Cybercrime

The National Cyber Security Centre is urging UK organisations to take steps to bolster their cyber security resilience in response to the ongoing Ukraine crisis

https://www.computerweekly.com/news/252512559/CISOs-must-get-out-in-front-of-Ukraine-cyber-crisis-says-NCSC

A fresh alert from the US Department of Homeland Security may have IT security teams jumpy over the possibility that their organisations could be targeted by Russian state actors

https://www.computerweekly.com/news/252512417/Prepare-but-dont-panic-over-supposed-Russian-cyber-threat

Search engines, online marketplaces and cloud computing providers are more likely to have to report major cybersecurity incidents in the UK after the government moved to address “EU-exit related deficiencies” in UK regulation.

https://www.pinsentmasons.com/out-law/news/uk-incident-reporting-laws-updated-as-ransomware-attacks-rise

The NCSC launches new guidance for organisations on securely communicating with customers via SMS and phone calls.

https://www.ncsc.gov.uk/news/big-brands-urged-to-scam-proof-messages-to-public?mc_cid=e1e77837ef&mc_eid=72e89a1d85

Policy paper - 2022 cyber security incentives and regulation review -  Published 19 January 2022

https://www.gov.uk/government/publications/2022-cyber-security-incentives-and-regulation-review/2022-cyber-security-incentives-and-regulation-review

Security flaws in Olympic app may put personal health data at risk of compromise in a man-in-the-middle attack

https://www.computerweekly.com/news/252512175/Investigators-find-Beijing-2022-app-riddled-with-security-flaws

Latest monthly data reveals a significant decline in ransomware attacks at the end of 2021, but a new, emergent gang is making waves

https://www.computerweekly.com/news/252512245/Ransomware-attacks-dropped-37-in-December-claims-NCC

Which? singles out Metro Bank, Virgin Money and TSB over insecure online banking processes

https://www.computerweekly.com/news/252511838/Banks-accused-of-neglecting-customer-security-measures

The UK’s National Cyber Security Centre joins US calls to be wary of Russian state interference in critical national infrastructure IT systems

https://www.computerweekly.com/news/252511934/NCSC-sounds-alarm-over-Russia-backed-hacks

Whether by error or design is unclear, but a great many IT teams are still exposing themselves by downloading outdated, insecure versions of Apache Log4j

https://www.computerweekly.com/news/252511846/Almost-half-of-Log4j-downloads-still-dangerously-exposed