News

IT for consulting and business services

• February 18, 2022 18 Feb'22

  UK organisations untroubled by Trickbot surge

  A surge in Trickbot infections is targeting some of the world’s most prominent brands, but UK organisations seem thankfully unaffected

• February 16, 2022 16 Feb'22

  2021 another record year for UK cyber investment

  Total revenue generated by the UK’s cyber sector was up 14% last year, and UK-registered security firms raised over £1bn in investment

• February 16, 2022 16 Feb'22

  CIO interview: Steve Williams, M&A lead and IT director, Waterstons

  Steve Williams is applying decades of CIO experience to the advice he gives businesses during major mergers and acquisitions

• February 16, 2022 16 Feb'22

  Nordic countries lack a unified approach to AI

  Nordic countries need to work together on a pan-regional artificial intelligence strategy

• February 15, 2022 15 Feb'22

  China emerges as leader in vulnerability exploitation

  Threat actors linked to China are emerging as a significant force in the weaponisation of newly discovered CVEs

• February 11, 2022 11 Feb'22

  Why security professionals should pay attention to what Russia is doing

  Even though the average organisation is an unlikely target for a Russian state cyber attack, here's why security teams still need to watch what Russian threat groups are up to

• February 09, 2022 09 Feb'22

  Linux-based clouds an open door for attackers, says VMware

  Its prevalence as a cloud operating system means Linux is becoming a meal ticket for malicious actors, but the security industry does not seem to have cottoned on to this yet, says VMware

• February 09, 2022 09 Feb'22

  Ransomware ever more sophisticated and impactful, warns NCSC

  UK’s National Cyber Security Centre teams up with US and Australian partners in a joint advisory warning organisations of the increasing sophistication exhibited by criminal ransomware gangs

• February 09, 2022 09 Feb'22

  Microsoft stomps on 48 bugs in February Patch Tuesday update

  It’s a light Patch Tuesday for February 2022, as Microsoft issues fixes for just 48 CVEs, including a solitary zero-day

• February 08, 2022 08 Feb'22

  Microsoft to start blocking macros to thwart malware

  Microsoft is making changes to web macro permissions across multiple Office apps to help improve user security

• February 08, 2022 08 Feb'22

  The Security Interviews: Building the UK’s future cyber ecosystem

  As the government lays out the next iteration of its Cyber Security Strategy, we speak to Plexal and Lorca’s Saj Huq about his work building a cyber ecosystem to support the UK’s future ambitions

• February 07, 2022 07 Feb'22

  Umbrella IT contractors urged to seize on court ruling to reclaim withheld holiday pay

  The outcome of a court ruling concerning a holiday pay dispute between Pimlico Plumbers and one of its former employees could have costly implications for the umbrella company sector, it is claimed

• February 03, 2022 03 Feb'22

  UAE chooses Accenture to develop national payments platform

  Consortium led by Accenture to build new payments infrastructure in the United Arab Emirates

• February 02, 2022 02 Feb'22

  Zero-trust to soar in 2022, but dogged by implementation challenges

  IT leaders are keen to invest in zero-trust, but face issues around a lack of expertise, and selling the concept into the C-suite

• February 02, 2022 02 Feb'22

  Saudi Arabia to invest billions of dollars in technology and startups

  Saudi Arabia announces $6.4bn investment in its tech sector as part of plans to diversify its economy

• February 01, 2022 01 Feb'22

  Check Point buys Spectral to safeguard cloud development

  Check Point’s latest acquisition of Israel-based startup Spectral expands its developer-centric security toolset

• January 28, 2022 28 Jan'22

  Cyber skills gap affecting data privacy practice, finds ISACA

  Organisations are struggling to fill both legal and technical privacy roles, with potentially damaging consequences, according to a report

• January 27, 2022 27 Jan'22

  CISOs must get out in front of Ukraine cyber crisis, says NCSC

  The National Cyber Security Centre is urging UK organisations to take steps to bolster their cyber security resilience in response to the ongoing Ukraine crisis

• January 27, 2022 27 Jan'22

  Novel phishing campaign highlights need for MFA, says Microsoft

  Microsoft details a new multi-stage phishing campaign that only affects victims without multifactor authentication in place

• January 27, 2022 27 Jan'22

  Nightmare Log4Shell scenario averted by prompt, professional action

  Prompt and professional community response to the Log4Shell disclosure means the dangerous and widespread vulnerability has not been exploited to the extent many had feared

• January 26, 2022 26 Jan'22

  More intel emerges on WhisperGate malware that hit Ukraine

  Security experts have been poring over the WhisperGate malware with which alleged Russia-backed entities targeted Ukrainian government websites

• January 26, 2022 26 Jan'22

  PwnKit bug endangers Linux distributions worldwide

  Qualys researchers share intel on a memory corruption vulnerability in a program installed by default on every major Linux distribution

• January 25, 2022 25 Jan'22

  Prepare, but don’t panic, over supposed Russian cyber threat

  A fresh alert from the US Department of Homeland Security may have IT security teams jumpy over the possibility that their organisations could be targeted by Russian state actors

• January 20, 2022 20 Jan'22

  MoonBounce firmware bootkit shows advances in malicious implants

  MoonBounce firmware bootkit shows evident technical improvements over others, making it a more dangerous threat to organisations. It is being used by Chinese state-backed actors

• January 20, 2022 20 Jan'22

  Delayed pay: Umbrella company cyber attacks disrupt salary payments to thousands of contractors

  Thousands of contractors across the UK are anxiously waiting to see if their payroll cycles will be disrupted for a second week, after two of the umbrella industry's biggest players were targeted by cyber criminals

• January 19, 2022 19 Jan'22

  Danish digitisation partnership delivers plan to government

  Public-private collaboration submits plan setting out “how Denmark can take advantage of the opportunities presented by digitisation moving forward into the future”

• January 19, 2022 19 Jan'22

  Twelve million jobs to be lost to automation in Europe by 2040

  Millions of current jobs in Europe will be carried out by robots as software robots automate processes

• January 14, 2022 14 Jan'22

  Microsoft veteran turns her attention to levelling up IT industry for women

  Diversity goes beyond balancing the internal workforce and should include working with partners that also have diversity as a core objective, says Gavriella Schuster

• January 12, 2022 12 Jan'22

  Microsoft fixes six zero-days in January Patch Tuesday update

  A larger than of late Patch Tuesday update from Microsoft comes as defenders continue to grapple with Log4Shell

• January 12, 2022 12 Jan'22

  Dutch cyber volunteers receive major funding boost

  The Dutch Institute for Vulnerability Disclosure has received a $100,000 donation to expand the scope of its work

• January 11, 2022 11 Jan'22

  Almost half of Log4j downloads still dangerously exposed

  Whether by error or design is unclear, but a great many IT teams are still exposing themselves by downloading outdated, insecure versions of Apache Log4j

• January 06, 2022 06 Jan'22

  How far has Saudi Arabia come with open data?

  While clearly on the right path, Saudi Arabia still has a lot to do before it reaps the full benefits of open data

• January 05, 2022 05 Jan'22

  Google buys Siemplify in first phase of cyber investment

  Once integrated into Google Cloud, Siemplify’s platform will serve as the basis for deeper security development at Google

• December 24, 2021 24 Dec'21

  Top 10 IR35 stories of 2021

  The extension of the IR35 reforms to the private sector in April 2021 has provided Computer Weekly with lots to write about this year

• December 21, 2021 21 Dec'21

  IT services spending recovery to get renewals boost in 2022

  IT services and BPO deals worth $18.5bn globally up for renewal next year, adding fuel to already-expected high growth

• December 15, 2021 15 Dec'21

  After Log4j, December Patch Tuesday piles on the pressure

  December’s Patch Tuesday update from Microsoft contains several critical CVEs, but this month all attention is focused on the fall-out from Log4Shell, and burn-out is becoming a real issue

• December 15, 2021 15 Dec'21

  UK government to take ‘whole-of-society’ approach to cyber

  Second iteration of the UK’s National Cyber Strategy broadens its focus to build a ‘whole-of-society’ security posture

• December 14, 2021 14 Dec'21

  Almost half of networks probed for Log4Shell weaknesses

  Close to half of corporate networks have already been actively targeted by individuals seeking to exploit the critical Log4Shell Apache bug

• December 13, 2021 13 Dec'21

  What is Log4Shell, and why are we panicking about it?

  It’s been described as a ‘design failure of catastrophic proportions’ that threatens the very fabric of the digital world. Find out what the Log4j2 Log4Shell panic is all about, and what you should do about it

• December 10, 2021 10 Dec'21

  SMEs dominate list of 200 fastest growing tech companies

  List of 200 fastest growing companies in the public sector is made up primarily of small and medium-sized enterprises, which collectively earned £936m from government contracts in the past fiscal year

• December 10, 2021 10 Dec'21

  Channelling Nordic startup innovation towards global survival

  Nordic startup innovation offers global organisations the green light towards sustainability

• December 10, 2021 10 Dec'21

  Loan charge: Tax experts call on chancellor for simpler, more affordable policy settlement terms

  A group of tax barristers and accounting experts are calling on Rishi Sunak to force HMRC to revise its loan charge settlement terms

• December 09, 2021 09 Dec'21

  What are the challenges associated with the MITRE ATT&CK framework?

  Businesses sometimes struggle to use the MITRE ATT&CK framework effectively. Learn more about some of the challenges, and how to overcome them

• December 08, 2021 08 Dec'21

  2021 another record-breaker for vulnerability disclosure

  More than 50 CVEs were logged every day in 2021, more than at any time since records began, while ethical hackers continue to prove their value

• December 06, 2021 06 Dec'21

  IT Priorities 2022: Pandemic’s long tail for cyber buyers

  Pandemic response has been top of mind for cyber leaders these past 18 months, and as Covid-19 turns two, the TechTarget/Computer Weekly IT Priorities 2022 study shows buyers are still focused on how Covid has upended the workplace

• December 03, 2021 03 Dec'21

  IR35: Government consultation on umbrella companies fuels regulation hopes

  The government has embarked on a consultation to understand better how the umbrella market works, which is a move that has been cautiously welcomed by contracting market stakeholders

• November 30, 2021 30 Nov'21

  HP patches bugs in over 150 printer models

  More than 150 HP multifunction printers are at risk of compromise through a series of newly disclosed vulnerabilities, one of them wormable

• November 29, 2021 29 Nov'21

  Three latest trends and developments around the Mitre ATT&CK framework

  Framework is set to receive important updates to help organisations and businesses evolve their cyber security. Learn more about what it offers

• November 22, 2021 22 Nov'21

  Upcoming holidays prompt ransomware warning from authorities

  Ransomware gangs know how calendars work, and may target their attacks around major holidays to take advantage of more people being off work, according to a new alert

• November 15, 2021 15 Nov'21

  UK government proposes new rules for digital supply chain security

  Proposals could see IT service providers legally required to adhere to the NCSC’s Cyber Assessment Framework, among other things