About the Review

Welcome to the Cyber Security Review website.

The growth of the internet has impacted profoundly on everyday life and the global economy. It has evolved into a global, interconnected network of systems and information – cyberspace – that we know today, transforming the conduct of business and opening new markets.

Threats to cyber security are persistent and constantly evolving. With an ever-growing number of cyber attacks on critical infrastructure, online commerce and the private sector worldwide, security experts are finding that their work has become a race against the attackers.

The Cyber Security Review is designed to draw on the combined knowledge, skills and expertise of the cyber security community to identify the emerging threats and facilitate the development of coherent policies and robust capabilities.

Our mission is to promote dialogue and provide a platform for information exchange and cooperation between stakeholders, industry, academia and security experts worldwide.

Latest news 

  • Duma passes bill on protection of Russian state data networks

    July 12, 2017

    Russia’s lower house has approved a bill that defines which of the country’s informational infrastructure is to be considered critical, while setting a maximum sentence of 10 years imprisonment for hackers that attack it. In the final draft of the bill published on the State Duma’s website, critical informational infrastructure is defined as data systems and ...

  • After Windows and Android, Operation Emmental Starts Targeting Apple Users

    July 11, 2017

    Security experts have discovered new malware that is specifically aimed at Apple customers, after previously targeting users running Windows and Android on their devices. Believed to be part of Operation Emmental, which was first spotted in 2012, the new malware is called Dok and is primarily targeting customers of Swiss banks, according to an in-depth analysis ...

  • Insurers may have to adjust policies to reflect ‘silent’ cyber risks

    July 11, 2017

    Insurers whose policies could give rise to claims for damage as a result of cyber attacks may have to adjust their policies or premiums to better reflect these risks, the Prudential Regulation Authority (PRA) has warned. Firms should also carry out regular ‘stress tests’ to ensure that they are properly resourced to respond to a large ...

  • Trump administration limits government use of Kaspersky Lab software

    July 11, 2017

    The Trump administration on Tuesday removed Moscow-based Kaspersky Lab from two lists of approved vendors used by government agencies to purchase technology equipment, amid concerns the cyber security firm’s products could be used by the Kremlin to gain entry into U.S. networks. The delisting represents the most concrete action taken against Kaspersky following months of mounting ...

  • Satellite Phone Encryption Calls Can be Cracked in Fractions of a Second

    July 10, 2017

    Security researchers have discovered a new method to decrypt satellite phone communications encrypted with the GMR-2 cipher in “real time” — that too in mere fractions of a second in some cases. The new attack method has been discovered by two Chinese security researchers and is based on previous research by German academicians in 2012, showing ...

  • Hackers are using this new attack method to target power companies

    July 10, 2017

    Phishing emails, used to steal credentials from critical infrastructure firms, can silently harvest data without even using macros, researchers have warned. Hackers are targeting energy companies, including those working in nuclear power and other critical infrastructures providers, with a technique that puts a new spin on a tried-and-tested form of cyberattack. Phishing has long been a successful ...

  • The oil and gas sector must not be complacent about cyber security

    July 10, 2017

    The recent financial pressures as a result of the oil downturn have left cyber security functions for many firms within the oil and gas sector  considerably underfunded and out of date. This has the potential to create a wealth of opportunity for cyber criminals to test their capabilities, and those operating in the oil and gas ...

  • ICAO: Terrorism and cyberattacks are a ‘significant concern’

    July 10, 2017

    ICAO secretary general Fang Liu has told the United Nations (UN) counter-terrorism committee that threat and risk information must be shared to overcome “significant concern” of terrorism against aviation. “Foreign terrorist fighter movements, landside attacks, threats posed by insiders and airport staff, and the use of increasingly sophisticated improvised explosive devices are all significant concerns,” Liu ...

  • Private Decryption Key For Original Petya Ransomware Released

    July 7, 2017

    Rejoice Petya-infected victims! The master key for the original version of the Petya ransomware has been released by its creator, allowing Petya-infected victims to recover their encrypted files without paying any ransom money. But wait, Petya is not NotPetya. Do not confuse Petya ransomware with the latest destructive NotPetya ransomware (also known as ExPetr and Eternal Petya) attacks ...

  • MCMC probing cyber attacks on online trading platforms

    July 7, 2017

    The Malaysian Communications and Multimedia Commission (MCMC) is looking into reports of suspected cyber attacks disrupting online trading at several local brokerages. The regulator said it was assisting the stock exchange in investigating the disruption, a report by Nikkei Markets said on Friday. This comes after several brokerages alerted clients that their online broking services had been ...

  • Ukrainian Police Seize Servers of Software Firm Linked to NotPetya Cyberattack

    July 5, 2017

    Ukrainian National Police has released a video showing officers raiding company of M.E.Doc accounting software makers, whose systems have been linked to outbreak of Petya (NotPetya) ransomware that recently infected computers of several major companies worldwide. On 4th July, masked police officers from Ukrainian anti-cybercrime unit — carrying shotguns and assault rifles — raided the software ...

  • Medicare data leaks, but who was breached?

    July 4, 2017

    Medicare numbers in Australia became a lot less useful as a proof-of-identity, with the Australian Federal Police investigating how an unknown number of records ended up for sale on a Tor site. The report first surfaced via The Guardian’s Australian site, with journalist Paul Farrell reporting he purchased his own record for around AU$30 on the ...

  • Researchers Find BlackEnergy APT Links in ExPetr Code

    July 3, 2017

    Researchers have found links between the BlackEnergy APT group and threat actors behind the ExPetr malware used in last month’s global attacks. According to researchers at Kaspersky Lab, there are strong similarities between older versions of BlackEnergy’s KillDisk ransomware compared to ExPetr code. Parallels were first identified in targeted extensions used by both BlackEnergy and ExPetr, ...