IT

The Security Interviews: How to overcome data protection compliance challenges

February 6, 2023 add comment
Although necessary, the recent legislative requirements for data protection have become an additional burden for organisations. This is further complicated when sharing data internationally, as the legislation of the destination country also... Read more »

Ransomware operator turns their fire on two-year-old VMware bug

February 6, 2023 add comment
A two-year-old heap overflow vulnerability in VMware ESXi hypervisors seems to have come to the attention of a ransomware operator that is targeting unpatched systems indiscriminately in what has the potential to... Read more »

passive reconnaissance

February 3, 2023 add comment
By What is passive reconnaissance? Passive reconnaissance is an attempt to gain information about targeted computers and networks without actively engaging with the systems. In active reconnaissance, in contrast, the attacker engages... Read more »

How to build an incident response plan, with examples, template

February 3, 2023 add comment
Cybersecurity professionals work around the clock to prevent security incidents that would undermine the confidentiality, integrity and availability of their organization’s information assets. The stark reality, however, is that these events are... Read more »

FCA cracks down on misleading promos by social media influencers

February 3, 2023 add comment
The UK’s Financial Conduct Authority (FCA) forced the amendment or removal of 8,582 potentially misleading or outright fraudulent financial promotions during 2022, over 14 times more than the 573 interventions it made... Read more »

Security Think Tank: In 2023, we need a new way to cultivate better habits

February 3, 2023 add comment
How are those New Year’s resolutions working out for you? With 2023 now well underway, many of your best intentions for the year may have already been adjusted, deferred or abandoned entirely.... Read more »

Security Think Tank: Getting the training and development mix right

February 2, 2023 add comment
What training do we need to provide to cyber security professionals to keep them ahead of the bad guys? And how do we retain talented security professionals in such a competitive recruitment... Read more »

North Korea’s Lazarus gang exposes itself in opsec failure

February 2, 2023 add comment
A campaign of cyber attacks targeting medical research bodies and energy firms has been pinned on the infamous North Korean advanced persistent threat (APT) group known as Lazarus – the group behind... Read more »

Suspected LockBit ransomware attack causes havoc in City of London

February 2, 2023 add comment
A ransomware attack on trading software supplier Ion Group – potentially the work of the infamous LockBit cartel – has caused chaos for City of London traders, leaving them unable to perform... Read more »

Arnold Clark customer data was stolen in Play ransomware attack

February 2, 2023 add comment
Car dealer Arnold Clark is writing to a number of customers to inform them their personal data was stolen in a cyber attack claimed by the increasingly prolific Play ransomware operation. The... Read more »