A FireEye researcher has warned of cyber-criminals trying to exploit million dollar mergers and acquisition deals
The FBI is investigating the possible hack by Russian intelligence agencies of the New York Times and other news organisations, according to a CNN report.
FOI request shows cyber assault on healthcare sector.
The government of Singapore is to shut off access to the internet of government agencies in an effort to preempt a cyber-attack or a data breach.
22,000 documents have leaked from French shipbuilder DCNS which is building submarines for the Indian navy.
The NATO Information Assurance and Cyber Defence Symposium (NIAS) in Mons is expected to outline the alliance's vision and plans to boost capabilities including cyber-security expenditure priorities.
Freedom of Information requests filed by security company SentinelOne have shown that ransomware attacks appear to be rife within the UK higher education sector.
Code leaked by the Shadow Brokers group has set off calls from security researchers and tech groups in the US for a national conversation about vulnerability disclosure policy.
Eddie Bauer is the latest in an alarmingly long, and growing, list of data breach victims hit by PoS malware
Kaspersky Lab has reportedly finished its self-titled OS which has been built from the ground up with the aim of protecting industrial control systems.
Google's upcoming chat app is to feature opt-in encrypted chat options, which will use the same technology that forms the basis of Whatsapp and Signal.
France and Germany discuss 'tapping' encrypted end-to-end networks such as WhatsApp and Skype
The top three findings from Trend Micro's TrendLabs six-monthly threat trends are the doubling of ransomware families, geographic spread of business email scams and increasing Flash and IOT vulnerabilities spotted.
A hacker has stolen around 808,000 accounts from two forums run by Epic Games, the games maker has confirmed the hack and is investigating what happened.
Visiting a 'forbidden' website is now punishable with a three-year jail term in India - even without downloading anything. NordVPN predicts a surge of VPN subscriptions in India by Internet users to protect online freedom.
Russian banks will be faced with a whole range of new regulations, and penalties for non-compliance, when it comes to cyber-security, according to the country's Central Bank
A dubious offering by a dubious group calling themselves The Shadow Brokers has been at least partly legitimised by disclosures from Snowden's 2013 leak
David Anderson QC, the UK anti-terror laws watchdog, has published a detailed report explaining why he is in favour of the Investigatory Powers Bill.
The social media giant listed these stats in a statement last week detailing the firm's most recent efforts to combat terrorism on its platform.
The 2016 Olympics may be winding down, but cyber-criminals are not slacking off in their efforts to use the sporting event as a way to lure victims.
Former board members and senior employees at SWIFT, said the company did not monitor or make attempts to improve the poor security practices of its clients.
This week: cyber weapons of the battlefield, TeamViewer being used for nefarious ends, an insider breach at Sage, How to close the skills gap and some fascinating insight from the leaker of all leakers.
Security researchers from Google have published the results of a year-long investigation into the practice of pay-per-install software bundling - and they aren't impressed.
FireEye researchers have spotted a Locky ransomware campaign targeting the healthcare sector around the world
Kaspersky researchers spotted a wave of attacks that has affected more than 130 organisations in at least 30 countries.
Malwarebytes researchers spotted a SMS scam in the UK targeting parents and adults who know someone by the name Sarah.
China launched an orbital carrier rocket early Tuesday morning carrying the 'Micius' satellite, believed to be the world's first quantum satellite.
An independent IT security research facility has reviewed Android, and despite constant charges of insecurity, found the mobile platform to be far from wanting ?
The City of London Police is working with solicitors and private investigators on how to chase cyber-criminals through the civil courts in a bid to seize the proceeds of criminal activity.
WikiLeaks' practice of delivering unfiltered information to its readers backfired after a researcher discovered that its collection of leaked Turkish government emails contained over 300 active links to malware files hosted on the controversial site.
The world's biggest networking equipment company, Cisco Systems, will layoff about 14,000 employees.
A cyber-vigilante took internet justice into his own hands when he infected the computer of an tech support scammer with Locky ransomware.
Bitdefender has discovered vulnerabilities in a popular brand of 'smart' electrical socket which could lead to attacks on your local area network or the recruitment of the IoT device as part of a global botnet.
Research from security company Okta is claiming that companies which aren't agile on technology upgrades are putting themselves at risk of cyber-attacks.
In the past year, 38 percent of organisations have experienced one or more information security breaches.
City of London Police arrested a woman who works for Sage on suspicion of conspiracy to defraud. The arrest occurred at Heathrow Airport.
A new type of ransomware called Shark is being offered for rent on an 'as-a-service' basis payable with a 20 percent cut of the payments it generates to its creators.
A new QinetiQ white paper warns firms that security training alone will not change employee behaviours.
The leaker to end all leakers has taken to Twitter to provide some insight in to the recent high profile auction of NSA hacking tools.
Windows vulnerability would allow hackers to subvert PowerShell to bypass the UAC, leaving no trace of having accessed the system.
Capitalising on Olympics activity, a new version of Zeus Sphinx has been targeting banks in Brazil and Colombia.
Another backdoor Trojan, BackDoor.TeamViewerENT.1, has been detected installing legitimate TeamViewer components on infected machines to spy on users.
Iran's Supreme National Cyber-space Council is investigating whether a recent string of oil and petrochemical fires were caused by a cyber-attack.
GUI friendly social-engineering toolset made available as open source software - great for penetration testing, not bad for criminals either.
Trend Micro researchers spotted a new variant of Locky ransomware using Windows Scripting Files (WSF) as a downloader.
Security companies appear to have woken up to the IoT threat, as Bullguard acquires "Security of Things" company Dojo Labs and F-Secure launches an IoT security monitor.
The European Commission to looking to tighten its regulatory grip on US-based tech companies which are slowly replacing traditional telcos in the services they provide.
Hackers have attacked 20 hotels in the US run by HEI Hotels and Resorts with a targeted malware. The hotels included 12 Starwood, six Marriott, one Hyatt and one InterContinental.
An EU cyber-security body calls for harmonised method of determining losses from rampant cyber-crime, but struggles to even measure it
Scotland Yard is to setup a Twitter task force which will hunt offensive online comments, and bring those posting them to justice.
A report leaked from the UK armed forces to the media has shown a shocking new cyber dimension of tactical warfare and come to some worrying conclusions about how the UK army would fare in a shooting war against Russia.
Trailing not too far behind the news that hackers have compromised a leading point-of-sale system is the new revelation that at least five more vendors have been hit with similar breaches
The Inspector General has said that the U.S. Department of the Interior has to beef up its access controls if it wants to meet current standards
Software company Sage has reportedly suffered a data breach orchestrated by an insider of the company. The police are investigating and the ICO has been informed.
Aries Security researchers' "video-jacking" attack highlight yet another attack vector to consider when charging phone in unfamiliar locations.
In a bid to protect its users from phishing and malware, Google has adopted the DMARC protocol and will warn users if it can't authenticate the source of emails.
With nearly a quarter of ID fraud victims being savvy users of mobile and social media platforms in the UK last year, regular device updates nor computer literacy are stopping users from engaging in harmful online behaviour.
Nearly 100 million Volkswagen vehicles are affected by a vulnerability that would allow an attacker to remotely and discreetly unlock a car without a key.
Linux.Lady malware exploits flaw in Redis NoSQL to infect servers and turn them into crypto-currency miners working for the attackers.
Major partners in the controversial nuclear power plant at Hinkley Point have been accused in American courts of attempting to steal US nuclear technology.
The infamy of Donald Trump is being leveraged by canny cyber-criminals for everything from spam to credential phishing.
In case you missed it (ICYMI) this week, concerns over IOT burglar alarm, more attacks to come on Clinton campaign, FireEye redundancies and the Olympics of cyber-crime.
As the FBI investigation into the hack of the Democratic National Committee broadens, it is being reported that the private email accounts of Hillary Clinton and more than 100 Democratic officials also have been breached.
Even after quelling the initial privacy issues that arose from the launch of Pokemon Go, Niantic Labs CEO John Hanke has a spotted history
The Israeli Knesset waits on the passage of a bill which would see the amalgamation of Israel's cyber-defences into one central authority
The Competitions and Markets Authority has warned two companies and dozens of online personalities against tweeting paid-for promotional messages disguised as unbiased recommendations.
Craig Young, a researcher at Tripwire has found several major security flaws in Ruckus Enterprise APs
A new APT group has emerged on the Indian subcontinent, identified by ForcePoint as 'Monsoon'
AVG malware analyst Jakub Kroustek discovered an unfinished version of a new strain of ransomware, dubbed Hitler-Ransomware.
A group of four banks in Australia want customers to be able to use the banks' own mobile apps when conducting financial transactions with Apple Pay.
The Australian Bureau of Statistics (ABS) 2016 census website was hit by a DDoS attack only hours after boasting that its website would not crash.
The large majority of London police computers are apparently still using the 14-year-old Windows XP operating system and jeopardising security
Nemucod changes tactics to infect systems - Trojan spreads backdoors instead of ransomware
Protecting consumers' online digital personas is as important for the organisations collecting the data as it is for the people who are putting their faith in them.
Five of the nine security bulletins released by Microsoft this Patch Tuesday are rated "critical."
Estonia power company joins European network for cyber-security to improve its cyber-resilience.
A planned national database of personal data on Russian citizens could become a magnet for criminal cyber-attacks warn analysts.
European privacy groups have voiced opposition to a planned surveillance data project that would significantly expand the technology capabilities of Romania's domestic intelligence service.
Experts say that government concerns over cyber-security at the new nuclear power plant at Hinkley Point are misdirected and that the Chinese are not the real worry.
Over the past two years, three out of every four organisations have been hit by the loss or theft of important data.
The cyber-espionage group identified as Strider by Symantec researchers is as sophisticated a threat as any known APT in history -- including Duqu, Flame, The Equation Group and Regin -- according to an analysis by Kaspersky Lab.
Paradoxically, 'good' news for businesses and ransomware cyber-criminals alike appears to be bad news for security platform provider FireEye.
A researcher claims to have found vulnerabilities in Samsung Pay's tokenisation mechanism and its magnetic secure transmission (MST) technology that could allow hackers to steal users' tokens and make fraudulent purchases.
USB pens distributed by the UK-based mobile network O2 as part of a promotional campaign for an eBook were discovered to contain a "Windows specific virus", according to a company statement.
The number of vulnerabilities in the US federal government arsenal hovers in the dozens, Columbia University senior research scholar Jason Healey told a DEF CON 24 audience.
Apple is offering up to $200,000 to researchers reporting critical security vulnerabilities in Apple software, including its underlying operating system.
The percentage of unpatched Windows operating systems was on the decline in the second quarter of 2016, leading to an overall decrease in the number of exploitable Windows vulnerabilities.
Chris Valasek and Charlie Miller hung up their car hacking spikes Friday at Black Hat announcing at the end of their presentation that they were moving on, but not before revealing a few more vulnerabilities in a Jeep Cherokee.
NATO's recent proclamation that cyberspace is an official domain of warfare, along with Russia's reported cyberaggressions against the U.S. and Ukraine, raises interesting questions about how one can responsibly manage cyberwarfare.
Previously unknown bad actor used Remsec to infect just 36 machines in what appears to be a quiet cyber-espionage operation.
Researchers discovered a RAT that targets Android phones in China and Japan and appears to select victims based on their devices' IMEI codes.
Insurance firm Zurich is offering a discount on monthly insurance fees should a customer use the IoT alarm offered by Cocoon, despite security concerns over IoT devices.
The most prolific users of mobile and social technology, making up 7.7 percent of the UK population, accounted for 23 percent of all ID fraud victims in 2015.
Brazil puts concerns over cyber-attacks at number 23 despite hosting the Olympic games, whereas the US, Germany and Japan put cyber-attacks at number one - hence extensive cybercrime is expected during the games.
Two independent cyber-security researchers took the stage at Black Hat to diagram how groups possibly controlled by the Iranian government are targeting dissidents.
SC Webcasts UK
Sign up to our newsletters
DV Cleared Systems Architect - 6 Months - London
Computerfutures - London (North), London (Greater)
CISO – Chief Information Security Officer (Up to £100K)
Evolution Recruitment - London (North), London (Greater)
Head of Security Strategy – London
Evolution Recruitment - London (West), London (Greater)
Information Security Manager
Infosec People - Hammersmith, West London
Associate Professor in Cyber Security and Networking
Edinburgh Napier University - Edinburgh, City of Edinburgh
SC Magazine UK Articles
- Snowden says Shadow Broker leak is likely a warning from Russia
- Russia's Central Bank introduces new mandatory cyber-security regulations
- Private firms to chase cyber-criminals for cash bounties, say police
- Epic hack, thousands of salted logins stolen
- Shadow Broker's leaked files confirmed real by Snowden docs
- It's a trap! WhatsApp Gold 'premium' version lures users to malware
- SC Awards Europe 2016 winners announcements!
- Microsoft ends common password use and password lockout
- ISIS radicalises 'lone wolves' through strong social media presence
- 1.5 billion Windows computers potentially affected by unpatched 0-day exploit