Security News

UK regulator puts NortonLifeLock merger with Avast on ice
2022-03-16 11:33

The UK Competition and Markets Authority merger inquiry into NortonLifeLock's proposed $8bn acquisition of rival antivirus provider Avast has now closed, with the regulator concluding that a tie-up could indeed reduce competition in the marketplace. "Advanced discussions" concerning a merger of the two security vendors first surfaced in July 2021, when NortonLifeLock investors were told that a combination with Avast "Would bring together two companies with aligned visions, highly complementary business profiles and a joint commitment to innovation that helps protect and empower people to live their digital lives safely."

UK Supreme Court snubs Assange anti-extradition bid
2022-03-15 18:02

Julian Assange has all but lost his fight against extradition from Britain to America after the UK Supreme Court said his case "Did not raise an arguable point of law." Assange's fiancée Stella Moris described the Supreme Court rejection of her betrothed's legal efforts as "Corrupting," saying: "Julian was just doing his job, which was to publish the truth about wrongdoing. His loyalty is the same as that which all journalists should have: to the public. Not to the spy agencies of a foreign power."

UK criminal defense lawyer hadn't patched when ransomware hit
2022-03-15 13:30

Criminal defense law firm Tuckers Solicitors is facing a fine from the UK's data watchdog for failing to properly secure data that included information on case proceedings which was scooped up in a ransomware attack in 2020. Data held on the archive server had not been encrypted, Tuckers admitted to the ICO. This wouldn't have prevented the attack but may have mitigated the risk to data subjects.

Huawei UK board members resign over silence on Ukraine invasion
2022-03-10 05:59

As the invasion of Ukraine heads into its third week with NATO allies ratcheting up sanctions against Russia, infosec vendors have urged Western governments and businesses to prepare for retaliatory cyberattacks. According to Mandiant, Ukraine remains the top target for destructive or disruptive cyberattacks.

UK government starts public consultation on telco security
2022-03-03 09:30

"Logs for network equipment in security critical functions shall be fully recorded and made available for audit for 13 months," explained the code. The wider consultation looks at security overall, ranging from the supply chain to network security of the type familiar to Register readers.

UK Computer Misuse Act reformers visit Parliament
2022-02-25 11:15

Infosec researcher Rob Dyke, best known to Reg readers for fending off legal threats from not-for-profit open-source foundation Apperta after finding a data breach, has visited Parliament to demand Computer Misuse Act reform. The security researcher's highly eventful attempt at vulnerability disclosure to Apperta last year resulted in him having to spend £25,000 to see off the open-source org's legal threats, though a crowdfunding campaign helped with the bulk of his legal fees.

#UK
US and UK expose new malware used by MuddyWater hackers
2022-02-24 17:56

US and UK cybersecurity and law enforcement agencies today shared information on new malware deployed by the Iranian-backed MuddyWatter hacking group in attacks targeting critical infrastructure worldwide. MuddyWater is "Targeting a range of government and private-sector organizations across sectors-including telecommunications, defense, local government, and oil and natural gas-in Asia, Africa, Europe, and North America," the two governments said.

US, UK link new Cyclops Blink malware to Russian state hackers
2022-02-23 15:49

New malware dubbed Cyclops Blink has been linked to the Russian-backed Sandworm hacking group in a joint security advisory published today by US and UK cybersecurity and law enforcement agencies. "The malware dubbed Cyclops Blink appears to be a replacement for the VPNFilter malware exposed in 2018, and its deployment could allow Sandworm to remotely access networks," the UK National Cyber Security Centre said today.

UK cybersecurity revenue up 14% on last year to £10.1bn
2022-02-17 08:28

The UK government is claiming a record year for revenue in the cybersecurity sector saying the industry generated £10.1bn. The figure represents a 14 per cent increase on last year, when total revenue generated by the sector was £8.9bn, according to figures from the Department for Digital, Culture, Media and Sport. It said 1,800 cybersecurity firms contributed around £5.3bn to the UK economy in 2021, rising by a third on the previous year from £4bn - the largest increase since the report began in 2018.

UK, US, Australia issue joint advisory: Ransomware on the loose, critical national infrastructure affected
2022-02-09 16:28

Ransomware attacks are proliferating as criminals turn to gangs providing turnkey post-compromise services, Britain's National Cyber Security Centre has warned. The warning comes hot on the heels of several high-profile attacks against oil distribution companies and also businesses that operate ports in the West - though today's note insists there was a move by criminals away from "Big game hunting" against US targets.