Learn a wide variety of topics for a lifetime with this eclectic bundle.Despite some occasional good news on the cybersecurity front, cyber attacks continue to move even faster and get more nefarious all the time.For business owners, it's imperative to make cybersecurity a priority.However, that's not always in the budget.
Italy blames Russia's Wagner group for surge in migration DW 03/13/2023
Italian Defense Minister Guido Crosetto said on Monday that the rising number of migrants crossing the Mediterranean is part of "hybrid warfare" waged by Russia using mercenaries as proxies on countries supporting Ukraine."I think it is now safe to say that the exponential increase in the migratory phenomenon departing from African shores is also, to a not insignificant extent, part of a clear strategy of hybrid warfare that the Wagner division is implementing, using its considerable weight in some African countries," Crosetto said in a statement.
Microsoft warning after DDoS attack disrupts Russian bank
Microsoft has warned Europe to be on alert for cyber attacks from Russia this winter, just as a series of attacks hit Russian organizations - including the country's second-largest bank.The government-controlled St Petersburg-based VTB finaincial institution announced on Tuesday it was facing an "unprecedented cyber attack from abroad," and added that the DDoS flood was the largest in the bank's history.
Podcast: 2023 compliance and storage outlook | Computer Weekly
In this podcast, we look at the global landscape for data storage compliance in 2023 with Vigitrust CEO Mathieu Gorge.We talk about the big picture of geopolitical instability that characterises the legal and regulatory landscape.Also, Gorge talks about the likely rise of increased privacy regulation, the extent to which the UK and the EU will diverge from each other in General Data Protection Regulation (GDPR) and other regulations, and the effects of instability on data held in particular countries.
The European Union (EU) General Data Protection Regulation (GDPR) will be replaced in the UK with a data protection system that is simpler, according to UK digital secretary Michelle Donelan.
Ensuring compliance across the multi-cloud - Amazic
A cloud-native organization inevitably embraces multicloud to solve complex business problems and to avoid vendor lock-in.However, this setup has its own set of regulatory concerns.Managing security risk in the cloud continues to be overwhelming, especially in a multicloud setup.To that end, several establishments worldwide have introduced frameworks and guidelines that help organizations protect data.
Darktrace snaps up former Cohesity executive to lead channel efforts
Cyber security AI specialist Darktrace has announced the appointment of Dan Monahan as senior vice president of its global partner organization.Reporting to chief revenue officer Denise Walter, Monahan will oversee channel sales, technology alliances, and strategic partners.That includes evolving the vendor's partner program, driving growth with new partners, as well as deepening relationships with those already working with Darktrace.
OpenAI predicts biz can break a billion in revs by 2024
In Brief The squishy brains behind OpenAI's artificial ones are predicting developments like the ChatGPT system will see money flooding in - with a forecast of earning around $1 billion by 2024.According to an investors' briefing document seen by Reuters the machine-learning biz expects to break $200 million in revenues next year and bust through the billion mark 12 months later.
NCSC Warns That AI is Already Being Used by Ransomware Gangs
Malicious attackers are using artificial intelligence (AI) for more effective cyber attacks, and the volume and impact of threats will increase in the next two years.
AI tools make it easy to generate believable text, images, audio, and deepfake videos that can be used to deceive targets. [ more ]
AI will heighten global ransomware threat, says NCSC | Computer Weekly
The UK's National Cyber Security Centre (NCSC) has warned that AI will be used to increase the volume and impact of cyber attacks involving ransomware.
AI is already being used in malicious activity, reducing the barrier of entry for cyber criminals.
The NCSC is urging organizations and individuals to follow their advice to strengthen their defenses against cyber attacks. [ more ]
AI models trained on quality exploit data have the potential to generate malware that could evade detection by current security filters.
The most advanced generative AI tools will be in the hands of the most capable attackers, potentially increasing the effectiveness of cyber attacks. [ more ]
UK, US accuse Russia of cyber-espionage campaign against top politicians
The UK government and the United States have accused Russian security services of engaging in a cyber-espionage campaign against politicians and organizations.
Losses from cyber attacks in 2018 amounted to at least $45 billion, according to a report. [ more ]
No 10 urged to investigate targeting of MPs and others by Russian spies
Russian state spies have targeted British MPs, peers, civil servants, and journalists with cyber-attacks for the last eight years.
The UK government believes that the hacking group Star Blizzard, linked to the Russian FSB, was behind several high-profile cyber-attacks, including the leak of US-UK trade talk papers in 2019. [ more ]
Iran terrorist crew broke into 'multiple' US water systems
Iran-linked cyber thugs have exploited Israeli-made programmable logic controllers (PLCs) used in multiple water systems and other operational technology environments in the US.
The cyber criminals likely gained access to the PLCs by using default passwords for internet-accessible systems.
No operational systems at the water facilities have been impacted and safe drinking water has not been compromised. [ more ]
Stock up on torches and candles in case of power cuts, deputy PM warns
Britain's deputy PM, Oliver Dowden, has urged the public to prepare for power cuts and digital communication failures by stocking up on candles, torches, and battery-powered radios.
A national resilience academy will be launched to help people and businesses prepare for future pandemics, natural disasters, and cyber-attacks. [ more ]
UK's Cleverly tells struggling Moldova: 'You are not alone'
Sign up for the View from Westminster email for expert analysis straight to your inbox Get our free View from Westminster email British Foreign Secretary James Cleverly visited Moldova's capital Thursday, where he is set to pledge 10 million pounds ($12.5 million) in financial aid to help the small, embattled country tackle what his office called malign interference from Russia.
Public must recognise collective responsibility' for keeping UK safe, says MP
For free real time breaking news alerts sent straight to your inbox sign up to our breaking news emails Sign up to our free breaking news emails Members of the public need to share responsibility for keeping Britain safe from hostile regimes such as Russia and China, the chairwoman of the Commons Foreign Affairs Committee has said.
The mastheads report on fears for the triple lock and expectations from Rishi Sunak's Government.The Daily Telegraph and the Daily Express lead on reports the Prime Minister and the Chancellor plan to reverse the triple lock on pensions.Mr Sunak is meanwhile featured on the front of The Times warning that people cannot expect the state to fix everyone's problems.
AOC Parody Account Removed From Twitter - Likely Just The First Of Many To Come - Social Media Explorer
WASHINGTON DC, DECEMBER 7, Rep. Alexandria Ocasio-Cortez prepares to address a crowd during a rally ... [+] Getty Images The parody Twitter account of New York Congresswoman Alexandria Ocasio Cortez, which had attracted tens-of-thousands of new followers as well as Elon Musk's attention was shut down on Friday.
Cyber Security- Protecting your Digital World | Jonathan Pires, Sutton Grammar School
Cybersecurity (Image: Wikipedia Commons) With the increasing use of technology, cyber threats have become a major concern for individuals and businesses.Cyber attacks can compromise your personal and sensitive information, cause financial losses, and disrupt your digital life.Protecting yourself and your devices from cyber threats is essential.
Columbian Lawyers bring in cybersecurity expert for monthly meeting
On Wednesday, May 3, the Columbian Lawyers Association of Brooklyn hosted a monthly meeting at Gargiulo's Restaurant in Coney Island, where attorney Daniel Garrie, a top voice in the cybersecurity and computer forensic space for over 20 years, gave an enlightening lecture on cybersecurity.The issue has become increasingly important since the pandemic, Columbian Lawyers President Salvatore Scibetta explained.
Half of cyber leaders to switch jobs by 2025, citing stress | Computer Weekly
Nearly half of cyber security leaders plan to change jobs in the next two years, and half of those plan to leave the security sector for good, citing " multiple work-related stressors", according to statistics gathered by Gartner analysts.It said that organisations that do not view security risk management as critical to their success, that maintain compliance-centric security programmes, have low levels of boardroom support, and subpar industry-maturity would be likely to experience higher attrition rates as security specialists seek roles where they feel valued, and can have a real impact.
IT's shift to the cloud: Veeam's data protection report in detail | Computer Weekly
markrubens - Fotolia
By IT has undergone a significant shift to the cloud, but may have stabilised - for now - at about half of corporate workloads, with the other half in the datacentre.Meanwhile, the trend is towards using the cloud as part of the backup process, with a large majority expecting to have gone down that road by 2025.
Bug bounty programme operator and ethical hacking platform HackerOne has launched a Gold Standard Safe Harbour (GSSH) statement for its customers to help them demonstrate that they can and will protect ethical hackers from liability when hacking in good faith.Any vulnerability disclosure policy or operational bug bounty programme should already include a safe harbour statement to outline the legal protections ethical hackers can expect, but HackerOne believes that by creating a standardised boilerplate, customers can swiftly adopt a short, broad and easily understood standard, and hackers no longer have to parse the different terms and conditions of multiple different statements.
Failure of Russia's cyber attacks on Ukraine is most important lesson for NCSC
The failure of Russian cyber attacks on Ukraine to achieve their intended impact has been an important lesson for the UK's National Cyber Security Council (NCSC), according to its CEO.
Threat actors abused lack of MFA, OAuth in spam campaign
The Microsoft 365 Defender Research Team has warned users to be on their guard against a growing number of cyber attacks that abuse OAuth applications as part of the attack chain, after investigating an incident in which malicious OAuth apps were deployed on compromised cloud tenants, then used to take over Exchange servers to conduct spam campaigns.
It's a system of servers that are located in various locations around the globe, and they are used to deliver content to users based on their geographic location.CDN is designed to improve the performance and availability of websites and other online applications by reducing the distance between the content and the end user.
Microservices and Zero Trust: A Match Made in Metaverse Heaven
A security guard can be compared to a Zero Trust Architecture(ZTA)[1] in the sense that both aim to maintain a secure environment by continuously monitoring and verifying the identity of individuals or devices accessing resources.Just as a security guard checks the identity of everyone who enters a building, a ZTA verifies the identity of all devices and users trying to access sensitive information or systems, and only grants access if their identity is confirmed.
This is why you want to apply for a position in cyber security - Amazic
Are you looking for an exciting and challenging career that is in high demand?Look no further than cyber security.With the increasing frequency of cyber attacks and data breaches, companies and organizations are in desperate need of skilled cyber security professionals to protect their networks and data.
Rubrik customer, partner data exposed in possible Clop attack | Computer Weekly
Rubrik, a supplier of cloud data management and security services, has disclosed a data breach, possibly attributable to the Clop (aka Cl0p) ransomware operation, arising through a previously reported zero-day in a third-party supplier's managed file transfer (MFT) software.The issue, found in Fortra's GoAnywhere MFT product, was first communicated to Rubrik in February of 2023.
ChatGPT wrote a bogus newsletter reporting a fictitious fight at a Connecticut middle school
A middle school in South Windsor, Conn. has advised parents that someone was circulating a fictitious school newsletter evidently written by the artificial intelligence chatbot ChatGPT.The phony newsletter described a fictitious conflict between students, and listed names and penalties they sustained, according to the school system.
WH Smith staff data accessed in cyber attack | Computer Weekly
High street retailer WH Smith has been the victim of a cyber attack in which the perpetrators accessed sensitive company data, including personal information of former and current employees.The company confirmed that the attackers have been unable to access any customer data from either its website or backend databases, as that information is held on separate systems "unaffected by this incident".
Ransomware group LockBit apologizes saying 'partner' was behind SickKids attack | CBC News
A global ransomware operator has issued an apology after it claims one of its 'partners' was behind a cyberattack on Canada's largest pediatric medical centre, The Hospital for Sick Children (SickKids Hospital).(Michael Wilson/CBC) A global ransomware operator has issued a rare apology after it claims one of its "partners" was behind a cyberattack on Canada's largest pediatric medical centre.
China likely is stockpiling vulnerabilities, says Microsoft
Microsoft has asserted that China's offensive cyber capabilities have improved, thanks to a law that has allowed Beijing to create an arsenal of unreported software vulnerabilities.China's 2021 law required organizations to report security vulnerabilities to local authorities before disclosing them to any other entity.
Complacency biggest cyber risk to UK plc, says ICO
It is organisational complacency, rather than the specific actions of cyber criminals and other threat actors, that poses the greatest source of risk to British businesses, information commissioner John Edwards has warned.Speaking as the Information Commissioner's Office (ICO) fined construction firm Interserve £4.4m
NCSC warns over AI language models but rejects cyber alarmism | Computer Weekly
The UK's National Cyber Security Centre (NCSC) has issued advice and guidance for users of AI tools such as ChatGPT that rely on large language model (LLM) algorithms, saying that while they present some data privacy risks, they are not necessarily that useful currently when it comes to deploying them in the service of cyber criminal activity.
TikTok banned from European Commission phones over cybersecurity
The European Union's executive branch said it has temporarily banned TikTok from phones used by employees as a cybersecurity measure, reflecting widening worries from western officials over the Chinese-owned video sharing app.n a first for the European Commission, its Corporate Management Board suspended the use of TikTok on devices issued to staff or personal devices that staff use for work.
NCSC warning over cyber risk to charity sector | Computer Weekly
Under-resourced charities running services and fundraising activities online are increasingly seen as a soft touch by cyber criminals looking to make a quick buck, and are at risk of malicious actors taking advantage of public generosity during challenging times.In a newly issued report, the UK's National Cyber Security Centre (NCSC) highlighted how besides launching cyber attacks against charities, cyber criminals are also "inserting" themselves into the third sector, masquerading as legitimate charities to siphon off bona fide donations from the public, as has been observed in numerous incidences relating to charity drives for Ukraine.
Indian Govt Warns iPhone Users of Several Critical Vulnerabilities; Can It Be Prevented?
iPhones are usually considered safe and secure when compared to Android devices.However, a new report from CERT-In ( Indian Computer Emergency Response Team) says otherwise.According to the latest advisory issued by the state-owned computer emergency response team, iPhone users are more vulnerable to hacks and cyber attacks.
Businesses must do more to boost cyber defences, says Nadhim Zahawi
UK businesses must start taking cyber crime more seriously and do more including working more closely with the Government to protect themselves, the Chancellor of the Duchy of Lancaster has said.
Apache vulnerability a risk, but not as widespread as Log4Shell
Security teams should be alert to the possibility of compromise arising from a vulnerability in Apache Commons Text that may put many organisations at risk, but is unlikely to be as impactful as 2021's Log4Shell vulnerability.
Researchers find eight CVEs in single building access system
A series of eight newly designated common vulnerabilities and exposures (CVEs) in a building access control system built by HID Mercury and sold by Carrier - a global supplier of building systems for physical security, HVAC, and so on - could enable attackers to obtain full system control and remotely manipulate door locks, according to researchers at Trellix Threat Labs.
French hospital suspends operations after cyber attacks
Issued on: 05/12/2022 - 01:41 A patient infected with coronavirus is carried on a stretcher by a French rescue team before being transferred by a helicopter of the civil security (Securite Civile) from Strasbourg university hospital to Pforzheim in Germany as the spread of the coronavirus disease (COVID-19) continues, in France, March 24, 2020.
Killnet DDoS hacktivists target Royal Family and others
The Killnet collective, a group of hacktivists aligned with the Russian state's interests, claim to have caused significant disruption to multiple websites and organisations in the UK in a wave of distributed denial of service (DDoS) cyber attacks, supposedly in revenge for the government's support for Ukraine.
Cuba ransomware cartel spoofs Ukraine armed forces
Ukraine's governmental Computer Emergency Response Team (CERT UA) issued a warning earlier this week of an apparent Cuba ransomware campaign that is spoofing the press office of the General Staff of the Armed Forces of Ukraine in its phishing lures.The malicious emails contain links to a third-party web resource to download a file, which leads to a web page that contains a message advising the victim to update their PDF reader.
Cyber attacks move from big targets to SMEs, Government warns
Gardai and government ministers have warned businesses to prepare for potential ransomware attacks, saying that the number of attacks targetting small and medium businesses has increased.
Australia to overhaul privacy laws after massive data breach
Hackers managed to access a vast amount of potentially sensitive information on up to 9.8 million Optus customers - close to 40 percent of the Australian population.A post from the same person in a popular hacking forum claimed to offer the user data for sale for $150,000 and listed an extortion price of $1 million to keep the data private, to be paid in the Monero cryptocurrency.Following one of the biggest data breaches in Australian history, the government of Australia is planning to get stricter on requirements for disclosure of cyber attacks.
Russian-speaking cyber criminals face diminishing financial returns following Russia's invasion of Ukraine, with many scams becoming redundant almost overnight due to sanctions and increased scrutiny of Russian entities, say Digital Shadows researchers.
Local authorities experience 10,000 attempted cyber attacks every day
Local authorities across the UK are experiencing an average of 10,000 attempted or successful cyber attacks every single day and have seen a 14% year-on-year increase in incidents to over two million so far this year, according to new figures published by Gallagher, a provider of insurance broking and risk management services.
Security pros fret about stress and promotion over cyber attacks
Cyber security professionals in the UK say they are more worried about quotidian issues than the threat of having to deal with a major cyber incident as they go about their business, according to the latest State of the profession report produced by the Chartered Institute for Information Security (CIISec).
Most CISOs think they've been attacked by a nation state
The majority of businesses have changed up their cyber security strategies and policies as a direct response to Russia's war on Ukraine, but at the same time, similar numbers have some reason to believe they may have been on the receiving end - either directly or indirectly - of a cyber incident orchestrated by a nation-state actor.
NCSC seeks community input for Cyber Advisor service
The UK's National Cyber Security Centre (NCSC) has unveiled proposals to establish a new Cyber Advisor service for small and medium-sized enterprises (SMEs), and is asking for the security community's input to help make it a success.
EU must stand ground on cyber security, says Finland's WithSecure
The European Union (EU) needs to take a stronger stance on cyber security, both to counter the growing wave of cyber crime and to confront the immediate threat of destabilising attacks from Russia, according to senior executives from WithSecure.