NASA infosec again falls short of required US government standard
Good thing space agency doesn’t have any state secrets … oh, hang on
CSO21 Dec 2022 | 13
Infosec
Fortinet warns of critical flaw in its security appliance OSes, admin panels
Naturally, they're already under attack – so you know what to do next
Patches11 Oct 2022 | 15
Inflation, recession, pah! IT budgets set to rise in 2023
Turns out all it took was a business-disrupting global pandemic
On-Prem27 Sep 2022 | 2
Russia, Iran discuss tech manufacturing, infosec and e-governance collaboration
Proposed working group would see Moscow's miltech conglomerate Rostec operate in Tehran
Security22 Jul 2022 | 20
Indian government issues confidential infosec guidance to staff – who leak it
Bans VPNs, Dropbox, and more
Security20 Jun 2022 | 13
Emma Sleep Company admits checkout cyber attack
Customers wake to a nightmare as payment data pilfered from UK website
Security04 Apr 2022 | 33
BROADER TOPICS
Russia is the advanced persistent threat that just triggered. Ready?
Opinion Data security looks very different when your life depends on it
Security28 Feb 2022 | 121
Cyberattacker hits German service station petrol terminal provider
Shell station logistics supplier Oiltanking 'operating with limited capacity'
Security01 Feb 2022 | 15
UK government opens consultation on medic-style register for Brit infosec pros
Are you competent? Ethical? Welcome to UKCSC's new list
Security25 Jan 2022 | 53
EU needs more cybersecurity graduates, says ENISA infosec agency – pointing at growing list of master's degree courses
Skills gap needs filling somehow
Security26 Nov 2021 | 6
Turbine maker Vestas Wind Systems admits to cyber incident, refuses to confirm if ransomware is at play
Company data compromised but not systems containing customer or supplier information
Security22 Nov 2021 | 11
Patch now? Why enterprise exploits are still partying like it's 1999
Feature Am I only dreaming, or is this burning an Eternal Blue?
Security08 Sep 2021 | 28
Northern Train's ticketing system out to lunch as ransomware attack shuts down servers
£17m on shiny new Flowbird touchscreen kiosks well spent, apparently
Security20 Jul 2021 | 44
Military infosec SNAFUs: What WhatsApp and bears in the woods can teach us
Column One can’t spell shit without IT, but for Pete's sake it doesn't need to be in your endpoints
Security07 Jun 2021 | 20
Good news for pentesters and network admins: US issues ransomware guidance asking biz to skill up security teams
New approach against malware pushers mirrors how American authorities handle terrorism cases
Security04 Jun 2021 | 13
The policy of truth: As ransomware claims rise, what's a cyber insurer to do?
Feature Never again is what you swore... the time before
Security04 Jun 2021 | 38
Brit retailer Furniture Village confirms 'cyber-attack' as systems outage rolls into Day 7
Sofa, not-so-good: Angry customers still can't access systems, phones, and deliveries delayed
Security04 Jun 2021 | 25
Computer Misuse Act: Tell the Home Office infosec needs a public interest defence in law, says CyberUp campaign
Bug-hunting industry wants to know a bit more before doing that, though
Security26 May 2021 | 19
Ethics isn't a county east of London, but it's the only way to look at security
Column We are all human beings, we live in a community, and everything we do affects others
Security26 Apr 2021 | 21
Money can buy you insurance against network break-ins but investing in infosec hygiene wouldn't go amiss, says new NCSC chief
C-suites need a kick up the proverbial, says Lindy Cameron in first speech
Security30 Mar 2021 | 12
Smart doorbells on business premises make your property more attractive to burglars, warns researcher
Spend your cash on real locks, advises Cranfield University
Security15 Mar 2021 | 36
Å nei! Norway's Stortinget struck by Microsoft Exchange malware
'Data has been extracted' as Swiss-cheese servers are exploited
Security11 Mar 2021 | 22
Oh SITA: Airline IT provider confirms passenger data leaked after major 'cyber-attack'
Data from multiple aviation giants hit
Security05 Mar 2021 | 18
SitePoint hacked: Hashed, salted passwords pinched from web dev learning site via GitHub tool pwnage
If you started off there, best change your reused credentials
Devops05 Feb 2021 | 4
Today's 'sophisticated cyber attack' victim is the Woodland Trust: Pre-Xmas breach under investigation
Potentially 250,000 reasons UK nature conservation charity was targeted
Security27 Jan 2021 | 22
Digital burglars break into the Australian Securities and Investments Commission
Miscreant fingered server that held docs related to credit applications down under
Security25 Jan 2021 | 8
Will there be no end to govt attempts to break encryption? Hand over your data or the kiddies get it, threaten Five Eyes spies
Column The Great Unicorn Prayer of security services: Stay secure, but - ya know - give us backdoors
Security19 Oct 2020 | 57
COVID-19 security tips: Ensure you sack your staff without leaving their IT access enabled, says Secureworks
Infosec biz issues mildly off-the-wall guidance for incident responders
Security15 Oct 2020 | 26
Hackers hack Hackney: Local government cries 'cyberattack' while UK infosec officials rush to figure out what happened
Check bank accounts, don't open council emails, you know how this goes
Security13 Oct 2020 | 11
Your anti-phishing test emails may be too easy to spot. NIST has a training tool for that
Phish Scale hopes to make life easier for blue teams gazing at click rates
Software18 Sep 2020 | 21
Where China leads, Iran follows: US warns of 'contract' hackers exploiting Citrix, Pulse Secure and F5 VPNs
Please just patch your infrastructure, begs US-CISA
Security16 Sep 2020 | 5
Don't pay the ransom, mate. Don't even fix a price, say Australia's cyber security bods
Better yet - do the basics and your systems won't get encrypted in the first place
Security12 Sep 2020 | 68
Warehouse management software biz SnapFulfil hit by ransomware: It's not just the big dogs getting KO'd
I get knocked down, but I get up again... eventually
Security20 Aug 2020 | 4
CREST: We are investigating NCC Group certification cheat sheet scandal – and not with NCC personnel
Exclusive Infosec cert body looking into it as under-fire firm starts its own probe
Security14 Aug 2020 | 12
UK's NCSC reveals Premier League footie clubs to be ripe pickings for cybercrooks: One almost lost £1m to BEC attack
Switch on, urges GCHQ-backed public security agency
Security24 Jul 2020 | 10
Burn baby burn, infosec inferno: Just 21% of security pros haven't considered quitting their current job
Chartered Institute of Information Security finds many overworked, under-resourced, stressed
Security14 Jul 2020 | 17
Criminals auction off stolen domain admin credentials for up to £95k. Your bank account details? Barely get £50
Dark web dwellers can pick and choose from billions - billions - of logins
Security08 Jul 2020 | 7
No Wiggle room: Two weeks after angry bike shop customers report mystery orders on their accounts, firm confirms payment cards delinked
Updated It was a fraudster! Finally an excuse for why there's a £250 Lycra bodysuit on your bank statement
Databases16 Jun 2020 | 69
Have I Been Pwned breach report email pwned entire firm's helldesk ticket system
That's one way of making people check for updates
Security04 Jun 2020 | 77
More Salt in their wounds: DigiCert hit as hackers wriggle through (patched) holes in buggy config tool
Miscreants too busy mining for crypto to notice the gold lying around them?
Security05 May 2020 | 2
AsSalt-ed at the weekend: Miscreants roast Ghost, LineageOS totters as Salt bug bites
Ah oh, SaltStack's frightnin' (with apologies to Howlin' Wolf)
Security04 May 2020 | 1
Xiaomi emits phone browser updates after almighty row over web activity harvested even in incognito mode
Roundup Plus: Other infosec news from around the internet
Security04 May 2020 | 12
Tech tracker Tile testifies in Congress: Apple's geolocation nagging is so not fair
Alleges anticompetitive behaviour in the walled garden. There's no party like a third party, eh?
Edge + IoT02 Apr 2020 | 5
Access Analysis, GuardDuty and Inspector gadgets not enough? Here comes another AI-driven security tool for AWS
What have you got for us, Detective?
SaaS01 Apr 2020 | 1
Got your number? Maybe. 118 118 Money shutters website after spotting an intruder
Updated No word on what digi burglars lifted
Security24 Mar 2020 | 9
UK data watchdog slaps a £500,000 fine on Cathay Pacific for 2018 9.4m customer data leak
ICO probe found backup files not password-protected, unpatched web-facing servers, out-of-date OS and more
Security04 Mar 2020 | 14
Beware of bad Santas this Xmas: Piles of insecure smart toys fill retailers' shelves
Latest Which? study with NCC Group highlights toys it ain't smart to buy
Security11 Dec 2019 | 15
In a world of infosec rockstars, shutting down sexual harassment is hard work for victims
How a close-knit hero-worshiping culture can make reporting abusers difficult – and how help is at hand
Security04 Nov 2019 | 49
UK culture sec hints at replacing TV licence fee, defends encryption ban proposals and her boss in Hacker House inquiry
Nuggets from Nicky Morgan's grilling by select committee
Legal17 Oct 2019 | 186
Fed-up graphic design outfit dangles cash to anyone who can free infosec of hoodie pics
Make stock images great again!
Security01 Aug 2019 | 153
Driving Xtreme Cuts: DXC Technology waves bye bye to 45% of Americas Security divison
50 roles shifted off to India
Security24 Jun 2019 | 46
Strewth: Hackers slurp 19 years of Oz student data in uni's second breach within a year
Upgraded its systems after attack in early '18, just enough to detect attack in late '18
Security04 Jun 2019 | 16
Pharma-testing biz Eurofins Scientific says it fell victim to 'new version' of malware
No data nicked in weekend attack but systems and server pulled to contain infection
Security03 Jun 2019 | 10
Go on, Skippy, spill yer guts: 10.5 million+ Australians' data was breached in past 3 months
Out of 25 million? Cripes
Security13 May 2019 | 23
Brit events and info biz Incisive Media admits open server port may have left readers deets exposed
Updated Home of CRN UK, Computing and others warn remaining readers to update their freakin' passwords
Security29 Apr 2019 | 8
There's NordVPN odd about this, right? Infosec types concerned over strange app traffic
Firm explains but security folk not appy with clarifications
Security26 Apr 2019 | 95
Old-school cruel: Dodgy PDF email attachments enjoying a renaissance
Let's go back... way back
Security19 Apr 2019 | 30
Hackers bragged that pretty vanilla breach included FBI watchlist? Well, colour us shocked
It didn't, by the way – it's a bunch of ad industry folk
Security16 Apr 2019 | 18
Patch blues-day: Microsoft yanks code after some PCs are rendered super secure (and unbootable) following update
Sophos, Avast users left wailing as update borks older OSes
OSes11 Apr 2019 | 48
You don't need a PhD to phish a Brit university: Nonprofit claims 100% hit rate is easy peasy
And if it ain't that, it's hacked-off students firing out DDoSes
Security04 Apr 2019 | 42
New phisherman's friends and a few old favourites slither out of WatchGuard's Security Report
New entry in network attack hit parade: That 2017 Cisco WebEx flaw you patched already (right?)
Security21 Mar 2019 |
NASA's crap infosec could be 'significant threat' to space ops
Inspectors not happy with stagnant security practices
Security11 Mar 2019 | 36
Biting the hand that feeds IT
