News

IT for transport and travel industry

• June 27, 2022 27 Jun'22

  Brexit a net negative for UK cyber, say CISOs

  Six years on from the UK’s Brexit vote, the majority of security professionals say leaving the EU has raised concerns over their ability to keep their organisations safe

• June 27, 2022 27 Jun'22

  Manchester Airports Group taps Rise with SAP service to speed recovery

  Manchester Airports Group, which includes London Stansted and East Midlands as well as Manchester, has chosen SAP’s Rise package, on AWS, as it seeks to ‘build back smarter’ post-pandemic

• June 27, 2022 27 Jun'22

  LockBit ransomware gang launches bug bounty programme

  A bug bounty programme is among a number of features LockBit’s developers have added to ‘version 3.0’ of the ransomware

• June 24, 2022 24 Jun'22

  Black Basta ransomware crew aiming for ‘big leagues’

  Emergent Black Basta ransomware gang has hit more than 50 countries since bursting onto the scene earlier this year, says Cybereason

• June 24, 2022 24 Jun'22

  US cyber agency in fresh warning over Log4Shell risk to VMware

  Many VMware Horizon and UAG servers remain defenceless against Log4Shell, and organisations continue to fall victim to the vulnerability

• June 22, 2022 22 Jun'22

  Uber drivers strike over pay issues and algorithmic transparency

  Unionised Uber drivers take industrial action against the company over its failure to pay workers in line with a Supreme Court decision and inflation, as well as the lack of transparency around how it uses their data

• June 21, 2022 21 Jun'22

  Government won’t regulate on professional cyber standards

  The government has elected not to proceed with regulatory intervention to embed standards and pathways across the cyber profession

• June 21, 2022 21 Jun'22

  CNI leaders’ attitude to ransomware lackadaisical at best

  A survey of security decision-makers in sectors regarded as critical national infrastructure reveals a disappointing attitude to ransomware threats

• June 21, 2022 21 Jun'22

  New coalition lifts Finland’s 6G status

  Finland is laying the foundations for future European leadership in 6G research and development

• June 17, 2022 17 Jun'22

  British businesses to recognise Google skills certificates

  Google training programmes are being made available to more people in the UK as part of an initiative from the supplier and major UK businesses

• June 17, 2022 17 Jun'22

  Government responds to Data Reform Bill consultation

  Westminster claims its new data laws will boost British benefits, protect consumers, and seize the ‘benefits’ of Brexit

• June 16, 2022 16 Jun'22

  Office 365 loophole may give ransomware an easy shot at your files

  Researchers at Proofpoint have discovered potentially dangerous Microsoft Office 365 functionality that they believe may give ransomware a clear shot at files stored on SharePoint and OneDrive

• June 15, 2022 15 Jun'22

  Patch Tuesday dogged by concerns over Microsoft vulnerability response

  The last Patch Tuesday in its current form is overshadowed by persistent concerns about how Microsoft deals with vulnerability disclosure

• June 14, 2022 14 Jun'22

  MS Azure Synapse vulnerability fixed after six-month slog

  Microsoft patched a critical Azure Synapse vulnerability twice, but each time the researcher who discovered it was able to bypass it with ease, leading to a lengthy saga

• June 10, 2022 10 Jun'22

  Snake Keylogger climbing malware charts, says Check Point

  Cyber criminals behind Snake Keylogger campaigns have been switching up their tactics in the past few weeks, say researchers

• June 10, 2022 10 Jun'22

  Researchers find eight CVEs in single building access system

  A series of eight vulnerabilities in Carrier LenelS2 building access panels could enable malicious actors to obtain physical access to their targets

• June 08, 2022 08 Jun'22

  ProxyLogon, ProxyShell may have driven increase in dwell times

  The median network intruder dwell time was up 36% to 15 days last year, thanks to massive exploitation of the ProxyLogon and ProxyShell vulnerabilities by IABs, according to new Sophos data

• May 31, 2022 31 May'22

  Industrial systems not safe for the future, say Dutch ethical hackers

  Ethical hackers in the Netherlands say operational technology and IT networks need to be integrated to prevent cyber attacks penetrating their operations

• May 30, 2022 30 May'22

  UAE residents think 3D printing will have the most positive impact on society

  People in the UAE believe next-generation technologies such as 3D printing and artificial intelligence will become widespread in the country

• May 26, 2022 26 May'22

  Two-thirds of UK organisations defrauded since start of pandemic

  Nearly two out of three UK companies say they have experienced some form of fraud or economic crime in the past two years, according to a report

• May 26, 2022 26 May'22

  Dutch companies struggle to fill tech jobs

  There are plenty of IT job vacancies in the Netherlands, but a shortage of IT professionals

• May 24, 2022 24 May'22

  Ransomware volumes grew faster than ever in 2021

  Verizon’s annual DBIR assessment of the security landscape highlights an unprecedented boom in ransomware volumes, to the surprise of nobody

• May 23, 2022 23 May'22

  Reimagining the cities of the future in Finland

  New ideas around new space: Helsinki not only imagines, but can see, the cities of the future

• May 20, 2022 20 May'22

  Applying international law to cyber will be a tall order

  Many in the security community have voiced their support for the UK government’s ambitions to work towards agreement with other countries on the application of international law to cyber space, but not without some reservations

• May 19, 2022 19 May'22

  Deliveroo accused of ‘soft union busting’ with GMB deal

  Smaller grassroots unions have criticised Deliveroo and GMB for making a “hollow” deal that will ultimately undermine workers’ self-organising efforts

• May 17, 2022 17 May'22

  (ISC)² to train 100,000 cyber pros in UK

  Security association (ISC)² unveils ambitious UK training programme

• May 16, 2022 16 May'22

  Smart traffic management offers greater emissions control

  Juniper Research has predicted that CO2 emissions could be slashed if governments fully deploy smart traffic management systems

• May 11, 2022 11 May'22

  CyberUK 22: Five Eyes focuses on MSP security

  The western intelligence community has set out practical steps IT service providers and their customers can take to protect themselves

• May 11, 2022 11 May'22

  Cyber accreditation body Crest forges new training partnerships

  Crest says partnerships with Hack The Box and Immersive Labs will enhance its members’ defensive and offensive security skills

• May 11, 2022 11 May'22

  Microsoft fixes three zero-days on May Patch Tuesday

  It’s the second-to-last Patch Tuesday as we know it, and Microsoft has fixed a total of 75 bugs, including three zero-days

• May 10, 2022 10 May'22

  CyberUK 22: Cyber leaders affirm UK’s whole-of-society strategy

  On the opening day of CyberUK 2022, GCHQ director Jeremy Fleming and NCSC CEO Lindy Cameron have spoken of their commitment to the government’s ambition for a whole-of-society cyber strategy

• May 10, 2022 10 May'22

  CyberUK 22: NCSC refreshes cloud security guidance

  The National Cyber Security Centre is revising its cloud guidance as increasing uptake of potentially vulnerable cloud services puts more organisations at risk of compromise

• May 03, 2022 03 May'22

  Qualcomm to power Volkswagen’s future automated driving technology

  Volkswagen Group’s software division looks to global chip giant to supply system-on-chips to enable assisted and automated driving functions

• April 28, 2022 28 Apr'22

  Ransomware recovery costs dwarf actual ransoms

  The cost of recovering from a ransomware attack far outweighs the ransoms now being demanded by cyber criminals, according to recent data

• April 28, 2022 28 Apr'22

  Russia plumbs new depths in cyber war on Ukraine

  Microsoft details cyber attacks on Ukrainian civilian communications, nuclear safety authorities, and the exploitation of the destruction of Mariupol in a phishing campaign

• April 27, 2022 27 Apr'22

  Log4Shell, ProxyLogon, ProxyShell among most exploited bugs of 2021

  These 15 CVEs were the most commonly exploited last year, and if you haven’t mitigated against them, now is the time

• April 27, 2022 27 Apr'22

  Ransomware victims paying out when they don’t need to

  Sophos’s annual State of Ransomware report shows dramatic increases in the impact of ransomware attacks, but also finds many organisations are paying ransoms when they don’t need to

• April 27, 2022 27 Apr'22

  Government digital ignorance puts Dutch economy at risk

  In this interview, Michiel Steltman, managing director of Digital Infrastructure Netherlands, tells Computer Weekly why the Dutch digital economy is at risk due to a lack of knowledge and understanding at government level

• April 26, 2022 26 Apr'22

  BCS passes defiant Ukrainian tech industry message to its members

  BCS, the Chartered Institute for IT, has passed on a message from Ukrainian IT suppliers that the country is open for, and in need of, business

• April 26, 2022 26 Apr'22

  Emotet tests new tricks to thwart enhanced security

  The operators of the Emotet botnet seem to be trying to find a way to get around recent changes made by Microsoft to better protect its users

• April 21, 2022 21 Apr'22

  Five Eyes in new Russia cyber warning

  Latest cross-body alert warns of Russian threat to utilities and other core elements of national infrastructure

• April 13, 2022 13 Apr'22

  WatchGuard firewall users urged to patch Cyclops Blink vulnerability

  The US authorities have seen fit to add the WatchGuard vulnerability used by Sandworm to build the Cyclops Blink botnet to its list of must-patch vulnerabilities

• April 13, 2022 13 Apr'22

  Microsoft patches two zero-days, 10 critical bugs

  Patch Tuesday is here once again. This month, security teams must fix two privilege escalation zero-days in the Windows Common Log File System Driver and the Windows User Profile Service

• April 11, 2022 11 Apr'22

  Border IT system fixed after 10-day outage

  Post-Brexit border IT system failure fixed after going down at the start of April, allowing traders to once again file customs documents electronically rather than by hand

• April 07, 2022 07 Apr'22

  European IT and BPO outsourcing off to strong start

  European IT and business process outsourcing services continue to increase rapidly, with cloud-based services now more than half of the total

• April 05, 2022 05 Apr'22

  Triple-threat Borat malware no joke for victims

  Unlike its namesake, the newly discovered Borat malware won’t raise a smile for IT security pros

• April 05, 2022 05 Apr'22

  Saudi Arabian ICT sector hits $32.1bn after strong pandemic response

  The Saudi Arabian IT and communications sector is recovering strongly from the Covid-19 pandemic

• April 04, 2022 04 Apr'22

  Environmental campaigners halt Meta datacentre construction in the Netherlands

  Datacentre being built to serve ‘metaverse’ worlds would consume nearly half as much energy as all other datacentres in the country

• April 01, 2022 01 Apr'22

  Four moves to ‘checkmate’ critical assets thanks to lax cloud security

  Malicious actors can compromise 94% of critical assets within four steps of the initial breach point, according to a report

• March 30, 2022 30 Mar'22

  One-third of UK firms suffer a cyber attack every week

  New statistics from the annual DCMS Cyber security breaches survey reveal the extent and frequency with which UK organisations are being attacked by malicious actors