SANS cyber-fair puts cyber-experts on the market

SANS cyber-fair puts cyber-experts on the market

The SANS Cyber Academy will hold a recruitment fair in the autumn to showcase 40 top cyber-security graduates.

Europol creates first dark web training programme

With notable dark web marketplaces, including Darkode, being taken down recently, Europol announced the creation of a unique training course to prepare agents for this covert line of work.

Critical Bind vulnerability could snuff out large parts of internet

Critical Bind vulnerability could snuff out large parts of internet

A single packet could leave the internet in a bind, warn experts.

Phishing campaign strikes UK and US companies

A phishing campaign discovered by Proofpoint aims at UK and US organisations.

Modular Potao malware used to spy on targets in Ukraine, Russia

Modular Potao malware used to spy on targets in Ukraine, Russia

Researchers with ESET have been monitoring Potao malware since it was first identified in 2011.

GM says OnStar app flaw fixed, researcher says still exploitable

GM says OnStar app flaw fixed, researcher says still exploitable

GM's OnStar RemoteLink mobile application contains a vulnerability that can enable an attacker to identify, start a vehicle and more.

United reportedly hacked by same group that breached Anthem, OPM

United reportedly hacked by same group that breached Anthem, OPM

United Airlines reportedly experienced a breach by a Chinese hacker group believed to be behind breaches at OPM and Anthem.

UPDATE: Does Windows 10 Wi-Fi Sense spell end of private wireless networks?

UPDATE: Does Windows 10 Wi-Fi Sense spell end of private wireless networks?

Between BYOD and Microsoft's Wi-Fi Sense, soon there won't be such a thing as a private Wi-Fi network anymore.

Yahoo bug bounty programme pays out more than US$1 m to researchers

Yahoo's Interim CEO Ramses Martinez detailed the company's bug bounty programme's successes since its creation in 2013.

Google Cloud features BYO encryption keys

Google Cloud features BYO encryption keys

Google Cloud allows users to bring-their-own-keys to lock their data.

Malware writers create faulty cross-platform malware

Malware writers create faulty cross-platform malware

Malware could infect both Linux and Windows but luckily fails to do anything scary. .

Security concerns raised at Windows 10 roll-out

Security concerns raised at Windows 10 roll-out

Windows 10 launched today, but there were immediately security questions raised within the industry about some aspects and features on the new operating system.

Employees willing to sell private data for a Caribbean holiday

Twenty five percent of polled employees said they would sell private data and risk their jobs and criminal conviction for £5,000.

EU faces increased Russian cyber-threat

EU faces increased Russian cyber-threat

Russian hackers, including groups believed loosely connected to the Russian state, are claimed to be behind an upsurge in cyber-attacks on EU institutions.

Darkode allegedly up and running again

Google Drive influences new phishing campaign

Google Drive-inspired new phishing campaign discovered by Elastica Cloud Threat Labs.

Researchers find vulnerability in Skoda vehicles

Researchers at Trend Micro discovered a security flaw in Skoda automobiles that could allow an attacker to spy on vehicle data.

Can cyber-catastrophes be insured against?

Can cyber-catastrophes be insured against?

Government support to encourage reinsurance, along with quantifying of risk, would make cover for cyber-catastrophe a more viable option says research.

Dig out your old mobile phone and hack an air-gapped computer

Dig out your old mobile phone and hack an air-gapped computer

A team of intrepid Israeli researchers are continuing to push and prod for security vulnerabilities in air-gapped computers, now finding they can compromise such machines by using malware and old mobile phones.

Apple App Store and iTunes buyers hit by zero-day

Apple App Store and iTunes buyers hit by zero-day

A zero-day flaw in Apple's online AppStore and iTunes store reportedly allows attackers to hijack users' purchasing sessions, buy and download any app or movie they want, then charge it to the original user.

Critical Android bugs can be exploited via MMS, 950M users affected

Critical Android bugs can be exploited via MMS, 950M users affected

Successfully exploiting the vulnerabilities could allow an attacker to spy on users, or even completely take over the device.

CIA may pull spies from China after OPM hacks

After data on 21.5 million former and current OPM workers was exposed, US officials are concerned that hackers can use the information to determine Chinese spy identities.

Law firms getting duped out of client funds, warns regulator

Law firms getting duped out of client funds, warns regulator

Solicitors are getting hit by a growing tide of cyber-enabled fraud, resulting in the loss of money and confidential information.

TV5Monde in chaos as data breach costs roll into the millions

TV5Monde in chaos as data breach costs roll into the millions

French broadcaster TV5Monde is still without Internet and other key IT functions three months after a nation-state hacker took control of its TV channels and hijacked social media accounts. Meanwhile, the data breach costs are mounting up.

Hornet faster than Tor for anonymous browsing

Hornet faster than Tor for anonymous browsing

Security researchers are behind a new type of anonymous web browsing.

Cloudmark identifies iomart worst for spamming in UK

Cloudmark identifies iomart worst for spamming in UK

Scotland-based iomart has been identified as the leading UK source of spam last month by email security firm Cloudmark.

Braking news - 1.4 million Jeep recalls & DAB now attack vector

Braking news - 1.4 million Jeep recalls & DAB now attack vector

After a demo of a Jeep hack in the US 1.4 million of the vehicles have been recalled - and DAB presents another attack vector according to NCC researchers

Bartalex variants drop Pony and Dyre

Some strains of Bartalex malware have recently been seen dropping Pony loader malware and the Dyre banking Trojan.

OpenSSH flaw opens the door to brute force attackers

OpenSSH flaw opens the door to brute force attackers

A flaw in OpenSSH could let attackers bypass limits imposed on password login attempts, to launch brute force attacks and steal credentials.

WordPress 4.2.3 released, addresses critical XSS vulnerability

WordPress 4.2.3 released, addresses critical XSS vulnerability

WordPress 4.2.3 was made available on Thursday - the update comes with fixes for a number of bugs, including a potentially dangerous cross-site scripting (XSS) vulnerability.

Tweetable hack could pwn your Mac

Tweetable hack could pwn your Mac

Security researcher shows off by discovering method to root hack Apple OS X in less than 140 characters.

All smartwatches are vulnerable to attack, finds study

All smartwatches are vulnerable to attack, finds study

All ten smartwatches tested by HP Fortify reported significant security vulnerabilities, along with their Android and iOS cloud and mobile application components, according to a new report.

HMRC launches Cyber Security Command Centre

HMRC launches Cyber Security Command Centre

HM Revenue and Customs (HMRC) might not be everybody's best friend but it is ahead of the curve on information security. The tax office recently launched a new cyber-security command centre and is engaging in a clever new phishing training programme.

Joomla helpdesk flaw

Several vulnerabilities have been found in the Joomla HelpDesk Pro extension.

Users could sue Ashley Madison for failure to control data

Users could sue Ashley Madison for failure to control data

Caught with its pants down, Ashley Madison clearly failed to practice safe security. How damaging is this for the company and could users take it to court?

Japan to train thousands on cyber-security ahead of 2020 Olympics

Japan to train thousands on cyber-security ahead of 2020 Olympics

Japan will train approximately 50,000 people in the public and private sectors on cyber-security ahead of the 2020 Summer Olympics in Tokyo, according to local reports.

Update: Jeep taken over from 10 miles away via in-car entertainment system

Update: Jeep taken over from 10 miles away via in-car entertainment system

Car hack exploit could enable criminals could take control of Jeep Cherokee over the internet

Exclusive: Visa application portal closed following SC Magazine investigation

Exclusive: Visa application portal closed following SC Magazine investigation

VFS Global closes visa application portal following SC Magazine investigation. Editable Schengen visa application forms accessed FOUR DAYS after operating company VFS Global said a vulnerability had been fixed.

Google slams US cyber-rules that hit UK student's research

Google slams US cyber-rules that hit UK student's research

Google has warned that planned US curbs on exporting 'intrusion software' - intended to limit the sale of zero-days by organisations like Hacking Team - could be a boon for hackers making "billions ...less secure".

Israel and US issue joint statement on cyber-security coordination

The US Deputy Secretary of Homeland Security, Alejandro Mayorkas, traveled to Israel this past week to discuss the cyber-security challenges facing both countries.

Russia and Israel cooperate to fight cyber-terrorism

Russia and Israel cooperate to fight cyber-terrorism

Russia and Israel have reached an agreement on the design of a package of measures aimed at more actively fighting cyber-terrorism and reducing cyber-threats.

Adultry-dating website Ashley Madison hacked

Online 'adultery dating' website Ashley Madison has been hacked by a group calling itself 'The Impact Team', with 37 million customers' details potentially exposed.

Boeing drone crippled by Hacking Team legal eagles

Boeing drone crippled by Hacking Team legal eagles

Failure to see eye-to-eye over a non-disclosure agreement kept Boeing subsidiary Insitu and Hacking Team from creating a drone/spyware chimera.

Adultery-dating website Ashley Madison hacked

Adultery-dating website Ashley Madison hacked

Online 'adultery dating' website Ashley Madison has been hacked by a group calling itself 'The Impact Team', with 37 million customers' details potentially exposed.

Cisco addresses denial-of-service vulnerability in Videoscape products

The updates address a DoS vulnerability in Videoscape Distribution Suite for Internet Streaming and Videoscape Distribution Suite Service Broker.

NCCU head: Up-skilling officers on cyber-crime our biggest challenge

NCCU head: Up-skilling officers on cyber-crime our biggest challenge

Dr Jamie Saunders, director of the National Crime Agency's National Cyber Crime Unit (NCCU), says that UK police is making strides in bringing cyber-criminals to justice, but admits more can be done to up-skill officers, improve reporting mechanisms and to help local forces.

Masked drive-by attacks hide malware

Masked drive-by attacks hide malware

The recently-standardised HTML5 could be used to mask drive-by attacks resulting in antivirus products being unable to pick out the malware attacks.

Update: DRIPA declared unlawful

Update: DRIPA declared unlawful

UK government's surveillance plans have been dealt a blow after a new court ruling.

Law enforcement clears out Darkode cyber-criminal forum

Law enforcement clears out Darkode cyber-criminal forum

Law enforcement organisations from around the world have cleared out a hornet's nest of criminality, the notorious Darkode cyber-criminal forum.

UK minister: Cyber-security a 'priority' for government, but no ban on encryption

UK minister: Cyber-security a 'priority' for government, but no ban on encryption

UK minister Ed Vaizey has dismissed media reports that the Conservative government plans to ban encryption, whilst also promising that cyber-security remains a 'priority' in Whitehall.

Researcher threatened with prosecution for exposing flaws

Researcher threatened with prosecution for exposing flaws

Software vendor Impero Solutions, creator of Education Pro for monitoring and managing school computers, has struck back against a security researcher who exposed its flaws, but many in the industry question whether the response was proportionate.

UK government launches cyber-security initiatives for SMEs and students

UK government launches cyber-security initiatives for SMEs and students

The UK government today launched a new set of initiatives designed to improve SME information security, public and private sector cooperation and to encourage more people to join the industry.

Iran deal prompts US concerns over country's growing cyber-programme

A diplomatic agreement that restricts Iran's nuclear programme may indirectly shift its focus towards cyber-warfare efforts.

SC Webcasts UK

Sign up to our newsletters

FOLLOW US