Insider threats should be seen as security opportunities
Isn’t it about time that we stopped blaming employees for cybersecurity incidents and started to believe in people power instead?
Read more
Opinion
WebStresser takedown is not the end of DDoS-for-hire
Kudos to Europol for taking down the biggest DDoS-for-hire network, but please don’t think that’s the DDoS problem solved folks…
Read more
OWASP vulnerability chart suggests web app devs are not smelling the security coffee
The top vulnerability remains ‘injection’ and cross site scripting (XSS) is still there, four years on from the last update!
Read more
Google research prompts the dumbest cybersecurity question ever asked
Google research looked into root cause (pun intended) of account takeovers, good job. But is ranking threats a bad idea?
Read more
Android tops 2016 vulnerability list. Security industry says “meh!”
The 2016 Common Vulnerabilities and Exposures (CVE) statistics are in and don’t make great reading for Google. Or do they?
Read more
What does the security industry think about Yahoo?
Forensic investigators have discovered a billion more Yahoo accounts have been hacked! What does the security industry think about that?
Read more
Ransomware is security wake-up call for NHS trusts
The NHS is not only a ransomware target, but it’s fallen victim multiple times over the last year or so.
Read more
Healthcare IT gets old, but hackers remain nimble
Healthcare IT is expected to work hard for a long time, and that’s really not good for keeping security healthy
Read more
As Amazon uncovers login credential list online, does controversial GCHQ password advice still stand?
With historic breaches now becoming a trend, does historic GCHQ advice not to ‘force regular password expiry’ still make sense?
Read more