About the Review

Welcome to the Cyber Security Review website.

The growth of the internet has impacted profoundly on everyday life and the global economy. It has evolved into a global, interconnected network of systems and information – cyberspace – that we know today, transforming the conduct of business and opening new markets.

Threats to cyber security are persistent and constantly evolving. With an ever-growing number of cyber attacks on critical infrastructure, online commerce and the private sector worldwide, security experts are finding that their work has become a race against the attackers.

The Cyber Security Review is designed to draw on the combined knowledge, skills and expertise of the cyber security community to identify the emerging threats and facilitate the development of coherent policies and robust capabilities.

Our mission is to promote dialogue and provide a platform for information exchange and cooperation between stakeholders, industry, academia and security experts worldwide.

Latest news 

  • Satellite Phone Encryption Calls Can be Cracked in Fractions of a Second

    July 10, 2017

    Security researchers have discovered a new method to decrypt satellite phone communications encrypted with the GMR-2 cipher in “real time” — that too in mere fractions of a second in some cases. The new attack method has been discovered by two Chinese security researchers and is based on previous research by German academicians in 2012, showing ...

  • Hackers are using this new attack method to target power companies

    July 10, 2017

    Phishing emails, used to steal credentials from critical infrastructure firms, can silently harvest data without even using macros, researchers have warned. Hackers are targeting energy companies, including those working in nuclear power and other critical infrastructures providers, with a technique that puts a new spin on a tried-and-tested form of cyberattack. Phishing has long been a successful ...

  • The oil and gas sector must not be complacent about cyber security

    July 10, 2017

    The recent financial pressures as a result of the oil downturn have left cyber security functions for many firms within the oil and gas sector  considerably underfunded and out of date. This has the potential to create a wealth of opportunity for cyber criminals to test their capabilities, and those operating in the oil and gas ...

  • ICAO: Terrorism and cyberattacks are a ‘significant concern’

    July 10, 2017

    ICAO secretary general Fang Liu has told the United Nations (UN) counter-terrorism committee that threat and risk information must be shared to overcome “significant concern” of terrorism against aviation. “Foreign terrorist fighter movements, landside attacks, threats posed by insiders and airport staff, and the use of increasingly sophisticated improvised explosive devices are all significant concerns,” Liu ...

  • Private Decryption Key For Original Petya Ransomware Released

    July 7, 2017

    Rejoice Petya-infected victims! The master key for the original version of the Petya ransomware has been released by its creator, allowing Petya-infected victims to recover their encrypted files without paying any ransom money. But wait, Petya is not NotPetya. Do not confuse Petya ransomware with the latest destructive NotPetya ransomware (also known as ExPetr and Eternal Petya) attacks ...

  • MCMC probing cyber attacks on online trading platforms

    July 7, 2017

    The Malaysian Communications and Multimedia Commission (MCMC) is looking into reports of suspected cyber attacks disrupting online trading at several local brokerages. The regulator said it was assisting the stock exchange in investigating the disruption, a report by Nikkei Markets said on Friday. This comes after several brokerages alerted clients that their online broking services had been ...

  • Ukrainian Police Seize Servers of Software Firm Linked to NotPetya Cyberattack

    July 5, 2017

    Ukrainian National Police has released a video showing officers raiding company of M.E.Doc accounting software makers, whose systems have been linked to outbreak of Petya (NotPetya) ransomware that recently infected computers of several major companies worldwide. On 4th July, masked police officers from Ukrainian anti-cybercrime unit — carrying shotguns and assault rifles — raided the software ...

  • Medicare data leaks, but who was breached?

    July 4, 2017

    Medicare numbers in Australia became a lot less useful as a proof-of-identity, with the Australian Federal Police investigating how an unknown number of records ended up for sale on a Tor site. The report first surfaced via The Guardian’s Australian site, with journalist Paul Farrell reporting he purchased his own record for around AU$30 on the ...

  • Researchers Find BlackEnergy APT Links in ExPetr Code

    July 3, 2017

    Researchers have found links between the BlackEnergy APT group and threat actors behind the ExPetr malware used in last month’s global attacks. According to researchers at Kaspersky Lab, there are strong similarities between older versions of BlackEnergy’s KillDisk ransomware compared to ExPetr code. Parallels were first identified in targeted extensions used by both BlackEnergy and ExPetr, ...

  • Intel AMT bug bit Siemens industrial PCs

    July 3, 2017

    You don’t need state-sponsored hackers to crack industrial control systems, just an empty Intel AMT login – something Siemens started patching against last week. The bug in Intel’s Active Management Technology emerged in June. It allowed a user to exploit AMT features with an empty login string, and has been shipping in processors since 2010. In Siemens’s ...

  • Researchers Crack 1024-bit RSA Encryption in GnuPG Crypto Library

    July 3, 2017

    Security boffins have discovered a critical vulnerability in a GnuPG cryptographic library that allowed the researchers to completely break RSA-1024 and successfully extract the secret RSA key to decrypt data. Gnu Privacy Guard (GnuPG or GPG) is popular open source encryption software used by many operating systems from Linux and FreeBSD to Windows and macOS X. It’s ...

  • Vietnam seeks EU smart city know-how

    July 1, 2017

    Ho Chi Minh City requires Europe’s experience and solutions to create smart cities, a conference heard on June 30. Speaking at the “Cyber security, Internet of Things and Connected Services towards a smart city” conference, organised by the European Chamber of Commerce in Vietnam (EuroCham), Vo Quang Hue, vice chairman of EuroCham, said: “The Smart Cities ...

  • U.S. warns businesses of hacking campaign against nuclear, energy firms

    July 1, 2017

    The U.S government warned industrial firms this week about a hacking campaign targeting the nuclear and energy sectors, the latest event to highlight the power industry’s vulnerability to cyber attacks. Since at least May, hackers used tainted “phishing” emails to “harvest credentials” so they could gain access to networks of their targets, according to a joint ...