Attacks Hit Many UK Firms

Government report says seven in ten large companies identified a breach or attack with firms holding personal data more likely to be attacked primarily by fraudulent emails, followed by viruses and
Businesses large and small are being urged to protect themselves against cyber-crime after new government statistics found more than half of all UK businesses suffered a cyber-breach or attack in the past 12
The Cyber-Security Breaches Survey 2017 reveals nearly seven in ten large businesses identified a breach or attack, with the average cost to large businesses of all breaches over the period being £20,000 and in some cases reaching
The survey also shows businesses holding electronic personal data on customers were much more likely to suffer cyber-breaches than those that do not (51% compared to 37%)
The Cyber-Breaches Survey is part of the UK government’s five-year national cyber-security strategy to transform this country’s cyber-security and to protect the UK online. As part of the strategy, the government recently opened the new National Cyber-Security Centre (NCSC), a part of

Breach Notification, Cyber Incident, Cyber-Attack, CyberAttack, Data Breaches, Data Leakage, Hack, Identity Theft, Threat Intelligence, Threat Intelligence, Detection And Response Maturity Assessment 29th March 20176th December 2017

March 2017 – List of data breaches and cyber attacks

Data Breach Record – 29th March 2017

March is coming to an end, which means it’s time for this month’s list of data breach incidents and cyber attacks.

There have been a lot of data breaches this month, and that’s just considering the ones that I’ve been making a note of throughout the month.

I calculate the number of compromised records this month as 74,643,434. This number should be taken as an estimate and not the definitive number. The real number of compromised records is likely to be much higher.

Remember, this is the list of breaches and attacks that were discovered/announced this month, but did not necessarily take place this month.

Continue reading “March 2017 – List of data breaches and cyber attacks”

Computer, Network And Malware Forensics, Cyber Incident, Cyber-Attack, CyberAttack, Data Breaches, Data Leakage, Employee Breaches, Hack 25th February 201728th August 2018

List of data breaches and cyber attacks in February 2017

It’s the shortest month of the year, but it has not been short of breaches or cyber attacks.

The list is the usual mix of ransomware attacks and careless employees causing data breaches.

Our US readers, however, will be well aware that tax day is fast approaching, so W-2 phishing is rife. Earlier this month, the IRS sent out an urgent alert warning employers that this W-2 phishing scam had spread beyond the corporate world to other sectors, including school districts, tribal organisations and non-profits.

Continue reading “List of data breaches and cyber attacks in February 2017”

Cyber Defence, Cyber Incident, Cyber Incident Legal Advice Including Privilege, Cyber Incident Response, Cyber Incident Response And Forensic Investigation, Cyber Security Governance, Cyber Security Programme Assurance, Cyber Security Programme Delivery, Cyber Threat Assessments, Cyber-Attack 27th May 201629th August 2018

North Korea could be linked to cyber-attacks on banks

Is North Korea Responsible For Cyber-Attacks On Banks?

A top cyber-security firm is investigating whether North Korea could be linked to attacks on banks in recent months.

Symantec said it had evidence that the same group attempted to steal money from a bank in the Philippines, one in Vietnam and Bangladesh’s central bank.

It also said the rare malware deployed was similar to that used in the hacking of Sony Pictures in 2014.

The US government said North Korea was behind the Sony hack.

If North Korea is found to be behind the bank attacks, it would be the first time a country has been detected stealing money in a cyber-attack, Symantec’s technical director Eric Chien told Reuters.

In February this year, hackers stole $81m (£55m) from the central bank of Bangladesh.

According to Symantec, it was the same group that attempted to steal $1m from the Tien Phong Bank in Vietnam and attacked a bank in the Philippines.

In addition, the code shares similarities with malware used by the group known as Lazarus which has been accused of various attacks on the US and South Korea, including the attacks against Sony Pictures Entertainment.

In a report form the BBC May 2015 it was reported that North Korean hackers are capable of attacks that could destroy critical infrastructure and even kill people, a high-profile defector warned.

Speaking exclusively to BBC Click, Prof Kim Heung-Kwang said the country had around 6,000 trained military hackers.

The warning follows last year’s Sony Pictures hack – an attack attributed to North Korea.

Korean technology expert Martyn Williams stressed the threat was only “theoretical”.

Prof Kim has called for international organisations to step in to prevent North Korea launching more severe attacks.