Editor's News

The Institute of Information Security Professionals (IISP) has announced the findings from its 2016 member survey. With over 2,500 members working in security across a wide range of industries and roles, including a significant proportion at Senior/Lead/CISO level, the results of the IISP provide an accurate snapshot of the state of the UK cyber security landscape from those working on the frontline. The survey reveals that for over two thirds of members, information security budgets...

AdaptiveMobile, the world leader in mobile network security, predicts that up to 80% of connected devices currently deployed do not have adequate security measures in place, with four in five devices on the market vulnerable to malicious or inadvertent attacks and data breaches.  As the level of connectivity between devices continues to grow, a new model using a ‘big security’ approach of harnessing big data, telemetry and security algorithms is going to be needed to...

KnowBe4 cautioned companies to heed new FBI and Microsoft alerts, warning of hybrid targeted ransomware attacks that attempt to encrypt an organization’s entire network. Criminal hackers have upped the ante. They are changing their approach and penetrate a network, wipe out all backups, infect all key machines with ransomware and then demand payment. The latest method uses a little-known strain of ransomware called "Samas", first discovered in 2014. According to research reports by Microsoft, the...

ESET researchers have discovered a new data-stealing Trojan malware, detected by ESET as Win32/PSW.Stealer.NAI and dubbed USB Thief. This malware exclusively uses USB devices for propagation, without leaving any evidence on the compromised computer. Its creators have also employed special mechanisms to protect the malware from being reproduced or copied, which makes it even harder to detect and analyse. “It seems that this malware was created for targeted attacks on systems isolated from the internet,” comments Tomáš...

Israeli software researchers have found a way to exploit Android’s Stagefright vulnerability, previously found to leave millions of devices susceptible to cyber attacks. Stagefright was originally described as ‘the worst Android bug ever discovered’, however the exploit - dubbed ‘Metaphor’ by its creators - marks the first time the vulnerability has been compromised in the operating environment. According to Jan Vidar Krey, head of development at Norwegian security specialists Promon, Android’s inconsistent patching and system updates...

A new government backed initiative to encourage young people into careers in cyber security kicked off at this week’s Big Bang Fair at the NEC Birmingham, the largest celebration of science, technology, engineering and maths for young people in the UK. The campaign introduces the Digital Defenders – a team of ‘superheroes’ called Crypto Shield, Agent, Block and Frost Byte who save the world from cyber crime. Matt Hancock, Minister for the Cabinet Office and...

DDoS attacks are one of the most powerful tools in a cyber criminal’s arsenal and companies that come under attack will often finding themselves asking questions about why they were  attacked, who attacked them and how much time and money it will take to mitigate the assault. To help answers these questions, security firm Imperva has developed a new infographic which shows how distributed denial-of-service (DDoS) attacks come in many forms depending on the cyber...

IEEE, the world’s largest professional organisation dedicated to advancing technology for humanity, today announced the findings of an online survey that detail more than 1,900 technology enthusiasts’ views on digital safety and the future of cybersecurity. According to the results, when asked what year mobile payments would be secure enough to the point where traditional methods (such as cash and credit cards) would no longer be required, 70 percent of respondents indicated a major shift...

AlgoSec, the market leader for Security Policy Management, today announced the results of its “State of Automation in Security” survey. The survey revealed that 83% of organisations want the use of automation to manage security processes to greatly increase over the next 3 years. Other key findings from the survey include: Lack of automation causes outages and breaches. 20% of organisations experienced a security breach, 48% had an application outage and 42% had a network...

Flexera Software, the leading provider of next-generation software licensing, compliance, security and installation solutions for application producers and enterprises, today released the Vulnerability Review 2016, the annual report from Secunia Research at Flexera Software, which presents global data on the prevalence of vulnerabilities and the availability of patches, maps the security vulnerability threat to IT infrastructures, and also explores vulnerabilities in the 50 most popular applications on private PCs. Vulnerabilities are a root cause of...