De Tweede Kamer heeft ingestemd met een wetsvoorstel waarmee het voor overheden mogelijk wordt om informatie over digitale kwetsbaarheden en dreigingen te delen met niet-vitale bedrijven. Alleen BBB, SP en PvdD stemden tegen.

Bedrijven die nu als ‘niet-vitaal’ voor Nederland worden beschouwd worden tot op heden niet door de overheid geïnformeerd over digitale bedreigingen en kwetsbaarheden in hun eigen digitale omgeving. Met de Wet bevordering digitale weerbaarheid bedrijven wordt dat mogelijk.

Het Digital Trust Center, dat inmiddels is samengegaan met het Nationaal Cyber Security Centrum (NCSC) en CSIRT-DSP, is al langer bezig met specifieke kwetsbaarheids- en dreigingsinformatie delen met niet-vitale bedrijven in Nederland.

As many as 300,000 servers or devices on the public internet are thought to be vulnerable right now to the recently disclosed Loop Denial-of-Service technique that works against some UDP-based application-level services.

It's said that certain implementations of TFTP, DNS, and NTP, as well as legacy protocols, such as Echo, Chargen, and QOTD, are at risk. Exploitation may result in services going down, if not whole machines or networks.

Judging from DNS, NTP, and TFTP scans, the largest number of public-facing potentially vulnerable systems are in China, Russia, and America, followed by Iran, South Korea, Italy, France, Canada, and Brazil.

The personal details of 40 millions voters were allegedly accessed in a cyber attack by China, ministers are expected to say today.

Deputy Prime Minister Oliver Dowden is expected to tell Parliament that Beijing is behind a wave of state-backed interference, which also targeted a group of 43 people including senior MPs and peers.

Ministers will set out details of the attack, in which Chinese hackers were reportedly able to access the name and address of anyone in Great Britain who was registered to vote between 2014 and 2022.

There has been a fall in the number of reported healthcare data breaches for the second consecutive month, with 59 data breaches of 500 or more records reported to the Department of Health and Human Services’ Office for Civil Rights (OCR).

There were 10.6% fewer breaches reported in February than in January, which followed a 22% reduction between December 2023 and January 2024.

Over the past 12 months, an average of 64 healthcare breaches have been reported each month, and while February is well under that average, 22.9% more breaches were reported in February 2024 than in February 2023.

Chinese spies exploited a couple of critical-severity bugs in F5 and ConnectWise equipment earlier this year to sell access to compromised US defense organizations, UK government agencies, and hundreds of other entities, according to Mandiant.

The Google-owned threat hunters said they assess, "with moderate confidence," that a crew they track as UNC5174 was behind the exploitation of CVE-2023-46747, a 9.8-out-of-10-CVSS-rated remote code execution bug in the F5 BIG-IP Traffic Management User Interface, and CVE-2024-1709, a path traversal flaw in ConnectWise ScreenConnect that scored a perfect 10 out of 10 CVSS severity rating.

UNC5174 uses the online persona Uteus, and has bragged about its links to China's Ministry of State Security (MSS) – boasts that may well be true.

According to Pauline Smith, Head of Action Fraud, the ubiquity of social media and email accounts makes everyone susceptible to fraudulent activities and cyberattacks.

As technology advances, detecting fraud becomes increasingly challenging, emphasising the critical need for enhanced security measures.

The report highlights three primary methods exploited by hackers to compromise accounts: on-platform chain hacking, leaked passwords, and phishing. On-platform chain hacking involves cybercriminals seizing control of one account to infiltrate others.

World Backup Day is an annual reminder of how important it is to have an up-to-date, readily accessible copy of everything that matters to your business.

Resilient backups allow you to recover more quickly from data damage, disruption, or loss, particularly if a ransomware attack has resulted in encrypted or deleted files.

These are well-known and widely reported benefits of backups — but there’s more. Immutable data backups can also protect you from the underrated threats of data tampering and malicious insiders, unpredictable activities that can significantly damage brand trust and reputation if they’re not addressed.

A Brighton man who has been offline for six years has said enforcing a smartphone ban on children would be difficult.

Luke Young, who came off social media completely at the age of 18, said: "I think the difficulty is that if they do ban it and treat it like a substance, then I think a lot of people will use it secretly."

A poll commissioned by Parentkind suggests that 58% of parents surveyed believed the Government should introduce a ban on smartphones for under-16s.

Open-source software’s adaptive nature ensures its durability, relevance, and compatibility with new technologies.

When I started digging deeper into the open-source cybersecurity ecosystem, I discovered an engaged community of developers working to find practical solutions to many problems, one of them being saving time.

Here are 20 essential open-source cybersecurity tools that are freely available and waiting for you to include them in your arsenal.

Scammers now use AI to instantly whip up SEO-friendly bereavement scams, and it's never been easier to swindle mourners or use them to get to their employers.

Two-bit scammers are generating near-instant obituaries for recently deceased strangers, taking advantage of vulnerable loved ones and potentially infecting their devices with malware.

A new Secureworks blog post highlights just how rapidly these fake obits can be created and disseminated, as well as the potential risk that more sophisticated attackers could use the same scheme to cause more serious consequences for victims.

If you dine out at an Asian restaurant on your next holiday, the United Nations thinks your meal could help North Korea to launder money.

That bitter tidbit is detailed by the United Nations Panel of Experts dedicated to assessing the Security Council's sanctions against The Democratic People's Republic of Korea (DPRK, aka North Korea) in its annual report [PDF].

The report finds that North-Korea-run eateries can be found in China, Laos, Thailand, and Russia. Not all offer Korean food – some specialize in Japanese or other cuisines. China alone houses 65 such restaurants.