The perceived threat posed by Huawei to the UK national infrastructure continued to make the headlines throughout February, as politicians, UK government agencies and the Chinese telecoms giant continued to play out their rather public spat in the media. See my post Is Huawei a Threat to UK National Security? for further details. And also, why DDoS might be the greater threat to 5G than Huawei supplied network devices.
February was a rather quiet month for hacks and data breaches in the UK, Mumsnet reported a minor data breach following a botched upgrade, and that was about it. The month was a busy one for security updates, with Microsoft, Adobe and Cisco all releasing high numbers of patches to fix various security vulnerabilities, including several released outside of their scheduled monthly patch release cycles.
A survey by PCI Pal concluded the consequences of a data breach had a greater impact in the UK than the United States, in that UK customers were more likely to abandon a company when let down by a data breach. The business reputational impact should always be taken into consideration when risk assessing security.
I will be speaking at the e-crime Cyber Security Congress in London on 6th March 2019, on cloud security, new business metrics, future risks and priorities for 2019 and beyond.
Finally, completely out of the blue, I was informed by 4D that this blog had been picked by a team of their technical engineers and Directors as one of the best Cyber Security Blogs in the UK. The 6 Best Cyber Security Blogs – A Data Centre’s Perspective Truly humbled and in great company to be on that list.
- What’s the greater risk to UK 5G, Huawei backdoors or DDoS?
- The Business of Organised Cybercrime
- Is Huawei a Threat to UK National Security?
- Customers Blame Companies not Hackers for Data Breaches
- Automotive Technologies and Cyber Security
- The 6 Best Cyber Security Blogs – A Data Centre’s Perspective
- Parenting Website Mumsnet hit by Data Breach
- UK Officials Concerned over Huawei’s Presence
- UK Consumers more likely to Abandon a Breached Company according to Research
- US Military Hackers took Russian troll factory offline during midterms, report claims
- GCHQ Chief: Cyber conflict could deteriorate into a Wild West if left unchecked
- Australia’s Major Political Parties Hacked by ‘state actor’ ahead of Elections
- High Stress Levels Impacting CISOs Physically, Mentally
- 60,000 EU Data Breaches filed under GDPR
- Dow Jones database holding 2.4 million records of politically exposed persons
- Palisades Park receives £151,000 advance after Cyberattack
- UK Bank Customers hit by Dozens of IT shutdowns due to operational and security incidents
- Musical.ly (TikTok App) fined a Record £4.3 Million under United States COPPA
- Microsoft Patches 76 Vulnerabilities, including 20 Critical for Windows, Edge, Hyper-V, Chakra and Adobe Flash
- Microsoft Fixes IIS Vulnerability that can cause CPU usage to Soar 100% when processing HTTP/2 requests
- Adobe Releases fixes 70 Vulnerabilities in Acrobat and Acrobat Reader
- Adobe issues New patch for Acrobat and Reader Out of Band
- RDP Flaws could allow Hackers to take over control of Systems
- Cisco rolls out Multiple Security Updates across its Product Portfolio
- Apple Patches Two Flaws Exploited in Zero-Day Attacks; also fixes FaceTime Eavesdropping Bug
- Mozilla Foundation issues Firefox Updates
- Cisco Network Assurance Engine (NAE) contains Password Vulnerability
- Cisco Patches Two Code Execution Vulnerabilities
AWARENESS, EDUCATION AND THREAT INTELLIGENCE
- APT10 targeting a Norwegian MSP and US Companies in a Sustained Campaign
- TrickBot Variant Steals Credentials for Remote Computer Access
- New B0r0nt0k Ransomware Encrypts Victims’ websites and demands $75000 worth Ransom Payment in Bitcoin
- Shifty New Variant of Qbot Banking Trojan Spreads
- Carbon Black Global Threat Research Project
- 2019 CrowdStrike Global Threat Report
- Netscout Threat Landscape Report: IoT Devices Attacked Faster than Ever, DDoS Attacks up dramatically
*** This is a Security Bloggers Network syndicated blog from IT Security Expert Blog authored by Dave Whitelegg. Read the original post at: http://feedproxy.google.com/~r/securityexpert/~3/bCWTBXuXymg/cyber-security-roundup-for-february-2019.html