News

IT risk management

• January 10, 2024 10 Jan'24

  Scotland ‘sleepwalking’ to mass surveillance with DPDI Bill

  The independent checks and balances over biometrics and biometric-enabled surveillance must be strengthened to prevent Scotland from sliding into a surveillance state along with the rest of the UK

• January 03, 2024 03 Jan'24

  Fighting money laundering with AI

  Mike Foster, CEO of SymphonyAI Sensa-NetReveal, talks up how AI can be used to fight financial crime and how the company’s technology can augment existing AML investments

• December 29, 2023 29 Dec'23

  Top 10 AI regulation stories of 2023

  From the UK government’s publication of its long-awaited AI whitepaper to its convening of the world’s first AI Safety Summit, here are Computer Weekly’s top 10 AI regulation stories of 2023

• December 28, 2023 28 Dec'23

  Top 10 technology and ethics stories of 2023

  Here are Computer Weekly’s top 10 technology and ethics stories of 2023

• December 27, 2023 27 Dec'23

  Top 10 ASEAN IT stories of 2023

  Organisations across the region have continued to shore up their cyber security posture while investing in infrastructure to pave the way for emerging technologies like GenAI

• December 21, 2023 21 Dec'23

  Top 10 cyber crime stories of 2023

  Ransomware gangs dominated the cyber criminal underworld in 2023, a year that will prove notable for significant evolutionary trends in their tactics

• December 21, 2023 21 Dec'23

  Top 10 storage supplier strategy stories of 2023

  In 2023, we looked at the top storage suppliers, their market share and how they set themselves for a future of hybrid cloud, containerisation and consumption models of purchasing

• December 19, 2023 19 Dec'23

  Top 10 cyber security stories of 2023

  The past 12 months have seen the security agenda dominated by the usual round of vulnerabilities, concerns over supply chain security and more besides, but it was the chaotic state of global geopolitics that really made an impact

• December 18, 2023 18 Dec'23

  How threat intelligence is applied in DNS security

  Infoblox’s director of security architecture explains how the company leverages its threat intelligence capabilities to help organisations stay ahead of DNS security threats

• December 14, 2023 14 Dec'23

  Government plans to regulate to tackle datacentre threats

  DSIT outlines a range of proposals designed to protect data storage facilities from cyber attacks, as well as physical threats and the effects of climate breakdown

• December 14, 2023 14 Dec'23

  The Security Interviews: Talking identity with Microsoft’s Joy Chik

  Microsoft’s president of identity and network access, Joy Chik, joins Computer Weekly to discuss the evolving threat landscape in identity security, using innovations in artificial intelligence to stay ahead, and advocating for the coming ...

• December 14, 2023 14 Dec'23

  NCSC CEO Lindy Cameron to step down in 2024

  NCSC chief exec Lindy Cameron, who helped lead and elevate the national dialogue on cyber security through major events such as Covid-19, SolarWinds Sunburst and Colonial Pipeline, is to step down in the New Year

• December 14, 2023 14 Dec'23

  Cisco eyes opportunities in AI, sustainability in Australia

  Cisco is looking to tap opportunities in sustainability, AI and cyber security as it navigates Australia’s economic headwinds

• December 13, 2023 13 Dec'23

  How ransomware gangs use the tech media against their victims

  Ransomware gangs are increasingly media-savvy operators, and this means incident response plans now need to account for communications and PR strategies too

• December 13, 2023 13 Dec'23

  Microsoft’s Christmas present for cyber teams: no zero-days

  Barely 30 vulnerabilities, and no zero-days, have been fixed in the final Patch Tuesday drop of 2023

• December 13, 2023 13 Dec'23

  Critical UK infrastructure a ‘hostage of fortune’ to ransomware

  A lack of ransomware planning and preparedness at the highest levels of government is leaving UK operators or critical national infrastructure dangerously exposed, according to a Joint Committee report

• December 12, 2023 12 Dec'23

  MoD fined after breach of Afghan staffers’ data put lives at risk

  The MoD has been fined £350,000 by the ICO after an email blunder exposed data on Afghan nationals who had worked with British forces and were at risk of Taliban reprisals

• December 12, 2023 12 Dec'23

  Outdated data protection practice key factor in PSNI data breach

  The August 2023 data breach at the Police Service of Northern Ireland arose chiefly from an outdated approach to data protection and compliance at the force, according to an independent review

• December 07, 2023 07 Dec'23

  UK names Russian FSB agents behind political hacking campaign

  Russian hacking group, Star Blizzard, was part of a Russian intelligence operation aimed at interfering with UK politics and the democratic process, says government.

• December 07, 2023 07 Dec'23

  How Proofpoint is helping to mitigate AI security threats

  Proofpoint is offering monitoring tools to prevent leakage of sensitive information in generative AI models and other capabilities to mitigate AI mediated attacks

• December 01, 2023 01 Dec'23

  Report reveals sorry state of cyber security at UK football clubs

  Football clubs up and down the country are putting staff, players and fans alike at risk through outdated attitudes to cyber security, according to a report

• December 01, 2023 01 Dec'23

  The Security Interviews: Mark McClain, SailPoint Technologies

  SailPoint founder and CEO Mark McClain reflects on how the concept of identity has evolved over the past 20 years, and points to rapid evolution still to come

• November 30, 2023 30 Nov'23

  Government’s Online Fraud Charter welcomed

  The government has corralled 11 of the largest tech platforms in the world to commit to its Online Fraud Charter, designed to tackle online scams, fake adverts, and more

• November 27, 2023 27 Nov'23

  NCSC publishes landmark guidelines on AI cyber security

  The NCSC and its US counterpart CISA have brought together tech companies and governments to countersign a new set of guidelines aimed at promoting a secure-by-design culture in AI development

• November 23, 2023 23 Nov'23

  Australia ups ante on cyber security

  Australia’s new cyber security strategy will focus on building threat-blocking capabilities, protecting critical infrastructure and improving the cyber workforce, among other priorities

• November 21, 2023 21 Nov'23

  Over half of SME cyber incidents now ‘malware-free’

  The age of malware-driven cyber attacks may have peaked, at least when it comes to incidents affecting small and medium sized enterprises

• November 20, 2023 20 Nov'23

  Cubbit DS3 Composer brings DIY cloud to object storage pool

  Cubbit customers can now build and configure S3-compatible clouds from unused capacity and offer MSP-grade services with high levels of resilience, security and data sovereignty

• November 20, 2023 20 Nov'23

  IT not ready for AI, Pure Storage survey finds

  Storage, compute and networking hardware won’t cope without upgrades, and that often means total IT infrastructure overhaul

• November 20, 2023 20 Nov'23

  Defence lawyers seek appeal of tribunal ruling on police EncroChat cryptophone hack

  Defence lawyers are seeking leave to appeal against a tribunal ruling that found the National Crime Agency had lawfully obtained warrants to access messages from 9,000 cryptophones used in the UK

• November 16, 2023 16 Nov'23

  Royal Mail spent £10m on cyber measures after LockBit attack

  Royal Mail has spent approximately £10m on recovery and improved cyber resilience measures in the wake of the January 2023 LockBit ransomware attack

• November 16, 2023 16 Nov'23

  Outgoing police tech watchdog warns of declining oversight

  The outgoing biometrics and surveillance camera commissioner for England and Wales discusses police deployment of powerful new surveillance technologies, and the declining state of oversight in this area

• November 15, 2023 15 Nov'23

  November Patch Tuesday heralds five new MS zero-days

  Microsoft pushes fixes for five new zero-days in its latest monthly update

• November 15, 2023 15 Nov'23

  How Gigamon is making its mark in deep observability

  Gigamon CEO Shane Buckley talks up the company’s ability to inspect encrypted network traffic for malicious activity, how it stands out with its deep observability capabilities and the tailwinds that are fuelling its growth

• November 13, 2023 13 Nov'23

  Rogue state-aligned actors are most critical cyber threat to UK

  The prospect of rogue nation-state-aligned attackers bringing down the UK’s critical infrastructure is keeping the NCSC up at night

• November 13, 2023 13 Nov'23

  Encrypted mail service Tuta says it was wrongly accused of being a front for intelligence services

  German encrypted email service Tuta, formerly known as Tutanota, has denied claims by a former Canadian police intelligence officer accused of passing secrets to criminals that it was compromised by intelligence services

• November 13, 2023 13 Nov'23

  ICO alerted after technical ‘issue’ exposed college files to student barristers

  A training college for barristers has reported a data breach that left sensitive data on hundreds of current and former students accessible to other trainees

• November 10, 2023 10 Nov'23

  APAC cyber security workforce hits record high

  The cyber security workforce in Asia-Pacific now stands at just under a million people, but demand for cyber security talent in the region continues to outpace supply

• November 09, 2023 09 Nov'23

  The Security Interviews: Why cyber needs to integrate better

  Cyber security is an intensely technical field, but we shouldn’t ignore the soft skills of communication and collaboration. Wipro’s Tony Buffomante explains why a robust security posture is dependent on a security team engaging with the wider ...

• November 09, 2023 09 Nov'23

  Why IT governance is a coding issue

  Two new pieces of research point to benefits of policy as code

• November 08, 2023 08 Nov'23

  Data-sharing management gap highlights cyber risk, says report

  Organisations are struggling to secure their use of communications tools to share data with third-party partners and suppliers, and in the process are exposing themselves to heightened levels of risk, according to a report

• November 08, 2023 08 Nov'23

  The Security Interviews: ISC2’s Clar Rosso on cyber diversity and policy

  Computer Weekly catches up with ISC2 CEO Clar Rosso to talk about diversifying the cyber workforce and supporting cyber pros as they keep up with growing compliance and security policy demands

• November 07, 2023 07 Nov'23

  AI Safety Summit review

  Computer Weekly takes stock of the UK government’s AI Safety Summit and the differing perspectives around its success

• November 06, 2023 06 Nov'23

  How Trellix’s CISO keeps threat actors at bay

  Trellix’s chief information security officer, Harold Rivas, outlines how the company mitigates security threats through containment and by helping security analysts to respond faster to cyber incidents

• November 02, 2023 02 Nov'23

  UK workers exhibit poor security behaviours, report reveals

  Report by KnowBe4 has found that four in five UK workers do not make security-conscious choices, whether in-office, remote or hybrid working

• November 01, 2023 01 Nov'23

  Darktrace CEO Poppy Gustafsson on her AI Safety Summit goals

  As the AI Safety Summit at Bletchley Park takes place, Computer Weekly caught up with Darktrace CEO Poppy Gustafsson to find out what one of the UK’s most prominent AI advocates wants from proceedings

• October 30, 2023 30 Oct'23

  FDM Group partners with ISACA to boost cyber training programme

  The FDM Group has announced a partnership with ISACA to help develop and boost their cyber training programmes and credentials

• October 27, 2023 27 Oct'23

  Microsoft warns over growing threat from Octo Tempest gang

  The English-speaking Octo Tempest extortion gang – which became an ALPHV/BlackCat affiliate recently – presents one of the most significant and rapidly growing threats to large organisations at this time, says Microsoft

• October 27, 2023 27 Oct'23

  How Elastic manages cyber security threats

  Mandy Andress, CISO at Elastic, highlights the company’s approach to tackling evolving cyber threats through the use of AI tools and enhanced security measures while strengthening the capabilities of its security offerings

• October 27, 2023 27 Oct'23

  Google launches bug bounties for generative AI attack scenarios

  Google expands its bug bounty programme to encompass generative AI and takes steps to grow its commitment to supply chain security as it relates to the emerging technology

• October 27, 2023 27 Oct'23

  Germany: European Court opinion kicks questions over EncroChat back to national courts

  Germany lawfully obtained data on German EncroChat users from France, but whether the evidence is legally admissible is a matter for national courts