News

IT for retail and logistics

September 29, 2025 29 Sep'25
Harrods hit by second cyber attack in six months

Data on approximately 430,000 Harrods shoppers was stolen in a third-party breach, but the cyber attack is not related to an earlier Scattered Spider incident, says the retailer
September 26, 2025 26 Sep'25
Over half of India-based companies suffer security breaches

Business supply chains, which include Indian companies, are at risk of attack as more than half of suppliers were breached last year
September 26, 2025 26 Sep'25
Okta CEO: AI security and identity security are one and the same

At Oktane 2025 in Las Vegas, Okta CEO Todd McKinnon describes AI security and identity security as inseparable as he tees up a series of agentic security innovations
September 25, 2025 25 Sep'25
Netherlands establishes cyber resilience network to strengthen public-private digital defence

Network will connect organisations in a cyber crime defence initiative that goes way beyond information sharing

September 24, 2025 24 Sep'25
Oktane 2025: Okta takes aim at agentic AI governance gap

Identity specialist Okta is laying the groundwork for a number of incoming announcements designed to help its customers get to grips with the challenge of securing non-human, agentic identities.
September 23, 2025 23 Sep'25
Post Office Capture appeals slowed by poor records

Poor data on the use of the Post Office Capture software is slowing the review of criminal convictions, says lawyer
September 19, 2025 19 Sep'25
Government meets with car parts suppliers amid JLR cyber crisis

Government officials have met with the Society of Motor Manufacturers and Traders to discuss the challenges they are facing amid disrupted production at Jaguar Land Rover
September 19, 2025 19 Sep'25
UK cyber action plan lays out path to resilience

A report produced for the government by academics at Imperial College London and the University of Bristol sets out nine recommendations to strengthen the UK’s cyber sector
September 17, 2025 17 Sep'25
Microsoft scores win against Office 365 credential thieves

Microsoft’s Digital Crimes Unit disrupts a major phishing-as-a-service operation that targeted and stole Office 365 usernames and credentials
September 17, 2025 17 Sep'25
NCC: How RaaS team-ups help Scattered Spider enhance its attacks

Scattered Spider’s alliances with ransomware-as-a-service gangs act as a force multiplier for the scope, and number, of its cyber attacks, according to NCC Group analysts

September 16, 2025 16 Sep'25
Jaguar Land Rover extends production shutdown for another week

Jaguar Land Rover says that vehicle production will remain suspended in the wake of a cyber attack, while the hackers allegedly responsible claim they are retiring from a life of crime
September 16, 2025 16 Sep'25
Turkish state tightens grip on comms

Turkish subscriptions to fixed broadband were the lowest in Europe in 2024 and half as common as those in more developed countries
September 15, 2025 15 Sep'25
ShinyHunters linked to breach of French luxury goods house

Kering, the parent group of fashion houses including Balenciaga and Gucci, becomes the latest organisation to allegedly fall victim to ShinyHunters
September 15, 2025 15 Sep'25
‘Utter madness’ as Post Office paid law firm double the cost of scandal public inquiry

The Post Office legal representation at public inquiry into Horizon scandal cost twice as much as the actual inquiry
September 12, 2025 12 Sep'25
Post Office Horizon accounts are still a mess and replacement system is years away

Sources say the Post Office doesn’t know whether millions of pounds of branch discrepancies are real or not
September 11, 2025 11 Sep'25
M&S parts ways with CTO after cyber attack

M&S chief digital and technology officer Rachel Higham steps back from her role in the wake of the April 2025 cyber attack on the retailer’s systems
September 10, 2025 10 Sep'25
Splunk.conf: Cisco and Splunk expand agentic SOC vision

The arrival of agentic AI in the security operations centre heralds an era of simplification for security professionals, Splunk claims
September 09, 2025 09 Sep'25
Splunk.conf: Splunk urges users to eat their ‘cyber veggies’

The dawn of AI-enabled cyber attacks makes it even more important for defenders to bring their A-game, particularly when it comes to getting the basics right
September 09, 2025 09 Sep'25
Fujitsu braced for double-digit decline triggered by ‘foolish display of legal machismo’

Internally, Fujitsu UK is braced for major revenue decline as Post Office scandal takes its toll
September 05, 2025 05 Sep'25
US politicians ponder Wimwig cyber intel sharing law

US cyber data sharing legislation is set to replace an Obama-era law, but time is running out to get it over the line, with global ramifications for the security industry, and intelligence and law enforcement communities
September 04, 2025 04 Sep'25
Depression, anxiety, PTSD and suicidal thoughts: Post Office victims speak out

Report finds that former subpostmasters suffered and are continuing to suffer severe mental and physical problems due to their treatment by the Post Office
September 02, 2025 02 Sep'25
Cyber attackers damage Jaguar Land Rover production

Jaguar Land Rover reports a cyber attack has ‘severely disrupted’ its vehicle production and retail operations, recalling similar attacks on other prominent British brands this year
September 02, 2025 02 Sep'25
Fujitsu’s roots in government go too deep

MPs and peers call on prime minister to review Japanese supplier’s ‘eligibility’ to bid for government contracts
August 28, 2025 28 Aug'25
UK cyber security centre helps expose China-based cyber campaign

GCHQ cyber security centre and its international partners release details of malicious cyber activity linked to Chinese businesses
August 27, 2025 27 Aug'25
FairPrice taps Google Cloud to build agentic AI workforce

Singapore’s largest retailer is deploying a suite of agentic AI applications built on Google’s Gemini, Vertex AI and Agentspace to transform its customer experience and internal workflows
August 27, 2025 27 Aug'25
Incident response planning cuts the risk of claiming on cyber security insurance

Proper attention to incident response planning is emerging as a core cyber control when it comes to reducing the risk of having to claim on cyber security insurance, according to a report
August 27, 2025 27 Aug'25
Home Office Fujitsu contract is ‘de facto’ conflict of interest in Post Office police probe

Fujitsu supplies police with the network that supports national investigations, while its former staff are part of a national investigation
August 27, 2025 27 Aug'25
Ransomware activity levelled off in July, says NCC

Ransomware levels held steady in the month of July, although the risk remained as persistent as ever
August 26, 2025 26 Aug'25
Three new Citrix NetScaler zero-days under active exploitation

Citrix patches three new vulnerabilities in its NetScaler lines warning of active zero-day exploitation by an undisclosed threat actor
August 26, 2025 26 Aug'25
Okta makes AI identity play with Axiom acquisition

Okta says Axiom Security’s technology will reinforce its own offerings in privileged access management, especially when it comes to the growing number of non-human identities
August 25, 2025 25 Aug'25
Ransomware attack volumes up nearly three times on 2024

During the first six months of 2025, the number of observed and tracked ransomware attacks far outpaced the volume seen in 2024
August 21, 2025 21 Aug'25
Moscow exploiting seven-year-old Cisco flaw, says FBI

US authorities warn of an uptick in state-sponsored exploitation of a seven-year-old vulnerability in Cisco's operating system software
August 21, 2025 21 Aug'25
Apple iOS update fixes new iPhone zero-day flaw

Latest Apple zero-day found in the ImageIO framework opens the door for targeted zero-click attacks on iPhone users
August 21, 2025 21 Aug'25
Police investigation into Post Office scandal to cost more than £50m

Metropolitan Police-led investigation into Post Office scandal is expected to run to 2030 and cost taxpayers tens of millions of pounds
August 21, 2025 21 Aug'25
Subpostmaster federation accepted money from Fujitsu in run-up to High Court Post Office trial

The National Federation of Subpostmasters accepted sponsorship money from Fujitsu in the run-up to a High Court case examining the IT firm’s faulty Post Office system
August 20, 2025 20 Aug'25
Microsoft starts including PQC algorithms in cyber foundations

Microsoft updates on its post-quantum cyber strategy as it continues integrating quantum-safe algorithms into some of the core foundations underpinning its products and services
August 20, 2025 20 Aug'25
Commvault users told to patch two RCE exploit chains

Storage firm Commvault fixes four vulnerabilities that, when combined, create a pair of RCE exploit chains that could be used to target on-premise customers with ransomware and other nasties
August 20, 2025 20 Aug'25
Interview: David Walmsley, chief digital and technology officer, Pandora

The jewellery retailer is building on a four-year digital transformation by adding agentic AI alongside a major overhaul of its back-end ERP infrastructure
August 20, 2025 20 Aug'25
Metropolitan Police contract with Fujitsu is ‘potential conflict of interest’ amid Post Office probe

Freedom of information request reveals sub-contract between Fujitsu and the police force leading nationwide investigation of the IT firm’s part in the Post Office scandal
August 19, 2025 19 Aug'25
Google spins up agentic SOC to speed up incident management

Google Cloud elaborates on its vision for securing artificial intelligence unveiling new protections and capabilities across its product suite
August 18, 2025 18 Aug'25
Workday hit in wave of social engineering attacks

A campaign of voice-based social engineering attacks targeting users of Salesforce’s services appears to have struck HR platform Workday
August 15, 2025 15 Aug'25
UK cyber leaders feel impact of Trump cutbacks

The ripple effects of US cyber security cutbacks have reached this side of the Atlantic, according to a report
August 13, 2025 13 Aug'25
Fujitsu orders staff to retain Post Office-related documentation as it braces for legal action

Japanese supplier tells all UK staff to preserve documents related to its work with the Post Office
August 12, 2025 12 Aug'25
Eight critical RCE flaws make Microsoft’s latest Patch Tuesday list

Microsoft rolls out fixes for over 100 CVEs in its August Patch Tuesday update
August 12, 2025 12 Aug'25
Researchers firm up ShinyHunters, Scattered Spider link

ReliaQuest researchers present new evidence that firms up a potential link, or outright partnership, between the ShinyHunters and Scattered Spider cyber gangs
August 12, 2025 12 Aug'25
UK work visa sponsors are target of phishing campaign

Mimecast identifies a phishing campaign targeting UK organisations that sponsor migrant workers and students, opening the door to account compromise and visa fraud
August 06, 2025 06 Aug'25
Black Hat USA: Startup breaks secrets management tools

Researchers at Cyata, an agentic identity specialist that has just emerged from stealth, found 14 CVEs in the widely used CyberArk Conjur and HashiCorp Vault enterprise secrets management platforms
August 06, 2025 06 Aug'25
Cyber criminals would prefer businesses don’t use Okta

Okta details a phishing campaign in which the threat actor demonstrated some unusually strong opinions on what authentication methods they would like their targets to use
August 05, 2025 05 Aug'25
Attacker could defeat Dell firmware flaws with a vegetable

Cisco Talos discloses five vulnerabilities in cyber security firmware used on Dell Latitude and Precision devices, including one that could enable an attacker to log on with a spring onion
August 04, 2025 04 Aug'25
Black Hat USA: Halcyon and Sophos tag-team ransomware fightback

Ransomware experts Halcyon and Sophos are to pool their expertise in ransomware, working together to enhance data- and intelligence-sharing and bringing more comprehensive protection to customers