministry has released a discussion paper to seek views from all segments of society on the country’s next cyber security blueprint Continue Reading
-
News
05 Sep 2019
Singapore’s SecureAge eyes US market
The Singapore-based supplier of encryption and anti-malware tools has set up a new office in Greater Washington, DC as the next logical step in its global expansion plan Continue Reading
-
News
29 Aug 2019
Finland’s security agencies collaborate after cyber attacks
National Bureau of Investigations and National Cyber Security Centre aim to increase expertise and capability to defend Finland’s critical IT infrastructure Continue Reading
-
News
22 Aug 2019
A helping hand from the Nordics in the eye of the GDPR storm
Nordic IT companies are well suited to supporting enterprises in their data protection projects, even though openness is more natural to them Continue Reading
-
News
21 Aug 2019
Box aims to shield businesses from data loss threat
Box has introduced an add-in to its cloud-based collaboration platform to lock down and monitor access to files and folders Continue Reading
-
News
21 Aug 2019
Silence APT group eyes APAC banks
Russian-speaking advanced persistent threat group has set its sights on banks in the region, customising its arsenal for targeted attacks Continue Reading
-
News
19 Aug 2019
How EDR is moving beyond the endpoint
An emerging breed of detection and response offerings is going beyond endpoints to collect and decipher telemetry data from across the enterprise Continue Reading
-
News
14 Aug 2019
DCMS funding aims to increase diversity in cyber sector
A funding round has been announced as part of the Cyber Skills Immediate Impact Fund (CSIIF) with aims of encouraging more diverse talent into the UK’s cyber security sector Continue Reading
-
News
14 Aug 2019
GDPR faces growing pains across Europe
The General Data Protection Regulation is over a year old now, but it faces challenges across Europe where compliance has taken place at different speeds Continue Reading
-
News
14 Aug 2019
Digital domain identified as major security threat by Norway’s intelligence service
Norway's intelligence services has revealed the extent of the threat posed to the country by cyber attacks Continue Reading
-
E-Zine
08 Aug 2019
CW Benelux: Dutch academic hunts the personality behind the hacker
Rutger Leukfeldt, senior researcher on cyber crime at the Netherlands Institute for the Study of Crime and Law Enforcement, is working to help organisations understand the personalities behind criminal hackers. Also in this issue, read about research that shows over half of Dutch organisations admit their knowledge of blockchain is substandard. We also feature an article about ABN Amro’s work with researchers to explore how quantum computing can be used to secure online banking. Continue Reading
-
News
07 Aug 2019
Southeast Asian ‘white hat’ urges more countries to sign the Paris Call
A renowned ethical hacker in Malaysia has called for more nations to support the Paris Call for Trust and Security in Cyberspace to counter the threat of cyber warfare Continue Reading
-
Feature
05 Aug 2019
Enhancing business purpose with privacy compliance
Computer Weekly looks at the importance of building on basic GDPR compliance and making privacy a key foundation of business culture Continue Reading
-
News
01 Aug 2019
Leaked Sephora databases peddled on dark web
Cyber security firm finds two databases likely to be related to the Sephora data breach that affected online customers in Southeast Asia, Australia and New Zealand Continue Reading
-
News
30 Jul 2019
Australian firms grappling with “train-smash” of security legislation
While businesses should avoid going into checkbox compliance mode, the constant flux of regulations on cyber security and privacy has led to calls for more legislative coherence from regulators Continue Reading
-
Feature
29 Jul 2019
Think beyond tick-box compliance
A year on since GDPR, many organisations are yet to stop fretting over fines and focus instead on business value Continue Reading
-
News
29 Jul 2019
Cyber kill chain is outdated, says Carbon Black
The chief cyber security officer of Carbon Black calls for a new cognitive paradigm to fend off cyber adversaries that are now attacking in cycles Continue Reading
-
News
25 Jul 2019
F-Secure talks up threat-hunting to stay ahead of cyber attacks in APAC
Cyber security firm calls for organisations to double up on threat-hunting now that nearly all attack and reconnaissance traffic is automated Continue Reading
-
Opinion
25 Jul 2019
Why investment is needed in the cyber insurance market
The number of cyber insurance policies on offer is beginning to grow, but insurers still have a long way to go to develop policies that address market concerns Continue Reading
-
News
24 Jul 2019
Zuckerberg responsible for Facebook privacy compliance after $5bn FTC fine
Facebook pays record fine after breaching users’ privacy, following settlements with Federal Trade Commission and Securities and Exchange Commission Continue Reading
-
News
23 Jul 2019
Microsoft talks up benefits and pitfalls of machine learning in security
Software giant Microsoft uses machine learning models to detect emerging threats while keeping an eye on potential bias in security data points that could derail its analysis Continue Reading
-
Podcast
22 Jul 2019
Analytics and GDPR compliance: How to achieve it
Mathieu Gorge, CEO of Vigitrust, looks at technologies such as pseudonymisation that can help organisations stay GDPR-compliant while gaining value from analytics on customer data Continue Reading
-
News
22 Jul 2019
US fines Equifax $700m over 2017 breach
Global settlement with US authorities follows systems breach that saw more than 140 million customer records stolen Continue Reading
-
18 Jul 2019
AI security tech is making waves in incident response
Experts weigh in on the latest smart cybersecurity tools -- how they work, the implications for your IT security team and whether the investment is worth the expense. Continue Reading
-
E-Zine
18 Jul 2019
CW ASEAN: Trend Watch – Security
Artificial intelligence tools are becoming a vital part of the security arsenal for organizations and cyber criminals alike. In this handbook, Computer Weekly looks at how ASEAN firms are using AI to combat cyber threats and experts discuss the latest smart cyber security tools. Continue Reading
-
18 Jul 2019
Some Australian firms still in the dark about cyber security
A report suggesting Australian firms are experiencing fewer cyber incidents has left its co-author perplexed with the findings. Continue Reading
-
E-Zine
18 Jul 2019
CW ANZ: Trend Watch – Security
With regulations pushing data protection up the business agenda, we look at how Australia’s Notifiable Data Breaches scheme has been received and consider why a survey that found Australian firms are experiencing fewer cyber breach incidents appears to conflict with anecdotal evidence that suggests the opposite. Continue Reading
-
News
18 Jul 2019
Singapore shores up data protection capabilities
The Singapore government has developed a skills framework for data protection officers and is looking to certify organisations under a regional cross-border privacy rules system Continue Reading
-
Podcast
17 Jul 2019
Podcast: The Computer Weekly Downtime Upload – Episode 24
In this week’s episode of the Computer Weekly Downtime Upload podcast, Brian McKenna, Caroline Donnelly and Clare McDonald talk about using Alexa to search for medical advice, how a good cup of tea can solve most problems and whether more should be done to provide childcare at tech events Continue Reading
-
Podcast
16 Jul 2019
BA/Marriott GDPR fines: What they were for and how to avoid them
We talk to Mathieu Gorge, CEO of Vigitrust, about the BA and Marriott GDPR fines and what organisations can do to ensure they achieve compliance with GDPR and similar regulations Continue Reading
-
News
15 Jul 2019
UK boards ignoring £30bn cyber risk
Despite the danger posed by cyber attacks to mid-sized companies, boards are not prepared to manage the risk and firms are over-confident in their cyber capabilities, report finds Continue Reading
-
News
05 Jul 2019
St John Ambulance praised for response to ransomware attack
Charity’s response to ransomware attack demonstrates that it is possible to ensure minimal disruption if properly prepared Continue Reading
-
News
04 Jul 2019
APAC experts weigh in on cyber security trends
The onslaught of cyber attacks being reported each day has been a wake-up call, but experts say businesses need to be mindful of the limitations of certain security measures Continue Reading
-
News
02 Jul 2019
Sweden’s Protective Security Act targets cyber risks
IT suppliers must comply with tighter cyber security requirements, but are being offered help from government agencies Continue Reading
-
Feature
28 Jun 2019
Comparing EDR tools: Cybereason vs. CrowdStrike vs. Carbon Black
Learn how tools from leading EDR vendors Cybereason, CrowdStrike and Carbon Black compare when it comes to helping security teams fight endpoint threats and respond to incidents. Continue Reading
-
Tip
28 Jun 2019
How to retool incident response best practices for the digital age
As companies become more cloud- and mobile-centric, they need to reassess their incident response best practices and automate as much as possible. Continue Reading
-
Tip
28 Jun 2019
How to prevent cybersecurity attacks using this 4-part strategy
It can be daunting to defend an enterprise against cyberattacks, but these four defensive moves can help fortify and repel whatever comes your way. Continue Reading
-
News
27 Jun 2019
Dutch bank and researchers begin defence against quantum computing’s dark side
ABN Amro is working with QuTech to ensure that banks can protect data against quantum computers in the future Continue Reading
-
News
26 Jun 2019
Singapore government forms digital industry office
New office will help local tech firms grow their regional footprint and build new capabilities in order to thrive in APAC’s booming digital economy Continue Reading
-
News
20 Jun 2019
Online porn age-verification checks delayed for six months
Changes to force UK internet users to prove their age to access adult content are postponed for a third time because of failure to notify the European Commission of key policy details Continue Reading
-
News
18 Jun 2019
Singapore faced fewer cyber threats in 2018
Despite the fall in the number of common cyber threats last year, Singapore will continue to face advanced persistent threats, CSA warns Continue Reading
-
News
07 Jun 2019
How ASEAN firms are using AI to combat cyber threats
Artificial intelligence tools are becoming a vital part of the security arsenal for organisations and cyber criminals alike Continue Reading
-
Opinion
05 Jun 2019
Making threat intelligence greater than the sum of its parts
Organisations can become more secure if they join up their varied sources of intelligence about business threats, and avoid losing valuable information within individual silos Continue Reading
-
News
04 Jun 2019
Businesses investing blindly in cyber security
Businesses need to find out what their real cyber risks and weaknesses are before investing in new technologies, says ethical hacker Continue Reading
-
News
03 Jun 2019
Australia’s Notifiable Data Breaches scheme drives compliance but issues remain
Australia’s data breach notification rules have largely been complied with, but some quarters are calling for more clarity on the reporting threshold and tougher action against errant firms Continue Reading
-
News
31 May 2019
Facebook loses bid to halt European court decision on EU-US data sharing
Irish Supreme Court dismisses attempt by Facebook to prevent the European Court of Justice considering the validity of US-EU data transfers, after Austrian lawyer Max Schrems argued that they put the privacy of EU citizens at risk Continue Reading
-
News
28 May 2019
Perfect storm for data science in security
After nearly 20 years of research, the perfect storm of computing technologies is finally enabling data science to realise its potential to make valuable contributions to improving cyber security capabilities Continue Reading
-
News
22 May 2019
Singapore proposes data portability provisions
The Personal Data Protection Commission is seeking public feedback on proposed provisions that will let consumers move their personal data across organisations Continue Reading
-
News
16 May 2019
Norwegian industry and state must combine to counter cyber threats
Norway has been targeted by two large ransomware attacks in recent months – and public and private organisations must react in a coordinated way Continue Reading
-
Opinion
16 May 2019
Security Think Tank: Proper segregation is more important than ever
What are the security benefits and challenges of segregating IT environments, and how best are these challenges overcome? Continue Reading
-
News
14 May 2019
APAC firms on the back foot in cyber security
Most Asia-Pacific organisations did not consider cyber security until after their digital transformation projects had begun, new survey finds Continue Reading
-
News
13 May 2019
National Crime Agency calls for additional funding to tackle 21st century crime
Organised criminal gangs represent the biggest cyber threat to the UK, and law enforcement has identified rogue servers hosted in the UK Continue Reading
-
Opinion
10 May 2019
Security Think Tank: Surviving the existential cyber punch, part 3
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
10 May 2019
Dutch businesses not yet implementing NIS Directive
Little urgency to comply with the Network and Information Systems Security Act, which seeks to protect the Netherlands’ vital infrastructure and digital services from cyber attack Continue Reading
-
News
08 May 2019
Some Australian firms still in the dark about cyber security
A report suggesting Australian firms are experiencing fewer cyber incidents has left its co-author perplexed with the findings Continue Reading
-
News
07 May 2019
Privileged access management moving to cloud
Survey shows nearly half of information security professionals are either planning to move privileged access management to the cloud or are exploring the possibility Continue Reading
-
07 May 2019
Top lessons learned from cyber attacks
Cyber security experts weigh in on lessons learned from cyber attack experiences, underlining that recovery capability is as important as defence Continue Reading
-
News
06 May 2019
AWS to power Australia’s 2021 online census
PwC Australia, one of two firms appointed by the government to run the next Census, will build and operate an online form and a website on Amazon Web Services Continue Reading
-
News
29 Apr 2019
Australians lost half a billion dollars to scams in 2018
Most of the losses went to investment scams as tricksters found innovative ways to dupe victims into parting with their money Continue Reading
-
Opinion
26 Apr 2019
Security Think Tank: Surviving the existential cyber punch part 2
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
26 Apr 2019
Top lessons from cyber attacks
Cyber security experts weigh in on lessons learned from cyber attack experiences, underlining that recovery capability is as important as defence Continue Reading
-
News
26 Apr 2019
GDPR cases drive bigger budgets for Nordic regulators
High-profile General Data Protection Regulation cases in Finland and Sweden have increased the workload for regulators, which are to receive an increase in funding Continue Reading
-
News
17 Apr 2019
Wipro admits to potential breach to employee accounts by phishing attack
Indian IT services company Wipro is investigating a phishing attack, which hit some staff email accounts and launched attacks on customer environments Continue Reading
-
News
15 Apr 2019
How Palo Alto Networks fends off its cyber adversaries
Palo Alto Networks CIO Naveen Zutshi talks up the company’s approach in keeping threat actors at bay Continue Reading
-
News
15 Apr 2019
Facebook takes extraordinary legal steps to contain document leak
Facebook targets journalists and news organisations for computer searches Continue Reading
-
News
15 Apr 2019
NCSC seeks new breed of cyber security startups
The UK intelligence community is seeking to promote a new breed of technology startup to help detect, respond to and facilitate rapid recoveries from cyber attacks on the UK Continue Reading