Apple fix for Mac Rootpipe backdoor "doesn't work"'

Apple fix for Mac Rootpipe backdoor "doesn't work"'

Experts say botched patch leaves tens of millions of Mac OS X devices vulnerable to hijack.

Women breaking the glass firewall

Women breaking the glass firewall

"10 percent (of information security staff being women) is appalling and we should be shocked at that," delegates were told at RSA, with suggestions made as to how the imbalance might be fixed.

APT gang caught exploiting Flash and Windows zero-days

APT gang caught exploiting Flash and Windows zero-days

Cyber-security firm FireEye details zero-day exploits perpetrated by 'nation-state' sponsored threat actors.

Google to encrypt most ads from June

Google has announced that it plans to encrypt most ads placed on the search engine from this summer, in a big to combat growing malvertising attacks.

Russia to strengthen state control over the internet

Russia to strengthen state control over the internet

As Russia moves to strengthen state control over the internet in Russia, commercial concerns are anxious that any telco or ISP could be acquired.

Critical patch for flaw hitting all MS versions

Critical patch for flaw hitting all MS versions

This vulnerability, if left unpatched, affects every flavour of Windows utilising the IIS services version 6+ to support web sites.

Law firms accused of being negligent with client data

Law firms accused of being negligent with client data

Information is the lifeblood of modern business, no less so than in the lofty eyries of the legal eagles, where sensitive client information is analysed and monetised.

New Statesman website hacked, redirects to escort site

New Statesman website hacked, redirects to escort site

British politics and current affairs magazine New Statesmen has admitted it was hacked on Wednesday, with the home page content on http://newstatesman.com/ redirecting to http://trescorts.com/, a Turkish escort website.

Wi-Fi hackable planes 'not a massive threat'

Wi-Fi hackable planes 'not a massive threat'

A warning from a US government watchdog that hackers could potentially destroy an airplane via the on-board Wi-Fi has been questioned and criticised by information security professionals and pilots alike.

PCI gives 14 months to fix high risk SSL problem

PCI gives 14 months to fix high risk SSL problem

PCI DSS v3.1 has been announced in a bid to close known security vulnerabilities in SSL and some TLS protocols;14 month transition.

Cyber-security pros blame breaches on skills gap

Cyber-security pros blame breaches on skills gap

The much-publicised information security skills gap shows no sign of slowing down, with one new report suggesting there will be a shortage of 1.5 million trained professionals by 2020.

Two APT tribes go to war

Two APT tribes go to war

Two cyber-espionage groups break cover to fire loaded emails at each other.

London police chief admits cyber-crime failings

London police chief admits cyber-crime failings

Adrian Leppard, the City of London police commissioner, has said that police don't have any resources to deal with increasingly sophisticated cyber-criminals - with banks part of the problem.

Britain hit hard as cyber-attacks rise 40 percent

Britain hit hard as cyber-attacks rise 40 percent

British companies were hit hardest in Europe when it came to data breaches last year, according to a new report from Symantec.

Phishing remains most common entry route, says Verizon report

Phishing remains most common entry route, says Verizon report

With phishing attacks still the most common way for cyber-attackers to break organisational security, the race is on to identify ways to prevent or blunt the impact of these attacks.

Cyber-attacks not so advanced after all, finds Verizon

Cyber-attacks not so advanced after all, finds Verizon

The information security industry constantly warns of the latest 'advanced' or 'in-the-wild' malware but new analysis from Verizon suggests that infosec pros face the same or similar threats year in, year out.

Hackers 'still party like it's 1999', says Verizon breach report

Hackers 'still party like it's 1999', says Verizon breach report

Most successful cyber-attacks in 2014 used known vulnerabilities that were at least a year old, and the top 10 CVEs accounted for almost 97 percent of the exploits reports Verizon.

Global groups dismantle 'Simda' botnet

Global groups dismantle 'Simda' botnet

Less than a week after the 'Beebone' botnet was taken down, INTERPOL Global Complex for Innovation, along with other global companies and agencies, has dismantled the 'Simda' botnet.

Political SCADA attacks on the rise - or are they?

Political SCADA attacks on the rise - or are they?

The latest Global Threat Report from Dell Security reveals that attacks against SCADA systems have doubled in the last year - with most regarded as political.

Darwin Nuke vulnerability allows DoS in OS X 10.10 and iOS devices

Darwin Nuke vulnerability allows DoS in OS X 10.10 and iOS devices

A new Apple flaw opens up iOS and OS X devices to remotely activated denial of service attacks.

Votes gone walkabout after Australian election voting flaw

Votes gone walkabout after Australian election voting flaw

With the UK general election only weeks away now, a security flaw has surfaced in the Australian state of New South Wales that may have left votes susceptible to interception and manipulation.

Europol leads takedown of Beebone botnet

Europol leads takedown of Beebone botnet

A joint operation by crime agencies and computer security companies has successfully taken down the Beebone botnet.

CloudFlare criticised as Anonymous wages DDoS war on ISIS

CloudFlare criticised as Anonymous wages DDoS war on ISIS

Vigilante hactivists at Anonymous are preparing to launch DDoS attacks against hundreds of ISIS websites, the majority of which are hosted in the US or UK. CloudFlare, the content delivery network for around half of these sites, has defended its lack of censorship.

ISIS hackers take control of French TV station

ISIS hackers take control of French TV station

Hackers claiming to be closely associated with ISIS took French TV station TV5Monde offline for hours and defaced its social media sites earlier today.

Dyre Wolf is no 2FA killer, say security professionals

Dyre Wolf is no 2FA killer, say security professionals

Just before the UK closed down for the extended Easter Bank Holiday weekend, IBM security researchers published a report warning about a malware campaign attacking online bank users.

Breach readiness survey shows most stray from IRP best practices

Breach readiness survey shows most stray from IRP best practices

The responses of global practitioners were compared with Global 1000 security execs, which provided a best practices benchmark.

Data-scraping Chrome extension steals more than a million users' data

Data-scraping Chrome extension steals more than a million users' data

Discovery of data theft leads to Google pulling more than 200 dodgy extensions from Chrome Web Store.

Fake Steam game page used to propagate malware

Fake Steam game page used to propagate malware

Download demo game hides nasty payload.

Russian hackers attack White House

Russian hackers attack White House

Russia behind cyber-attack on White House - hackers have been in the system for months.

Linux Australia conference delegate data exposed

Linux Australia conference delegate data exposed

Linux Australia president Joshua Hesketh, says that a "malicious individual" had used a RAT to access Linux Australia's main conference database resulting in a data breach.

Revenge porn site operator sentenced to 18 years

Revenge porn site operator sentenced to 18 years

Kevin Bollaert, 28, operated the now-infamous revenge porn sites U Got Posted and Change My Reputation

Israeli political party's website defaced, possibly as part of #OpIsrael

Days after hacktivist collective Anonymous warned Israeli companies and websites that it would begin its annual cyber-attack campaign against the country on Tuesday, one Israeli political party's website was defaced.

'NewPosThings' malware evolves, malicious traffic traced to airports

'NewPosThings' malware evolves, malicious traffic traced to airports

Trend Micro believes that point-of-sale malware attackers will increasingly target travellers.

VMWare issue updates for Java vulnerability

Snapchat issues first transparency report, detailing almost 400 requests

Snapchat issues first transparency report, detailing almost 400 requests

Snapchat issues transparancey data for 4 month period showing nearly 100 government data requests per month.

Google refuses to accept Chinese internet certificates

Google refuses to accept Chinese internet certificates

Google has reacted quickly to a suspected security breach last week by refusing to recognise certificates from Chinese authority CNNIC.

CIOs don't trust US-based cloud systems

'Unethical and illegal' Facebook criticised for tracking visitors

'Unethical and illegal' Facebook criticised for tracking visitors

Facebook privacy is once again in question with researchers finding that the social networking giant tracks all visitors, including those who do not have a user account.

'Volatile Cedar' cyber-spies discovered

'Volatile Cedar' cyber-spies discovered

Cyber-espionage by newly discoverd hacking group dubbed Volatile Cedar, believed linked to a Lebanese political group, leads to hundreds of webservers getting hacked.

GitHub attack - evidence points to China

GitHub attack - evidence points to China

China is being accused of pulling unwitting users into DDos attacks on the GitHub website to hit anti-censorship activists.

IBM invests £2bn in IoT

IBM invests £2bn in IoT

IBM has a £2 billion development programme better integrate data into its plaforms via a new internet of things unit, as well as creating a new a cloud platform.

FBI, Europol and MI6 gang up on tech firms over encryption

FBI, Europol and MI6 gang up on tech firms over encryption

Worldwide law enforcement continues to voice concerns over technology companies' increasing use of encryption.

UK Safari users able to sue Google over privacy

UK Safari users able to sue Google over privacy

Courts tell Safari users they can sue Google over cookie privacy violation, considered ironic given Google's support for combatting government surveillance.

UK firms at risk from attacks on crypto keys, digital certificates

UK firms at risk from attacks on crypto keys, digital certificates

A joint study from Venafi and the Ponemon Institute reveals that digital keys and certificates are in peril, especially at UK organisations.

Interpol 'agents' detail virtual currency malware threat

Interpol 'agents' detail virtual currency malware threat

The international criminal police organisation Interpol is not just the stuff of spy movies. The global policing body, which now operates with 190 member countries, has identified a threat to virtual currencies.

Russian banks combat Tyupkin ATM malware gang

Russian banks combat Tyupkin ATM malware gang

Russian banks see Tyupkin ATM malware use rise in Russia and take steps to locate culprits.

WordPress plug-ins open to attack

WordPress plug-ins open to attack

A new generation of vulnerabilities that threaten WordPress users revolve around various plugins for the blogging platform report researchers.

New hacking group DDoS attacks Amazon's Twitch, US state websites

New hacking group DDoS attacks Amazon's Twitch, US state websites

A hacking collective going by the name of 'Vikingdom2015' claims to have taken offline various US state websites, including Maine.gov and Nyc.gov, as well as Amazon's Twitch. The group told SC its motive, the type of attack and what's to come.

Tor-fuelled Trojan gets stealthy with steganography

Tor-fuelled Trojan gets stealthy with steganography

New research by security vendor AVG has revealed that a variant of the well-known Vawtrak banking Trojan is using some unusual methods to hide what it is doing in an attempt to evade detection.

Hot and bothered air-gapped PCs open to Bitwhisper attack

Hot and bothered air-gapped PCs open to Bitwhisper attack

Security researchers at Ben Gurion University in Israel have continued their examination of security on air-gapped PCs, finding that they can be compromised using specially-designed malware measuring tiny fluctuations in heat.

Over 700,000 home routers threaten enterprise security

Over 700,000 home routers threaten enterprise security

Cisco researcher warns of flaws in devices ISPs give to customers.

SC Webcasts UK

Sign up to our newsletters

FOLLOW US