Featured

JD Sports has warned customers that bought items on its website, as well as those of Size?, Blacks and Millets, between November 2018 and October 2020 may have been impacted in the breach. The company has urged customers to be wary of potential phishing emails, calls and texts in the aftermath of the breach, while claiming they were proactively contacting those whose details were confirmed to be stolen. Paul Bischoff, Consumer Privacy Advocate at Comparitech...

Acronis, a global and visionary cyber protection company, today announced a three-year partnership with London´s oldest professional football club, Fulham FC. EveryCloud.co.uk will support Acronis as its ‘Strategic #Cyberfit’ delivery partner providing its cutting-edge cyber protection solutions and cloud backup service to the club. Under the Strategic #Cyberfit delivery partner EveryCloud.co.uk, Acronis will provide Premier League side Fulham FC with a full suite of cyber protection solutions. Arturs Banks, Head of IT of Fulham FC,...

Strathclyde University’s cyber spin-out Lupovis has launched a new service designed to help security analysts and Managed Security Service Providers (MSSPs) identify false positive security alerts from genuine threats. False positives are flagged by security products that identify an innocent activity as a malicious attack and security analysts often spend a significant proportion of their day investigating them. This drains resources and overwhelms often unstaffed security teams. Through Lupovis’s new platform features, which are dubbed...

BlackBerry's inaugural Quarterly Threat Intelligence Report highlights the volume and model of treats across a range of organisations and regions, including industry-specific attacks targeting the automotive and manufacturing, healthcare and financial sectors. In the 90 day period between September 1 and November 30 2022, BlackBerry says it stopped 1,757,248 malware-based cyberattacks. This includes 62 unique samples per hour, or one sample each minute. The most common cyber-weapons used in  attacks include the resurgence of the...

Salt Security, the leading API security company, today announced that it has joined the Google Cloud Partner Advantage Program as a Build Partner. With the partnership, users can now access the Salt Security API Protection Platform directly from the Google Cloud Marketplace. This gives Google Cloud customers the ability to quickly and easily leverage the Salt Security API Protection Platform, gaining deep context for API discovery, attack detection and prevention, and shift-left capabilities.  As a...

Armis, the asset visibility and security company, has divulged findings from the Armis State of Cyberwarfare and Trends Report: 2022-2023, which measured global IT and security professionals’ perceptions of cyberwarfare. It found that while 84% of UK organisations claimed they had programmes and practices in place to respond to cyberwarfare threat, only one-third (32%) said their plans are validated by best practice frameworks, which is less than the global average of nearly 40%. In addition,...

Roughly 37 million T-Mobile customers have had their information stolen in a data breach, according to a statement published by the company late last night. Fortunately, T-Mobile has said that while hackers accessed names, addresses, and dates of birth, they were not able to access more sensitive information such as Social Security or credit card numbers.  But according to Sam Curry, Chief Security Officer at Cybereason, “what is or isn't sensitive is an important question...

A security notification released to PayPal customers this morning has revealed that up to 35,000 customers have fallen victim to a credential stuffing attack. Credential stuffing attacks involve bad actors systematically trying username and password combinations in order to break into an account. This means that PayPal itself was not hacked - only the accounts of affected customers.  Credential stuffing attacks such as this are a key driver of the security industry’s insistence on good...

KnowBe4 has announced the results of its 2022 and Q4 2022 top-clicked phishing report. The results include the top email subjects clicked in phishing tests, top attack vector types, holiday phishing email subjects and more insightful information that reveal the most popular phishing email tactics. Phishing emails continue to be one of the most common and effective methods to maliciously impact a variety of organisations around the world – everyone is a potential victim. Cybercriminals...

Researchers at Chainanalysis have released the ransomware section of their 2023 Crypto Crime report, revealing that ransomware payments fell from $766m in 2021 to $457m in 2022 Chainanalysis was quick to point out that this does not mean attacks are down, or at least not as much as the drastic dropoff in payments would suggest. Much of the decline is due to victim organisations increasingly refusing to pay ransomware attackers.  One major factor in victim...