The election is over, the Conservatives have won, and Boris Johnson is promising to deliver on his pledge to 'get Brexit done' by the 31st January. What does that mean for the average CISO?
Unique malware varieties have risen by an eighth this year, according to The Kaspersky Security Bulletin: Statistics of the Year report, with Web skimmer files blamed for growth in unique malicious code.
Latest patch by Microsoft covers a zero-day privilege elevation loophole that was found to be actively exploited in the wild
The first time you got your hands on powerful penetration testing tools, you must have thought 'just think what I could do with this'. And that's just what the criminals think too - and then they do it.
Kaspersky teams up with Swedish designer Benjamin Waye and creative agency Archetype to make a ring that could present fake fingerprints for non-mandatory verifications
Users cautious of what they put on the internet and aware of the host's free tools for protecting their services can avoid unsecure databases, says James Spiteri
A flaw that affects most Unix-based operating systems, including MacOS, Android and Linux, may allow attackers to defeat VPN security.
The UK ministry of defence confirms Strategic Command formed as part of JFC reorganisation to improve integration and enhance its role providing leadership in the cyber domain for the MOD.
MS threat analysis finds credentials of 44 million Azure AD and Microsoft Services Account details; password reuse rampant
Security researchers have disclosed a flaw in the Aviatrix VPN client that give a hacker unlimited access to a victim's system - now patched.
Organisations warned of full intrusion with just flaw and one phish - due to flaw they should have fixed and is actively used by multiple threat actors.
A vulnerability, named StrandHogg, allows malware to pose as any legitimate app, gain permissions and literally hijack the phone
Stake your claim to be recognised as the best in the industry by winning your category in the SC Awards Europe 2020 - and this year we have four new Awards up for grabs!
Despite repeated data breaches and hacking attempts, firms in the food and hospitality sector have spent the least on cyber-security in 2018-19, says a research report; unsurprisingly, finance tops the spend table.
RevengeHotels malware campaign looks for credit card details of hotel guests
Common Weakness Enumeration list reveals the critical software errors that could impact enterprise security
Twitter warns users about possible data harvesting, Facebook issues alerts on SDKs by oneAudienceand Mobiburn
IoT Security Foundation & IASME form partnership to offer what they describe as a low cost consumer IoT conformance scheme aimed at manufacturers and retailers to increase cyber-security assurance.
An error by an employee - in device hygiene, network safety or email security - can compromise an entire organisation's IT security this shopping season
A patched vulnerability in the WhatsApp for Android can still affect thousands of additional apps that have not been patched
Increasing numbers of ready-made 'exploit kits' are using extremely stealthy fileless attacks to compromise victims, creating a big challenge for defenders...
Security researchers have discovered an updated form of the Trickbot malware that has been changed to steal OpenSSH private keys and OpenVPN passwords and config data.
The FBI in the US issues private bulletin to a select group of automobile companies that bad actors are trying to access and infiltrate their networks
Two vulnerabilities in SatLink 2000 VSAT modem could enable hackers to carry out cross-site scripting attacks and sniff sensitive data traversing the modem
European hotel booking platform provider Gekko Group mistakenly stores over 1 terabyte of information on a publicly configured server
A security research firm has been tracking a botnet that first popped onto its radar back in August that for some reason declines to make use of its DDos capabilities.
Microsoft's security team defended its Teams communication platform, says no connection between app and distribution of Dopplepaymer ransomware
Black Friday has kickstarted the pre-Christmas holiday shopping spree, leaving businesses wary of possible online scams and cyber-attacks
Half of Oracle EBS customers have not patched critical payment system vulnerabilities in Oracle E-Business Suite - with a CVSS score of 9.9 out of 10, these these vulnderabilities are very high-risk indeed.
What happens when people receive an actual, legitimate email that accidentally looks like a phishing scam?
Intezer researchers spot Windows variant of ACBackdoor, which is primarily a Linux malware
Researchers discover a bug in Google and Samsung phones that literally spies on its users
Redmond giant Microsoft has joined Google and Mozilla in support of DNS over HTTPS (DoH), promising upcoming integration of DoH into Windows 10: business visibility concerns rise
Misconfigured legacy database of game publisher Wizards of the Coast expose information of hundreds of thousands of online gamers
Various initiatives across the globe have the common goal of supporting women in cyber-security. They often include education, training, networking, mentorship, and socialising, among other offerings.
Ohio State University academics discover a design flaw in low-powered Bluetooth devices that leaves them susceptible to hacking
Partnership model overcomes wariness at CSC19 Monaco; SASIG's Martin Smith doubles quota, to 'make 10 new friends': Mark Walmsey, CISO at Freshfields discussing digital transformation.
Researchers find that the UK Home Office's Brexit Android app lacks basic security, allowing hackers to steal passport information and facial IDs
Security researchers find vulnerabilities in the supposedly impenetrable 'secure world' storage vault in Android phones that could allow access to payment credentials
The nature of resilience was discussed and responsibility and accountability were tackled with a consensus that it rested primarily with the board, but each player had to be accountable for their own role.
VMware pushes out security updates covering five vulnerabilities that, if exploited, could lead to information disclosure or a denial of service situation
A bug in the latest version of Facebook's iOS app opens iPhone cameras as users peruse their feeds
Google and health care provider Ascension confirm a amassing data of roughly 50 million patients
Microsoft issues updates covering 74 vulnerabilities, 13 of which were critical
Intel platform update covers 77 vulnerabilities, two of which were rated critical
In cooperation with Bonnie Butlin of WISECRA, SC Media UK is delighted to announce the 50 leading European* Women in Cyber-security for 2019. *Excludes UK which has a separate list, link below.
Firewall automation might be in the headlines, but enterprises are struggling to make sense of the opportunity on the ground, potentially leading to increased security risk, according to a new report
SC Media's 2018 Women in Security print issue took home first place in Folio Magazine's Eddie & Ozzie Awards for best B2B magazine covering technology/telecom
Since August 2019, no other WordPress-targeting malware has yielded a higher rate of new infections than WP-VCD
Is Zero Trust really achievable given the complexity in finance service organisations?
Brought to you in partnership with Forescout