May 2016 – Banking On Information Security

In February 2016, hackers hit the headlines again as news broke of a cyber attack on Bangladesh’s central bank. Specially crafted malware was used to hack into Bangladesh Bank’s SWIFT software, allowing the hackers to transfer $81 million from Bangladesh’s account at the Federal Reserve Bank of New York into accounts held at other banks, reportedly in the Philippines.
[…]

April 2016 – Is Security for IT & Industrial Control Systems Different?

When we think of IT systems and Industrial Control Systems (ICS) we tend to think that there is a vast difference in the way they are secured and managed but in reality there is little difference in the approach needed to secure the two separate system types.

[…]

March 2016 – Ransomware – The Evolving Threat

Cyber-extortion and blackmail are not new, but cyber-criminals have just about perfected their techniques of extracting money from the masses through the use of ransomware.

Businesses rely on data stored on their PCs, mobile devices and the cloud more and more each day – not necessarily important enough to make sure it is backed up reliably, but certainly enough to panic when criminals encrypt their data and then offer a decryption key at a price. […]

ICO Logo

General Data Protection Regulation adopted by European Parliament

The European Parliament adopted the General Data Protection Regulation last Thursday as expected. The Regulation will likely enter into force on or before 20th July, 20 days following its publication in the EU Official Journal. Its provisions will be directly applicable in all Member States two years after this date. So organisations now have 27 Read more about General Data Protection Regulation adopted by European Parliament[…]

Samba

Samba Security Updates Address Badlock Vulnerabilities

The Samba Team has released security updates that address vulnerabilities, collectively known as Badlock, affecting both Windows operating systems and Samba in UNIX-like platforms. Exploitation of these vulnerabilities may allow a remote attacker to take control of an affected system or create a denial-of-service condition. Users and administrators are encouraged to review Samba Release News Read more about Samba Security Updates Address Badlock Vulnerabilities[…]

January 2016 – Ukraine Power – Cyber Attack

On the 23rd December 2015 Ukraine suffered what is believed to be the first successful cyber-attack on an electricity distribution network cutting the power at 17 substations and leaving 225,000 people without power for several hours. In this blog we review the events leading up to and during the attack and what additional security controls Read more about January 2016 – Ukraine Power – Cyber Attack[…]

Adobe Releases Security Updates for Acrobat, Reader, and Digital Editions

Original release date: March 08, 2016 Adobe has released security updates to address multiple vulnerabilities in Acrobat, Reader, and Digital Editions. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review Adobe Security Bulletins APSB16-09 and APSB16-06 and apply the Read more about Adobe Releases Security Updates for Acrobat, Reader, and Digital Editions[…]

OpenSSH Releases Security Update

Original release date: March 11, 2016 OpenSSH version 7.2p2 has been released to address a vulnerability in all prior versions. Exploitation of this vulnerability may allow a remote attacker to obtain sensitive information. We encourage users and administrators to review the OpenSSH Security Advisory and apply the necessary update. Source: US CERT Alerts