Alex Scroxton

Washington, D.C., United States

Prestige Millennial: Apex Procrastinator: Mediocre Cyber Takes Done Cheap: Security Editor @ComputerWeekly: Not Really A Llama Find me on Mastodon or LinkedIn.

Featured in: Favicon

computerweekly.com Favicon

medium.com Favicon

flipboard.com Favicon

techtarget.com (+2) Favicon

lemagit.fr Favicon

myofficemagazine.co.za Favicon

truemedian.com Favicon

flauntweekly.com Favicon

cryptoharry.net Favicon

birminghamdailyjournal.com + 7 more

Articles

Tariff turmoil is making supply chain security riskier

1 week ago | computerweekly.com | Alex Scroxton

Cyber security remained the most pressing challenge facing those in supply chain management roles during the first three months of 2025, but since the inauguration of Donald Trump in January, uncertainty over the president’s approach to tariffs has caused chaos for supply chains not just in the US, but around the world, and these two areas of risk are closely entwined.
CISA extends Mitre CVE contract at last moment

1 week ago | computerweekly.com | Alex Scroxton

In a last-minute intervention, the US Cybersecurity and Infrastructure Security Agency (CISA) has extended its contract for the Mitre-operated Common Vulnerabilities and Exposures (CVE) Programme, relied on by security professionals around the world to keep up to date on the latest publicly disclosed security vulnerabilities.
CVE Foundation pledges continuity after Mitre funding cut

1 week ago | computerweekly.com | Alex Scroxton

Community in shock Although at the time of writing the CVE Programme remains up and running, with new commits made to its GitHub in the past hours, reaction to the contract’s cancellation has been swift and scathing. “With 25 years of consistent public funding, the CVE framework is embedded into security programmes, vendor feeds, and risk assessment workflows,” said Tim Grieveson, CSO and executive vice-president at ThingsRecon, an attack surface discovery specialist.
MITRE warns over lapse in CVE coverage

1 week ago | computerweekly.com | Alex Scroxton

One of the cyber security world's most significant assets, the common vulnerabilities and exposures (CVE) system operated by US-based non-profit MITRE appears to be heading for trouble after it emerged that the contract pathway for MITRE to continue to run the project on behalf of the US authorities, is set to lapse on Wednesday 16 April with no replacement ready.
Hertz warns UK customers of Cleo-linked data breach

1 week ago | computerweekly.com | Alex Scroxton

Car hire giant Hertz has disclosed a worldwide data breach affecting the UK and other major markets, after becoming embroiled in a serious compromise of Cleo Communications’ suite of managed file transfer (MFT) products by the Clop (aka Cl0p) ransomware gang. Although parent Hertz Corporation – which besides the eponymous rental firm operates the Dollar and Thrifty brands – was earlier named by Clop on its leak site, the organisation had previously said there was no evidence of an intrusion.
Google bets on unifying security tools to ease CISO pain

2 weeks ago | computerweekly.com | Alex Scroxton

Is agentic AI the security pro’s friend? The scale and scope of what Google is bringing together with GUS is extensive, but with the spread of agentic AI across the enterprise predictably a big theme at Google Cloud Next, expectations at Google are high that the potential benefits of agents will extend to the cyber security realm. So says Google vice president of product management, Brian Roddy “I think customers are doing some interesting stuff with agentic AI,” he said.
NCSC issues warning over Chinese Moonshine and BadBazaar spyware

2 weeks ago | computerweekly.com | Alex Scroxton

The UK’s National Cyber Security Centre (NCSC), the US’s National Security Agency (NSA) and the FBI, alongside Five Eyes partner agencies from Australia, Canada and New Zealand, and the German cyber authorities, have issued a series of advisories warning individuals at risk of hostile state surveillance to be alert to two spyware variants, dubbed Moonshine and BadBazaar.
Spoofing vuln threatens security of WhatsApp Windows users

2 weeks ago | computerweekly.com | Alex Scroxton

Meta highly favoured by cyber criminals The disclosure of CVE-2025-30401 comes hot on the heels of new data, released by online bank Revolut, revealing that during 2024, WhatsApp was the main vector for one in five scams in the UK, and their volume grew by 67% between June and December.
数十億ドルを動かしたロシアのマネロン組織を摘発国際捜査の成果とは：“活動が困難”になるまで追い詰め

2 weeks ago | techtarget.itmedia.co.jp | Alex Scroxton

SmartとTGRが手掛けていたのは、ロシア人を相手に、金融規制を回避して英国に違法に資金を投資する手助けだ。欧州連合（EU）の制裁対象であるロシアのプロパガンダメディア「RT」（旧「Russia Today」）の活動を支援するために資金を移動させ、ロシアのスパイ活動に資金援助を提供していたという。 NCAは、SmartとTGRが使用した暗号資産のアドレス（暗号資産の送金先を示す識別番号）と、制裁対象の暗号資産取引所「Garantex」との間に明確な関連があることも明らかにした。Garantexはウクライナでのロシア軍の兵器部品の購入に関連する支払いとのつながりが疑われている。「Operation Destabiliseによって、これまで国際的な法執行機関や規制当局が把握していなかった方法で活動する、数十億ドル規模のマネーロンダリングネットワークの実態が判明した」。NCAの作戦統括責任者であるロブ・ジョーンズ氏はそう述べる。...
UK SMEs losing over £3bn a year to cyber incidents

2 weeks ago | computerweekly.com | Alex Scroxton

Small and medium sized enterprises (SMEs) throughout the UK are losing £3.4bn every year as a result of inadequate and unfit-for-purpose cyber security measures, with over 30% of businesses having no form of security protections in place whatsoever, and over a quarter being targeted multiple times every year according to a new report produced by Vodafone Business.