Editor's News

Assets within energy companies can often be 20-30 years old Speaking at the Cyber Security Show in London, Frederic Stalin, energy sector director at Lockheed Martin UK said that it sometimes comes across assets in energy which are 30 years old or more and said that any system which is 20-30 years old is different to modern expectation. He said: “Energy is a critical part of infrastructure and energy is a politically interesting topic and...

Attackers are becoming more sophisticated in their capabilities, but are aided by a failure to deploy patches for flaws which are left open for years. According to the 2015 Verizon Data Breach Investigation Report, which this year contains information from 70 contributing organisations, 79,790 security incidents and 2,122 confirmed breaches across 61 countries, found that 23 per cent of recipients open phishing messages and 11 per cent of recipients click on attachments, The report also...

In a global operation coordinated by the INTERPOL Global Complex for Innovation in Singapore, a group of leading IT companies and law enforcement agencies have disrupted the Simda botnet. Including a network of thousands of infected PCs around the world, the SIMDA malware collects information about an affected system, checks for the presence of certain processes, including those used for malware analysis and modifies HOSTS files, which redirects users to malicious sites whenever they try...

Getting the attention of the board when it comes to information security can be achieved by using the correct language and terms that they understand. Speaking on a panel at the Cyber Security Show which is held under Chatham House Rule, three CISOs and a security vendor managing director said that when moving cyber security further up the board's agenda, the best tactics are to use soft skills and know who you are talking to....

Cyber has become a major part of attack and defence, and the board and business are as accountable as IT. Speaking at the Cyber Security Show which is held under Chatham House Rule, a former director general of a Goverment intelligence agency who is advising for security companies, said he was struck by how much cyber had become the issue of the moment, and how cyber intelligence was a key part of modern knowledge. They...

The threat of third parties and challenge of creating a workable strategy can be better achieved with a zero-trust model. Speaking on a panel at the Cyber Security Show which is held under Chatham House Rule on the theme of “getting the basics right”, looking at the core components and third party connections were the key themes. The panel, made up of three CISOs and a major security vendor CTO, agreed that it was important...

Independent hotel management company White Lodging has released information about a breach of data breach investigation at some selected food and beverage outlets. The company has announced the suspected breach of point of sales systems at food and beverage outlets, such as restaurants and lounges. The investigation focuses on the period July 3rd 2014 to February 6th 2015 at ten properties. Only guests at the hotels who used their credit card at named outlets, and...

RSA Conference has announced a new London event to be held in the same week as the annual Infosecurity Europe.   Named “RSAC Unplugged”, the free day-long event will take place on 4th June at the Kensington Roof Gardens and is described as “informal, up close and personal, intimate”. The event clashes with the annual Infosecurity Europe conference and exhibition, which this year has relocated to Olympia and takes place between 2nd and 4th June....

A joint operation between the Europol European Cybercrime Centre (EC3), Joint Cybercrime Action Taskforce (J-CAT) and authorities in the USA and Netherlands has targeted and sinkholed the Beebone botnet.   A polymorphic downloader bot that installs various forms of malware on victims’ computers, it may have infected tens of thousands of computers and the malware is sophisticated enough to spread more than five million unique variants across more than 195 countries.   The joint action was...

A malware campaign spied on Russians to steal financial data and information related to smartcards.   According to research by ESET, the group behind “Operation Buhtrap“ began infecting last year and uses different code signing certificates and evasive techniques to avoid detection.   Operated by a group noted for targeted attacks and not financially-motivated tactics, infection begins with a malicious Word attachment, which uses a combination of off-the-shelf malware tools, a NSIS-packed Trojan downloader and...