October, 2015:

• ICYMI: Ashley Madison; TalkTalk; Contactless theft; Experian hack; Marks & Spencer
• Hackers use malware disguised as Word doc to steal data from Android users
• 4SICS: The perils of investigating security incidents on industrial control systems
• Simple steps for safe cloud storage
• Cyber security 2016: Take your security to the next level
• Police raid DroidJackers in international takedown
• Take your pick of Halloween cyber-security tricks and treats and horror stories
• Second teenager arrested in connection with TalkTalk cyber-attack
• CryptoWall ransomware undressed in new report
• CISA - what are the international implications?
• Russia overtaking US in cyber-warfare capabilities
• How to solve a problem like security update apathy?
• Schools given warning after Safe Harbour ruling
• Black Hat attendees 'naïve' on advanced persistent threats
• Keeping pace with an evolving cyber-crime landscape
• CISA Watch: Bill's critics not enough to overpower US government support
• Hackers target Asian mobile porn enthusiasts with malware
• 13 year olds "more tech-savvy" than their parents, says new report
• ENISA puts smart devices and IoT on top of European security agenda
• Surprises abound in global survey of cyber-security skills
• Marks & Spencer data compromise not a hack
• British intelligence services opening the doors to next generation cyber spooks
• Scottish cyber resilience team urges businesses to be proactive
• Three Stages to cyber-situational awareness and more effective cyber-security
• FBI recommends that victims of ransomware pay up
• Cyber-espionage malware on German official's computer, authorities investigate
• Adobe Shockwave Player update addresses critical vulnerability
• Jaguar car hack in New Zealand
• 11 year-old girl generates $2 diceware passwords
• European Parliament failure to protect net neutrality 'threatens encryption', says Berners-Lee
• 13 year old hacker 'cracka', responsible for CIA email leak, cracks some jokes
• NSA slams Snowden but accepts need for high-level debate on privacy
• Lessons from the Experian hack
• Don't underestimate the idiots - monitoring behaviour on your network
• News Alert: 15-year-old Northern Ireland boy arrested over TalkTalk hack
• Is North Korea climbing to the top of the cyber-attack tree?
• Met Police arrest nine suspects in high-tech banking scam
• Cyber Security - Beyond Belief
• Are you serious about cyber-security? Security Serious Week opens
• Layered security: Devices, Applications, Data & networks
• Starbug's in your eyes: German hacker spoofs iris recognition
• Country's largest cyber security organisations collaborate to design cyber-security challenge
• Research shows 12 new malware strains discovered every minute
• New strain of malware attempts to entirely replace browser
• ICYMI: Yahoo passwords; Japanese airports; French Cyber-sec; Contactless theft; Dridex back
• Thales picks up Vormetric for $400M (£261M)
• 42 percent of IBM's SoftLayer outbound emails found to be spam
• Possible Ashley Madison extortion campaign identified
• Building a new cloud security model
• EU high court rules Bitcoin exchange is now tax-free
• Google App Engine adjustment cues vulnerabilities in Java
• Trend Micro snaps up TippingPoint for $300M (£195M), integration plans ahead
• Updated: Analysing the TalkTalk customer database attack
• Government initiatives promote UK cyber-security sector
• Can bounty hunters stop the DDoS gangs?
• Report says UK must find better way to battle rise in cyber-crime
• CCTV camera botnets on the rise
• Infected iOS apps found taking user data on Apple's App Store
• China and the UK sign cyber-security agreement
• Mozilla may reject SHA-1 certificates six months early
• Testing, Testing - 4 simple IT security mistakes that leave a business vulnerable
• Russian hackers plan new attacks on Western military and civil infrastructure
• Self-encrypting Western Digital hard drives found to be littered with security holes
• HTTPS encryption for all, says non-profit
• French Crims hack chips and pins
• 4SICS: What hackers do when they access a power grid honeypot
• Facebook under investigation by Irish DPC for spying accusations
• SCNY Congress: helping secure IoT
• Ransomware using Remote Desktop to spread itself
• New vulnerability found in WordPress XML-RPC infrastructure
• Why should enterprises care about the Ashley Madison breach?
• SCNY Congress panel: Mind the gap! IT security
• Cyber IQ test results show UK workers know little about online threats
• Comms industry must filter "extremist content", says new report.
• GCHQ to review proposed nuclear plants for cyber-vulnerability
• Nearly 1m sites at risk because they use 'insecure' SHA-1 encryption
• Enforcement action inevitable if post-Safe Harbour agreement not found
• China-USA non-hacking treaty 'already flouted' by Chinese hacker
• Squealing iKettles reveal owner's Wifi passwords
• Jamaican government advised to increase focus on cyber-security
• SC staff hit by contactless card theft
• Facebook begins warning users of state-sponsored attacks on their accounts
• Data breaches are out of control - act now or get fired!
• Flaws in LibreSSL could open web servers to attack
• French government launches national cyber-security strategy
• Video: Now the corporates are also threat actors, says Mikko Hypponen
• 20 percent of UK cyber-crime victims feel fraudsters target them
• Tech giants team up against new cyber-security law
• Anonymous attacks two Japanese airports
• EA denies breach after user accounts details leaked
• Yahoo scraps passwords
• Middle eastern hackers are training with Europeans, says new report
• Brolux trojan targets Japanese banking users, distributed through adult site
• Adaptive two-factor authentication: is it all it's cracked up to be?
• GCHQ allowed to spy on politicians, says tribunal
• Malaysian police arrest man for hacking files for IS
• Dridex back on the radar after takedown
• Hackers displaying stolen data available for purchase on YouTube
• Details of US drone strike programme leaked through anonymous source
• ICYMI: Aviation risk; netgear patch delay; legal threats; android malware variants; SSL weakness
• Lloyds Group left thousands of accounts potentially open to attack
• Cyber-security breaches grow 117 percent in India
• Hacking group stole credit card data of 150,000 casino customers
• How to find a 'Super Hacker'
• Exploring Android insecurities
• French intelligence finds a way to kidnap Siri
• Global survey says security of IoT devices is inadequate in the UK
• Official stats measure cyber-crime for the first time
• Adobe issues advisory for Flash vulnerability targeting government agencies
• Mobile Security in The Age of Information Everywhere
• Police teased during pursuit to discuss cyber-crime on Twitter
• Mexico uptick in government data requests prompts privacy concerns
• How to attract and retain great cyber security talent
• Japan facing explosion in cyber-crime, claims report
• Cyber-crime overtakes physical crime in the UK
• Malvertising campaign seen on the Mail Online
• Retail and health fields to lead cyber-insurance premium spike
• Why does the UK top global cybercrime hit list?
• EC3 in cooperative action to target Dridex banking malware
• Cyber-intelligence service launched to spot attacks on payment systems
• New findings disclose health care security gaps
• Adobe addresses vulnerabilities in Flash Player, Acrobat and Reader
• UK hacker Lauri Love fights extradition to US
• Russians aim to stop military infrastructure cyber-attacks
• Dow Jones & Co. breached, current and former subscribers contacted
• The Vawtrak Trojan reemerges tougher and sneakier
• Updated: Study shows cyber-crime average costs are £4.1m per year in the UK
• Fraudsters exploit weak SSL certificate security to set up hundreds of phishing sites
• Australian government announces new data retention law
• Chinese government complied with US request to arrest hackers
• Canadian military looking for car hackers
• Medical equipment hacked at BruCon
• KU Leuven PHD student has created virtually indefensible WIFI stealth jamming attacks
• The USB killer returns
• Is it time to stop duelling with employees and their devices?
• European aviation body warns of cyber-attack risk against aircraft
• Netgear patch delay left thousands of routers under attack
• AUDS: A new way to shoot down those pesky drones
• Uber and Lyft clash over massive data breach
• Zimperium release a tool to help iOS devices infected with YiSpecter
• Video Saver PUP alters browser settings
• Security expert cancels talk on back of legal threat
• Variants now spawning off new Android SMS malware
• ICYMI: Safe Harbour, VMware vulnerability, Outlook backdoor, Snowden and DDoS attacks
• IP Expo Europe: They know how we operate - what cyber-crime looks like these days
• IP Expo Europe: The threat to the UK banking system
• Fake LinkedIn profiles, 'convincing' network linked to Iran-based group
• Report reveals UK companies still not in control of cyber-attacks
• CloudPiercer tool discloses DDoS defence providers
• 'Kemoge' adware infects users in more than 20 countries
• IP Expo Europe: Preparing for EU data protection regulation
• Researcher warns over Moker RAT APT
• Computer webcams taken hostage to spy on people having sex
• Patched Flash bug still vulnerable
• Four teens, adult arrested for Ziggo DDoS attacks
• The three methodologies behind DNS threat detection
• IP Expo Europe: The Internet of Identities can help manage myriad IoT devices
• IP Expo Europe: Don't assume you're safe from the geopolitical cyber-war
• IP Expo Europe: Holistic approach to cyber threats advised
• IP Expo Europe: The way you buy threat intelligence will change, says BAE Systems
• Cisco hinders access to Angler exploit kit
• IP Expo Europe: Cyber security and human rights entwined
• Researchers find remote code execution vulnerabilities in Huawei 4G modems
• What does the proposed EU Data Protection regulations mean to you
• Securing your website to protect brand reputation
• Enterprise security is about to get dramatically simpler
• UK workers' approaches to fight data hacks are outdated
• Cisco develops new and improved security disclosure process
• Berkshire Hathaway Specialty Insurance enters cyber-insurance arena
• How to minimise the risks of LinkedIn - the hacker's research tool
• Backdoor in MS Outlook webmail raises security doubts
• Snowden smartphone allegations - security world unimpressed
• Drone phone poses as printer to hack from the air
• Patch issued for Stagefright Android 2.0
• Four security questions to ask when moving to the cloud
• Updated: Safe Harbour ruled invalid by European Court of Justice
• Social Media sites "undermining" Met Police counter-terrorism efforts
• Benevolent virus treats home routers against cyber-attack
• Banking Trojan targeting German PayPal users
• Australian banks oppose bitcoin exchanges
• Payment processing company tests facial recognition camera as fraud preventative
• Police cars now hackable according to US report
• Nearly 5 million customers' details stolen from brokerage firm
• Updated: YiSpecter malware targets non-jailbroken iOS devices
• Car hacking through diagnostics tools are creating new 'car brothels'
• Global nuclear facilities risk 'serious' threat of cyber-attack
• Stored XSS vulnerability identified in Jetpack plugin for WordPress
• DDoS attacks continue to increase
• Zero day vulnerability found in VMware product
• Experian, T-Mobile breach exposes 15 million customers, but what will happen to the data?
• ICYMI: Malvertising, the Saudis, massive attack, Cyphinx and WinRAR
• DDoS attack takes down Thai government websites
• New trojans appear targeting UK banks
• Vulnerability could have led to RSA keys being stolen in AWS
• 4chan creator believes in absolute right to anonymity
• Landmark European data protection judgement
• In-car security systems not yet ready for autonomous driving
• North Yorkshire Police launch cyber-crime campaign
• Don't spend more, spend better: Interview with FireEye's Richard Turner:
• More than a billion Android devices vulnerable to new Stagefright bugs
• Spotting and staying ahead of the next network breach
• Only a matter of time before cyber-attack hits broader finance
• Is responsible disclosure responsible enough?
• Kmart Australia suffers large data breach, online shoppers details stolen
• S&P could downgrade lenders to standard and poor for cyber-security
• Survey shows IT budgets will grow slowly in 2016
• Are SYNful Knock-style router attacks set to become the new normal?
• Two new TrueCrypt Privilige Elevation holes found
• Shifu trojan now targeting UK banks
• Malvertising campaign found on Google Adwords