News

IT for government and public sector

• September 11, 2025 11 Sep'25

  Students an increasing source of cyber threat in UK schools

  Insider threats arising from student activity now appears to be the chief cause of notifiable cyber or data breach incidents in Britain’s schools

• September 11, 2025 11 Sep'25

  Chat Control: EU to decide on requirement for tech firms to scan encrypted messages

  Law enforcement and police experts meet on Friday to decide on proposals to require technology companies to scan encrypted messages for possible child abuse images amid growing opposition from security experts

• September 10, 2025 10 Sep'25

  Splunk.conf: Cisco and Splunk expand agentic SOC vision

  The arrival of agentic AI in the security operations centre heralds an era of simplification for security professionals, Splunk claims

• September 09, 2025 09 Sep'25

  Splunk.conf: Splunk urges users to eat their ‘cyber veggies’

  The dawn of AI-enabled cyber attacks makes it even more important for defenders to bring their A-game, particularly when it comes to getting the basics right

• September 09, 2025 09 Sep'25

  Fujitsu braced for double-digit decline triggered by ‘foolish display of legal machismo’

  Internally, Fujitsu UK is braced for major revenue decline as Post Office scandal takes its toll

• September 09, 2025 09 Sep'25

  The digital forensics crisis in policing: What’s going wrong?

  Forensics experts say that most crime has a digital footprint, but the police are unable to keep up with the soaring number of devices that require analysis

• September 08, 2025 08 Sep'25

  Northern Ireland police kept inspectors in dark over surveillance of journalists

  The Police Service of Northern Ireland failed to inform the Investigatory Powers Commissioner’s Office about surveillance operations against journalists during annual inspections

• September 08, 2025 08 Sep'25

  Liz Kendall appointed tech secretary

  Former pensions secretary Liz Kendall replaces Peter Kyle as science, technology and innovation secretary in Keir Starmer’s cabinet reshuffle

• September 05, 2025 05 Sep'25

  US politicians ponder Wimwig cyber intel sharing law

  US cyber data sharing legislation is set to replace an Obama-era law, but time is running out to get it over the line, with global ramifications for the security industry, and intelligence and law enforcement communities

• September 04, 2025 04 Sep'25

  Depression, anxiety, PTSD and suicidal thoughts: Post Office victims speak out

  Report finds that former subpostmasters suffered and are continuing to suffer severe mental and physical problems due to their treatment by the Post Office

• September 04, 2025 04 Sep'25

  Number of UK banks reporting AI-driven productivity improvements doubles

  Survey shows that half of UK banks will increase spending on artificial intelligence as more see AI-related productivity gains

• September 02, 2025 02 Sep'25

  Fujitsu’s roots in government go too deep

  MPs and peers call on prime minister to review Japanese supplier’s ‘eligibility’ to bid for government contracts

• August 29, 2025 29 Aug'25

  ICO publishes summary of police facial recognition audit

  The UK data regulator has released a summary of its facial recognition audit of two police forces

• August 28, 2025 28 Aug'25

  Microsoft refuses to divulge data flows to Police Scotland

  Tech giant Microsoft is declining to share key information with Police Scotland about where the sensitive data it uploads to Office 365 will be processed, leaving the force unable to comply with UK-wide data protection laws

• August 28, 2025 28 Aug'25

  UK cyber security centre helps expose China-based cyber campaign

  GCHQ cyber security centre and its international partners release details of malicious cyber activity linked to Chinese businesses

• August 27, 2025 27 Aug'25

  Incident response planning cuts the risk of claiming on cyber security insurance

  Proper attention to incident response planning is emerging as a core cyber control when it comes to reducing the risk of having to claim on cyber security insurance, according to a report

• August 27, 2025 27 Aug'25

  PDS confirms ‘strategic restructuring’ with series of interim senior leadership hires

  The Police Digital Service has seemingly streamlined and revamped its senior leadership team, more than a year after two of its staff were arrested for suspected misconduct in public office

• August 27, 2025 27 Aug'25

  Home Office Fujitsu contract is ‘de facto’ conflict of interest in Post Office police probe

  Fujitsu supplies police with the network that supports national investigations, while its former staff are part of a national investigation

• August 27, 2025 27 Aug'25

  Ransomware activity levelled off in July, says NCC

  Ransomware levels held steady in the month of July, although the risk remained as persistent as ever

• August 26, 2025 26 Aug'25

  Three new Citrix NetScaler zero-days under active exploitation

  Citrix patches three new vulnerabilities in its NetScaler lines warning of active zero-day exploitation by an undisclosed threat actor

• August 26, 2025 26 Aug'25

  Okta makes AI identity play with Axiom acquisition

  Okta says Axiom Security’s technology will reinforce its own offerings in privileged access management, especially when it comes to the growing number of non-human identities

• August 25, 2025 25 Aug'25

  Ransomware attack volumes up nearly three times on 2024

  During the first six months of 2025, the number of observed and tracked ransomware attacks far outpaced the volume seen in 2024

• August 21, 2025 21 Aug'25

  Moscow exploiting seven-year-old Cisco flaw, says FBI

  US authorities warn of an uptick in state-sponsored exploitation of a seven-year-old vulnerability in Cisco's operating system software

• August 21, 2025 21 Aug'25

  Scale of MoD Afghan data breaches widens dramatically

  Many more data breaches at the MoD's Arap programme to relocate at-risk Afghan citizens to Britain have emerged following an FoI request by BBC journalists

• August 21, 2025 21 Aug'25

  Apple iOS update fixes new iPhone zero-day flaw

  Latest Apple zero-day found in the ImageIO framework opens the door for targeted zero-click attacks on iPhone users

• August 21, 2025 21 Aug'25

  ICO investigates lawfulness of algorithms used in immigration enforcement

  The UK information commissioner is investigating claims that the use of algorithms by the Home Office to make recommendations on migrants breaches privacy laws

• August 21, 2025 21 Aug'25

  Police investigation into Post Office scandal to cost more than £50m

  Metropolitan Police-led investigation into Post Office scandal is expected to run to 2030 and cost taxpayers tens of millions of pounds

• August 21, 2025 21 Aug'25

  Subpostmaster federation accepted money from Fujitsu in run-up to High Court Post Office trial

  The National Federation of Subpostmasters accepted sponsorship money from Fujitsu in the run-up to a High Court case examining the IT firm’s faulty Post Office system

• August 21, 2025 21 Aug'25

  UK equality watchdog: Met Police facial recognition unlawful

  The UK’s equality watchdog has been granted permission to intervene in a judicial review of the Met Police’s live facial-recognition (LFR) technology use, which it claims is being deployed unlawfully

• August 21, 2025 21 Aug'25

  Judge throws out NHS whistleblower’s challenge to ruling on deletion of 90,000 emails

  Appeal tribunal dismisses doctor’s bid to quash decision that cleared London hospital trust of concealing evidence through attempted destruction of electronic documents during live court proceedings

• August 20, 2025 20 Aug'25

  Microsoft starts including PQC algorithms in cyber foundations

  Microsoft updates on its post-quantum cyber strategy as it continues integrating quantum-safe algorithms into some of the core foundations underpinning its products and services

• August 20, 2025 20 Aug'25

  Commvault users told to patch two RCE exploit chains

  Storage firm Commvault fixes four vulnerabilities that, when combined, create a pair of RCE exploit chains that could be used to target on-premise customers with ransomware and other nasties

• August 20, 2025 20 Aug'25

  Metropolitan Police contract with Fujitsu is ‘potential conflict of interest’ amid Post Office probe

  Freedom of information request reveals sub-contract between Fujitsu and the police force leading nationwide investigation of the IT firm’s part in the Post Office scandal

• August 19, 2025 19 Aug'25

  Google spins up agentic SOC to speed up incident management

  Google Cloud elaborates on its vision for securing artificial intelligence unveiling new protections and capabilities across its product suite

• August 19, 2025 19 Aug'25

  US says UK has agreed to drop encryption ‘backdoor’ demands against Apple

  US and UK end diplomatic row over UK encryption ‘backdoor’ order against Apple, but it remains unclear whether Apple will restore advanced encryption services to UK users

• August 18, 2025 18 Aug'25

  Workday hit in wave of social engineering attacks

  A campaign of voice-based social engineering attacks targeting users of Salesforce’s services appears to have struck HR platform Workday

• August 15, 2025 15 Aug'25

  UK cyber leaders feel impact of Trump cutbacks

  The ripple effects of US cyber security cutbacks have reached this side of the Atlantic, according to a report

• August 15, 2025 15 Aug'25

  Whitehall IT projects face complex challenges, Nista report finds

  The annual report from the National Infrastructure and Service Transformation Authority gives major police IT project ‘red’ rating, while several others are rated ‘amber’, including Gov.uk One Login and Making Tax Digital

• August 13, 2025 13 Aug'25

  Fujitsu orders staff to retain Post Office-related documentation as it braces for legal action

  Japanese supplier tells all UK staff to preserve documents related to its work with the Post Office

• August 13, 2025 13 Aug'25

  ODI tells EU to balance AI safeguards with innovation promotion

  The Open Data Institute has published a manifesto to guide European Union data and artificial intelligence policy formation

• August 12, 2025 12 Aug'25

  Eight critical RCE flaws make Microsoft’s latest Patch Tuesday list

  Microsoft rolls out fixes for over 100 CVEs in its August Patch Tuesday update

• August 12, 2025 12 Aug'25

  Researchers firm up ShinyHunters, Scattered Spider link

  ReliaQuest researchers present new evidence that firms up a potential link, or outright partnership, between the ShinyHunters and Scattered Spider cyber gangs

• August 12, 2025 12 Aug'25

  UK work visa sponsors are target of phishing campaign

  Mimecast identifies a phishing campaign targeting UK organisations that sponsor migrant workers and students, opening the door to account compromise and visa fraud

• August 11, 2025 11 Aug'25

  McCullough Review into PSNI spying on journalists and lawyers delayed

  Angus McCullough KC is to present findings of an independent review of police spying on phone data of lawyers, journalists and NGOs in Northern Ireland in October  

• August 11, 2025 11 Aug'25

  Watching the watchers: Is the Technical Advisory Panel a match for MI5, MI6 and GCHQ?

  Dame Muffy Calder is chair of the Technical Advisory Panel (TAP), a small group of experts that advises the Investigatory Powers Commissioner on surveillance technology. Do they have what it takes to oversee the intelligence community?

• August 06, 2025 06 Aug'25

  Government looks at tech to tackle peak electricity demand

  Forecasting, AI, smart meters and electrical vehicle batteries are part of an ambitious project to reduce the use of fossil fuels on the UK's energy grid

• August 06, 2025 06 Aug'25

  Black Hat USA: Startup breaks secrets management tools

  Researchers at Cyata, an agentic identity specialist that has just emerged from stealth, found 14 CVEs in the widely used CyberArk Conjur and HashiCorp Vault enterprise secrets management platforms

• August 06, 2025 06 Aug'25

  Cyber criminals would prefer businesses don’t use Okta

  Okta details a phishing campaign in which the threat actor demonstrated some unusually strong opinions on what authentication methods they would like their targets to use

• August 06, 2025 06 Aug'25

  Companies House ID verification to start in November 2025

  Companies House plans to start vetting director identities from mid-November, but its reliance on the troubled One Login digital identity service may be cause for concern

• August 06, 2025 06 Aug'25

  NCSC updates CNI Cyber Assessment Framework

  Updates to the NCSC’s Cyber Assessment Framework are designed to help providers of critical services better manage their risk profiles