IT risk management
Risk management is an increasingly important discipline for IT leaders, with regulatory compliance an ever-present consideration and the amount of legislation and regulation concerning data security on the rise. We examine the issues around IT risk management and the best practices that IT managers need to know.
-
Opinion
09 Jan 2026
From promise to proof: making AI security adoption tangible
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around AI and figure out which AI cyber use cases are worth a look, and which are just hype. Continue Reading
-
News
09 Jan 2026
Agentic AI requires rethink of cloud security strategy
Security leaders discuss the rise of agentic AI, warning that autonomous agents operating at machine speed will require organisations to move away from static protection towards behavioural monitoring and automated reasoning Continue Reading
-
News
08 Jan 2026
Campaigners urge UK to develop digital sovereignty strategy
UK digital rights campaigners have urged UK parliamentarians to implement a digital sovereignty strategy as part of the forthcoming Cyber Security and Resilience Bill to reduce reliance on technology subject to foreign interference Continue Reading
-
News
08 Jan 2026
Like it or not, AI will transform cyber strategy in 2026
Bubble or no bubble, from cyber skills to defensive strategies to governance, risk and compliance, artificial intelligence will remake the cyber world in 2026 Continue Reading
-
Opinion
08 Jan 2026
Security Think Tank: Stop buying AI, start buying outcomes
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around AI and figure out which AI cyber use cases are worth a look, and which are just hype. Continue Reading
-
Podcast
07 Jan 2026
SQL Slammer lesson: A Computer Weekly Downtime Upload podcast
We speak to the head of the Microsoft Security Response Center about how the company works with the industry to get systems patched quickly Continue Reading
-
News
07 Jan 2026
Home Office digital-only eVisa system could be ruled unlawful
The Home Office is facing a judicial review over refusing to allow alternative proof of immigration status outside of the electronic visa system, despite data quality and integrity issues plaguing the system Continue Reading
-
Opinion
07 Jan 2026
Why AI agent recoverability is vital for business resilience
While AI agents are transforming operations they bring risks. Governance, monitoring, and instant rollback can help with resilience, trust, and safe innovation Continue Reading
-
News
06 Jan 2026
Privacy will be under unprecedented attack in 2026
The UK and Europe are ramping up opposition to encryption and stepping up surveillance of private communications. Here is what to expect this year Continue Reading
-
Blog Post
06 Jan 2026
Addressing UK’s technical debt is only way to secure country’s digital future
This is a guest blog post by Rob Lay, Director of Solutions Engineering UK&I at Cisco. The recently announced Cybersecurity and Resilience Bill is a welcome move by the UK government to ... Continue Reading
-
Feature
06 Jan 2026
Results and prospects for AI in business applications in 2026
Agentic AI dominated enterprise IT discourse in 2025, evolving from generative AI. In 2026, AI convergence and governance will determine AI’s impact on enterprise IT Continue Reading
-
News
05 Jan 2026
UK government to spend £210m on public sector cyber resilience
The UK government unveils a £120m Cyber Action Plan to help reinforce and promote IT security resilience across the country's public services Continue Reading
-
Opinion
05 Jan 2026
Identity: the new perimeter of ransomware defence
Ransomware exponents can target identity, bypassing technical defences. Boards should prioritise identity security, align investments, and embed cyber risk in governance Continue Reading
-
News
31 Dec 2025
Top 10 police technology stories of 2025
Here are Computer Weekly’s top 10 police technology stories of 2025 Continue Reading
-
News
30 Dec 2025
Top 10 technology ethics stories of 2025
Here are Computer Weekly’s top 10 tech ethics stories of 2025 Continue Reading
-
News
29 Dec 2025
Top 10 cyber security stories of 2025
AI dominated all tech conversations this year, but the concerns of cyber security professionals extend far beyond. From remote work to supply chains, quantum to identity, there were plenty of other topics for the industry to chew over in 2025. Continue Reading
-
News
23 Dec 2025
Top 10 ANZ stories of 2025
The 2025 tech landscape in Australia and New Zealand was dotted with major data breaches even as organisations continue to press on with their digital transformation efforts in areas such as AI and automation Continue Reading
-
Feature
22 Dec 2025
Why the Middle East needs hybrid, human-led cyber security in the age of AI
Obrela’s Mark Morland says AI is accelerating detection, but regional context and human expertise remain essential as threats across the Gulf become more sophisticated and specific to sectors Continue Reading
-
News
18 Dec 2025
Fortinet vulnerabilities prompt pre-holiday warnings
Analysts track exploitation of two vulnerabilities disclosed last week by Fortinet Continue Reading
-
Opinion
18 Dec 2025
Passwords to prompts: Identity and AI redefined cyber in 2025
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
18 Dec 2025
Cyber resilience will define winners and losers in 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
18 Dec 2025
AI safeguards improving, says UK government-backed body
Inaugural AI Security Institute report claims that safeguards in place to ensure AI models behave as intended seem to be improving Continue Reading
-
News
17 Dec 2025
ClickFix attacks that bypass cyber controls on the rise
NCC’s monthly threat report details the growing prevalence of ClickFix attacks in the wild Continue Reading
-
Opinion
17 Dec 2025
Security platform consolidation in 2026: The AI imperative
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
15 Dec 2025
Top IT predictions in APAC in 2026
Enterprises across the Asia-Pacific region are expected to prioritise sovereign architectures, double down on securing agentic systems and rewrite their infrastructure playbooks, among other tech trends Continue Reading
-
Opinion
15 Dec 2025
The three cyber trends that will define 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
15 Dec 2025
In cyber security, basics matter, even in 2025
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
15 Dec 2025
What is driving the rise of infostealer malware?
Infostealer malware is a growing problem for cyber security teams, and these attacks have the potential to cause significant damage to businesses. What is enabling them to thrive? Continue Reading
-
News
12 Dec 2025
Trump plans bonfire of US state-level AI regulation
US president’s executive order targets state-level AI regulatory frameworks across the country, saying they are too onerous and endangering leadership in the field Continue Reading
-
Opinion
12 Dec 2025
Quantum risk to quantum readiness: A PQC roadmap
No one knows exactly when quantum computing will arrive, but accelerating progress is prompting security and IT leaders to recognise the potential risks. So how do organisations begin implementing post-quantum cryptography? Continue Reading
-
Opinion
12 Dec 2025
What lies in store for cyber security skills in 2026?
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
12 Dec 2025
Digital Ethics Summit 2025: Open sourcing and assuring AI
Industry experts met to discuss the ethical challenges associated with assuring AI systems, and how open source approaches can challenge concentrations of capital and power Continue Reading
-
Opinion
10 Dec 2025
Security pros should prepare for tough questions on AI in 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
09 Dec 2025
How AI agents are driving the future of security operations
AI agents can transform security operations and ease workloads, but security teams need to look past the hype to find tools that truly augment human analysts and deliver measurable outcomes Continue Reading
-
News
09 Dec 2025
Microsoft patched over 1,100 CVEs in 2025
The final Patch Tuesday update of the year brings 56 new CVEs, bringing the year-end total to more than 1,100 Continue Reading
-
News
09 Dec 2025
How Chinese-owned Radisson Hotel Group split US enterprise resource planning
During the UK and Ireland SAP user group conference in Birmingham, Computer Weekly met with the SAP platform lead at Radisson Hotel Group Continue Reading
-
Opinion
09 Dec 2025
Are we mistaking regulation for resilience?
We have a growing number of cyber compliance regulations, yet our country’s cyber resilience remains fragile. What is going wrong? Continue Reading
-
News
09 Dec 2025
Why bug bounty schemes have not led to secure software
Computer Weekly speaks to Katie Moussouris, security entrepreneur and bug bounty pioneer, about the life of security researchers, bug bounties and the artificial intelligence revolution Continue Reading
-
News
09 Dec 2025
OAIC to launch blitz on privacy compliance
Australia’s privacy watchdog will begin the new year with a compliance sweep targeting businesses that run afoul of privacy rules, including the over-collection of personal information in-person, warning that non-compliance could trigger fines Continue Reading
-
News
08 Dec 2025
How police live facial recognition subtly reconfigures suspicion
A growing body of research suggests that the use of live facial recognition is reshaping police perceptions of suspicion in ways that undermine supposed human-in-the-loop protections Continue Reading
-
News
05 Dec 2025
Cloudflare fixes second outage in a month
A change to web application firewall policies at Cloudflare caused problems across the internet less than three weeks after another major outage at the service, but no cyber attack is suspected Continue Reading
-
Opinion
04 Dec 2025
From trust to turbulence: Cyber's road ahead in 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
04 Dec 2025
Home Office launches police facial recognition consultation
The Home Office has formally opened a 10-week consultation on a legal framework for police use of facial recognition technologies, and will consider extending any new rules to police deployments of other biometric and inferential technologies Continue Reading
-
Feature
04 Dec 2025
In an AI-first world, the future of cyber security is its workforce
The cyber security industry will experience immense change due to AI by 2030, so both employers and professionals need to grasp the nettle, and quickly, if they are to have the right skills and experience in place to succeed Continue Reading
-
Opinion
03 Dec 2025
In 2026, collaboration, honesty and humility in cyber are key
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
03 Dec 2025
NCSC and BT block a billion dangerous clicks
A protective service jointly developed by the NCSC and BT has disrupted over a billion potential cyber incidents by stopping members of the public from clicking through to dangerous websites Continue Reading
-
News
03 Dec 2025
UK national security strategy failing to account for online world
The UK government’s national security strategy is falling short on online matters, according to the independent reviewer of terrorism Continue Reading
-
News
03 Dec 2025
Interview: Florence Mottay, global CISO, Zalando
Florence Mottay moved from mathematics to software engineering, and is now leading security at Zalando, a high-tech online fashion retailer Continue Reading
-
News
03 Dec 2025
Post Office avoids £1m fine over botched website upgrade data breach
The Information Commissioner’s Office considered fining the Post Office £1m for a 2024 data breach that let subpostmasters down again Continue Reading
-
News
03 Dec 2025
Women in Cybersecurity Middle East marks five years of impact at Black Hat MEA
As AI reshapes the regional cyber security landscape, diversity and skills development remain at the heart of building a resilient digital workforce Continue Reading
-
News
03 Dec 2025
Black Hat MEA: Saudi Vision 2030 fuels surge in cyber security innovation
Global cyber firms are racing to support the Kingdom’s mega-projects, but building trusted partnerships remains key, says Exabeam CEO Pete Harteveld Continue Reading
-
News
02 Dec 2025
AWS targets vulnerable code with security agent
At AWS re:Invent 2025, the cloud giant unveiled a security agent designed to bridge the gap between development speed and security validation, along with the general availability of Security Hub analytics Continue Reading
-
News
02 Dec 2025
Strategic shift pays off as Okta bids to ease agentic AI risk
Nine months after restructuring its go-to-market, Okta is buoyed by a growing recognition of how crucial identity has become thanks to the spread of AI agents Continue Reading
-
Opinion
02 Dec 2025
UK's Cyber Bill should be just one part of a wider effort
New cyber legislation is necessary but a wider effort is needed to harden the UK's security and resilience. Continue Reading
-
Opinion
02 Dec 2025
Cyber's defining lessons of 2025, and what comes next
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Feature
02 Dec 2025
Inserting AI into cyber awareness
As industry looks to grasp the use of AI and automated features, how are security suppliers facing the challenge of adding these capabilities to their products and services? We talked to one provider to find out Continue Reading
-
Opinion
01 Dec 2025
What lies in store for the security world in 2026?
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
01 Dec 2025
Mandatory digital ID paves way for surveillance and exclusion, MPs hear
It is currently unclear how the UK’s government’s proposed mandatory digital ID scheme will help with its stated goal of curbing illegal migration and working Continue Reading
-
News
01 Dec 2025
Interview: Mariano Albera, CTO, Checkout.com
Checkout.com’s chief technology officer has spent most of his career in the e-commerce industry, and now he is applying what he learned to the finance sector that serves it Continue Reading
-
News
26 Nov 2025
London councils endure wave of cyber attacks, shared IT services hit
Four London councils – Kensington and Chelsea; Hackney; Westminster; and Hammersmith and Fulham – have suffered cyber attacks, disrupting services and prompting NCSC-supported investigation Continue Reading
-
News
26 Nov 2025
US breach reinforces need to plug third-party security weaknesses
Cyber breach at US financial sector tech provider highlights the risk of third-party vulnerabilities in finance ecosystems Continue Reading
-
Opinion
21 Nov 2025
Protecting the defenders: Addressing cyber's burnout crisis
The Computer Weekly Security Think Tank considers the burdens and responsibilities that accompany the role of chief information security officer, and share guidance on how to navigate a challenging career path. Continue Reading
-
News
20 Nov 2025
Russian money launderers bought a bank to disguise ransomware profit
A billion-dollar money laundering network active in the UK funnelled money, including the profits of ransomware attacks, into its own bank to circumvent sanctions on Russia and help fund its attacks on Ukraine Continue Reading
-
News
20 Nov 2025
Swedish welfare authorities suspend ‘discriminatory’ AI model
A machine learning model used by Sweden’s social security agency to flag benefit fraud has been discontinued following investigations by media outlets and the country’s data protection watchdog Continue Reading
-
News
19 Nov 2025
Cloudflare contrite after worst outage since 2019
Cloudflare CEO Matthew Prince apologises for the firm’s worst outage in years and shares details of how a change to database system permissions caused a cascading effect that brought down some of the web’s biggest names Continue Reading
-
News
19 Nov 2025
UAE to launch first space-to-ground quantum communication network
Technology Innovation Institute and Space42 unveil a collaboration at the Dubai Airshow to deliver the UAE’s first space-enabled quantum communication network, strengthening national cyber resilience and advancing sovereign leadership in next-generation secure infrastructure Continue Reading
-
News
19 Nov 2025
Cisco: Network architectures must be rebuilt for agentic AI
Rising traffic volumes, AI-powered security threats and the move to agentic workflows will require organisations to modernise their network infrastructure Continue Reading
-
News
18 Nov 2025
Microsoft unveils AI agents to automate security operations
Tech giant bakes AI agents into its security products to democratise advanced security capabilities, automate repetitive tasks and provide context-aware intelligence for cyber defenders Continue Reading
-
News
18 Nov 2025
Fintech leaders call for united front against AI-driven cyber crime
As AI makes financial scams more personalised and convincing, fintech experts have called for deeper collaboration and the use of behavioural analytics and other technologies to protect consumers Continue Reading
-
News
16 Nov 2025
Australia lags regional peers in AI adoption
Report finds governance gaps, a lack of training and fear of risks as key reasons for the nation’s slow uptake of artificial intelligence compared with regional peers Continue Reading
-
News
12 Nov 2025
Hungry for data: Inside Europol’s secretive AI programme
The EU’s law enforcement agency has been quietly amassing data to feed an ambitious but secretive artificial intelligence development programme that could have far-reaching privacy implications for people across the bloc Continue Reading
-
News
12 Nov 2025
US cyber intel sharing law set for temporary extension
The CISA 2015 cyber intelligence sharing law, which lapsed just over a month ago amid a wider shutdown, will receive a temporary lease of life should attempts to reopen the federal government succeed Continue Reading
-
Feature
12 Nov 2025
Cohesity leverages AI and cloud flexibility to boost cyber resilience in the Middle East
As data threats grow, Cohesity helps enterprises and government institutions in the UAE and wider Middle East secure, manage, and derive value from their data Continue Reading
-
News
12 Nov 2025
IT services companies and datacentres face regulation as cyber security bill reaches Parliament
The Cyber Security and Resilience Bill will require large IT services companies, including datacentres, to report security incidents within 24 hours Continue Reading
-
News
11 Nov 2025
Google: Don’t get distracted by AI, focus on real cyber threats
While hackers are using artificial intelligence to optimise attacks, many of the most damaging breaches still rely on old-school methods, says a top security analyst from Google Continue Reading
-
News
07 Nov 2025
Popular LLMs dangerously vulnerable to iterative attacks, says Cisco
Cisco researchers probed some of the most widely used public GenAI LLMs and found many of them were dangerously susceptible to so-called multi-turn cyber attacks producing undesirable outputs Continue Reading
-
Opinion
07 Nov 2025
Resilience for resilience: Managing burnout among cyber leaders
The Computer Weekly Security Think Tank considers the burdens and responsibilities that accompany the role of chief information security officer, and share guidance on how to navigate a challenging career path. Continue Reading
-
News
07 Nov 2025
How Palo Alto Networks is leveraging AI
Palo Alto Networks CIO Meerah Rajavel explains how the company is using AI to sieve through 90 billion security events a day, and why security and user experience are two sides of the same coin Continue Reading
-
News
06 Nov 2025
Cisco beefs up secure AI enterprise network architecture
IT and networking giant builds on enterprise network architecture with systems designed to simplify operations across campus and branch deployments such as network configuration Continue Reading
-
News
05 Nov 2025
Darktrace: Developer tools under constant attack
Attackers are using automated tools to target development environments within seconds of them going live, warns Darktrace’s global field chief information security officer Continue Reading
-
News
05 Nov 2025
Dutch boardroom cyber security knowledge gap exposed
Cyber security governance professor warns that executives lack the capability to assess cyber threats in implementation approaches Continue Reading
-
News
04 Nov 2025
Ryt Bank taps agentic AI for conversational banking
Malaysia’s Ryt Bank is using its own LLM and agentic AI framework to allow customers to perform banking transactions in natural language, replacing traditional menus and buttons Continue Reading
-
News
04 Nov 2025
Nordic investors drive investment in region’s defence sector
Slush Startup in Helsinki will feature dual-use, defence and security events that bring suppliers together Continue Reading
-
Feature
04 Nov 2025
Is digital ID worth the risk?
The UK government’s recently announced digital ID scheme aims to curb the prospect of work for illegal migrants, along with claiming benefits for UK citizens and legal residents. However, are the threats to our personal data worth the risk? Continue Reading
-
News
04 Nov 2025
UAE Sovereign Launchpad begins nationwide roll-out with support from e& and AWS
The cloud infrastructure platform aims to strengthen digital resilience and regulatory compliance across government and regulated sectors in the United Arab Emirates Continue Reading
-
News
04 Nov 2025
Fewer data breaches in Australia, but human error now a bigger threat
Australian privacy commissioner warns that the human factor is a growing threat as notifications caused by staff mistakes rose significantly even as total breaches declined 10% from a record high Continue Reading
-
Opinion
03 Nov 2025
CISOs in court: Balancing cyber resilience and legal accountability
The Computer Weekly Security Think Tank considers the burdens and responsibilities that accompany the role of chief information security officer, and share guidance on how to navigate a challenging career path. Continue Reading
-
News
03 Nov 2025
CrowdStrike: Europe second only to North America for cyber attacks
Europe faces rising cyber threats from criminals and nation-states, according to CrowdStrike. Ransomware attacks now take just 24 hours, with 22% of global victims being European Continue Reading
-
News
31 Oct 2025
European governments opt for open source alternatives to Big Tech encrypted communications
European governments are rolling out decentralised secure messaging and collaboration services as they seek to reduce their reliance on Big Tech companies Continue Reading
-
News
31 Oct 2025
Cyber agencies co-sign Exchange Server security guide
US and allied cyber agencies team up to try to nudge users to pay more attention to securing Microsoft Exchange Server Continue Reading
-
Opinion
31 Oct 2025
Why asset visibility matters in industrial cyber security
Industrial organisations face rising operational security cyber threats. Asset visibility is vital for defence - without knowing what’s connected, organisations are risk blind Continue Reading
-
News
30 Oct 2025
Yubico bolsters APAC presence, touts device subscriptions
Yubico is hiring local teams in Singapore and pitching its subscription service to help enterprises secure employee access to corporate networks and applications Continue Reading
-
News
30 Oct 2025
US senators seek to prohibit minors from using AI chatbots
Two US senators have proposed legislation that would require AI chatbot companies to verify the ages of people using their chatbots, in attempt to limit their harmful effects on children Continue Reading
-
News
29 Oct 2025
Rapid7: Cyber defences stuck in the 1980s as threats mount
The company’s chief product officer notes that many defence tactics are still stuck in the past, urging organisations to adopt AI-driven security platforms to improve threat detection and response Continue Reading
-
Feature
28 Oct 2025
Pulling the plug: A way to halt a cyber attacker in your network?
Rumours of an organisation taking its systems offline during a cyber attack spurred conversation on the consequences of simply pulling the power, or internet access, to stop intruders. We consider the ethics and practicality Continue Reading
-
News
28 Oct 2025
Cisco and Splunk plot multi-year data fabric journey
Company leaders talk up their vision for the Cisco Data Fabric that will allow enterprises to gain insights about their IT infrastructure and security posture from machine data wherever it resides, from the network edge to the cloud Continue Reading
-
Opinion
27 Oct 2025
Use second-layer tools for AI safety
While some enterprises find it difficult to adopt AI, they can now use second-layer AI tools that enable businesses to implement the technology safely Continue Reading
-
Opinion
27 Oct 2025
Why layered resilience is the only true safeguard for SMEs
Real resilience doesn’t come from last minute panic once the storm has hit, it comes from layering defences through education, prevention, cure and – most importantly – recovery. Continue Reading
-
News
27 Oct 2025
BDO Unibank taps Zscaler to secure cloud migration
Zscaler’s deal with the Philippine bank comes as it is expanding its platform’s capabilities and footprint across Asia Continue Reading
-
News
24 Oct 2025
UK ramps up ransomware fightback with supply chain security guide
Multinational guidance, developed by the UK and Singapore, is designed to help organisations reinforce their supply chain against ransomware attacks Continue Reading
-
News
23 Oct 2025
Bereaved families call for public inquiry over suicide forum
The Molly Rose Foundation and families bereaved by suicide claim Ofcom and government departments have not taken effective action to deal with a forum promoting suicide Continue Reading
-
News
23 Oct 2025
Amid CISA cuts, US state launches first VDP
Legislators in Annapolis, Maryland, have teamed up with Bugcrowd to launch a statewide vulnerability disclosure programme Continue Reading