Jay Jay

Majority of UK consumers losing trust in firms that lack strong data security credentials

Majority of UK consumers losing trust in firms that lack strong data security credentials

New data privacy regulations, increased conversations around data security, and personal experiences of privacy issues have made UK consumers more wary about company data security practices.

Sennheiser patches vulnerability that exposed users to MITM attacks & malware injection

Sennheiser patches vulnerability that exposed users to MITM attacks & malware injection

Headphone manufacturer Sennheiser patches critical security vulnerability in its Sennheiser HeadSetup and HeadSetup Pro software that allowed malicious actors to create fake websites for MiTM attacks.

FCA identifies major weaknesses impacting firms' cyber-resilience

FCA identifies major weaknesses impacting firms' cyber-resilience

UK organisations' cyber-capabilitiesare often have long-standing weaknesses, eg lack of visibility of key assets, inability to identify or train high-security staff, & inability to prevent lapses while making IT changes.

SMBs suffered the brunt of ransomware attacks in 2018

SMBs suffered the brunt of ransomware attacks in 2018

Small and medium-sized businesses need to respond to the growing incidence of cyber-attacks against them by adopting incident response strategies and tools, experts say.

State-sponsored disinformation and critical infrastructure attacks 'biggest threats in 2019'

State-sponsored disinformation and critical infrastructure attacks 'biggest threats in 2019'

Next year will see a huge growth in disinformation campaigns, according to FireEye which also predicts new campaigns against industrial control systems and supply chains.

Monitoring file output for malicious code 'could have stopped BA attack more quickly'

Monitoring file output for malicious code 'could have stopped BA attack more quickly'

Security experts have pointed out that British Airways' failure to monitor the output from its servers allowed hackers to maintain malicious code on its payment pages for two weeks.

Sophisticated cyber-espionage campaign targeting Pakistani government and air force

Sophisticated cyber-espionage campaign targeting Pakistani government and air force

Security researchers at Cylance have unearthed a sophisticated cyber-espionage campaign being run by a state-sponsored hacker group dubbed The White Company.

Hackers can use Microsoft Sway to carry out phishing attacks 'without fear of detection'

Hackers can use Microsoft Sway to carry out phishing attacks 'without fear of detection'

Forcepoint Security Labs has found that Microsoft Sway, a member of the Office 365 group of apps, has been used by malicious actors to send phishing links to targeted users.

Businesses 'risk GDPR breaches' as they underestimate threat from insiders

Businesses 'risk GDPR breaches' as they underestimate threat from insiders

Businesses overestimate the danger from outside threat actors while discounting the threat from insiders because of a failure to understand their GDPR-related risks, according to a new survey.

Emergence of new ransomware variants feature names of popular politicians

Emergence of new ransomware variants feature names of popular politicians

Earlier this month, security researchers stumbled upon a "Barack Obama's Everlasting Blue Blackmail Virus Ransomware", a new ransomware variant that only encrypted .exe files rather than user data files.