Security

Crypto.com confirms $34 million hack caused by 2FA bypass exploit
A collection of various coins with cryptocurrency logos embedded onto them
cryptocurrencies

Crypto.com confirms $34 million hack caused by 2FA bypass exploit

The cryptocurrency exchange previously denied that any customers lost funds despite numerous reports from customers and analysts
21 Jan 2022
Openreach offers £20,000 reward for information on stolen copper cables
Detail of a BT Openreach van and a coil of yellow broadband fibre cable on the ground and awaiting installation
broadband

Openreach offers £20,000 reward for information on stolen copper cables

Openreach head of Security Services Richard Ginnaw said that the thefts had “severely impacted" the day-to-day lives of people in Cambridgeshire
21 Jan 2022
IT Pro News In Review: UK four-day working week, cyber crime in schools, GDPR fines of €1bn in 2021
IT Pro News In Review: UK four-day working week, cyber crime in schools, EU GDPR fines of €1bnvideo
Business strategy

IT Pro News In Review: UK four-day working week, cyber crime in schools, GDPR fines of €1bn in 2021

Catch up on the biggest headlines of the week in just two minutes
21 Jan 2022
UK and Australia partner on cyber security investment
Marise Payne and Liz Truss greet each other
Policy & legislation

UK and Australia partner on cyber security investment

The countries are set to invest in infrastructure for Indo-Pacific states as well, in the areas of energy, investment, and technology
20 Jan 2022
Red Cross "appalled" by data breach targeting 515,000 vulnerable people
Red Cross officers assist in Yemen after attack kills many locals
data breaches

Red Cross "appalled" by data breach targeting 515,000 vulnerable people

The charitable organisation has begged cyber attackers not to leak the data online in emotional plea
20 Jan 2022
White House issues memorandum to bolster national security systems
US president Joe Biden speaking to press at the White House while sat in front of the US flag
cyber security

White House issues memorandum to bolster national security systems

Agencies must now implement multi-factor authentication within 180 days, along with encryption for data at rest and in transit
20 Jan 2022
A month in the life of a social engineer - part three
The outline of a mysterious figure surrounded by red and blue lights
social engineering

A month in the life of a social engineer - part three

With the master plan now well underway, we learn how the hacker exploits their target's ‘unpatchable’ human flaws to gain access to corporate systems
20 Jan 2022
Skills 'deficit' forces Student Loans Company to spend heavily on temp staff
An unidentified person coding on a laptop placed on a bright desk
Careers & training

Skills 'deficit' forces Student Loans Company to spend heavily on temp staff

The organisation has spent £2.6 million on agency staff as it struggles to retain technical employees
19 Jan 2022
Cyber incident strikes Gloucester City Council as residents suffer service outages
A cyber attack depicted in binary code
cyber security

Cyber incident strikes Gloucester City Council as residents suffer service outages

The Council has been hit with so-called 'sleeper' malware in what could be the second major cyber incident in the past decade
19 Jan 2022
IOC defends China Olympics app after 'devastating flaw' revealed
An image of a health worker standing in front of a Beijing 2022 sign
Security

IOC defends China Olympics app after 'devastating flaw' revealed

The app may even be breaking Google and Apple’s app store policies when it comes to privacy, according to Citizen Lab
19 Jan 2022
Windows Server admins agree to forgo broken patches
Image of a server rack
Microsoft Windows Server

Windows Server admins agree to forgo broken patches

Many administrators have agreed to wait until February's round of patches to avoid operational disruption caused by broken fixes
19 Jan 2022
FireEye and McAfee Enterprise relaunch as Trellix
The FireEye logo as seen on a smartphone
mergers and acquisitions

FireEye and McAfee Enterprise relaunch as Trellix

The new pure-play cyber security firm’s platform combines automation, machine learning, and threat intelligence
19 Jan 2022
The UK's IoT proposals are riddled with ‘astonishing’ gaps
Image of small robots connected to represent a botnet
Internet of Things (IoT)

The UK's IoT proposals are riddled with ‘astonishing’ gaps

The Product Security and Telecommunications Infrastructure (PTSI) Bill aims to address the connected devices security nightmare, but experts agree it …
19 Jan 2022
DHL overtakes Microsoft as the most imitated brand in phishing attacks
A large DHL cargo box stacked against similar boxes
phishing

DHL overtakes Microsoft as the most imitated brand in phishing attacks

Check Point Research reveals that the logistics giant accounted for almost a quarter of global phishing attacks in 2021
18 Jan 2022
Ubuntu Security Guide to simplify DISA-STIG compliance
Ubuntu 20.04 desktop
Linux

Ubuntu Security Guide to simplify DISA-STIG compliance

The automated configuration tooling is specific to Ubuntu 20.04 LTS
18 Jan 2022
Aldi launches its first checkout-free store in London
Aldi Greenwich Store
smart city

Aldi launches its first checkout-free store in London

The store uses facial age estimation technology provided by Yoti to verify the purchase of age-restricted products
18 Jan 2022
European data regulators issued €1.1 billion in GDPR fines in 2021
Euro currency symbol displayed on a screen with European Union flag
General Data Protection Regulation (GDPR)

European data regulators issued €1.1 billion in GDPR fines in 2021

The UK placed sixth on the GDPR fine table with its £20 million fine levied against British Airways
18 Jan 2022
NSW ditches e-voting system after glitch left citizens unable to vote
An aerial view of Sydney's harbour
digital transformation

NSW ditches e-voting system after glitch left citizens unable to vote

The electoral commissioner is also seeking the validity of the results in three councillor elections
18 Jan 2022
NCA plots education drive to crack down on children exploring cyber crime
National Crime Agency (NCA) logo on a plaque attached to its headquarters
hacking

NCA plots education drive to crack down on children exploring cyber crime

With children as young as nine being referred to the NCA for launching DDoS attacks, the new campaign aims to educate children in the consequences of …
18 Jan 2022
The government’s anti-encryption campaign shows it’s learned nothing from the war on drugs
A solider standing in a field of flowers
encryption

The government’s anti-encryption campaign shows it’s learned nothing from the war on drugs

Criminalisation has almost always backfired through history, pushing illicit materials further into the hands of criminals
18 Jan 2022
Safari bug lets websites track browsing activity and unique identifiers
A mouse hovering over the Safari logo on a MacBook
web browser

Safari bug lets websites track browsing activity and unique identifiers

The flaw, found in Apple's WebKit browser engine, affects Safari 15 on macOS and all browsers on iOS and iPadOS 15
18 Jan 2022
Russia's "politically motivated" REvil raid could be used as leverage, experts warn
Flag of Russia on a computer binary codes falling from the top and fading away
ransomware

Russia's "politically motivated" REvil raid could be used as leverage, experts warn

The cyber security industry says the FSB's arrests are “unlikely” to signal a change in Russia’s policy
17 Jan 2022
Microsoft warns full scope of Ukraine cyber attacks ‘not fully realised’
Military personnel examine a server
ransomware

Microsoft warns full scope of Ukraine cyber attacks ‘not fully realised’

The company's investigation into the attacks targeting Ukraine revealed atypical characteristics of the "destructive" campaign that disguises itself a…
17 Jan 2022