Editor's News

New analysis from NCC Group has revealed that only 26% of vulnerabilities discovered over the last nine years by its research team are likely to have been fixed.   For the first time, the global cyber security and risk mitigation expert analysed nine years of vulnerabilities discovered by its researchers. Of these, just 289 were classed as “closed”, meaning they were either fixed or dismissed once the risk was accepted by the vendor. Of these...

A new survey among more than 100 founders of London tech startups, conducted by Studio Graphene in partnership with City RoadCommunications, has revealed the main staffing challenges and concerns that are holding back London tech companies. It found: 33% of the founders believe there is a shortage of skilled tech workers in London Worryingly, 30% also say their growth has been hampered as a result of them not being able to hire the right employees Finding people who fit...

Dixons Carphone is investigating a breach involving millions of customer payment cards and personal data records. The firm has revealed details of an attempt by hackers to gain access to one of the processing systems  in July 2017. The processing system in question contained details of 5.9m payment cards. Dixons Carphone said there was no evidence of fraud as a result of the incident and added that it was working with leading cybersecurity experts to examine...

It seems that tricksters on Google Play have found another way to make their deceptive apps appear more trustworthy to users. The trick takes advantage of the fact that apart from the app icon and name, there is one more element the user sees when browsing apps – the developer name, displayed just below the app name. So, some app authors have been setting fictitious, high numbers of installs as their developer names, in an...

CTOs say the party line that digital transformation is about the customer first and foremost is flawed and it’s actually about business efficiency and security. That’s the finding of research by Radware® (NASDAQ: RDWR), a leading provider of cyber security and application delivery solutions, which has released its 2018 Executive Application and Network Security Report today. Now in its fifth year, the study found that many executives including CEOs, CIOs and CTOS, rank security as...

As the shining lights of the information security industry descend on London, Red Sift, a data-driven cybersecurity platform, has uncovered the disconcerting reality that three quarters of these industry leaders are falling short on essential email authentication measures, leaving their trusted brands open to email spoofing.  Red Sift analysed the DMARC records for exhibitors’ primary email domains and found that of the 372 security solutions vendors busily advising users on cybersecurity best practice at this...

By David Shear & Mike Mimoso, Flashpoint Job listing and recruitment portals have been an attraction for cybercriminals given the volume of personal information uploaded to those sites in the form of resumes, cover letters and other data specific to individuals. But there’s more to criminals’ interest than just stealing personally identifiable information. Security shortcomings on some of these sites can expose job applicants, business account holders and the recruiters themselves to a number of...

Less than a quarter (22%) of businesses believe social engineering will be a major threat in the next two to three years, despite the fact that 42% of fraud prevention managers are frequently experiencing phishing attacks, according to research by Callcredit Information Group. The research highlights the anomaly between the growing risk which social engineering poses and the perception of businesses, in terms of where it sits in their fraud prevention priorities.  Of the 105...

Immersive Labs, the highly accoladed UK cyber security company that helps companies identify and develop talent through a unique cloud-based cyber training and assessment platform, has today announced that over 100 labs on its platform have been deemed suitable learning resources to help cyber security professionals study for their CREST CSPA and CREST CRT examinations. These CREST exams are vital to providing individuals with the professional qualifications needed to progress a career in cyber security.    “The primary aims of CREST...

Outpost24 has today announced the results of a survey of 155 IT professionals, which revealed that 71 percent believe they can successfully hack any organisation using one of four common attack vectors, with social engineering being the most popular choice. The survey, which was carried out at the RSA Conference in April 2018, asked respondents about the techniques they would use to hack an organisation and 34 percent revealed that would use social engineering, 23...