News

IT governance

• December 28, 2023 28 Dec'23

  Top 10 technology and ethics stories of 2023

  Here are Computer Weekly’s top 10 technology and ethics stories of 2023

• December 27, 2023 27 Dec'23

  Top 10 police technology stories of 2023

  Here are Computer Weekly’s top 10 police technology stories of 2023

• December 21, 2023 21 Dec'23

  Top 10 cyber crime stories of 2023

  Ransomware gangs dominated the cyber criminal underworld in 2023, a year that will prove notable for significant evolutionary trends in their tactics

• December 21, 2023 21 Dec'23

  Top 10 storage supplier strategy stories of 2023

  In 2023, we looked at the top storage suppliers, their market share and how they set themselves for a future of hybrid cloud, containerisation and consumption models of purchasing

• December 20, 2023 20 Dec'23

  'No hiding place' for those responsible for Post Office Horizon scandal

  MPs want individuals to be held to account for their roles in causing the Post Office Horizon scandal, which destroyed thousands of lives

• December 20, 2023 20 Dec'23

  ALPHV/BlackCat operation down, but maybe not out

  Multinational law enforcement has targeted the operations of the notorious ALPHV/BlackCat cyber extortion gang, but the group’s members appear to remain defiant

• December 19, 2023 19 Dec'23

  Top 10 cyber security stories of 2023

  The past 12 months have seen the security agenda dominated by the usual round of vulnerabilities, concerns over supply chain security and more besides, but it was the chaotic state of global geopolitics that really made an impact

• December 19, 2023 19 Dec'23

  Top 10 information management stories of 2023

  Generative AI was inescapable as the leading theme of the information management stories of 2023 gathered here. But also selected are pieces about data and healthcare, and the inexorable rise of the CDO

• December 15, 2023 15 Dec'23

  Police defend facial recognition target selection to Lords

  Senior police officers confirm to Lords committee that facial recognition watchlist image selection is based on crime categories attached to people’s photos, rather than a context-specific assessment of the threat presented by a given individual

• December 14, 2023 14 Dec'23

  Government plans to regulate to tackle datacentre threats

  DSIT outlines a range of proposals designed to protect data storage facilities from cyber attacks, as well as physical threats and the effects of climate breakdown

• December 14, 2023 14 Dec'23

  The Security Interviews: Talking identity with Microsoft’s Joy Chik

  Microsoft’s president of identity and network access, Joy Chik, joins Computer Weekly to discuss the evolving threat landscape in identity security, using innovations in artificial intelligence to stay ahead, and advocating for the coming ...

• December 14, 2023 14 Dec'23

  NCSC CEO Lindy Cameron to step down in 2024

  NCSC chief exec Lindy Cameron, who helped lead and elevate the national dialogue on cyber security through major events such as Covid-19, SolarWinds Sunburst and Colonial Pipeline, is to step down in the New Year

• December 14, 2023 14 Dec'23

  Current Post Office executive in denial of Horizon cover-up

  Executives at the Post Office today are still in denial of the part they played in destroying the lives of thousands of people

• December 13, 2023 13 Dec'23

  No UK AI legislation until timing is right, says Donelan

  The UK government will not legislate on artificial intelligence until it has a better understanding of the technology, so is instead focusing on building up regulatory capacity and conducting safety-focused research, says digital secretary

• December 13, 2023 13 Dec'23

  How ransomware gangs use the tech media against their victims

  Ransomware gangs are increasingly media-savvy operators, and this means incident response plans now need to account for communications and PR strategies too

• December 13, 2023 13 Dec'23

  Microsoft’s Christmas present for cyber teams: no zero-days

  Barely 30 vulnerabilities, and no zero-days, have been fixed in the final Patch Tuesday drop of 2023

• December 13, 2023 13 Dec'23

  Critical UK infrastructure a ‘hostage of fortune’ to ransomware

  A lack of ransomware planning and preparedness at the highest levels of government is leaving UK operators or critical national infrastructure dangerously exposed, according to a Joint Committee report

• December 12, 2023 12 Dec'23

  MoD fined after breach of Afghan staffers’ data put lives at risk

  The MoD has been fined £350,000 by the ICO after an email blunder exposed data on Afghan nationals who had worked with British forces and were at risk of Taliban reprisals

• December 12, 2023 12 Dec'23

  Outdated data protection practice key factor in PSNI data breach

  The August 2023 data breach at the Police Service of Northern Ireland arose chiefly from an outdated approach to data protection and compliance at the force, according to an independent review

• December 11, 2023 11 Dec'23

  Competition and Markets Authority looks into Microsoft/OpenAI after Altman fiasco

  The firing and rehiring of OpenAI’s CEO, and the fallout, which could have seen Microsoft hire all its staff, has the regulator spooked

• December 08, 2023 08 Dec'23

  Fancy Bear targets Nato entities via critical Outlook flaw

  A vulnerability patched in March has likely been exploited by the Russian state actor Fancy Bear, for over two years, according to the latest intelligence

• December 07, 2023 07 Dec'23

  UK names Russian FSB agents behind political hacking campaign

  Russian hacking group, Star Blizzard, was part of a Russian intelligence operation aimed at interfering with UK politics and the democratic process, says government.

• December 07, 2023 07 Dec'23

  NCSC exposes Russian cyber attacks on UK political processes

  The NCSC has firmly attributed a long-running campaign of cyber attacks targeting UK political processes to a group run out of Russia’s FSB intelligence agency, known as Star Blizzard

• December 07, 2023 07 Dec'23

  2023 may have seen highest ransomware ‘body count’ yet

  Ransomware, or cyber extortion as it is increasingly being termed, remained the most prominent security threat in 2023 – and thanks to large-scale supply chain attacks, the past 12 months may have seen the most victims ever

• December 06, 2023 06 Dec'23

  NHS whistleblower Peter Duffy threatens trust with legal action in row over alleged email tampering

  NHS whistleblower warns his former employer of potential litigation over a dispute concerning allegations of email tampering

• December 05, 2023 05 Dec'23

  Operator of Sellafield nuclear facility denies hacking claims

  The operator of the Sellafield nuclear site has denied allegations that senior managers covered up a series of cyber security lapses that enabled Chinese and Russian threat actors to compromise its networks

• December 05, 2023 05 Dec'23

  Undisclosed document could reveal pressure on Fujitsu expert witness in Post Office prosecution

  Details of Post Office prosecutor’s meeting with Fujitsu IT expert witness, used in subpostmaster prosecution, not yet disclosed to public inquiry

• December 04, 2023 04 Dec'23

  Rhysida ransomware gang hits hospital holding royal family’s data

  Ransomware gang boasts of having stolen data on the royal family in an attack on a private London hospital

• December 01, 2023 01 Dec'23

  Human augmentation tech requires dual use oversight

  Researchers investigating human augmentation technologies must acknowledge the potential military applications of their work, and military bodies cannot be allowed to dismiss ethical concerns in their pursuit of national security interests, says NGO...

• December 01, 2023 01 Dec'23

  Report reveals sorry state of cyber security at UK football clubs

  Football clubs up and down the country are putting staff, players and fans alike at risk through outdated attitudes to cyber security, according to a report

• December 01, 2023 01 Dec'23

  Lords committee urges caution on UK use of autonomous weapons

  UK government must ensure proper democratic oversight of its development and use of AI-powered weapon systems, says Lords committee

• December 01, 2023 01 Dec'23

  The Security Interviews: Mark McClain, SailPoint Technologies

  SailPoint founder and CEO Mark McClain reflects on how the concept of identity has evolved over the past 20 years, and points to rapid evolution still to come

• November 30, 2023 30 Nov'23

  Government’s Online Fraud Charter welcomed

  The government has corralled 11 of the largest tech platforms in the world to commit to its Online Fraud Charter, designed to tackle online scams, fake adverts, and more

• November 30, 2023 30 Nov'23

  Rhysida gang stole hundreds of gigabytes of British Library data

  The Rhysida ransomware gang behind the cyber attack on the British Library has published almost 600GB of stolen data to its dark web leak site

• November 30, 2023 30 Nov'23

  Slow government response to Post Office scandal compensation forces new legislation

  Subpostmasters who exposed widest miscarriage of justice in UK history still waiting for compensation after decades of fighting

• November 29, 2023 29 Nov'23

  Scope of Okta helpdesk breach widens to impact all users

  Okta has widened the scope of the October breach of its systems to include every customer that has used its helpdesk service, after new information came to light

• November 28, 2023 28 Nov'23

  CCRC refers two posthumous subpostmaster appeals to Crown Court

  CCRC refers posthumous appeals against convictions to Crown Court for first time

• November 28, 2023 28 Nov'23

  Scope of British Library data breach widens

  Personal data on British Library users has appeared for sale on the dark web following a Rhysida ransomware attack, as the scope of the still-developing incident widens again

• November 28, 2023 28 Nov'23

  Volume of unique malware samples threatens to overwhelm defenders

  A massive increase in malware volumes could cause problems for security teams tasked with adapting their defences against them

• November 27, 2023 27 Nov'23

  The Security Interviews: Zeki Turedi, field CTO Europe, CrowdStrike

  Organisations are racing to keep their security up to date against the latest threats. CrowdStrike’s Zeki Turedi explains how to protect against novel and innovative cyber attacks

• November 27, 2023 27 Nov'23

  NCSC publishes landmark guidelines on AI cyber security

  The NCSC and its US counterpart CISA have brought together tech companies and governments to countersign a new set of guidelines aimed at promoting a secure-by-design culture in AI development

• November 24, 2023 24 Nov'23

  UK police plan national roll-out of facial-recognition phone app

  UK police chiefs plan to expand use of facial-recognition technology through a nationwide roll-out of mobile-based tools and increases in retrospective facial-recognition, but oversight problems persist

• November 23, 2023 23 Nov'23

  DWP to surveil bank accounts of benefit claimants for fraud

  The UK government has outlined how it plans to tackle benefit fraud by giving the Department for Work and Pensions new powers compelling banks to collect and share data on claimants’ bank accounts

• November 23, 2023 23 Nov'23

  MOVEit incident spurred UK decision makers to spend big on cyber

  The MOVEit cyber attacks that unfolded in the spring and summer of 2023 seem to have driven an increase in both ransomware awareness and spend, according to a report

• November 23, 2023 23 Nov'23

  North Korean APTs go all in on supply chain attacks, warns NCSC

  Threat actors linked to the North Korean regime are becoming more adept at targeting software supply chains in the service of their cyber attacks

• November 22, 2023 22 Nov'23

  An inside look at a Scattered Spider cyber attack

  Threat researchers at ReliaQuest share the inside track on a Scattered Spider cyber attack they investigated

• November 22, 2023 22 Nov'23

  Palantir awarded NHS FDP data contract

  NHS England has awarded a £330m, seven-year contract to US data specialist Palantir, prompting concerns from data privacy practitioners

• November 22, 2023 22 Nov'23

  CISA reveals how LockBit hacked Boeing via Citrix Bleed

  As alarm grows around the world about the impact of the so-called Citrix Bleed vulnerability, Boeing has shared details of its experience at the hands of the LockBit ransomware crew

• November 21, 2023 21 Nov'23

  Over half of SME cyber incidents now ‘malware-free’

  The age of malware-driven cyber attacks may have peaked, at least when it comes to incidents affecting small and medium sized enterprises

• November 21, 2023 21 Nov'23

  Canada’s Mounties among government employees hit by LockBit

  A LockBit attack on a specialist supplier of relocation services has engulfed multiple government agencies in Canada