Editor's News

The deadline for complying with the new General Data Protection Regulation (GDPR) is just a year away, yet the majority of businesses are struggling to implement good information governance because they fail to engage employees to help establish and enforce an organisation-wide policy for dealing with information. According to the latest study from Cohasset Associates and ARMA International, a ‘keep everything’ culture persists at 81% of businesses, and 84% of businesses believe that employee resistance...

Gartner, Inc. today highlighted the top technologies for information security and their implications for security organisations in 2017. Analysts presented their findings during the Gartner Security & Risk Management Summit, being held in the US through Thursday. "In 2017, the threat level to enterprise IT continues to be at very high levels, with daily accounts in the media of large breaches and attacks. As attackers improve their capabilities, organisations must also improve their ability to...

A recent global study from Symantec, a world leader in cyber security, reveals that U.K. CISOs still fail to grasp the security risks their organisations face due to the rampant use of unsanctioned cloud applications. From popular productivity apps to free file transfer services, cloud apps are becoming increasingly popular within organisations. However, many of them are unsanctioned and downloaded without the knowledge or approval of the IT team. In the U.K., CISOs estimate one...

Almost a third (30 per cent) of the general public would welcome the right to get their personal data erased from records held by political parties and associated organisations, according to a poll1 of UK attitudes commissioned by SAS. With political parties increasingly targeting voters based on demographic and psychographic information, the study investigated attitudes around how voters’ personal data is being handled by political parties, alongside their willingness to share political preferences.   The...

Sun Tzu probably would have suffered a stroke if you told him that thousands of years in the future, sprawling and complex communications systems capable of semi-autonomous thought would unify communications across the globe and make the business world reliant on a finite set of technologies. While the context is different, “know thine enemy” is a concept as applicable to network security as it ever was to physical combat. The number of network-based threats that...

Netskope, the leader in cloud security, today announced the release of the June 2017 Netskope Cloud Report™ on enterprise cloud service usage and trends. According to the report, cloud DLP policy violations in collaboration services like Slack and HipChat are on the rise, accounting for nearly 10 percent of total violations this quarter. These services have skyrocketed in popularity as methods of sharing and downloading data, emphasising the need for enterprises to put policies in...

Researchers from Context Information Security have discovered a flaw in Virgin Media wireless home routers, allowing them to gain unauthorised administrative-level access to the devices. After reverse engineering software from the Super Hub 2 and Super Hub 2AC, manufactured by Netgear, Context’s Jan Mitchell and Andy Monaghan discovered vulnerabilities in a feature allowing users to create backups of their custom configurations - such as port forwarding and dynamic DNS settings – which could be restored...

Kaspersky Lab experts have discovered an unusual new Trojan being distributed through the Google Play Store. The Dvmap Trojan is capable not only of obtaining root access rights on an Android smartphone, it can also take control of the device by injecting malicious code into the system library. If successful, it can then delete root access, which helps to avoid detection. The Trojan has been downloaded from Google Play more than 50,000 times since March,...

Synopsys, Inc. have today released ‘The State of Software Composition 2017’ report, following their recent investigation into the security of the software supply chain- arguably one of the most significant challenges the software industry is currently facing. Using their own software composition analysis product, Protecode™ SC,  Synopsys analysed real-world data, over a 12-month period (Jan 1st 2016- Dec 1st 2016). The report details the analysis of 128,782 software applications, subsequently revealing 16,868 unique versions of...

Building strong relationships and forming key partnerships with stakeholders is the key to managing cyber security risks according to Lord Sebastian Coe, who was giving a keynote talk about Cyber, Risk & Resilence in Sport & Business during the final day of Infosecurity Europe 2017. Lord Coe stated that the world of sport is now “subjected to the same type of cyber attacks that other organisations have been dealing with for some time”. The IAAF...