About the Review

Welcome to the Cyber Security Review website.

The growth of the internet has impacted profoundly on everyday life and the global economy. It has evolved into a global, interconnected network of systems and information – cyberspace – that we know today, transforming the conduct of business and opening new markets.

Threats to cyber security are persistent and constantly evolving. With an ever-growing number of cyber attacks on critical infrastructure, online commerce and the private sector worldwide, security experts are finding that their work has become a race against the attackers.

The Cyber Security Review is a publication designed to draw on the combined knowledge, skills and expertise of the cyber security community to identify the emerging threats and facilitate the development of coherent policies and robust capabilities.

Our mission is to promote dialogue and provide a platform for information exchange and cooperation between stakeholders, industry, academia and security experts worldwide.

Latest news 

  • Serious Bug Exposes Sensitive Data From Millions Sites Sitting Behind CloudFlare

    February 22, 2017

    A severe security vulnerability has been discovered in the CloudFlare content delivery network that has caused big-name websites to expose private session keys and other sensitive data. CloudFlare, a content delivery network (CDN) and web security provider that helps optimize safety and performance of over 5.5 Million websites on the Internet, is warning its customers of ...

  • INTERPOL World 2017 builds up momentum with strong support from public and private sectors

    February 21, 2017

    SINGAPORE – The second edition of INTERPOL World has garnered strong support from public and private sectors, both locally and on the international front. Owned by INTERPOL, the world’s largest police organization with 190 member countries, the event is supported by Singapore’s Ministry of Home Affairs (MHA), the World Economic Forum and CyberSecurity Malaysia, an ...

  • How to Bury a Major Breach Notification

    February 21, 2017

    Amid the hustle and bustle of the RSA Security Conference in San Francisco last week, researchers at RSA released a startling report that received very little press coverage relative to its overall importance. The report detailed a malware campaign that piggybacked on a popular piece of software used by system administrators at some of the ...

  • Unpatched Python and Java Flaws Let Hackers Bypass Firewall Using FTP Injection

    February 21, 2017

    This newly discovered bugs in Java and Python is a big deal today. The two popular programming languages, Java and Python, contain similar security flaws that can be exploited to send unauthorized emails and bypass any firewall defenses. And since both the flaws remain unpatched, hackers can take advantage to design potential cyber attack operations against critical ...

  • Malware Attack on Polish Banks Uses Russian as False Flag, Linked to Lazarus

    February 21, 2017

    Hackers involved in the attack on Polish banks seem to have faked some of the code lines, making it seem as if they were Russians. The truth is, however, the lines don’t make sense to native speakers and an online translator may have been used. A recent sophisticated attack campaign targeted financial organizations from many countries, ...

  • Got Effective Cybersecurity Practices? Be Aware: The FTC Is Watching You

    February 20, 2017

    Following a July ruling against medical testing laboratory LabMD (which is now out of business), the Federal Trade Commission has emerged as a central regulator of cybersecurity practices for U.S. businesses. The FTC’s mandate to act on “unfair or deceptive” business practices that could harm consumers is being interpreted in a way that means any ...

  • States vie for Israeli cyber security investment as CyberGym heads downunder

    February 20, 2017

    State governments are jostling to win a major cyber security investment from the multibillion-dollar Israeli government-owned electricity company, as the business implications of Prime Minister Benjamin Netanyahu’s first Australian visit begin to take shape. Ofer Bloch, chief executive of the Israel Electric Corporation (IEC), was in Australia with the Prime Minister’s accompanying delegation of business leaders ...

  • Malware Hijacks Microphones to Spy On Ukrainian Businesses, Scientists and Media

    February 20, 2017

    Ukraine has once again been a target of a potential hacking attack that infected computer systems from dozens of Ukrainian businesses with highly sophisticated malware, allowing hackers to exfiltrate sensitive data and eavesdrop on their network. Late last year, the country also suffered a power outage caused by the same group of hackers that targeted Ukraine’s ...

  • Siemens Awarded Cyber Security Certificate for Digital Grid Automation Solutions

    February 20, 2017

    Siemens has received a certificate for network automation solutions from TÜV Süd, Munich, Germany, in accordance with the international standards series IEC 62443. The secure substation framework from Siemens has been certified to IEC 62443-2-4 (requirements for system integrators) and IEC 62443-3-3 (requirements for the security functions of systems). The certified architecture is based on ...

  • New TeamSpy Malware Campaign Turns TeamViewer into Spy Tool

    February 20, 2017

    TeamSpy is back and it’s turning TeamViewer into the spying tool that no one wants. According to security firm Heimdal, a new spam campaign emerged over the weekend, carrying the TeamSpy malware which can give hackers full access to a compromised computer. This isn’t a new type of malware whatsoever. In fact, back in 2013, it was ...

  • Study reveals cybersecurity readiness gaps in US oil and gas industry

    February 16, 2017

    A survey of US oil and gas cybersecurity risk managers indicates that the deployment of cybersecurity measures in the industry isn’t keeping pace with the growth of digitalization in oil and gas operations. In a study from the Ponemon Institute – The State of Cybersecurity in the Oil & Gas Industry: United States – just ...

  • Israeli Military Targeted by Android Mobile Surveillance Malware

    February 16, 2017

    According to Kaspersky Lab, starting in mid last year, over 100 Israeli servicemen were hit by an attack that exfiltrated data to the attackers’ command and control servers. Then, the devices were pushed Trojan updates allowing the hackers to extend their capabilities. Experts believe the campaign is still ongoing and in its early stages, targeting Android ...