Criminal cyber-infrastructures used to attack the UK have fallen with two thirds fewer IP addresses used by attackers in 2018 says the NCSC's latest Active Cyber Defence (ADC) report published earlier this week.
New versions of malware families linked to the Ke3chang APT group that operates out of China is being used to target political figures in Eastern Europe and the Americas
US senate committee members call Facebook "delusional" for launching Libra despite losing trust
The Dutch National Police Unit has arrested a hacker suspected of large-scale production and selling of malware such as Rubella and Dryad, aided by private companies including McAfee.
Assange was arrested in April at London on behalf of the US on conspiracy to conduct computer intrusion on the United States
The Chartered Institute of Information Security hopes to play a bigger role in security regulation and professional accreditation after being formally conferred the Royal Charter in June
The Federal Trade Commission (FTC) fixes a billion-dollar penalty on Facebook after the commission approved settlement with the social media giant for violating a 2011 consent decree
A study finds that education and transportation sector employees had the worst cyber-security knowledge, while finance industry employees were the most aware
Privacy activist Max Schrems continues his legal battle to revamp the US-EU data-transfer mechanism, while Facebook says removing existing provisions will jeopardise trans-Atlantic trade
GCHQ and the Science Museum are displaying spying equipment never-seen-in-public before for a communications intelligence & cyber security exhibition opening today as part of its centenary celebrations.
The ICO has followed up yesterdays announcement of a £183 million fine for BA by announcing its intention to fine Marriott International £99 million for breaches of GDPR.
Aurélio Blanquet, the recently elected Chair of the European Network for Cyber Security (ENCS ) Assembly Committee, calls for harmonisation and cooperation, particularly to close skills gap.
Businesses in the UK faced an average of 146,491 attempted cyber-attacks in the second quarter of 2019 - a 179 percent increase over the same period last year
The ICO has proposed a £183 million data-breach penalty on British Airways; the biggest fine ever handed out by the ICO and the first to be proposed under GDPR
Government agencies in Croatia have been targeted in fileless attacks with never before seen malware payload, dubbed SilentTrinity.
The Chartered Institute of Information Security Professional becomes first Royal Chartered body for information security - a status it says it will use to set the standards for skills and knowledge in the industry.
Police forensics provider Eurofins Scientific, victim of ransomware attack last month, is reported by the BBC to have paid a ransom to the attackers.
Canada's CSE warns about attempts by foreign actors to influence the election in October; US homeland security alerts about phishing attempts that might target state and local election systems
Up to £850k of funding now available for the second phase of the DASA's Predictive Cyber Analytics competition to develop a deployable solution to predict and counter future cyber-threats.
A new Act introduced in New York makes it mandatory for companies to disclose a data-breach incident even if an unauthorised person merely accesses the information
US CyberCom flags three tools that are "likely used for the manipulation and of exploited web servers" with "a clear capability on the part of the attacker to interact with servers they may have compromised"
23 EU Member States, ENISA and the European Commission meet in Paris for the two day Blue OLEx 2019 European cyber-crisis management exercise, within the framework of the NIS cooperation group.
Companies such as Apple and Google say end-to-end encryption is a privacy and safety feature, law enforcement agencies argue it hinders investigations into terrorism, drug trafficking and child pornography.
EU to conduct war games to help countries prepare for cyber-attacks from nation-states in response to a series of incidents that panicked European governments; EU banks not adequately protecting customers.
The misinformation operations campaign used fake social media accounts across multiple platforms, at times impersonating real individuals who were politically active in western countries
The arrest was carried out by the UK's South West Regional Cyber Crime Unit in a joint operation with the Dutch police, Europol, Eurojust and the UK's National Crime Agency after a 14-month-long investigation
More than half of the devices checked had at least one backdoor primarily in the form of in hard-coded, default user accounts and passwords along with several types of embedded cryptographic keys
The unusual attack took place during one of three Turla campaigns over the last 18 months
An attack on global telecoms carriers by suspected Chinese hackers targeted specific individuals such as military officials, dissidents, spies and law enforcement officials across Asia, Europe, Africa and the Middle East
Iranian military computer systems were struck in a cyber-attack by the US government in response to shooting down of a US drone. Should private sector also hack back if targetted in counter-response?
Multiple security weaknesses reduced JPL's ability to prevent, detect, and mitigate attacks targeting its systems and networks, thereby exposing NASA systems and data to exploitation by cyber criminals
Hackers used leaked NSA tools and hijacked another hacking group's infrastructure to attack government organisations in the Middle East and beyond
The email campaign uses a spoofed email address to appear like a National Cyber Awareness System alert and lure targeted recipients into downloading malware through a malicious attachment
Minimum requirements for manufacturers of surveillance camera systems and components address the issue of compromises of systems left live and internet-facing in an 'unacceptable security configuration.'
Catch up on the most viewed stories in the cyber-security sector reported by SC Media UK over the past week, from 12 - 19 June, presented by Tony Morbin, Editor-in-chief at SC Media UK.
'Attack surface blindness' is holding back better enterprise cyber-security posture. 89% of security leaders struggle with visibility and insight into trusted data: IoT devices (20%) applications (18%) privileges (15.5%)
These programs deliberately mislead the user by greatly overstating the risk or even reporting non-existent errors
Using knowledge-based questions to verify the identities of individuals is considered outdated and insecure, particularly after the 2017 Equifax breach
The social media platform closed nearly 5,000 accounts linked to Iran, four Russian accounts linked to the Internet Research Agency (IRA) troll farm, 130 Spanish accounts linked to the Catalan independence movement and 33 Venezuelan accounts also linked to IRA
A secret programme by US military & intelligence inserted malware into Russia's power grid; it was hidden from President Trump over fears he could leak it, according to an NYT report he declared treasonous.
Protesters in Hong Kong often use services such as Telegram to organise their efforts in a manner free from government oversight, but a crippling DDoS attack would deny them access to such tools
Despite today's news of a four-year jail sentence for Talk Talk hacker Daniel Kelley, teenagers are increasingly turning to cyber-crime. Moves are afoot to nip the issue in the bud
The group has deployed a new multi-stage PowerShell-based backdoor called POWERSTATS v3, which was contained in a spearphishing email
The initial attack took place in February 2017, but was not detected until April of this year
The Europol describes the cyber-crime forum and black marketplace, as the most prolific English-speaking cyber-criminal forum to date
The campaign apparently targeted one or more Russian-speaking government entities
Catch up on the most viewed stories in the cyber-security sector reported by SC Media UK over the past week, from 29 May to 6 June, presented by Tony Morbin, Editor-in-chief at SC Media UK.
Change is happening, but more needs to be done to ensure women are visible and getting the opportunities they deserve
The biggest threat to cyber-security is weak cyber-security, National Cyber Security Centre UK chief Ciaran Martin told delegates at today's InfoSecurity Europe 2019.
The NSA's warning follows one issued by Microsoft on 30 May that strongly advised that all affected systems should be updated
Is Zero Trust really achievable given the complexity in finance service organisations?
Brought to you in partnership with Forescout