Mandiant, Sophos detail dangerous ProxyShell attacks

Multiple threat actors are now coalescing their activity around the ProxyShell vulnerabilities in Microsoft Exchange Server, which sparked alarm in cyber security circles in August following a botched disclosure... Read more »

China accused of cyber attacks on Norwegian IT systems

Norway has linked a series of cyber attacks against state and private IT infrastructure in 2018 to “bad actors” operating from China. Based on technical and other evidence gathered... Read more »

How high can the contactless card limit go without two-factor authentication?

UK citizens will be able to make payments of up to £100 using a contactless card from next month, but the three-figure sum has raised a few eyebrows. The... Read more »

WhatsApp fined €225m over GDPR breaches

Facebook-owned messaging platform WhatsApp has been fined €225m (£193.4m/$266.6m) by Ireland’s Data Protection Commissioner (DPC) over breaches of the European Union’s (EU) General Data Protection Regulation (GDPR). One of... Read more »

Finance firms faced up to £760,000 costs per DNS attack during pandemic

Financial services firms have been hit hardest by domain name system (DNS) cyber attacks during the Covid-19 pandemic, with the most expensive attacks costing an average of £750,000. Figures... Read more »

Protecting children in the digital playground

The Age Appropriate Design Code from the Information Commissioner’s Office, which has now come into force, ushers in a new set of standards for digital platforms and companies. These... Read more »

Twitter tests auto-block feature for accounts at risk of abuse

Twitter has begun pilot tests of new features and settings designed to protect users from online abuse, with the intention of automatically screening out abusive users and reducing the... Read more »

Security Think Tank: Managing data securely throughout its lifecycle

Managing data securely is key to ensuring its integrity and therefore its value to the organisation, as well as reducing risk from breaches and misinformation. Although, on the face... Read more »

Experts warn on Office 365 phishing attacks

A new alert from Microsoft of a spate of phishing attacks designed to steal Office 365 user names and credentials via a series of malicious redirects has prompted warnings... Read more »

Remote workers routinely bypassed security tools during pandemic

More than a quarter of security leaders in the UK say remote-working employees either circumvented or purposely turned off security tools and services, and a third admit compromising their... Read more »
Subscribe to our Newsletter