News

IT governance

• June 05, 2024 05 Jun'24

  Lack of upfront specifications kill agile projects

  Research shows there is a high chance of failure when a software development project begins without a specification being signed off

• June 04, 2024 04 Jun'24

  Invasive tracking ‘endemic’ on sensitive support websites

  Websites set up by police, charities and universities to help people get support for sensitive issues like addiction and sexual harassment are deploying tracking technologies that harvest information without proper consent

• June 04, 2024 04 Jun'24

  NHS services at major London hospitals disrupted by cyber attack

  A major cyber attack at NHS services provider Synnovis is disrupting frontline care at hospitals across London

• June 04, 2024 04 Jun'24

  Russia used fake AI Tom Cruise in Olympic disinformation campaign

  Microsoft threat researchers report a surge in Russian disinformation campaigns targeting the 2024 Summer Olympics, including AI-enhanced propaganda

• June 03, 2024 03 Jun'24

  97 FTSE 100 firms exposed to supply chain breaches

  Between March 2023 and March 2024, 97 out of 100 companies on the UK’s FTSE 100 list were put at risk of compromise following supply chain breaches at third-party suppliers

• June 03, 2024 03 Jun'24

  Major breaches allegedly caused by unsecured Snowflake accounts

  Significant data breaches at Ticketmaster and Santander appear to have been orchestrated through careful targeting of the victims’ Snowflake cloud data management accounts

• June 03, 2024 03 Jun'24

  AI Seoul Summit review

  Dozens of governments and tech companies attending the second global AI Safety Summit have committed themselves to the safe and inclusive development of the technology, but questions remain around whether the commitments made go far enough

• May 31, 2024 31 May'24

  IBM, AI Singapore to bolster Sea-Lion LLM

  IBM will work with AI Singapore on technical exchanges to enhance Sea-Lion and make the region’s first LLM available to data scientists and engineers through its AI use case library

• May 30, 2024 30 May'24

  Post Office Horizon replacement project labelled 'unachievable' as taxpayer bill reaches £1bn

  The project to replace the Horizon IT system in Post Office branches is late, over budget and lacking quality – and government auditors sent in to assess a request for £1bn funding say it is currently unachievable

• May 30, 2024 30 May'24

  Europol sting operation smokes multiple botnets

  Malware droppers including Bumblebee and Smokeloader were among those targeted in one of the largest ever joint operations against cyber criminal botnets

• May 29, 2024 29 May'24

  Proofpoint exposes AFF scammers’ piano gambit

  Ransomware and nation state actors dominate the headlines, but fraud and scams still net career cyber criminals thousands from unsuspecting members of the public. Proofpoint reports on a campaign targeting victims of a musical inclination

• May 29, 2024 29 May'24

  Organisations value digital trust, but aren’t working at it

  Three quarters of organisations believe digital trust is relevant to their businesses, yet clear gaps in strategies still seem to persist

• May 29, 2024 29 May'24

  Survey reveals generative AI employee fear

  IBM/Oxford Economics global CEO survey shows generative AI success relies on employee training and business leader vision

• May 29, 2024 29 May'24

  Next UK government must be prepared to legislate on AI, say MPs

  The House Science, Innovation and Technology Committee says the next government should be ready to legislate on artificial intelligence to plug any regulatory gaps

• May 28, 2024 28 May'24

  Executive Interview: Why Dell wants to be your one-stop AI shop

  At Dell Technologies World in Las Vegas, artificial intelligence was the talk of the town as Dell staked out an all-encompassing strategy ahead of an anticipated goldrush. Dell’s Nick Brackney explains why the tech giant believes it's onto a winner

• May 24, 2024 24 May'24

  Paula Vennells boasted about removing Horizon risk reference in Royal Mail flotation prospectus

  A reference to Horizon was removed from Royal Mail prospectus by Paula Vennells in the eleventh hour

• May 23, 2024 23 May'24

  Northern Ireland police face £750,000 fine after data protection blunder put lives at risks

  Information commissioner John Edwards uses discretion to reduce proposed fine from £5.6m to £750,000

• May 22, 2024 22 May'24

  Rockwell urges users to disconnect ICS equipment

  ICS systems maker Rockwell Automation calls on users to take steps to secure their equipment, and reminds them there is no reason to ever have its hardware connected to the public internet, as it tracks an increase in global threat activity

• May 22, 2024 22 May'24

  ‘You knew’ – former ally accused Paula Vennells of knowing about Horizon problems

  Former Royal Mail CEO messaged Paula Vennells following the broadcasting of ITV’s dramatisation of the Post Office scandal, questioning what the former Post Office boss knew and removed her support

• May 22, 2024 22 May'24

  AI Seoul Summit: 27 nations and EU to set red lines on AI risk

  The countries will now work together to identify thresholds at which the risks presented by an AI model or system would be unacceptable without safeguards in place, as well as develop interoperable safety testing regimes for the technology

• May 21, 2024 21 May'24

  AI Seoul Summit: 10 nations and EU recommit to safe inclusive AI

  During the latest AI Summit in South Korea, the participating governments reaffirmed their prior commitments to deepening international cooperation on AI safety, and have agreed to launch an international network of ‘safety institutes’

• May 21, 2024 21 May'24

  AI Seoul Summit: 16 AI firms make voluntary safety commitments

  Prominent artificial intelligence companies from around the world have committed to a set of voluntary AI safety measures, which includes developing continuous risk assessment processes, setting acceptable risk thresholds, and ensuring greater ...

• May 21, 2024 21 May'24

  The Security Interviews: What is the real cyber threat from China?

  Former NCSC boss Ciaran Martin talks about nation-state attacks, why the UK has become so exercised about cyber espionage, and how our leaders are in danger of misunderstanding their adversaries

• May 20, 2024 20 May'24

  UK AI Safety Institute to open San Francisco branch

  News of the AI Safety Institute’s expansion to the US follows the first public release of its AI safety testing results

• May 17, 2024 17 May'24

  Why the UK needs to fix its broken IT security market

  Ollie Whitehouse, CTO of GCHQ’s National Cyber Security Centre, says the market for secure software is broken. Are new laws required to make software companies liable for poor security?

• May 17, 2024 17 May'24

  Post Office considered asking Computer Weekly to review Horizon IT system

  The Post Office CIO was tasked by directors with sizing up Computer Weekly for the task of reviewing a forensic investigation into Horizon

• May 16, 2024 16 May'24

  Post Office IT boss failed to raise concern over false Horizon statements

  Former Post Office CIO Lesley Sewell failed to raise concern over Post Office’s false stance on Horizon integrity

• May 16, 2024 16 May'24

  Sunak warned against changing foreign student visa rules

  Business leaders have called on prime minister Rishi Sunak not to be pressured into altering the graduate visa route

• May 15, 2024 15 May'24

  Cyber Safety Force wants to change conversation around risk

  A consortium to help cyber pros better manage risk has launched, with ambitious goals to change the nature of the conversation from cyber security to cyber safety

• May 15, 2024 15 May'24

  Critical SharePoint, Qakbot-linked flaws focus of May Patch Tuesday

  A critical SharePoint vulnerability warrants attention this month, but it is another flaw that seems to be linked to the infamous Qakbot malware that is drawing attention

• May 15, 2024 15 May'24

  WikiLeaks founder’s extradition case labelled ‘institutional corruption’

  Call for Julian Assange to be prosecuted in the US has been condemned as ‘institutional corruption on a judicial level’ with the WikiLeaks founder a ‘political prisoner’

• May 15, 2024 15 May'24

  Government focuses on improving AI security

  Two codes of practice are now available to help developers boost the security of their AI applications

• May 14, 2024 14 May'24

  QStar launches tape access from anywhere with Global ArchiveSpace

  Tape veteran provides file and object access to Exabyte scale archives aimed at AI, high-performance computing and hyperscaler storage. Single-site for now, multi-site to follow

• May 14, 2024 14 May'24

  CyberUK 24: UK insurance industry gets tough on ransomware

  Three of the UK’s largest insurance associations have signed on to a new initiative spearheaded by the NCSC to try to bring down the number of ransomware payments being made

• May 14, 2024 14 May'24

  NHS trust dismisses governors who questioned allegations of email tampering

  Two NHS trust governors who raised questions in a dispute over allegations of email tampering concerning whistleblower Peter Duffy have been dismissed after an investigation that followed their suspension

• May 10, 2024 10 May'24

  Major breach of customer information developing at Dell

  Almost 50 million data records relating to Dell customers appear to have been compromised in a major cyber breach

• May 10, 2024 10 May'24

  Over 5.3 billion data records exposed in April 2024

  The number of data records breached in April 2024 hit over five billion, a staggering year-on-year increase

• May 09, 2024 09 May'24

  Cyber attack victims need to speak up, says ICO

  The Information Commissioner’s Office is urging organisations to be transparent and learn from each other’s mistakes as it reveals most of the cyber attacks it responds to stem from the same core errors

• May 09, 2024 09 May'24

  Ofcom publishes draft online child safety rules for tech firms

  In the draft codes, Ofcom calls on technology firms to use ‘robust’ age-checking and content moderation systems to keep harmful material away from children online

• May 07, 2024 07 May'24

  Chinese APT suspected of Ministry of Defence hack

  A cyber attack on the Ministry of Defence is suspected to be the work of threat actors working on behalf of Chinese intelligence

• May 07, 2024 07 May'24

  Government jumps on Wayve self-drive funding boost

  DSIT says the $1bn of funding announced by UK startup Wayve shows that a pro-innovation approach to regulation works

• May 06, 2024 06 May'24

  Microsoft beefs up cyber initiative after hard-hitting US report

  Microsoft is expanding its recently launched Secure Future Initiative in the wake of a hard-hitting US government report on recent nation state intrusions into its systems

• May 03, 2024 03 May'24

  Adobe expands bug bounty programme to account for GenAI

  Adobe has expanded the scope of its HackerOne-driven bug bounty scheme to incorporate flaws and risks arising from the development of generative artificial intelligence

• May 03, 2024 03 May'24

  Patch GitLab vuln without delay, users warned

  The addition of a serious vulnerability in the GitLab open source platform to CISA’s KEV catalogue prompts a flurry of concern

• May 03, 2024 03 May'24

  EU calls out Fancy Bear over attacks on Czech, German governments

  The European Union, alongside member states Czechia and Germany, have accused Russian government APT Fancy Bear of being behind a series of attacks on political parties and government bodies

• May 03, 2024 03 May'24

  Lords say government must ‘go beyond’ current approach to LLMs

  Chair of the Lords Communications and Digital Committee has written to the UK’s digital secretary about the government’s approach to generative AI, lamenting a lack of support for copyright holders and measures to ensure competition in AI markets

• May 02, 2024 02 May'24

  NCSC updates warning over hacktivist threat to CNI

  The NCSC and CISA have warned about the evolving threat from Russia-backed hacktivist threat actors targeting critical national infrastructure, after a number of American utilities were attacked

• May 02, 2024 02 May'24

  Ukrainian national sentenced over REvil ransomware spree

  A 24-year-old Ukrainian man has been sentenced to more than 13 years in prison after being convicted of his role in the REvil ransomware attacks

• May 02, 2024 02 May'24

  Dropbox Sign user information accessed in data breach

  Account data belonging to Dropbox Sign users was accessed by an unknown threat actor after they hacked into the organisation’s backend infrastructure

• May 01, 2024 01 May'24

  EMEA CISOs must address human factors behind cyber incidents

  The 17th annual Verizon report on data breaches makes for sobering reading for security pros, urging them to do more to address the human factors involved in cyber incidents, and highlighting ongoing issues with zero-day patching