UK government contractors must comply with Cyber Essentials
UK government contractors must comply with Cyber Essentials

National Cyber Security Strategy announced.

The new five-year National Cyber Security Strategy was unveiled by chancellor Philip Hammond, with a range of measures aimed at making the UK the safest place to do business.

A previously announced budget of £1.9 billion was confirmed, much of which will be spent on existing programmes at the intelligence agencies.  The strategy will recognise the increasing vulnerability of the network of connected devices, the skills gap, risks from the use of legacy IT and the ubiquity of hacking tools available to attackers, plus it spells out the role of the new National Cyber Security Centre (NCSC) and how it will support organisations as they struggle to deal with cyber defence.  More

NHS Trust crippled by cyber-attack

A malware infection on a Lincolnshire hospital has caused an NHS trust to shut down major operations across several hospitals. Lincolnshire and Goole trust has been crippled by a cyber-attack. Malware apparently infected networks in Scunthorpe and Grimsby on 30 October; the trust then took the decision to shut down all major systems within the shared IT network to isolate and destroy what the Trust described as a virus. More

Shadow Brokers release 2nd cache of NSA files

The hacking group ‘The Shadow Brokers' has released more NSA-related files, these are said to show IP addresses linked to the Equation Group, a hacking group believed to be an NSA contractor. The announcement has been published on Medium, and signed by the same PGP key used for other announcements by the group.  The group claims that, “[these are the] equation group[‘s] pitchimpair (redirector) keys, many missions into your network is/was coming from these IP addresses.” More 

Top frauds of 2016: Fraud report

Cyber-criminals have adapted their strategies by moving from desktops and laptops to mobile devices, launching attacks on apps, email and social networks where users increasingly spend their time. In new research conducted by Easy Solutions, fraud experts identified the most recent and sophisticated cyber-attacks impacting companies, financial institutions and consumers worldwide this year.

Fraud experts analysed search-engine ad poisoning, social media attacks, rogue mobile apps, SWIFT network attacks, ransomware, credit card breaches, synthetic identity fraud, corporate email takeover and spear-phishing. Protection recommendations for organisations and their end-users have also been provided for future prevention. More

ICO: Directors personally accoutable for data breaches

The UK's Information Commissioner, Elizabeth Denham, recently recommended at a Parliamentary meeting to discuss the draft Digital Economy Bill, that the government should hold company directors with personal liability and accountability for data breaches.

Denham gave evidence to a House of Commons Public Bill Committee on the 13th of October, detailing the ICO's recommendations for the Digital Economy Bill, one of which was support for making directors personally liable for breaches of data protection law by their companies. More