threat intelligence

Security Think Tank: The cloud just got more complicated

The cloud recently became more complicated and more important than ever; but I’ll leave the best bit to the end. One of the main security concerns with using the cloud, although I accept that there are several, are misconfigurations. These lead to data breaches or, in the case of hacktivism, misconfigurations allow for denial-of-service attacks.…

Security Think Tank: The cloud just got more complicated Read More »

Europol sting operation smokes multiple botnets

Some of the most prominent malware-dropping botnets in operation today, including Bumblebee, IcedID, Pikabot, Smokeloader, SystemBC and Trickbot, have been disrupted in a coordinated law enforcement action orchestrated through the European Union’s (EU’s) Europol agency. Operation Endgame, which enlisted the support of both the UK’s National Crime Agency (NCA) and the US’s FBI, as well…

Europol sting operation smokes multiple botnets Read More »

The UK may not have a choice on a ransomware payment ban

Banning ransomware payments is a simple, elegant idea, with the potential for terrible unintended consequences. It’s attractive because it would, if it worked, stop the incentive for ransomware. If you can’t get paid, what’s the point? Cyber crime is a business like any other. If the paying customers suddenly stop paying, it’s time to pivot…

The UK may not have a choice on a ransomware payment ban Read More »

Ransomware payment bans need universal buy-in

Banning ransomware payments is the only viable deterrent to cyber criminal gangs in the long term. Recent attacks on the British Library, Boeing, and even government departments indicate the ongoing popularity of this brutal form of cyber attack. The most obvious point in favour of enacting a blanket ban on ransomware payments is that it…

Ransomware payment bans need universal buy-in Read More »

Microsoft hack: Five questions enterprises should ask their IT leaders

Software giant Microsoft revealed in mid-January 2024 that its systems were successfully infiltrated at the end of 2023 by Russia-backed hacking group Midnight Blizzard, as part of a coordinated and targeted information-gathering exercise. Microsoft confirmed the details of the attack in a statement published online on Friday 19 January 2024,  where it revealed the attack…

Microsoft hack: Five questions enterprises should ask their IT leaders Read More »

US government disrupts Chinese botnet containing hundreds of end-of-life Cisco and Netgear routers

The US government has succeeded in disrupting a botnet created by known Chinese threat actor Volt Typhoon that had paved the way for cyber attacks on critical national infrastructure (CNI) organisations across America and other countries. A security alert published by the US Office of Public Affairs confirmed Volt Typhoon, a hacking group sponsored by…

US government disrupts Chinese botnet containing hundreds of end-of-life Cisco and Netgear routers Read More »

Decoding zero trust in endpoint security: A practical guide for CISOs

The rapid pace of digital transformation has increased operational efficiency and enhanced the customer experience – but it has also created a nightmare for CISOs. From mobile devices scattered across the globe, laptops accessing sensitive data from coffee shop Wi-Fi, to a myriad of IoT devices, the exponential increase in endpoints has greatly expanded the attack…

Decoding zero trust in endpoint security: A practical guide for CISOs Read More »

The Security Interviews: Talking identity with Microsoft’s Joy Chik

After so long spent doing virtual calls with customers during Covid, Microsoft’s president of identity and network access, Joy Chik, is happy to be on the road again, so much so that since flying into the UK a couple of days before our meeting in London, she has filled her diary with customer meetings despite…

The Security Interviews: Talking identity with Microsoft’s Joy Chik Read More »

Suspected ransomware attack hits Scottish council

Public services across the Na h-Eileanan Siar – the Outer Hebrides – in Scotland continue to be disrupted following a suspected ransomware attack on the IT systems of the local council, Comhairle nan Eilean Siar. Writing on X, the website formerly known as Twitter, a spokesperson for Comhairle nan Eilean Siar said: “Access to Comhairle…

Suspected ransomware attack hits Scottish council Read More »

Revealed: How Russia’s Sandworm ramped up attacks on Ukraine’s critical infrastructure

Google Cloud-backed threat intelligence specialist Mandiant has shared details of a disruptive incident late last year, in which the Sandworm advanced persistent threat (APT) group, backed by Russian’s GRU intelligence and special forces agency, deployed novel techniques in a cyber attack on Ukraine’s power infrastructure. Sandworm is well known for its interest in Ukraine’s critical…

Revealed: How Russia’s Sandworm ramped up attacks on Ukraine’s critical infrastructure Read More »

Shopping Cart
Scroll to Top