Featured

The field of cybersecurity can be a somewhat unforgiving working environment. Bad actors will quite literally stop at nothing to wreak havoc for their own personal gain, financial or otherwise. Unfortunately, no public holiday or even pandemic, offers a hiatus from their malicious pursuits. Security professionals are burdened with unrelenting pressure to protect their organisation; all whilst likely understaffed. Moreover, keeping cyber safe is often an expectation that is taken for granted. It would seem...

Lindy Cameron, the first woman CEO of the National Cyber Security Centre – a public facing division of GCHQ and primary technical authority on cybersecurity - is replacing its first CEO, Ciaran Martin, when he steps down on 31 August. Cameron will then formally become CEO in October following a handover period. Cameron has excellent credentials for the role with more than twenty years’ experience in national security policy and crisis management. These include responsibility...

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, has released a new report that explores how and why the reputation of security departments have traditionally been perceived as “The Department of No.”   This new report, authored by Javvad Malik, security awareness advocate at KnowBe4, explains how many security teams face a reputational challenge within their organisations. Because they are responsible for the well-being of the organisation at large,...

We are now more than halfway through the year, and what a crazy half it has been, both in terms of the global pandemic but also when you consider the volatile climate that the cybersecurity industry finds itself in. We wanted to find out what trends had been seen, how organisations should go about ensuring security is being kept as a priority, the impact Covid-19 will have and the importance of having a strong security...

Individuals and  entities from North Korea, China and Russia, responsible for or involved in 'WannaCry', 'NotPetya', 'Operation Cloud Hopper' and the OPCW (Organisation for the Prohibition of Chemical Weapons) cyber attacks have been identified and received travel bans and an asset freeze in the first ever imposition of restrictive sanctions by the EU Council.  People and entities in the EU are also forbidden from making funds available to those listed. In a public statement the EU says: “In order to...

Edgescan's Senior Security Consultant Guram Javakhishvili has discovered several vulnerabilities across a number of popular applications. Some of these are not yet publicly available. As soon as the vendor implements the fixes, those issues will also be added to this list and article will be updated accordingly. CMS Made Simple 2.2.13 CMS Made Simple is a Content Management System that was first released in July 2004 as an open source General Public License (GPL) package....

IT Security Guru interviewed Nick Bell, detective superintendent and national policing director for Cyber Resilience Centres with the NPCC National Cybercrime Programme. Q1: This is the first role of its kind within policing  - why was it important to establish the role? Ans: “Policing needs to reach out across partnerships and the Cyber Resilience Centre (CRC) network brings together so much knowledge and experience across business, academia and the police to combat cybercrime and protect...

It will become illegal for UK telecos to buy new Huawei equipment from the end of this year once a new bill takes effect. Culture secretary Oliver Dowden told the house of commons yesterday that the legislation would also require the complete removal of all Huawei kit from 5G networks by 2027. The decision followed advice from the NCSC which recommend that Huawei’s post-FDPRA (US sanctions) equipment is not used in the UK at all, as continuing to supply...

Today Tony Morbin joined IT Security Guru as editor in chief, signalling a drive to further develop this vital news and information source for the cyber security industry. Last week Tony left SC Media UK, the world’s longest established cyber security title, where he oversaw the transition from print to digital, as well as more recently engaging in the move from live to digital events during the coronavirus pandemic. Tony has also been publisher at Ten...

The COVID-19 Threat Intelligence Insight report was provided by AT&T Cybersecurity and the Telco Security Alliance (TSA), which observed cyberthreat activity between January and June 2020. The TSA consists of a group including Singtel (Trustwave), and Telefónica (ElevenPaths), and aims to offer enterprises comprehensive cybersecurity insights to help them address the threat of cyberattacks and the evolving threat landscape.   The findings include threat intelligence examined and provided by AT&T Alien Labs Open Threat Exchange,...