German car parts maker Gedia Automotive Group has had to shut down its IT operations following a massive cyber-attack. Poland, Hungary, Spain, China, India, USA and Mexico operations also affected
The Emotet malware has dominated the malware threat landscape despite an overall fall in malware over the last quarter of 2019.
To share best practice among ISPs the World Economic Forum and its global partners have published Cybercrime Prevention Principles for Internet Service Providers.
BitPyLock threat actors are now exfiltrating data before the ransomware encryption begins
The Muhstik botnet harvests vulnerable Tomato routers and researchers report that Muhstik mainly launches cryptocurrency mining and DDoS attacks in IoT bots to earn profit.
NSO denies involvement in case of Jeff Bezos, alleged to have had his phone hacked via a video file from the WhatsApp account of Saudi Arabia's crown prince, Mohammed bin Salman.
Employee data of co-working provider Regus breached after third party accidentally publishes sales staff performance data
Betting companies have accessed a large, detailed database of the personal details of 28 million UK children, held by the Learning Records Service
Mitsubishi Electric conceded that a breach happened on 28 June 2019 and an official internal probe was initiated in September
Two-factor authentication is easily thwarted by social engineering hence Sim swap attacks risk making 2FA via smartphones obsolete, according to security researchers.
The UK is the European country most attacked by cyber-criminals and within the UK London is disproportionately the target, suffering as many breaches as several European countries combined.
Massive campaign by APT group targets pharma companies in the US, Mexico, Germany, Japan and Australia amongst other regions and sectors
The US FBI took down a website that sold access to billions more records that were leaked from breaches or exposed online
New online fraud scheme uses the pretext of offering compensation for personal data leaks
Unlike your typical business email compromise (BEC) attack, hackers get an insider view into organisation and business deals, with the potential to lead to similar impacts to BEC, but via a different route
Thousands of files stored on an Amazon Web Services (AWS) S3 bucket -- HR documents belonging to a host of UK consultancy firms -- were found open to anyone with a browser
67% of healthcare organisations suffered a cyber-security incident in the last 12 months, 39% down to staff, investment too low, too few training programmes to ensure staff use systems correctly.
Bapco, the national oil company of the Arabian Gulf island nation of Bahrain, was reportedly hit 29 December by a disk wiper attack that officials believe originated from Iranian-backed hackers.
A Russian cyber-crime gang has developed a new hacking tool called PowerTrick in a bid to move around target networks undetected
Threat actor Lazarus Group launched sequel of its AppleJeus operation, creating fake cryptocurrency-related websites to sow malware in the systems of those who fell for the ruse
ICO imposed a £500,000 fine on Dixons Carphone over a data breach between July 2017 and April 2018 that affected millions of customers
Each UK company with an internet connection was attacked online more than once a minute in 2019
The 31 December malware attack on UK-based currency exchange company Travelex turns out to be ransomware; foreign exchange services affected
F-Secure's report listed Austria as the second top destination for cyber-attacks in H1 2019, leaping up from the fifth position in H2 2018
From the expected to surprising, our 200+ predictions cover Brexit, cyber-treaties to IOT regulation, the negative impact of cyber insurance and the downsides of 5G, plus AI deepfake ransomware & much more.
Malware attack on UK-based currency exchange company Travelex's systems spilled over to foreign exchange services of major financial brands
European Commission launched two public consultations to form regulations on crypto assets and fighting cyber-attacks on financial sector
Based on the Scottish model, 10 new centres in England will promote cyber-security measures for business
Ransomware attack takes an unidentified US maritine base offline for more than 30 hours says US Coast Guard; Security cameras, door-access control systems & critical monitoring systems affected.
In an exclusive interview with CTO at Octopi Managed Services, Ian Thornton-Trump, SC reports launch of The Octopi Hacking Archive, including1995 BBS files, provided free to aid understading of threat evolution.
Cross-site scripting or XSS is the most popular attack vector globally in 2019, accounting for 40 per cent of all cyber-attacks
A large-scale phishing campaign has been targeting online banking customers -- the majority of whom were Canadian -- for the last two years
Hacker from North London gets 300 hours of unpaid work and six-month electronic curfew for trying to blackmail Apple in 2017 by threatening to reset 319 million iCloud accounts
A database holding more than 267 million user IDs, phone numbers and names of Facebook users was left exposed on the internet without requiring any form of authentication to access
Unsecure Elasticsearch cluster owned by the Honda Motor Company left 976 million records of about 26,000 customers open online
A cryptomining botnet is using code hidden in a Taylor Swift photo to infect computers around the world.
Canadian health diagnostics company conceded paying to cyber-criminals to retrieve customer data stolen in a recent cyber-attack
Researchers at Proofpoint have found a widely-used remote access trojan being sold for below US$20 on underground forums
Security researcher finds that financial data doesn't get left alone too long on the darkweb. Hackers test out credit card data found on the dark web in a little over two hours, according to a security researcher.
Data ransomers have created a public website to expose data and named recent victim companies that chose to rebuild their operations instead of paying up
Smartphones, the devices most commonly used interchangeably for personal and work purposes, have opened doors for hackers
Researchers discover data breach at South African ICT major Conor; customer data on 80 million users across Africa, South America potentially exposed
Echobot malware has resurfaced with an increased number of vulnerabilities it can exploit in devices.
The election is over, the Conservatives have won, and Boris Johnson is promising to deliver on his pledge to 'get Brexit done' by the 31st January. What does that mean for the average CISO?
The first time you got your hands on powerful penetration testing tools, you must have thought 'just think what I could do with this'. And that's just what the criminals think too - and then they do it.
Users cautious of what they put on the internet and aware of the host's free tools for protecting their services can avoid unsecure databases, says James Spiteri
The UK ministry of defence confirms Strategic Command formed as part of JFC reorganisation to improve integration and enhance its role providing leadership in the cyber domain for the MOD.
MS threat analysis finds credentials of 44 million Azure AD and Microsoft Services Account details; password reuse rampant
Is Zero Trust really achievable given the complexity in finance service organisations?
Brought to you in partnership with Forescout