News

IT governance

• August 06, 2020 06 Aug'20

  Canon said to be latest Maze ransomware victim

  Canon may have had up to 10TB of its data exfiltrated by the Maze ransomware gang

• August 06, 2020 06 Aug'20

  GCHQ seeks researchers to tackle deep fakes and misinformation

  A GCHQ research fellowship based at its Manchester office will explore various national security priorities such as deep fakes, fake news and the impact of AI

• August 06, 2020 06 Aug'20

  Footballers to take legal action over use of performance and tracking data

  Planned lawsuit will argue that the use of players’ statistics by third-party companies is incompatible with footballers’ data rights

• August 05, 2020 05 Aug'20

  Seven questions you need to ask when buying security insurance

  Find out what you need to ask to make an informed decision on cyber security insurance with new help from the UK’s NCSC

• August 05, 2020 05 Aug'20

  Home Office drops ‘racist’ visa algorithm

  The Home Secretary has pledged to stop using an algorithmic decision-making system to assess visa applications after migrant welfare and technology justice groups challenged the tool for helping to create a hostile environment for migrants

• August 05, 2020 05 Aug'20

  Second wave of Covid-19 cyber attacks locked in

  More cyber attacks exploiting the pandemic seem likely, says Interpol

• August 05, 2020 05 Aug'20

  Inside Juniper’s radical IT transformation

  Western Australia’s aged care provider Juniper embarked on an aggressive strategy to completely transform its IT operations in just two years

• August 04, 2020 04 Aug'20

  Police require radical reform to deal with 21st century challenges

  Early findings from a major review of policing reveal forces are struggling to keep pace with the changing nature of crime

• August 04, 2020 04 Aug'20

  Liam Fox hack raises questions over government security

  The hack of a former cabinet minister’s emails casts doubt over the effectiveness of safeguards and security training processes at the highest levels of the British government

• August 03, 2020 03 Aug'20

  Microsoft offers way out of TikTok impasse

  Microsoft offers to buy TikTok from its Chinese parent to ease security fears in the US

• July 31, 2020 31 Jul'20

  Labour Party is latest victim of Blackbaud ransomware attack

  Widening Blackbaud data breach ensnares the Labour Party as the cloud software firm continues to duck questions about its behaviour

• July 30, 2020 30 Jul'20

  EC launches digital identity consultation

  European Commission’s consultation will look at revisions to the eIDAS regulation, aiming to improve effectiveness and extend it to the private sector

• July 30, 2020 30 Jul'20

  Barclays CEO says Canary Wharf office set to stay despite home working success

  Barclays chief says the success of home working during the Covid-19 pandemic has taught the banks lessons, one of which is that major centres like Canary Wharf will remain

• July 30, 2020 30 Jul'20

  List of Blackbaud breach victims tops 120

  More than 120 education and third-sector organisations may have had their data compromised through the breach of Blackbaud’s cloud platform

• July 29, 2020 29 Jul'20

  Campaigners urge government to resist big tech lobbying pressure

  Lobbyists for big tech, supported by senior US politicians, have rallied against stricter regulation of technology companies, and threatened the US-UK trade deal unless Britain scraps plans to levy a digital services tax

• July 29, 2020 29 Jul'20

  Cosmetics firm Avon faces new cyber security incident

  Technical information relating to Avon’s web and mobile sites was inadvertently left exposed on an unsecured Microsoft Azure server

• July 28, 2020 28 Jul'20

  De Montfort, KCL, Newcastle universities join list of Blackbaud victims

  Embattled cloud services provider now has big questions to answer over its handling of data belonging to UK universities and charities

• July 28, 2020 28 Jul'20

  Garmin may have paid hackers ransom, reports suggest

  Garmin’s services are coming back online, but the company remains tight-lipped about what exactly happened to it

• July 28, 2020 28 Jul'20

  NCSC names national security expert Lindy Cameron as new CEO

  New National Cyber Security Centre head joins from the Northern Ireland Office and has spent 20 years in government at home and abroad

• July 28, 2020 28 Jul'20

  Scotland’s security resilience centre concept goes national

  Based on the success of the Scottish Business Resilience Centre, a series of regional Cyber Resilience Centres are now launching across the rest of the UK

• July 23, 2020 23 Jul'20

  UK government ignored civil service warning of no benefit in acquisition of OneWeb

  Civil service revealed to have taken the rare step of alerting government that $500m investment in troubled satellite company would bring no discernible benefit

• July 23, 2020 23 Jul'20

  Post-Privacy Shield, what chance for a Brexit data adequacy deal?

  The striking down of Privacy Shield has been hailed as a victory for digital rights and privacy campaign groups, but it will have consequences that go beyond transatlantic data transfers

• July 22, 2020 22 Jul'20

  Slack takes legal route against ‘weak, copycat’ Teams

  Microsoft could be set for another joust with the EU, as its rival, Slack, files an anti-competitive complaint

• July 22, 2020 22 Jul'20

  No let-up in cyber attacks as lockdown eases

  Cyber attacks are up by one-third as the coalescence of cyber activity and nation state-linked threats around the pandemic bears fruit for bad actors

• July 22, 2020 22 Jul'20

  US charges Chinese nationals with Covid-19 research hacking

  The two hackers allegedly worked with the Chinese Ministry of State Security, targeting intellectual property and confidential business information

• July 22, 2020 22 Jul'20

  BNP Paribas joins IBM financial services cloud project

  IBM’s financial services cloud is gathering steam as more banks join its public cloud ecosystem of finance firms and developers

• July 22, 2020 22 Jul'20

  Privacy Shield: Companies face new hurdles to legally transfer data to the US

  Businesses will have to conduct legal assessments to ensure they can transfer data from the EU to the US and other countries, following a European Court of Justice ruling

• July 21, 2020 21 Jul'20

  Coronavirus: Government drags its feet on online misinformation

  Online misinformation about Covid-19 continues to spread unchecked, according to a DCMS committee report which has accused the government of dragging its feet over online harms

• July 21, 2020 21 Jul'20

  Russia Report reveals long-running cyber warfare campaign against UK

  Russia has been hacking the UK for years and the British government has also known about it for years, according to the Intelligence and Security Committee’s report

• July 20, 2020 20 Jul'20

  Businesses underestimate negative impact of bot traffic

  Research from Netacea finds that although awareness of malicious bot activity is high, many are underestimating its true impact

• July 20, 2020 20 Jul'20

  Test and Trace programme unlawful, admits government

  The Department of Health and Social Care failed in its legal obligation to complete a mandatory Data Protection Impact Assessment

• July 17, 2020 17 Jul'20

  Twitter hack fallout: Investigators on trail of cyber criminals

  Investigators are hunting the cyber criminals who broke into Twitter’s systems to hijack prominent accounts, amid concerns that more attacks may come

• July 17, 2020 17 Jul'20

  Unesco launches global consultation on AI ethics

  The United Nations (UN) body opens up public consultation to help experts draft new global framework on artificial intelligence ethics

• July 16, 2020 16 Jul'20

  Russian state hackers attacking Covid-19 researchers

  Kremlin-linked APT29 group, also known as Cozy Bear, is conducting a campaign against Covid-19 researchers around the world

• July 16, 2020 16 Jul'20

  Schrems v Facebook: European court strikes down EU-US Privacy Shield agreement

  The European Court of Justice has struck down Privacy Shield, the EU-US data-sharing agreement, creating uncertainty for European countries that share data with the US and pressuring the US to reform surveillance laws

• July 15, 2020 15 Jul'20

  Government proposes IoT security enforcement body

  The government is today publishing new proposals concerning planned legislation that will protect users of smart IoT devices from cyber criminals

• July 14, 2020 14 Jul'20

  Check Point unearths critical SigRed bug in Windows DNS

  SigRed vulnerability is highly dangerous, but is being fixed as part of the July 2020 Patch Tuesday update

• July 14, 2020 14 Jul'20

  European court to decide legality of EU-US data sharing in dispute between Schrems and Facebook

  A ruling by the European Court of Justice will have ramifications for hundreds of thousands of companies that share data with the US. The case aims to balance US surveillance laws with the rights of EU citizens to keep their data private

• July 14, 2020 14 Jul'20

  CISOs undervalued, overworked, burning out, warns CIISec

  The vast majority of security professionals say they are under immense pressure, according to a report

• July 14, 2020 14 Jul'20

  Recon vulnerability puts thousands of SAP customers at risk

  Users of multiple SAP products including S4/HANA should apply the security update as soon as possible to protect their systems

• July 13, 2020 13 Jul'20

  NCSC launches pen testing service for remote workers

  An expansion to the successful Exercise in a Box toolkit will enable SMEs to probe the cyber security defences of remote workers

• July 13, 2020 13 Jul'20

  Zoom zero-day a reminder to stop using Windows 7

  Researchers have disclosed a newly discovered zero-day vulnerability to videoconferencing service Zoom, which only affects users of Windows 7 systems

• July 09, 2020 09 Jul'20

  Dutch banking’s transaction monitoring utility gets green light

  Plans for a shared utility to monitor financial transactions in the Netherlands have been given the go-ahead after six months of proving the concept

• July 09, 2020 09 Jul'20

  Clearview AI faces ICO investigation over facial recognition

  Controversial company that scraped data from the public internet to build its facial recognition algorithm faces a joint UK-Australian investigation into its practices

• July 09, 2020 09 Jul'20

  Matt Hancock encourages private sector involvement in post-pandemic NHS technology

  Health secretary Matt Hancock has outlined how the NHS will continue to leverage digital technologies with the help of the private sector after the Covid-19 pandemic ends

• July 09, 2020 09 Jul'20

  Pubs and restaurants failing on cyber fraud protection

  Virtually all of the UK’s most popular restaurant and pub brands are failing to proactively block fraudulent emails from reaching their targets

• July 08, 2020 08 Jul'20

  Political awareness needed to ethically handle migration data, panel claims

  Understanding the political, social and economic relationships between different groups in society is needed to ensure location data is not used in ways that further endanger already vulnerable people on the move

• July 08, 2020 08 Jul'20

  Cosmic Lynx cyber crime group takes BEC to new heights

  Newly identified Russian threat group targets large organisations with increasingly dangerous business email compromise attacks

• July 07, 2020 07 Jul'20

  Australian government foreshadows ‘sovereign data’ classification

  The Australian government will examine if certain government datasets should be declared sovereign and only be hosted in the country

• July 06, 2020 06 Jul'20

  Lorca scale-ups bring diverse security to the fore

  London Office for Rapid Cybersecurity Advancement announces the cyber security scale-ups that will make up its fifth cohort

• July 06, 2020 06 Jul'20

  Need to secure industrial IoT more acute than ever

  A report from the Lloyd’s Register Foundation is calling for urgent action to secure industrial infrastructure, as the IoT leaves it increasingly exposed

• July 03, 2020 03 Jul'20

  Green tech needed for post-Covid economic recovery

  Green technology investments could help society recover from the coronavirus – and prepare it for the long-term negative social and economic outcomes of climate change

• July 02, 2020 02 Jul'20

  Loan charge MPs denied House of Commons vote on Finance Bill policy amendments

  Despite securing the support of 50 named MPs, an amendment to the forthcoming Finance Bill that could have seen thousands of people fall out of scope of the Loan Charge policy has been denied

• July 02, 2020 02 Jul'20

  Police secrecy over ‘IMSI-catcher’ mass surveillance of mobile phones

  Following a tribunal ruling, constabularies in England and Wales can refuse to confirm or deny whether they use mass surveillance devices, known as IMSI-catchers to monitor people’s location, phone calls and text messages

• July 01, 2020 01 Jul'20

  Zoom making progress on cyber security and privacy, says CEO

  Three months after being hit by a spate of security incidents, Zoom’s CEO, Eric Yuan, has been discussing progress towards a more secure product

• July 01, 2020 01 Jul'20

  Remote workers more aware of security, but still flout the rules

  Almost three-quarters of remote workers reckon they have gained in cyber security awareness during lockdown, but don’t seem to be especially bothered about keeping themselves safe

• June 30, 2020 30 Jun'20

  ReversingLabs makes over 100 Yara rules publicly available

  Threat intelligence specialist is making its IP available on GitHub to support malware hunters in their work

• June 30, 2020 30 Jun'20

  The Security Interviews: What CISOs can learn from Covid-19

  Mike Lloyd, CTO at Redseal, holds 21 cyber security patents and a PhD in stochastic epidemic modelling from Heriot-Watt University in Edinburgh, so is probably the man to talk to when it comes to cyber security in the world of Covid-19

• June 30, 2020 30 Jun'20

  Complex security estates hinder incident response

  The more disparate security tools in use in an organisation, the harder it becomes to mount an effective incident response

• June 29, 2020 29 Jun'20

  Lords urge government to take immediate action on online harms

  Select committee calls for tech giants to be held responsible for the harm done to individuals, wider society and democratic processes through online misinformation

• June 29, 2020 29 Jun'20

  Airports deploy thermal cameras to control Covid-19, science suggests it’s merely ‘safety theatre’

  UK airports are rolling out thermal surveillance cameras to identify people who may have coronavirus, but science says the technology is ineffective at detecting and preventing the spread of the disease

• June 29, 2020 29 Jun'20

  Out of date security laws leave UK plc at risk during pandemic

  The CyberUp coalition has written to Boris Johnson to urge him to reform the UK’s 30 year-old cyber crime laws

• June 25, 2020 25 Jun'20

  Pub ‘check-in’ apps provoke fresh privacy concerns

  With pubs and restaurants required to collect customer data for contact tracing when they reopen, data privacy risks will be heightened

• June 25, 2020 25 Jun'20

  CBI: Digital economy needs joined-up regulations and gigabit broadband

  The coronavirus pandemic has shown the need for fast, reliable networking across the UK. The CBI is urging the government to do more

• June 24, 2020 24 Jun'20

  EU judges GDPR an overall success, but changes still needed

  Two years after its implementation, an EU report says that the GDPR is achieving what it set out to do, with a few reservations

• June 24, 2020 24 Jun'20

  Brits will sell their personal data for pennies

  Surprising findings from an Okta report on digital identity suggest Brits would be willing to part with valuable personal data for a surprisingly low amount

• June 23, 2020 23 Jun'20

  Neurodiversity on the rise among career hackers

  More diverse hackers enhance the ability of both traditional and cutting-edge cyber security solutions to find and fix vulnerabilities, according to a new report from Bugcrowd

• June 23, 2020 23 Jun'20

  ITAM Forum aims to raise the bar on tech management

  Knowing what is deployed is the first step in any transformation exercise, and a strong IT asset management practice lowers risk

• June 22, 2020 22 Jun'20

  Immigrants’ rights campaigners take Home Office to court over visa algorithm

  Campaigners claim built-in algorithmic bias makes processing of visa applications ‘discriminatory’

• June 22, 2020 22 Jun'20

  Care Quality Commission to discuss concerns over Paula Vennells’ NHS role

  Healthcare regulator will be discussing concerns about former NHS boss chairing an NHS trust at an upcoming meeting

• June 19, 2020 19 Jun'20

  Technology firms come under scrutiny for ties to law enforcement

  Three major technology companies have committed to not selling facial-recognition tech to law enforcement, but remain silent on how other technologies can be used to fuel racial injustice and discriminatory policing

• June 19, 2020 19 Jun'20

  AI bias and privacy issues require more than clever tech

  The new AI Barometer report from the Centre for Data Ethics and Innovation has assessed the threats and opportunities of artificial intelligence in the UK

• June 19, 2020 19 Jun'20

  Facebook allows US users to disable political ads

  Users of the social media platform will soon be able to opt out of seeing politically motivated posts

• June 18, 2020 18 Jun'20

  Zoom U-turns on end-to-end encryption

  Embattled video-conferencing provider Zoom backtracks on previous refusals to provide end-to-end encryption to free users

• June 17, 2020 17 Jun'20

  Cosmetics company Avon offline after cyber attack

  Representatives left unable to place orders after company’s back-end systems went offline over a week ago

• June 17, 2020 17 Jun'20

  Coronavirus: 50% of security pros had no pandemic contingency plan

  A survey of security professionals conducted on behalf of Bitdefender reveals the lack of forward planning for events such as the Covid-19 coronavirus pandemic

• June 16, 2020 16 Jun'20

  UK-US data deal puts Brexit data adequacy pact at risk

  European Data Protection Board writes to MEPs saying the UK is at risk of failing to strike a post-Brexit data adequacy accord if its data protection agreements with the US don’t strike the right note

• June 16, 2020 16 Jun'20

  Activists call on Zoom to implement encryption for all

  A coalition of tech organisations and nonprofits have urged Zoom CEO Eric Yuan to make end-to-end encryption available to all users

• June 12, 2020 12 Jun'20

  NHS email service users ensnared in phishing attack

  More than 100 accounts on the NHSmail service were affected by attack, but health service says no patient data was accessed

• June 12, 2020 12 Jun'20

  Subpostmasters will not cooperate with government review into IT scandal

  A group of subpostmasters who suffered at the hands of the Post Office’s error-prone IT system refuse to participate in a government review into the scandal, describing it as a sham

• June 11, 2020 11 Jun'20

  Tech firms respond to Nordic government calls

  Nordic firms are working with tech suppliers to help them get back up and running after Covid-19

• June 11, 2020 11 Jun'20

  Amazon bans police use of its facial-recognition technology for a year

  Tech giant claims it has been an advocate for stronger government regulation on the ethical use of facial recognition

• June 10, 2020 10 Jun'20

  IBM divests from facial-recognition market

  IBM’s CEO writes to US congress about decision to stop using and selling facial-recognition technology, and says we should re-evaluate whether it should be sold to law enforcement agencies

• June 10, 2020 10 Jun'20

  CogX 2020: Matt Hancock on tech during Covid-19

  Health secretary Matt Hancock says technology companies have been vital in dealing with the pandemic, and praises UK for testing more people “than almost anywhere in the world.”

• June 10, 2020 10 Jun'20

  CogX 2020: Rethinking technological innovation

  Innovation processes and relationships must be fundamentally restructured to bring in more stakeholders, and spread the benefits of technological change as far as possible

• June 10, 2020 10 Jun'20

  Virtual GP practice accidentally exposes patient video calls

  A small number of users of Babylon’s GP at Hand service were briefly able to view other patients’ video GP consultations thanks to a bug in a new software feature

• June 10, 2020 10 Jun'20

  Nasty surprises lurking in furloughed employees’ inboxes

  Research conducted by KnowBe4 points to a looming email security problem as furloughed employees head back to work

• June 09, 2020 09 Jun'20

  Cyber security needs more women role models, says report

  A report compiled by security assurance organisation Crest highlights the progress made on gender diversity in cyber security, and offers pointers for next steps

• June 05, 2020 05 Jun'20

  Police chiefs working with Public Health England on contact-tracing security

  Police force representatives are in talks with Public Health England over operational security concerns arising from the NHS Test and Trace coronavirus contact-tracing scheme

• June 05, 2020 05 Jun'20

  Ministry of Defence forms new cyber security regiment

  The 13th Signal Regiment brings together personnel from across the armed forces to provide specialist security services

• June 04, 2020 04 Jun'20

  Government evades being pinned to a date for online harms legislation

  MPs challenge government on online harms bill timetable, but have to settle for “clear assurances” that it will brought to parliament before the end of the session

• June 04, 2020 04 Jun'20

  The Security Interviews: How the BSI protects the IoT from itself

  David Mudd of the BSI reveals how a pragmatic and realistic approach to security vulnerabilities underpins its internet of things kitemark, helping give users the confidence to buy smart devices safely

• June 04, 2020 04 Jun'20

  Malaysian minister backtracks on spectrum allocation decision

  Amid reports of a surreptitious decision to allocate spectrum to five Malaysian operators, the communications minister rescinds his own order, calling for a more transparent review of the allocation process

• June 03, 2020 03 Jun'20

  Security procurement framework goes live for NHS and public sector

  Cyber Security Services Framework, developed by NHS Shared Business Services, has formally launched

• June 03, 2020 03 Jun'20

  Infosec 2020: Covid-19 an opportunity to change security thinking

  The annual Infosecurity Europe is being held virtually this year, and speakers at an online panel session have been considering the impact of the pandemic on security awareness

• June 02, 2020 02 Jun'20

  NIS security regulations proving effective, but more work to do

  The UK’s NIS cyber security and risk regulations are proving somewhat effective, according to a government report

• June 01, 2020 01 Jun'20

  Employees must be consulted on technologies monitoring the return to work

  Experts say the workforce must be ‘in the room’ and given a meaningful say about technologies introduced to monitor their return to work following the Covid-19 pandemic

• June 01, 2020 01 Jun'20

  Privacy campaigners call for radical changes to contact-tracing app

  Liberty, Privacy International and the Open Rights Group join calls for the government to either put in place better data protection policies or abandon its Covid-19 contact-tracing app altogether

• May 29, 2020 29 May'20

  Test and Trace has not passed data protection impact assessment

  Public Health England failed to complete the required impact assessment before launching the Covid-19 Test and Trace programme

• May 28, 2020 28 May'20

  European General Court annuls ban on proposed Three UK/O2 merger

  Court reverses European Commission judgment blocking 2016 purchase of leading UK mobile providers