Ian Barker

The results of a six-month investigation into a botnet that targets a vulnerability in content management systems have been released today by Imperva Research Labs.

The botnet known as 'KashmirBlack' first appeared around November 2019 and is still active. It's managed by a single command and control server and uses more than 60 servers -- mostly innocent surrogates -- as part of its infrastructure.

Continue reading →

Cybersecurity company ESET is launching new versions of its Windows consumer security products offering improved levels of protection.

ESET Internet Security, ESET NOD32 Antivirus and ESET Smart Security Premium get a wide range of security improvements covering malware detection, online banking, password security and smart home support.

Continue reading →

The number of reported machine identity-related cyberattacks grew by 433 percent between 2018 and 2019, according to a new report from Venafi.

Between 2015 and 2019, the number of reported cyberattacks that used machine identities grew by more than 700 percent. Over the same period the number of vulnerabilities involving machine identities grew by 260 percent, increasing by 125 percent between 2018 and 2019.

Continue reading →

The major challenges faced by businesses looking to implement AI and machine learning include transparency, bias, and quality of training data.

Swedish startup Unbiased is launching a new Data Marketplace on the Telos blockchain platform, aimed at providing privacy-centric and decentralized development tools to companies working with AI and Machine Learning applications.

Continue reading →

In the face of lockdowns to control COVID-19 marketers have had to quickly adjust customer experience strategies and utilize new technologies and channels to engage with consumers.

A new report from digital experience company Acquia shows that many have done this successfully, with some 83 percent of UK brands seeing improved return on investment on marketing and customer experience technology over the past year.

Continue reading →

The switch to remote working has left many organizations lagging in productivity and revenue due to the deficiency of their remote access solutions.

A new report from Secure Access Service Edge (SASE) provider Perimeter 81 reveals that 19 percent of IT leaders surveyed say they often or always experience network performance and latency issues when using legacy remote access solutions while an additional 43 percent say they sometimes do.

Continue reading →

The hybrid cloud model is increasingly used in digital transformation and data storage according to a new report from Trustwave.

Of over 950 IT professionals surveyed, 55 percent use both on-premise and public cloud to store data with 17 percent using public cloud only. Singapore organizations use the hybrid cloud model most frequently at 73 percent or 18 percent higher than the average and US organizations employ it the least at 45 percent.

Continue reading →

Two new global studies from network specialist Cisco reveal an increase in consumer concern about data sharing during the pandemic and the security challenges organizations face supporting employees and customers in our remote-first world.

The reports also highlight the opportunities presented by the accelerated transition to a cloud-first, remote world that demands us to be secure, connected and productive from anywhere.

Continue reading →

Many more people are now working remotely and developers are no exception. But how does this shift in working patterns affect their productivity?

We spoke to Manish Gupta, CEO and founder of code analysis specialist ShiftLeft to find out more about the challenges of development in a remote world.

Continue reading →

Consumer loyalty programs in the retail, hospitality and travel industries rely on gathering information about their users. For criminals this can offer everything they need to get started in a number of crime-related ventures, from account takeovers, to straight-up identity theft.

A new report from Akamai reveals more than 63 billion credential stuffing attacks on the commerce category -- comprising the retail, travel, and hospitality industries -- over the last two years, 90 percent of them against retailers.

Continue reading →

The share of companies using Database-as-a-Service (DBaaS) has increased to 45 percent, compared to 40 percent last year, according to a new survey.

The study from open source database company Percona finds more than half (56 percent) of large companies use DBaaS. In line with the trend of companies looking to mitigate their risk, around half use more than one DBaaS service.

Continue reading →

The COVID-19 pandemic has led many enterprises to fast-track their adoption of remote work technologies and many have turned to SaaS as a way to enable this.

But this has put new pressure on security teams. A new survey from SaaS security specialist AppOmni finds that of over 200 IT security specialists 90 percent have recently received additional responsibilities and two-thirds have less time to effectively manage and secure SaaS applications.

Continue reading →

In a new study 90 percent of participants report that cybersecurity technology is not as effective as it should be when it comes to protecting organizations from cyber risk.

However, the report from Debate Security, an independent organization bringing together industry experts to debate how the cyber market can be improved, shows considerable disagreement on evaluating cybersecurity technology efficacy and performance, with not a single common definition named by respondents.

Continue reading →

As we head towards a COVID Christmas it's likely that many more people will be doing their holiday shopping online.

But while this is good news for online retailers it's also an opportunity for fraudsters. This year has already seen a surge in attacks on eCommerce sites and there are certain to be more to come. We spoke to Satnam Narang, staff research engineer at Tenable to find out more about the latest vulnerabilities and how businesses can protect themselves.

Continue reading →

Some nation-state cyber adversaries and notorious ransomware gangs are deploying an arsenal of new open-sourced tools, actively exploiting corporate email systems and using online extortion to scare victims into paying ransoms.

This is one of the findings of Accenture's latest Cyber Threatscape Report. Analysts have seen attackers using a combination of off-the-shelf tooling -- including 'living off the land' tools, shared hosting infrastructure and publicly developed exploit code -- and open source penetration testing tools to carry out cyberattacks and hide their tracks.

Continue reading →