Data breach incident management and recovery

News 20 Nov 2024
Apple addresses two iPhone, Mac zero-days

Two zero-day vulnerabilities uncovered in Apple’s operating systems could have allowed for arbitrary code execution and cross-site scripting attacks Continue Reading
By
- Alex Scroxton, Security Editor
Feature 19 Nov 2024
Storage technology explained: Ransomware and storage and backup

We look at ransomware attacks, and the importance of good backup practice as well as immutable snapshots, air-gapping, network segmentation, AI anomaly detection and supplier warranties Continue Reading
By
- Antony Adshead, Storage Editor

News 05 Sep 2013

Windows Server 2012 Security from End to Edge and Beyond

This extract from the book Windows Server 2012 Security from End to Edge and Beyond shows you how to plan your platform security requirements and gives you the critical questions to ask. Continue Reading
News 05 Sep 2013

Printing: a false sense of security?

Louella Fernandes and Bob Tarzey show how secure printing technology can provide authentication, authorisation and accounting capabilities, helping businesses improve document security and meet compliance regulations. Continue Reading
News 03 Sep 2013
Disinfecting PCs false security, says security expert

Many companies proud of their ability to identify and clean malware infected machines are missing a trick, says veteran security expert Continue Reading
By
- Warwick Ashford, Senior analyst
Photo Story 29 Aug 2013
Rapid7 United 2013 Security Summit

View the pics from Rapid7’s recent security summit in Boston. Continue Reading
By
- Kayleigh Bateman, Computer Weekly
News 23 Aug 2013
Box.com forges new cloud security model

Service providers and consumers need to move to a security model better suited to the cloud computing, says Box.com Continue Reading
By
- Warwick Ashford, Senior analyst
News 21 Aug 2013
Case study: Keeping it private at Beth Israel Deaconess after the Boston Marathon Attacks

Doctor and healthcare CIO shares his lessons learned from the Boston Marathon attacks and how to protect patient data Continue Reading
By
- Kayleigh Bateman, Computer Weekly
News 20 Aug 2013

Targeted attacks and how to defend against them

Analysts Bob Tarzey and Louella Fernandes assess the scale and real impact of targeted attacks the measures being taken to defend against them. Continue Reading
Feature 29 Jul 2013
An introduction to cyber liability insurance cover

Cyber liability insurance cover has been around for 10 years, but most security professionals seem to have not heard of it or know that it exists Continue Reading
By
- Sarb Sembhi
News 19 Jul 2013

IT security case studies

Four critical IT security case-studies selected from the winners of Computer Weekly's European User Awards for security Continue Reading
News 18 Jul 2013

Needle in a Datastack: The rise of big security data

This research from McAfee investigates how well organisations are positioned to address the challenges of managing security in a world of ever increasing amounts and types of data. Continue Reading
News 17 Jul 2013

2013 Cost of Data Breach Study: UK

The cost of data breaches has risen for UK organisations over the past year, the Ponemon Institute reveals. Continue Reading
News 17 Jul 2013

Security Think Tank Download: Bring your own device

Downloadable guide. How to make your company secure when you introduce BYOD. Continue Reading
News 17 Jul 2013

IT Security Case Studies

Warwick Ashford presents 4 essential IT security case-studies selected from the winners of Computer Weekly's European User Awards. Continue Reading
News 10 Jun 2013

2013 Cost of Data Breach Study: UK

The cost of data breaches has risen for UK organisations over the past year, but companies that appoint chief information security officers with enterprise-wide responsibilities can reduce their costs, this report from the Ponemon Institute reveals Continue Reading
News 07 Jun 2013
ICO fines Glasgow City Council for loss of unencrypted laptops

Glasgow City Council has been fined £150,000 for losing two laptops which held personal details of more than 20,000 people Continue Reading
By
- Caroline Baldwin, Freelance editor and journalist
News 05 Jun 2013
Human error causes most data breaches, Ponemon study finds

Human errors and system problems caused two-thirds of data breaches in 2012, according to a study from Symantec and the Ponemon Institute Continue Reading
By
- Warwick Ashford, Senior analyst
News 03 Jun 2013

Information Governance

This research from AIIM looks at the risk profile around electronic records, the keep-all versus delete-all options, e-discovery, and the implications of social, mobile and cloud on risk management policies. Continue Reading
News 13 May 2013
Cyber criminals hack Washington court system

Hackers gain access to the personal data of 160,000 US citizens after compromising Washington State court service servers Continue Reading
By
- Karl Flinders, Chief reporter and senior editor EMEA
News 03 May 2013
Computer Weekly European User Awards for Security: Winners

The winners are in for the Computer Weekly European User Awards for Security. See who made the top spots. Continue Reading
By
- Kayleigh Bateman, Computer Weekly
News 01 May 2013
What’s to be done about data breach discovery?

The time from first contact by cyber attackers to the victim learning of it is still measured in months and years, not hours and days Continue Reading
By
- Warwick Ashford, Senior analyst
News 01 May 2013

CW buyer's guide: context-aware security

This 11-page Computer Weekly buyer's guide looks at how organisations should approach context-aware security technologies and what business benefits they can deliver. Continue Reading
News 01 May 2013

Information Security Breaches Survey 2013

Security breaches cost large businesses an average of £850,000, the 2013 Information Security Breaches Survey reveals. Continue Reading
News 01 May 2013

CW Special Report on CSC

This 16-page report from Computer Weekly analyses the challenges facing CSC, its financial performance, the services it offers, its place in the IT market and its future strategy. Continue Reading
News 29 Apr 2013

Another online firm hit by data breach

Online deals service LivingSocial is the latest company to report a breach of its computer systems that may mean attackers accessed customer details Continue Reading
News 25 Apr 2013
Spam SMS messages drop following ICO penalty

The number of spam SMS messages has significantly reduced since government regulator ICO issued £440,000 fines last year Continue Reading
By
- Caroline Baldwin, Freelance editor and journalist
News 04 Apr 2013

Effective print security for SMBs

Analysts Louella Fernandes and Clive Longbottom discuss how integrated print management provides SMBs with a simple and scalable approach for print security. Continue Reading
News 27 Mar 2013
UK government sets up cyber security fusion cell

A cyber security “fusion cell” for cross-sector threat data sharing aims to put government, industry and information security analysts side-by-side Continue Reading
By
- Warwick Ashford, Senior analyst
News 25 Mar 2013

How to configure Mac OS X Server

This step by step guide shows you how to configure Max OS X Server. Continue Reading
News 12 Mar 2013

Information security trends

This report from CompTIA, based on original research, assesses the current trends in information security. Continue Reading
News 11 Mar 2013
Territorial Army on the hunt for information assurance professionals

TA to recruit IT security professionals into the Royal Signals to strengthen cyber operations Continue Reading
By
- Kayleigh Bateman, Computer Weekly
News 06 Mar 2013
What is RSA's build, buy, partner strategy?

Computer Weekly takes a closer look at RSA's build, buy, partner strategy Continue Reading
By
- Warwick Ashford, Senior analyst
E-Zine 05 Mar 2013

The security risk sweeping Europe

Never have we been so open about the information we share online, without so little concern for our privacy. Social media can be a threat to a company, not just to what information an employee chooses to disclose, but because social media sites are prime targets for cybercrime. In this issue of CW Europe read how the increase in social media usage has created new privacy concerns for businesses. Continue Reading
News 18 Feb 2013

The Demise in Effectiveness of Signature and Heuristic Based Antivirus

Anti-virus technology is failing to protect organisations from malicious attacks. Security professionals should look at alternative strategies, the NNC group argues in this report. Continue Reading
News 06 Feb 2013
Twitter strengthens login security after hacker attack

Days after a hacking attack, it has emerged that Twitter plans to strengthen its login security with two-factor authentication Continue Reading
By
- Warwick Ashford, Senior analyst
News 04 Feb 2013
Twitter resets a quarter of a million accounts after hacker attack

Twitter has reset the passwords of 250,000 accounts after detecting and shutting down a hacker attack last week. Continue Reading
By
- Warwick Ashford, Senior analyst
Photo Story 28 Jan 2013
IT Security Purchasing Intentions 2013 - Europe

TechTarget surveyed 250+ IT pros about security media purchasing in Europe. Continue Reading
By
- Warwick Ashford, Senior analyst
News 24 Jan 2013

ICO hits Sony with £250,000 data breach penalty

The Information Commissioner’s office (ICO) has fined Sony Computer Entertainment Europe £250,000 for breaching the Data Protection Act Continue Reading
Feature 12 Dec 2012
How to preserve forensic evidence in the golden hour after a breach

There is a golden hour at the outset where a clear head and good planning can make or break any subsequent forensic investigation Continue Reading
By
- Martin Roots, NIIP
News 03 Dec 2012

IT Security Purchasing Intentions 2013

This in-depth research from Computer Weekly and TechTarget reveals the IT security spending priorities of businesses in the UK and Europe. Continue Reading
News 16 Nov 2012
Nasa to encrypt data after latest breach

Nasa is to encrypt all its mobile computers after the loss of a laptop containing personal information about more than 10,000 staff Continue Reading
By
- Warwick Ashford, Senior analyst
News 13 Nov 2012
Many UK firms underestimate cost of data breaches, study finds

Many UK organisations are still failing to understand the implications and costs of data breaches, a study has revealed Continue Reading
By
- Warwick Ashford, Senior analyst
News 13 Nov 2012

Secure your data – protect your business

This guide for C-level executives explains the risks faced by businesses and the practical solutions they can take to secure their data. Continue Reading
News 13 Nov 2012

The Global State of Information Security Survey 2013: Key Findings

This global study examines the state of cyber-security and the impact of cyber crime and offers advice to businesses on reducing the risks. Continue Reading
News 02 Nov 2012
Apple iOS 6.0.1 update fixes four security holes

iOS platform gets an update to 6.0.1 to fix security and stability problems. WebKit holes and kernel faults list among Apple’s list of patched bugs. Continue Reading
By
- SearchSecurity.in Staff
News 25 Oct 2012
ICO hits Stoke-on-Trent City Council with £120,000 fine

Stoke City Council has breached the Data Protection Act, for the second time in two years, after details of a child protection legal case were emailed to the wrong person. Continue Reading
By
- Jennifer Scott, TechTarget
News 24 Oct 2012

CIO interview: Gerry Pennell, CIO, London 2012 Olympic Games

As the job of a lifetime nears its end, London 2012 CIO Gerry Pennell talks exclusively to Computer Weekly about his Olympic experience Continue Reading
News 22 Oct 2012
Cyber attacks launched at London 2012 Olympic Games every day

The IT supporting the London 2012 Olympics was hit by cyber attacks every day during the Games, says London 2012 CIO Gerry Pennell Continue Reading
By
- Bryan Glick, Editor in chief
News 18 Oct 2012

Google offers Street View of datacentres

Google offers Street View of its datacentres and a virtual tour of how users' data is stored, with an emphasis on security practices Continue Reading
News 17 Oct 2012
McKinnon's mum gives tearful thanks after government halts US extradition

The mother of Gary McKinnon thanks those who helped their 10-year campaign against a US extradition order for hacking federal computers Continue Reading
By
- Mark Ballard
News 16 Oct 2012
Theresa May: Hacker Gary McKinnon to stay in UK

Hacker Gary McKinnon will stay in UK, home secretary Theresa May has told MPs Continue Reading
By
- Cliff Saran, Managing Editor
News 16 Oct 2012
Organisations need alternative data protection as security models fail

Organisations' security models are failing - so could it be time to adopt an intelligence-led approach to data protection and fighting cyber crime? Continue Reading
By
- Warwick Ashford, Senior analyst
News 11 Oct 2012
RSA Europe: Thousands of unprotected virtual servers exposed to the web

Organisations are failing to protect data in virtual environments, says Jason Hart, vice-president cloud solutions, SafeNet Continue Reading
By
- Warwick Ashford, Senior analyst
News 05 Oct 2012
Security firm warns against Samsung Galaxy Tab for enterprise use

Security specialist Context Information Security says vulnerabilities in the Samsung Galaxy Tab make it unsuitable for use in the enterprise Continue Reading
By
- Caroline Baldwin, Freelance editor and journalist
News 02 Oct 2012
HMRC deploys Becrypt off-the-shelf encryption

HMRC will use Becrypt Disk protect, which has recently been certified under the government’s Commercial Product Assurance (CPA) Scheme. Continue Reading
By
- Cliff Saran, Managing Editor
News 01 Oct 2012

Data Protection Masterclass: New EU Data Protection Regulation

Law firm, Morrison & Foerster, examines the impact of new EU Data Protection legislation on buinsesses. Continue Reading
News 25 Sep 2012
BYOD: IT must tackle printer security

With more staff bringing their own devices to work, IT needs to rethink its printing and scanning policies Continue Reading
By
- Cliff Saran, Managing Editor
News 18 Sep 2012

CW Buyer's Guide: Data Security

This in-depth buyer's guide offers advice to CISOs on keeping up with security best practice as new EU data protection rules come into force Continue Reading
Tip 17 May 2012
Maltego tutorial - Part 1: Information gathering

Maltego is a powerful OSINT information gathering tool. Our Maltego tutorial teaches you how to use Maltego for personal reconnaissance of a target. Continue Reading
By
- Karthik Poojary, Amazon
News 03 May 2012
Microsoft to fix 23 vulnerabilities in May 2012 Patch Tuesday

Microsoft said it plans to address flaws in Windows, Office, Silverlight and the .NET Framework. Continue Reading
By
- SearchSecurity.com Staff
News 03 May 2012
SOCA takes its website offline in DDoS response

Just days after SOCA shut down carder sites, the agency was the victim of a DDoS attack, leading SOCA to takes its website offline. Continue Reading
By
- Jane Wright, TechTarget
News 27 Apr 2012
SOCA shuts down network of CVV sellers' carder sites

The Serious Organised Crime Agency shut down 36 CVV sellers who were selling stolen credit card and banking credentials to buyers around the world. Continue Reading
By
- Ron Condon
Tip 02 Apr 2012
Information security intelligence demands network traffic visibility

Use the network and host data at your disposal to create business-focused information security intelligence policies and strategies. Continue Reading
By
- Aaron Turner, Contributor
News 30 Mar 2012
SIEM deployment case study shows patience is required

Williams Lea’s SIEM is already helping reduce manual log reviews. But there’s still a lot of work to be done before the SIEM can be fully deployed. Continue Reading
By
- Ron Condon
News 09 Mar 2012
Apple iOS 5.1 patches 81 vulnerabilities

Alongside its ‘new iPad’ release, Apple Inc. releases iOS 5.1, the latest version of its mobile computing platform with fixes for 81 security holes. Continue Reading
By
- SearchSecurity.in Staff
News 08 Feb 2012
Web application vulnerability statistics show security losing ground

New Web application vulnerability statistics show the number of vulnerabilities is rising, despite the use of Web application development frameworks. Continue Reading
By
- Ron Condon
Tutorial 04 Jan 2012
IT in Europe, Security Edition: Password security standards and trends

Passwords have long been a security problem. This IT in Europe: Security Edition looks at password trends and alternative forms of authentication. Continue Reading
By
- SearchSecurity.co.UK Staff
News 29 Dec 2011
Emerging 2012 security trends demand information security policy changes

2012 security trends involving cookies, fines, devices and threats will demand more skills -- and a little finesse -- from security professionals. Continue Reading
By
- Ron Condon
Tutorial 12 Oct 2011
The Metasploit Framework Tutorial PDF compendium: Your ready reckoner

Get our Metasploit Framework tutorial installments in one place, with the aid of this Metasploit tutorial PDF collection. Continue Reading
By
- SearchSecurity.in Staff
News 04 Oct 2011
Cisco patches IOS in major rollout, releases 10 security advisories

19 bugs and 10 security advisories released to address flaws in Cisco’s IOS network OS, Unified Communication Manager and Series 10000 routers. Continue Reading
By
- SearchSecurity.in Staff
News 05 Aug 2011
Microsoft slots 22 patches for August Patch Tuesday

Windows, IE, Visio, .Net, Visual Studio and Report Viewer to get security updates; updated version of Windows Malicious Software Removal Tool on charts. Continue Reading
By
- SearchSecurity.in Staff
News 04 Aug 2011
Missing USB drive, found in pub, contained unencrypted data

The ICO says two housing groups must improve data security after a contractor’s missing USB drive, containing unencrypted data, was found in a pub. Continue Reading
By
- Ron Condon
News 21 Jul 2011
Securitytube.net releases WLAN security megaprimer

The Hacker News (THN) has reported that the latest SecurityTube.net release includes a 4.2Gb DVD containing over 40+ HD quality videos of their WLAN Security Megaprimer. Continue Reading
By
- Stephen Gillies, editor
News 05 Jul 2011
ICO issues warning over NHS Data Protection Act breaches

Following five more NHS Data Protection Act violations, the Information Commissioner’s Office will redouble efforts to help NHS improve security. Continue Reading
By
- Ron Condon
Tip 21 Jun 2011
Top incident response steps: Incident response team responsibilities

Do you know the proper incident response steps to handle a breach? Expert Davy Winder covers how to manage incident response team responsibilities. Continue Reading
By
- Davey Winder
News 01 Jun 2011
World IPv6 Day coming June 8 - what should you be doing?

On 8 June, 2011, a number of large networks will offer their content over IPv6 for a 24-hour “test flight”. Continue Reading
By
- Stephen Gillies, Editor
News 08 Apr 2011
After breach at RSA, two-factor authentication options abound

Companies specialising in two-factor authentication hope to boost business following the breach of RSA's SecurID, and many plan to capitalise with new products at Infosecurity Europe. Continue Reading
By
- Ron Condon
Tip 07 Jan 2011
10 security incident management best practices

Here’s a quick tip on the security incident management processes an organization should adopt to combat the current dynamic threat scenario. Continue Reading
By
- Dinesh Bareja
News 01 Dec 2010
Phishing attack on Facebook leverages iframes

Popular social networking site, Facebook being used for phishing attacks and open redirects, claims Websense Security Labs. Continue Reading
By
- SearchSecurity.IN Staff
News 11 Feb 2008
penetration testing tutorial day one the basics

TechTarget ANZ expert Ed Eliff explains botnets and offers advice on how to make sure your machines do not get get caught up in one. Continue Reading
By
- Ed Eliff, Contributor
Tip 15 Aug 2007
How to test Snort

VARs should test Snort to ensure the open source IDS is detecting malicious activity. Continue Reading
By
- Richard Bejtlich