TechTarget News
News from TechTarget's global network of independent journalists. Stay current with the latest news stories. Browse thousands of articles covering hundreds of focused tech and business topics available on TechTarget's platform.Latest News
-
08 May 2024
Germany: European Court of Justice ruling on EncroChat could lead to new legal challenges
By Bill GoodwinA ruling by the European Court of Justice could prompt legal challenges in EncroChat prosecutions in Germany and other EU states
-
07 May 2024
Red Hat OpenShift AI links LLMs into hybrid cloud
By Beth PariseauAn extensively updated OpenShift AI will underpin RHEL AI and, if Red Hat has its way, enterprises' AI infrastructure from the edge to the public cloud.
-
07 May 2024
SentinelOne: Ransomware actors are adapting to EDR
By Arielle WaldmanAt RSA Conference 2024, SentinelOne's Alex Samos discussed ongoing global threats such as ransomware and how threat actors are changing their techniques.
- Latest news from around the world
Security News from the past 365 days
-
24 Jul 2023
Citrix NetScaler users told to patch new zero-day urgently
By Alex ScroxtonA vulnerability disclosed and patched last week by Citrix appears to be being exploited by China-backed threat actors as a zero-day, prompting warnings from government cyber bodies
-
24 Jul 2023
Tribunal investigates complaint that journalists’ phones were unlawfully monitored
By Bill GoodwinThe Investigatory Powers Tribunal has agreed to investigate complaints by Northern Ireland investigative journalists Trevor Birney and Barry McCaffrey that they were unlawfully placed under surveillance
-
24 Jul 2023
Security AI and automation may reduce cost of data breaches
By Alex ScroxtonOrganisations that go all in on security AI and automation tend to incur lower financial costs when they experience a data breach incident, according to an IBM report
-
24 Jul 2023
Why cyber security should be part of your ESG strategy
By Aaron TanThe impact of data breaches and cyber threats on businesses, societies and the environment makes cyber security a key consideration in an environment, social and governance strategy
-
21 Jul 2023
Government boosts protection for encryption in Online Safety Bill but civil society groups concerned
By Bill GoodwinHouse of Lords adopts amendment to require Ofcom to commission a report before requiring technology companies to scan encrypted messages, but drops proposals for judicial oversight
-
20 Jul 2023
U.S. walks line between diplomacy, security with China
By Makenzie HollandAmid talks of further export controls placed on China, administration officials reiterated President Biden's desire for communication and building U.S.-China relations.
-
20 Jul 2023
Cyber insurers adapting to data-centric ransomware threats
By Arielle WaldmanCyber insurance carriers and infosec vendors weigh in on how the shift in ransomware tactics is affecting policies and coverage, presenting challenges for enterprises.
-
20 Jul 2023
Online Safety Bill screening measures amount to ‘prior restraint’
By Sebastian Klovig SkeltonThe Open Rights Group is calling on Parliament to reform the Online Safety Bill, on the basis that its content-screening measures would amount to “prior restraint” on freedom of expression
-
20 Jul 2023
Renowned hacker and social engineer Kevin Mitnick dead at 59
By Alex ScroxtonFamed hacker and social engineer Kevin Mitnick, who was at one time one of the most wanted cyber criminals in the world, has died peacefully at the age of 59 from complications arising from pancreatic cancer, following a 14-month illness
-
20 Jul 2023
How the DSMA balances security and privacy with press freedom
By Peter Ray AllisonIn a world of information sharing and 24-hour news cycles, the Defence and Security Media Advisory committee have to balance national security and data privacy with freedom of the press
-
20 Jul 2023
Intec Microsystems gains fresh owners and sets sights on growth
By Simon QuickeDistributor picked up by private equity player and signals intent to grow, adding a channel veteran to help with strategy
-
20 Jul 2023
Attention-seeking KillNet hacktivists becoming more dangerous
By Alex ScroxtonThe KillNet DDoS gang seems to be becoming more dangerous, but its primary goal remains to create a lot of noise and draw media attention, according to latest analysis
-
19 Jul 2023
Tensions rise with EU over Digital Markets Act, tech policies
By Makenzie HollandCongress members want the Biden administration to confront the EU about technology policies targeting U.S. businesses.
-
19 Jul 2023
Microsoft to expand free cloud logging following recent hacks
By Rob WrightMicrosoft faced criticism over a lack of free cloud log data after a China-based threat actor compromised email accounts of several organizations, including some federal agencies.
-
19 Jul 2023
Chainguard automates SBOMs, but has Images-based agenda
By Beth PariseauContainer images, that is. Chainguard Enforce now automates SBOMs, but execs and an early customer say they aren't the ultimate answer to software supply chain security.
-
19 Jul 2023
Citrix NetScaler ADC and Gateway flaw exploited in the wild
By Alexander CulafiCritical remote code execution flaw CVE-2023-3519 was one of three vulnerabilities in Citrix's NetScaler ADC and Gateway. Customers are urged to patch their instances.
-
19 Jul 2023
BlackCat and Clop gangs both claim cyber attack on Estée Lauder
By Alex ScroxtonCosmetics conglomerate Estée Lauder is experiencing operational disruption in the wake of a cyber attack that seems to involve two different cyber crime gangs
-
19 Jul 2023
‘Significant gaps’ in UK AI regulation, says Ada Lovelace Institute
By Sebastian Klovig SkeltonUK government’s plans to diffuse regulatory responsibility for AI among existing regulators will mean the tech is “only partially regulated”, while its data reforms will undercut already-limited existing protections, says Ada Lovelace Institute
-
19 Jul 2023
Half of cyber pros engage in risky behaviour at work, report claims
By Alex ScroxtonApproximately 55% of security professionals say they have engaged in behaviours they would more usually advise against in the workplace, according to a report
-
19 Jul 2023
Cyber criminal AI tool WormGPT produces ‘unsettling’ results
By Alex ScroxtonA newly discovered generative AI tool dubbed WormGPT is being sold to the cyber criminal underground via the dark web, and poses a significant danger, researchers warn
-
18 Jul 2023
A look at writers' battle to get AI vendors to pay them
By Esther AjaoAn Authors Guild open letter asks vendors to pay for works previously used to train generative AI systems and calls for lawmakers to tighten copyright laws.
-
18 Jul 2023
Splunk AI update adds specialized models for SecOps tasks
By Beth PariseauSplunk AI updates this week included specialized models for SecOps that detect and automatically respond to common issues such as DNS exfiltration and suspicious processes.
-
18 Jul 2023
Multiple Adobe ColdFusion flaws exploited in the wild
By Alexander CulafiOne of the Adobe ColdFusion flaws exploited in the wild, CVE-2023-38203, was a zero-day bug that security vendor Project Discovery inadvertently published.
-
18 Jul 2023
Splunk enters hardware market using trusted partners
By Simon QuickeVendor Splunk announces plans to roll out a device at the edge for monitoring and protecting customer data
-
18 Jul 2023
Orca: Google Cloud design flaw enables supply chain attacks
By Alexander CulafiOrca Security says threat actors can use a design flaw in Google Cloud Build's default permissions to gain access to Artifact Registry code repositories and poison software.
-
18 Jul 2023
NATO membership to drive Nordic cyber security sector growth
By Gerard O'DwyerThe Nordic cyber security sector will see increasing demand as Finland and Sweden joint NATO
-
18 Jul 2023
Critical Adobe ColdFusion flaws chained in ongoing cyber attacks
By Alex ScroxtonTwo vulnerabilities in Adobe ColdFusion have been chained by threat actors to target victim systems, apparently after one of them was accidentally disclosed
-
17 Jul 2023
Businesses caught in the crosshairs amid U.S., China tensions
By Makenzie HollandAs the U.S. and China continue to target each other with restrictive export controls, businesses are caught in the middle of an increasingly tense conflict.
-
17 Jul 2023
Microsoft still investigating stolen MSA key from email attacks
By Arielle WaldmanWhile Microsoft provided additional attack details and techniques used by Storm-0558, it remains unclear how the Microsoft account signing key was acquired.
-
17 Jul 2023
JumpCloud breached by nation-state threat actor
By Rob WrightJumpCloud's mandatory API key rotation earlier this month was triggered by a breach at the hands of a nation-state threat actor that gained access through spear phishing.
-
17 Jul 2023
Police Scotland use cloud for biometric data despite clear risks
By Sebastian Klovig SkeltonPolice Scotland confirms it has stored significant volumes of biometric data on a cloud-based digital evidence sharing system despite major ongoing data protection concerns, bringing into question the effectiveness of the current regulatory approach and the overall legality of using hyperscale public cloud technologies in a policing context
-
14 Jul 2023
XSS zero-day flaw in Zimbra Collaboration Suite under attack
By Alexander CulafiA manual workaround is currently available for a cross-site scripting vulnerability in Zimbra Collaboration Suite, though a patch won't be available until later this month.
-
13 Jul 2023
Storage, server prices drop as inflation eases
By John MooreServer and storage prices declined in June, reflecting cooling inflation, but companies remain intent on containing costs and optimization.
-
13 Jul 2023
Microsoft: Government agencies breached in email attacks
By Arielle WaldmanWhile Microsoft mitigated the attacks and found no evidence of further access beyond the email accounts, the Outlook breaches raised questions for the software giant.
-
13 Jul 2023
Civil society groups call on EU to put human rights at centre of AI Act
By Sebastian Klovig SkeltonDozens of civil society groups are calling on EU institutions to prioritise people and human rights in AI legislation as secretive negotiations begin
-
13 Jul 2023
Microsoft issues new warning over Chinese cyber espionage
By Alex ScroxtonA newly uncovered Chinese espionage campaign exploited forged authentication tokens to access its victims’ email accounts, says Microsoft
-
13 Jul 2023
One month after MOVEit: New vulnerabilities found as more victims are named
By Alex ScroxtonFive weeks after the mass MOVEit breach, new vulnerabilities in the file transfer tool are coming to light as the Clop cyber crime group continues to terrorise victims. But has the gang bitten off more than it can chew?
-
13 Jul 2023
MPs launch inquiry into government use of data
By Lis EvenstadThe Public Administration and Constitutional Affairs Committee is to investigate the possibility of reforming the way government collects and analyses data, and whether the UK census could be scrapped
-
12 Jul 2023
Chainalysis observes sharp rise in ransomware payments
By Rob WrightThe rise in total ransomware payments so far this year is a reversal of the decline Chainalysis saw in 2022, when payments fell sharply to $457 million from $766 million in 2021.
-
12 Jul 2023
Threat actors forged Windows driver signatures via loophole
By Alexander CulafiThreat actors bypassed Microsoft's driver signing policy using a technical loophole and signature timestamp forging tools commonly used in the video game cheat community.
-
12 Jul 2023
Russia-based actor exploited unpatched Office zero day
By Arielle WaldmanMicrosoft investigated an ongoing phishing campaign that leverages Word documents to deliver malicious attachments to targeted organizations in the U.S. and Europe.
-
12 Jul 2023
Forensic Institute provides Hansken viewing method for Dutch lawyers
By Kim LoohuisDutch lawyers can now view crypto communication in criminal cases from their own workplace via digital search engine Hansken. Previously, this had to be done at an external location
-
12 Jul 2023
Ofcom’s online safety preparedness efforts hobbled by government
By Sebastian Klovig SkeltonDespite Ofcom’s progress so far, UK government changes to the scope and timetable of the Online Safety Bill are hobbling the ability of the regulator to successfully prepare for the new regime
-
12 Jul 2023
Cozy Bear lures victims with used BMW 5 Series
By Alex ScroxtonA recent Cozy Bear campaign saw the Russian APT group pivot to exploiting an advert for a used car as it targeted diplomatic missions in Kyiv
-
12 Jul 2023
Whistleblower contacts NatWest customers affected by a decade-old data breach
By Karl FlindersFormer worker says contacting the people affected by the data breach is her last resort after the bank and regulators appear satisfied that the sensitive data file is safe stored under her bed
-
12 Jul 2023
Hackers: We won’t let artificial intelligence get the better of us
By Alex ScroxtonAI is changing how ethical hackers go about their work, and will continue to do so, but the community is convinced the technology will never be able to replicate the creativity of a flesh-and-blood hacker
-
12 Jul 2023
Microsoft users on high alert over dangerous RCE zero-day
By Alex ScroxtonA serious RCE vulnerability in Microsoft Office and Windows is among several zero-days disclosed in Redmond’s July Patch Tuesday update, but this one does not have a patch yet
-
11 Jul 2023
Microsoft repairs 5 zero-days for July Patch Tuesday
By Tom WalatThe company addressed 130 vulnerabilities and provided additional instructions to fully resolve several bugs, which will require extra attention from IT this month.
-
11 Jul 2023
EU formally grants data adequacy to US
By Sebastian Klovig SkeltonThe European Commission has formally granted the US data adequacy, allowing companies and organisations to freely transfer personal data across the Atlantic via the EU-US Data Privacy Framework. But privacy activist Max Schrems has already committed to legally challenging the decision
-
11 Jul 2023
Clop's MoveIt Transfer attacks lead to mixed results
By Alexander CulafiClop's data theft extortion campaign against MoveIt Transfer customers has apparently compromised hundreds of organizations. But it's unclear how many victims have paid ransoms.
-
11 Jul 2023
Malicious URL volumes soar as cyber criminals pull on Threads
By Alex ScroxtonMalicious actors have been quick to exploit the buzz around Meta’s newly launched Threads platform, with thousands of new suspicious domains registered exploiting its branding
-
11 Jul 2023
Apple pushes Rapid Response patch to fix WebKit zero-day
By Alex ScroxtonApple deployed an emergency patch under its Rapid Security Response update programme, but had to temporarily suspend delivery after it caused problems for users of the Safari browser
-
10 Jul 2023
TPG Capital acquires Forcepoint's government unit for $2.45B
By Arielle WaldmanForcepoint's Global Governments and Critical Infrastructure unit will operate independently under TPG, while the commercial business will remain at Francisco Partners.
-
10 Jul 2023
Genesys Cloud CX gets FedRAMP certified for government use
By Mary ReinesThe CX vendor obtained Moderate Impact level authorization for its Genesys Cloud CX platform, bolstering security and safeguarding internal operations for U.S. government users.
-
07 Jul 2023
Suspicious email reported every five seconds in UK
By Karl FlindersNational Cyber Security Centre report reveals a suspicious email was reported by UK citizens and organisations every five seconds last year
-
06 Jul 2023
VMware ramps up on sovereign cloud in APAC
By Aaron TanVMware is working with local partners to deliver sovereign cloud services in the region, amid growing sovereignty interests among governments and the need maintain business continuity
-
06 Jul 2023
CISA: Truebot malware infecting networks in U.S., Canada
By Alexander CulafiCISA warned of Truebot attacks in a joint advisory alongside the FBI, the Canadian Centre for Cyber Security and the Multi-State Information Sharing and Analysis Center.
-
06 Jul 2023
JumpCloud invalidates API keys in response to ongoing incident
By Arielle WaldmanThe cloud provider did not give any details about the incident that prompted a mandatory API key rotation, which might have caused service disruptions for customers.
-
06 Jul 2023
Vodafone tests quantum-safe business network solutions
By Joe O’HalloranTelco announces initiative looking at transition to a quantum safe world, exploring and trialling new algorithms with upgraded smartphones to provide protection against possible quantum-empowered attackers in the future
-
06 Jul 2023
Biometrics watchdog calls for public space surveillance review
By Sebastian Klovig SkeltonThe biometrics and surveillance camera commissioner is calling for a review of public space surveillance to gain a clearer picture about the proliferation of Chinese surveillance technology across the public sector, but warns against applying double standards on companies just because they are from China
-
06 Jul 2023
Meta’s Threads hits app stores, but no EU launch in sight
By Alex ScroxtonMeta’s Twitter competitor makes its debut and signs up millions of users in just 12 hours, but concerns over compliance with the EU’s Digital Markets Act have sunk a pan-European launch for now
-
05 Jul 2023
June saw flurry of ransomware attacks on education sector
By Arielle WaldmanAs the school year culminated, ransomware attacks surged across K-12 schools and universities, causing class disruptions and putting sensitive data at risk.
-
05 Jul 2023
Germany: European Court of Justice hears arguments on lawfulness of EncroChat cryptophone evidence
By Bill GoodwinThe European Court of Justice will decide whether the collection and sharing of data intercepted by law enforcement from EncroChat crypto phone network is compatible with European law
-
05 Jul 2023
HSBC explores quantum-safe comms to AWS edge
By Cliff SaranBanking group HSBC is looking at how to secure transactions and the benefits of quantum computing in finance
-
05 Jul 2023
UK public increasingly concerned over NHS data sovereignty
By Alex ScroxtonAmid security concerns and AI advances, a majority of the British public still trusts the NHS to store and analyse their health data, but would prefer it remains domiciled in the UK
-
04 Jul 2023
EU judgment sinks Meta’s argument for targeted ads
By Alex ScroxtonThe EU Court of Justice has issued a significant judgment against Meta, ruling that national anti-trust bodies can investigate GDPR breaches, disrupting the platform’s entire basis for carrying out targeted advertising
-
04 Jul 2023
Node4 and Air IT bolster position through acquisitions
By Simon QuickeManaged service players Node4 and Air IT have been active in the M&A market as they look to add more skills and coverage
-
04 Jul 2023
How Maxeon is forging the path to SASE
By Aaron TanMaxeon Solar Technologies is building out its security service edge capabilities with an eye on a SASE implementation that combines best of breed offerings from different suppliers
-
03 Jul 2023
Over half of ANZ organisations hit by ransomware
By Aaron TanAmid the rising ransomware threat, almost four in five organisations in ANZ expect to pay a ransom if they could recover data and business processes
-
03 Jul 2023
BlackCat gang claims cyber attack on Barts NHS Trust
By Alex ScroxtonInvestigations continue into a claim by the ALPHV/BlackCat ransomware gang that it has stolen 7TB of data from Barts NHS Trust in London
-
30 Jun 2023
TSMC partner breached by LockBit ransomware gang
By Alexander CulafiA cyber attack against Chinese systems integrator Kinmax led to the theft of TSMC proprietary data, which LockBit threatened to publish unless TSMC paid a $70 million ransom.
-
30 Jun 2023
AI can never be given control over combat decisions, Lords told
By Sebastian Klovig SkeltonArtificial intelligence is technically incapable of distinguishing between the complex contextual factors of combat situations, and will likely never be able to, according to legal and software experts
-
30 Jun 2023
NHS data stolen in Manchester Uni ransomware attack
By Alex ScroxtonThe ransomware gang behind the cyber attack on the University of Manchester appears to have got its hands on an NHS dataset being used by the university for research purposes
-
29 Jun 2023
‘Shadow’ AI use becoming a driver of insider cyber risk
By Alex ScroxtonOff-the-books use of generative AI tools will inevitably lead to a costly, high-profile data breach for someone, but a little attention paid to appropriate data management policy can help mitigate the risk
-
29 Jun 2023
SonicWall gives MSSPs firewall options
By Simon QuickeSecurity player adds monthly billing option to make life easier for its channel partners and more flexible financially for customers
-
28 Jun 2023
DDoS attacks surging behind new techniques, geopolitical goals
By Arielle WaldmanA rise in massive DDoS attacks, some of which target the application layer and cause significant disruptions, might require new defense strategies from cybersecurity vendors.
-
27 Jun 2023
Three years on, EncroChat cryptophone hack nets 6,500 arrests and seizures of €900m
By Bill GoodwinFrench and Dutch prosecutors say three years after they infiltrated the EncroChat cryptophone network in a novel hacking operation, Europe’s courts are opening the way for more collaboration and data sharing between law enforcement agencies
-
27 Jun 2023
Censys finds hundreds of exposed devices in federal orgs
By Alexander CulafiCensys found exposed instances of Progress Software's MoveIt Transfer and Barracuda Networks' Email Security Gateway appliances during its analysis of FCEB agency networks.
-
27 Jun 2023
HashiCorp Vault to expand in DevSecOps with BluBracket buy
By Beth PariseauHashiCorp expands Vault's focus to include DevSecOps with the acquisition of a secrets scanning startup, setting the stage for a potential showdown with Microsoft and GitHub.
-
27 Jun 2023
ChatGPT users at risk for credential theft
By Alexis ZacharakosAs ChatGPT's user base continues to grow, Group-IB says threat actors have exploited stolen accounts to collect users' sensitive data and professional credentials.
-
27 Jun 2023
One Login’s Gov.uk ID check apps downloaded over two million times
By Lis EvenstadThe One Login digital identity system is being used by eight government services, and GDS has issued more than 1.5 million verified identities since summer 2022, while its ID check apps are proving popular
-
27 Jun 2023
Ignition Technology lands Mastercard relationship
By Simon QuickeDistributor and parent Exclusive Networks will take the card payment specialist’s security portfolio out to market
-
27 Jun 2023
WithSecure forges ahead with green coding initiative
By Alex ScroxtonWithSecure’s W/Sustainability programme kickstarts a number of initiatives, including a commitment to green coding the security supplier hopes will set an example for others to follow
-
27 Jun 2023
3,600 potential cyber security experts apply to government scheme
By Alex ScroxtonThe UK government’s Upskill in Cyber programme is reporting great success just a month after launch, with almost half of applicants women
-
27 Jun 2023
A tenth of kids claim they could hack you
By Alex ScroxtonMore and more young people are at risk of being drawn into cyber criminality, and parents must shoulder some of the blame, according to a report
-
26 Jun 2023
Channel roundup: Who’s gone where?
By Simon QuickeMoves this week at 8x8, Consenna, Barracuda and Trustible as firms add more talent
-
26 Jun 2023
Acquisitions filter into impressive growth at SysGroup
By Simon QuickeManaged service player’s outgoing CEO is able to share a robust set of results from the managed service provider
-
23 Jun 2023
ICO under fire for taking limited action over serious data breaches
By Sebastian Klovig SkeltonThe ICO has come under fire from lawyers and data protection specialists for just issuing written warnings to two public bodies over serious data breaches that placed people’s lives at risk
-
23 Jun 2023
Distology, CMS and Arrow expand security portfolios
By Simon QuickeDistributors add more technology and offer vendors expanded market coverage
-
23 Jun 2023
Phishing and ransomware dominate Singapore’s cyber threat landscape
By Aaron TanPhishing and ransomware attacks continued apace in Singapore last year amid signs of improving cyber hygiene
-
22 Jun 2023
Apple patches zero days used in spyware attacks on Kaspersky
By Arielle WaldmanTwo Apple zero days were used in the spyware campaign Kaspersky Lab named 'Operation Triangulation,' which was initially discovered on iOS devices of Kaspersky employees.
-
22 Jun 2023
Lancaster University launches trailblazing cyber MBA
By Alex ScroxtonMBA programme at Lancaster University designed to deliver security leadership education to business leaders has received NCSC backing
-
22 Jun 2023
Customers looking to MSPs to help consolidate security
By Simon QuickeThe channel is playing a role in helping managed service providers looking to deal with rising costs and a lack of skills
-
22 Jun 2023
Manchester University students threatened by ransomware gang
By Alex ScroxtonStudents and staff members at the University of Manchester are being pressurised by an unnamed ransomware gang
-
21 Jun 2023
Critical VMware Aria Operations bug under active exploitation
By Alexander CulafiReports of exploitation for a critical command injection flaw in VMware Aria Operations for Networks came roughly a week after a researcher published a proof-of-concept for it.
-
21 Jun 2023
Nearly quarter of a million malicious websites reported and removed through NCSC service
By Karl FlindersA suspicious email and text message reporting service in the UK has directly led to a quarter of a million malicious websites being removed
-
21 Jun 2023
The security interviews: Exploiting AI for good and for bad
By Cliff SaranThe chief product officer of AI security firm Darktrace explains how large language AI models are making it harder for people to spot email attacks
-
21 Jun 2023
May ransomware activity rises behind 8base, LockBit gangs
By Arielle WaldmanLockBit was the most active group last month, but NCC Group researchers were surprised by 8base, which started listing victims from attacks that occurred beginning in April 2022.
-
20 Jun 2023
Attackers discovering exposed cloud assets within minutes
By Alexander CulafiCloud security vendor Orca Security used honeypots to learn more about how threat actors compromise cloud resources such as misconfigured AWS S3 buckets and GitHub repositories.
-
20 Jun 2023
Oracle opens first EU-based sovereign cloud regions in Germany and Spain
By Caroline DonnellyDatabase software giant is making good on its July 2022 pledge to open a series of sovereign cloud regions to cater to the data protection needs of EU-based enterprises