National Grid's chief information security officer and head of digital risk Graham Wright talked targeted attacks, critical infrastructure and the blurring of physical and digital security at a recent London conference.
Symantec has discovered a new piece of customisable malware - reminiscent of the Stuxnet worm - which has been stealing data from governments, telcos, energy companies and SMEs since 2008. And experts say the threat actor could be the US or UK government.
High-profile CISOs and senior IT security managers talked advanced persistent threats (APTs) and how they can be countered at SC Magazine's latest roundtable in central London.
Russia reportedly plans to ban imports of foreign software for state use from next year according to recent government statements.
The head of the NSA has said China and "one or two" other countries could shut down America's power and financial services companies, and that such an attack was "a matter of when not if".
School pupils are among 15 EU citizens suspected of using Trojans for crimes such as DDoS attacks and extortion.
Concern over both the leak of data and the extent of surveillance by authorities in the Netherlands.
ICO warns users to change their default passwords to avoid webcam spying.
Open source software capable of detecting the presence of surveillance spyware has been released by four European and US human rights and IT organisations.
Detective Superintendent Jayne Snelgrove, head of Metropolitan Police's Falcon group, says that cyber-enabled crime can only be stopped using teamwork and the right skills.
UK cabinet minister Francis Maude told conference attendees in London today that human endeavour holds the key to defeating cyber-criminals.
Most sites taken down in operation Onymous were spam or clone sites says researcher.
Some of the world's biggest security companies are working together to develop 'Let's Encrypt' - a new certificate authority (CA) offering free and automatically renewable HTTPS web encryption.
New research claims that the security threats landscape is now almost egalitarian in nature, with almost every industry - and every company - now being a security target.
Microsoft has very unusually released an `out-of-band' security patch to fix a vulnerability in Windows - and Windows Server - that hackers are reportedly exploiting to compromise IT networks.
Mobile security firm Lookout has discovered a more sophisticated variant of the NotCompatible Android botnet which it says targets enterprise networks through compromised mobile devices.
Attacks on Apple iOS devices are rising sharply, with 87 percent of the top 100 paid-for iOS apps now having been cracked and cloned - up from just 53 percent in 2013, according to a new report.
New research from PricewaterhouseCoopers (PwC) suggests that US financial service companies will spend an additional £1.3 billion (US$ 2 billion) on cyber-security by 2017.
One in four consumers has been a victim of identity theft, an issue which came out as the leading concern among 1,000 respondents in a survey commissioned by Centrify.
Security professionals are being warned of a 'serious threat' from cyber-criminals using free web apps to distribute malware including Zeus, DOFOIL, CryptoWall and other ransomware.
London is establishing four hubs which aim to increase reporting of cyber-crime in the capital.
The Tor Project has played down fears that cyber-criminals and law enforcement could launch network analysis attacks to identify over 80 percent of Tor users.
The US State Department reportedly turned off its entire unclassified email system over the weekend after a suspected cyber-attack.
The widening cyber-security skills gap is pushing British companies to consider employing hackers and convicted criminals, according to new research. But some experts say this is the wrong approach.
Airborne law enforcement surveillance devices grab phone data on tens of thousands at a time.
Tor provides anonymity, not security, given that exit nodes appear to have been used for Russia- based APT attacks.
The Electronic Frontier Foundation criticises Skype for no end-to-end encryption and claims that ISPs in the US and Thailand are removing encryption from customer data.
MasterCard and Visa have teamed to develop a new security standard, 3DS 2.0, which aims to kill off the password for online transactions.
IPhone mass uptake has led to it being clearly targeted by cyber-criminals says Cyren report
Microsoft says outdated software can be almost as insecure as having no protection at all.
British security services company G4S saw shares decline yesterday following a hoax emailed message and website.
HSBC Turkey has confirmed that a recent cyber-attack resulted in the loss of card details on 2.7 million customers.
Research from Arbor Networks claims to show there is a strong correlation between the actions of real-world hacktivists and online conflict.
Cyber-attacks pose a serious threat to smaller organisations, especially NGOs, according to a new report from Munk School of Global Affairs.
Stuxnet was targeted 'inside-out' not 'outside-in' infiltration of air-gapped system says new book.
Microsoft has issued critical patches for flaws relating to SSL/TLS encryption on Windows systems, as well as the Windows Object Linking and Embedding (OLE) protocol.
Phishing emails - which often seem blatantly fake to security professionals - are far more successful and professionally exploited than previously thought, according to new Google research.
A flaw that affects nearly all Apple iOS devices - and which Apple has failed to patch despite knowing about it since July - is now being circulated among cyber-criminals and may have already led to attacks.
Entrants are invited to take part in the Cyber Security Challenge 2015 Masterclass to defend London from a simulated terrorist cyber-attack.
A European version of the Internet Security Alliance think-tank will launch next spring.
A sophisticated cyber-espionage campaign uses Wi-Fi and a backdoor to trick travelling C-level execs into downloading "Darkhotel" spying software.
But skills shortage means companies have to hire more and more 'green' information security staff.
The UK's intelligence agencies have been spying on supposedly sacrosanct emails and calls between British lawyers and their clients, and could have exploited the information to illegally influence terrorist trials.
The FBI, the European Cybercrime Centre (EC3) and other high-profile law enforcement agencies are celebrating the take-down of 410 'dark markets' on Tor which was selling drugs, weapons and other illegal goods.
A new website and online community for small businesses and start-ups in the cyber-sector went live on Tuesday
The British government has teamed up with 12 insurers to develop the fledgling cyber-insurance market.
Russia is recruiting now for new dedicated cyber-forces in the army, with an initial outlay of some US$ 500 million (approximately £315 million).
A new and 'unprecedented' malware family has been targeting Apple devices much like a traditional computer virus, and is thought to have infected up to 350,000 machines to date.
Preventable SQL attacks need to be tackled says the ICO following a breach fine on Worldview Limited for losing customer payment details.
A study from BT reveals that almost half of UK firms (41 percent) suffered a mobile security breach over the last year, with another fifth reporting as many as four incidents in the same time-frame.
A widely circulated blog post from security expert Grant Blakeman about his Google Gmail and Instagram accounts being hacked has provoked a debate about the true strength of two-factor authentication (2FA).
Visa is acting to prevent attacks on its contactless cards using a flaw found by Newcastle University researchers while dismissing the findings as "no cause for concern".
The new head of GCHQ has started his job with a robust message complaining that US technology companies are the "command and control networks of choice" for terrorists.
Security software vendor Trend Micro says that nascent infrastructure means that there will be few attacks from cyber-criminals on Internet of Things devices next year.
Google and Facebook have both launched free open-source cyber-security tools this week, designed to help security professionals spot malware and cyber-attacks.
The Government's Verify scheme to confirm IDs is behind scheuduled uptake, but its CISP threat intelligence sharing scheme is ahead of target.
The European Network and Information Security Agency (ENISA) conducted a 24-hour cyber-exercise in which more than 200 organisations from 25 EU member states faced virtual cyber-attacks from white hat hackers yesterday.
Poor network visibility, outdated security tools, a skills shortage and a lack of control in the cloud are just some of the reasons companies are struggling with cyber-security, say two new reports.
An Estonian man, who helped hack payment processor RBS WorldPay in 2008, has now been sentenced to 11 years in prison for his involvement in the £5.9 (US$ 9.4 million) scheme.
A new report reveals that a Chinese cyber-espionage group is closely affiliated with government and carried out attacks against the likes of Fortune 500 companies and government agencies.
Around a dozen organisations, including at least one financial sector company, have been hit by a new form of hacking where attackers hide stolen corporate data inside video files that they upload to popular sharing sites like YouTube.
Russian hackers are allegedly behind a breach at the US President's office, while Russia's BlackEnergy malware has been used to attack US SCADA system suppliers.
Not-for-profit legal group Lawyers Without Borders says that it has been hit by a cyber-attack emanating from China.
80% of IT professionals expect to see an increase in mobile security incidents in their company in 2015.
The FBI is reported to have raided the house of a second whistle-blower who was leaking sensitive agency documents to the media.
NATO, UK defence attachés and even visitors to Counter Terror Expo and Farnborough Airshow were targeted by 'APT28' Russian state-backed spy group, says FireEye.
The cyber-security skills gap is a 'societal challenge' that must be tackled by everyone, from schools and universities to citizens and businesses, a panel of experts said in London today.
A new survey from Lieberman Software reveals that almost eight in ten IT security professionals believe that perimeter security technologies like firewalls and anti-malware solutions are sufficient in defending against advanced persistent threats (APTs).
A security researcher has discovered a 'bad' Russia-based Tor exit node which was being used to inject malware into downloaded binary files.
Sign up to our newsletters
SC Magazine UK Articles
- NotCompatible botnet infects Android mobiles, infiltrates corporate networks
- National Grid CISO talks up security convergence
- NSA, GCHQ or both behind Stuxnet-like Regin malware?
- Defending against APTs: 'We are behind the curve'
- Russia to ban State use of foreign software in bid to boost IT-security