Financial: January 2018

Security suffers when there is tension between software developers and security professionals, but it is common in many organisations, says world-renowned security blogger and trainer

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433452/Create-security-culture-to-boost-cyber-defences-says-Troy-Hunt

from Tumblr http://zoehamilton671.tumblr.com/post/169854302940
via Zoe Hamilton

Cyber attackers upped their game in 2017, warns report

Cyber attackers ranging from criminals to nation states have upped their game in the past year, “moving the needle” in terms of tactics, techniques and procedures, a report by a cyber security firm warns

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433420/Cyber-attackers-upped-their-game-in-2017-warns-report

from Tumblr http://zoehamilton671.tumblr.com/post/169846122125
via Zoe Hamilton

Next-gen Mirai botnet targets cryptocurrency mining operations

A variant of the Satori botnet, a successor of the IoT device hijacking Mirai botnet, is designed to hijack cryptocurrency mining operations, syphoning off newly created digital coins

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433414/Next-gen-Mirai-botnet-targets-cryptocurrency-mining-operations

from Tumblr http://zoehamilton671.tumblr.com/post/169846122050
via Zoe Hamilton

Meltdown and Spectre: to patch or not to patch

As IT recoils from the Spectre and Meltdown chip exploits, companies face patches that are incompatible, leading to crashes, reduced performance and lock-ups

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433353/Meltdown-and-Spectre-to-patch-or-not-to-patch

from Tumblr http://zoehamilton671.tumblr.com/post/169846121640
via Zoe Hamilton

Wednesday 17 January 2018

Business needs to reduce cyber threat to payment card data

Cardholder data is a prime target for cyber criminals, and that is only likely to increase in the coming year, according to a cloud-based secure payments firm

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433346/Business-needs-to-reduce-cyber-threat-to-payment-card-data

from Tumblr http://zoehamilton671.tumblr.com/post/169816683255
via Zoe Hamilton

North Korean hackers tied to cryptocurrency attacks in South Korea

North Korea’s Lazarus Group targeted South Korean cryptocurrency exchanges and users in late 2017, but may soon go after exchanges and users in other countries, warns report

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433324/North-Korean-hackers-tied-to-cryptocurrency-attacks-in-South-Korea

from Tumblr http://zoehamilton671.tumblr.com/post/169808093200
via Zoe Hamilton

Davos: Disintegration of the internet could create economic turmoil

Politicians and business leaders will discuss the risks posed by fake news, cyber attacks, and artificial intelligence to jobs, political stability and global security, at the World Economic Forum in Davos

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433286/Davos-Disintegration-of-the-internet-could-create-economic-turmoil

from Tumblr http://zoehamilton671.tumblr.com/post/169808092690
via Zoe Hamilton

Tuesday 16 January 2018

Vulnerability exploit report shows importance of patching

Latest vulnerability exploit report by security firm AlienVault shows the most popular vulnerabilities remain exploited for several years

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433279/Vulnerability-exploit-report-shows-importance-of-patching

from Tumblr http://zoehamilton671.tumblr.com/post/169778291490
via Zoe Hamilton

Sweden pilots surveillance technology to combat terrorism and crime

The Swedish police and security agencies are trialling surveillance equipment to help them respond to terrorism and crime more quickly

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433262/Sweden-pilots-surveillance-technology-to-combat-terrorism-and-crime

from Tumblr http://zoehamilton671.tumblr.com/post/169778291305
via Zoe Hamilton

Skygofree Android spyware active since 2014, say researchers

Powerful, highly advanced spyware has been targeting Android mobiles for the past four years, security researchers have discovered

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433254/Skygofree-Android-spyware-active-since-2014-say-researchers

from Tumblr http://zoehamilton671.tumblr.com/post/169774462735
via Zoe Hamilton

Beware fake Meltdown and Spectre patches

Security experts have warned that cyber attackers will be quick to use the Meltdown and Spectre exploits, but the first attempt to capitalise on them has come in the form of fake updates

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433244/Beware-fake-Meltdown-and-Spectre-patches

from Tumblr http://zoehamilton671.tumblr.com/post/169769995320
via Zoe Hamilton

Most UK enterprise mobiles not patched for Meltdown and Spectre

Very few UK enterprise mobile devices have been patched against the recently discovered Meltdown and Spectre exploits and almost a quarter cannot be patched, a study shows

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433236/Most-UK-enterprise-mobiles-not-patched-for-Meltdown-and-Spectre

from Tumblr http://zoehamilton671.tumblr.com/post/169769995000
via Zoe Hamilton

Monday 15 January 2018

London cyber security careers fair highlights opportunities

A cyber security careers fair in London on 17 January 2018 is aimed at anyone thinking of a career in the field, including experienced professionals and students

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433180/London-cyber-security-careers-fair-highlights-opportunities

from Tumblr http://zoehamilton671.tumblr.com/post/169739092720
via Zoe Hamilton

Why GDPR is great for SMEs

SME laggards facing potential fines for non-compliance should wake up and smell the tasty carrot of a leaner, smarter business post-GDPR

from ComputerWeekly: IT security http://www.computerweekly.com/feature/Why-GDPR-is-great-for-SMEs

from Tumblr http://zoehamilton671.tumblr.com/post/169730560635
via Zoe Hamilton

Friday 12 January 2018

Call for statutory regulation of police number plate cameras amid concerns over accuracy

The UK’s automatic number plate recognition database – one the largest non-military data-gathering systems – records up to 1.2 million false readings of number plates every day. It should be subject to statutory regulation, says an independent watchdog

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433098/Police-number-plate-cameras-should-be-regulated-amid-concerns-over-accuracy

from Tumblr http://zoehamilton671.tumblr.com/post/169626509525
via Zoe Hamilton

Check Point finds AdultSwine malware in Google Play apps

Security researchers have discovered new malware code hidden in game apps, mainly aimed at youngsters

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433096/Check-Point-finds-AdultSwine-malware-in-Google-Play-apps

from Tumblr http://zoehamilton671.tumblr.com/post/169626509230
via Zoe Hamilton

Intel makes security-first pledge

As it scrambles to deal with the Meltdown and Spectre processor exploits, Intel has made a series of security commitments

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433086/Intel-makes-security-first-pledge

from Tumblr http://zoehamilton671.tumblr.com/post/169616838470
via Zoe Hamilton

F-Secure highlights another critical Intel security issue

As Intel scrambles to issue security updates to address the Meltdown and Spectre exploits, researchers have highlighted another, unrelated, critical security issue that could affect millions of corporate laptops

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433078/F-secure-highlights-another-critical-Intel-security-issue

from Tumblr http://zoehamilton671.tumblr.com/post/169616838355
via Zoe Hamilton

Thursday 11 January 2018

How secure are smart energy grids?

The improved efficiency of smart grids need to be weighed against the cost of security - presenting a unique opportunity for the tech sector and a new market for security companies

from ComputerWeekly: IT security http://www.computerweekly.com/feature/How-secure-are-smart-grids

from Tumblr http://zoehamilton671.tumblr.com/post/169588445795
via Zoe Hamilton

Mobile app flaws are a risk to industrial IT systems, says report

Cyber security vulnerabilities in mobile applications could be exploited to compromise industrial network infrastructure, a report warns

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433008/Mobile-app-flaws-are-a-risk-to-industrial-IT-systems-says-report

from Tumblr http://zoehamilton671.tumblr.com/post/169588445410
via Zoe Hamilton

CES 2018: Hyundai and Cisco bring SDN to the automobile

Hyundai will debut a new generation of hyperconnected software-defined car in 2019, incorporating a Cisco-designed network platform

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433003/CES-2018-Hyundai-and-Cisco-bring-SDN-to-the-automobile

from Tumblr http://zoehamilton671.tumblr.com/post/169578916795
via Zoe Hamilton

Nuclear weapons’ cyber attack risk relatively high, says report

With the potential for catastrophic consequences from a nuclear weapons detonation attack, it is crucial to have the most robust nuclear policies in place, says an international affairs think-tank

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432994/Nuclear-weapons-cyber-attack-risk-relatively-high-says-report

from Tumblr http://zoehamilton671.tumblr.com/post/169578916545
via Zoe Hamilton

Spyware targets North Korean dissidents via social links, says McAfee

Researchers at security firm McAfee have confirmed that social networks are being used to target North Korean dissidents with spyware

from ComputerWeekly: IT security http://www.computerweekly.com/news/450433004/Spyware-targets-North-Korean-dissidents-via-social-links-says-McAfee

from Tumblr http://zoehamilton671.tumblr.com/post/169578916660
via Zoe Hamilton

Wednesday 10 January 2018

Cyber criminals exploit Oracle WebLogic flaw

Researchers are urging companies to apply a security update to patch a flaw in Oracle’s WebLogic Server component that is being exploited to mine cryptocurrency

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432936/Cyber-criminals-exploit-Oracle-WebLogic-flaw

from Tumblr http://zoehamilton671.tumblr.com/post/169550769720
via Zoe Hamilton

EC underlines need for data transfer agreement post-Brexit

The European Commission has emphasised the importance of having a data transfer agreement in place after the UK leaves the European Union

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432956/EC-underlines-need-for-data-transfer-agreement-post-Brexit

from Tumblr http://zoehamilton671.tumblr.com/post/169550769910
via Zoe Hamilton

UAE tech growth prompts firms to review internal IT security

As IT becomes more prominent in the UAE economy, more and more internal connections between people and systems are created, all of which need to be secured

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432909/UAE-tech-growth-prompts-firms-to-review-internal-IT-security

from Tumblr http://zoehamilton671.tumblr.com/post/169541337520
via Zoe Hamilton

ICO fines Carphone Warehouse £400,000

Mobile retailer hit with one of the highest fines for putting personal data at risk as UK privacy watchdog warns that more stringent data protection laws will apply from 25 May 2018

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432922/ICO-fines-Carphone-Warehouse-400000

from Tumblr http://zoehamilton671.tumblr.com/post/169541337420
via Zoe Hamilton

Spectre: How reverse-engineering a microprocessor revealed a fundamental flaw

Researchers have published their work on Spectre, a flaw that affects every modern CPU. We find out what went wrong from one of the engineers

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432815/Spectre-How-reverse-engineering-a-microprocessor-revealed-a-fundamental-flaw

from Tumblr http://zoehamilton671.tumblr.com/post/169541337290
via Zoe Hamilton

Tuesday 9 January 2018

Max Schrems champions NGO to fight for GDPR rights

Privacy activist whose legal challenge of Facebook led to the scrapping of the Safe Harbour Agreement says crowdfunding a new type of non-government organisation is essential to deliver privacy rights

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432850/Max-Schrems-champions-NGO-to-fight-for-GDPR-rights

from Tumblr http://zoehamilton671.tumblr.com/post/169512713005
via Zoe Hamilton

Cyber attacks in 2017 drive Nordic security efforts

The volume of cyber attacks last year has increased boardroom focus on security in the Nordic region

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432801/Cyber-attacks-in-2017-drive-Nordic-security-efforts

from Tumblr http://zoehamilton671.tumblr.com/post/169503189715
via Zoe Hamilton

Intel to set up new group to focus on hardware security

Chip maker is reportedly planning to form a new group to focus on hardware security as it scrambles to limit the impact of recently discovered security flaws in chip designs

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432804/Intel-to-set-up-new-group-to-focus-on-hardware-security

from Tumblr http://zoehamilton671.tumblr.com/post/169503189205
via Zoe Hamilton

Monday 8 January 2018

Sweden steps up cyber defence measures

Sweden is tightening up its cyber security defences as part of a wider national security strategy

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432739/Sweden-steps-up-cyber-defence-measures

from Tumblr http://zoehamilton671.tumblr.com/post/169474060310
via Zoe Hamilton

Florida warns 30,000 medical records may have been exposed

The health agency in the US state of Florida has warned that the records of up to 30,000 Medicaid patients may have been exposed when the agency’s IT systems were breached

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432744/Florida-warns-30000-medical-records-may-have-been-exposed

from Tumblr http://zoehamilton671.tumblr.com/post/169464108770
via Zoe Hamilton

Get tooled up to meet GDPR requirements

We look at options for tools to help organisations comply with the EU’s General Data Protection Regulation

from ComputerWeekly: IT security http://www.computerweekly.com/feature/Get-tooled-up-to-meet-GDPR-requirements

from Tumblr http://zoehamilton671.tumblr.com/post/169464108630
via Zoe Hamilton

Friday 5 January 2018

2018 could be year of critical infrastructure attacks, says report

The coming year is likely to see an increase in the number of cyber attacks on critical national infrastructure (CNI), according to a report based on experts’ forecasts

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432690/2018-could-be-year-of-critical-infrastructure-attacks-says-report

from Tumblr http://zoehamilton671.tumblr.com/post/169354842000
via Zoe Hamilton

Patch systems against Meltdown and Spectre, urges ICO

UK’s data protection watchdog is calling for organisations to apply security updates to mitigate against exploits of microprocessor flaws as soon as possible to safeguard personal data

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432696/Patch-systems-against-Meltdown-and-Spectre-urges-ICO

from Tumblr http://zoehamilton671.tumblr.com/post/169354842165
via Zoe Hamilton

Apple confirms all devices affected by Meltdown and Spectre

Apple has confirmed that all iPhones, iPads and Mac computers are affected by the recently discovered microprocessor exploits as the financial services industry assesses the risk

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432679/Apple-confirms-all-devices-affected-by-Meltdown-and-Spectre

from Tumblr http://zoehamilton671.tumblr.com/post/169344777505
via Zoe Hamilton

Thursday 4 January 2018

Zero in on your zero-day vulnerabilities

A zero-day attack comes, by definition, out of the blue. You cannot predict its nature or assess how much damage it might cause, but you can take some basic steps to protect yourself from a potentially crippling cyber strike

from ComputerWeekly: IT security http://www.computerweekly.com/opinion/Zero-in-on-your-zero-day-vulnerabilities

from Tumblr http://zoehamilton671.tumblr.com/post/169314932865
via Zoe Hamilton

Meltdown and Spectre: AWS, Google and Microsoft rush to patch cloud chip flaws

Amazon, Google and Microsoft rush to fix chip flaws that could leave cloud customers at risk of having their data accessed or stolen by other users

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432608/Meltdown-and-Spectre-AWS-Google-and-Microsoft-mobilise-to-protect-cloud-users-from-chip-flaws

from Tumblr http://zoehamilton671.tumblr.com/post/169304743430
via Zoe Hamilton

Wednesday 3 January 2018

Critical Intel security patch will slow PCs, servers and Macs

AMD shares rise on news that the performance of millions of Windows PCs, Linux servers and Apple Macs is to be impacted by critical updates for a recently discovered security flaw in Intel chips manufactured in the past 10 years

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432564/Critical-Intel-security-patch-will-slow-PCs-servers-and-Macs

from Tumblr http://zoehamilton671.tumblr.com/post/169275122850
via Zoe Hamilton

IoT botnet DDoS attacks predicted after exploit code published

Security researchers are urging businesses to ensure they are prepared for large-scale DDoS attacks following the online publication of code to exploit a vulnerability in Huawei HG532 routers

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432549/IoT-botnet-DDoS-attacks-predicted-after-exploit-code-published

from Tumblr http://zoehamilton671.tumblr.com/post/169265088225
via Zoe Hamilton

Tuesday 2 January 2018

Top UK and US firms still overestimating GDPR readiness

Less than five months before the compliance deadline for the EU’s General Data Protection Regulation (GDPR), most top UK and US firms are still overestimating their state of readiness, a study suggests

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432510/Top-UK-and-US-firms-still-overestimating-GDPR-readiness

from Tumblr http://zoehamilton671.tumblr.com/post/169235037310
via Zoe Hamilton

Ransomware to hit cloud computing in 2018, predicts MIT

Ransomware targeting cloud services is one of the six biggest cyber threats likely to face organisations in 2018, according to the Massachusetts Institute of Technology

from ComputerWeekly: IT security http://www.computerweekly.com/news/450432488/Ransomware-to-hit-cloud-computing-in-2018-predicts-MIT

from Tumblr http://zoehamilton671.tumblr.com/post/169224797960
via Zoe Hamilton