News
IT governance
-
May 03, 2023
03
May'23
Mystery Apple security update sparks speculation
Apple releases its first Rapid Security Response update for iPhone, iPad and Mac devices, but users are in the dark about what security problems they have fixed
-
May 02, 2023
02
May'23
Delays, downscaling of national fast broadband roll-out threaten BBC digitisation
UK parliamentary committee warns uncertainty over funding and regulation around national fast broadband roll-out plans threaten public broadcaster’s digitisation plans
-
April 27, 2023
27
Apr'23
Microsoft fails to get CMA thumbs-up on Activision deal
The UK Competition and Markets Authority has decided that Microsoft‘s proposed $68.7bn acquisition of Activision would damage the cloud gaming market
-
April 26, 2023
26
Apr'23
Police Scotland receive formal notice about cloud system
Scotland’s biometrics watchdog has issued Police Scotland with an information notice over its deployment of a cloud-based digital evidence system, following disclosure of major data protection concerns by Computer Weekly
-
April 26, 2023
26
Apr'23
Researchers deal blow to Gootloader gang that supported REvil
Thousands of compromised WordPress blogs have been spreading the Gootloader malware for years, but eSentire’s security research team are turning the tables on the gang that played a key role in REvil ransomware attacks
-
April 26, 2023
26
Apr'23
UK government introduces Digital Markets Bill to Parliament
The Digital Markets, Competition and Consumers Bill will seek to level the playing field in digital markets by empowering regulators with new tools and powers to directly enforce competition and consumer protection laws
-
April 26, 2023
26
Apr'23
Post Office paid IBM millions when it ended proposed contract to replace Horizon
The Post Office ended a proposed contract with IBM to replace its controversial Horizon system after work had already started
-
April 25, 2023
25
Apr'23
CISOs under-supported, under pressure, Trellix finds
The vast majority of CISOs say they are finding it difficult to get sign-off on the resources they need to do their job
-
April 24, 2023
24
Apr'23
Most IT staff uncomfortable deploying surveillance tech at work
The IT teams responsible for deploying and running digital surveillance in workplaces say they are uncomfortable with “extremely common” practice of spying on colleagues, research finds
-
April 24, 2023
24
Apr'23
Finland and Estonia deepen cross-border digital partnerships
Finland and Estonia, two global tech pioneers, are increasingly sharing their expertise
-
April 21, 2023
21
Apr'23
UK biometrics watchdog questions police cloud deployments
The UK biometrics commissioner has warned that policing and justice bodies must be able to demonstrate ‘immediately and unequivocally’ that their cloud deployments are lawful
-
April 21, 2023
21
Apr'23
CyberUK 23: New advice on smart city security issued
The NCSC and key allies have drawn up new guidance to help communities balance the cyber security risks involved with creating smart cities
-
April 21, 2023
21
Apr'23
Prototype cyber tech has revolutionary potential
The so-called CHERI protection model developed at the University of Cambridge is showing great promise for future cyber security technologies
-
April 20, 2023
20
Apr'23
Bumblebee malware flies on the wings of Zoom and ChatGPT
Bumblebee malware, often used as a stepping stone to ransomware, is now spreading via trojanised installers for popular software applications
-
April 20, 2023
20
Apr'23
New GovAssure cyber regime launches across UK government
An enhanced cyber security regime is being put in place to better protect UK government IT systems from growing threats
-
April 19, 2023
19
Apr'23
CyberUK 23: Irresponsible use of commercial hacking tools a rising threat
Commercial cyber tools and hackers-for-hire pose a growing threat to organisations and individuals worldwide, according to an NCSC report
-
April 19, 2023
19
Apr'23
TUC says government is failing to protect workers from AI harms
TUC issues warning about artificial intelligence leading to more widespread workplace discrimination if the right checks are not put in place
-
April 19, 2023
19
Apr'23
UK plc sees fewer cyber breaches and attacks, but lacks resilience
Latest government figures reveal UK businesses and charities reported lower volumes of cyber breaches and attacks over the past 12 months, but the statistics mask widespread underreporting and the true state of cyber readiness and resilience appears...
-
April 19, 2023
19
Apr'23
Surrey and Sussex police spared fines after recording 200,000 phone calls without people’s knowledge
Police forces escape potential £1m fines following change of policy by ICO to protect the finances of public sector bodies
-
April 19, 2023
19
Apr'23
IT Priorities 2023: Budget optimism among EMEA IT leaders
IT leaders across the EMEA region are optimistic that their budgets will increase over the coming year
-
April 19, 2023
19
Apr'23
CyberUK 23: NCSC launches Cyber Advisor service for SMEs
The UK’s NCSC has launched an industry assurance scheme designed to address the needs of SMEs, and is calling for potential advisors to step up and help out
-
April 19, 2023
19
Apr'23
CyberUK 23: NCSC CEO calls for collaboration and warns against complacency
NCSC boss Lindy Cameron kicked off the annual CyberUK conference in Belfast with a plea for collaboration and a warning against complacency
-
April 19, 2023
19
Apr'23
CyberUK 23: Alert over mercenary Russian threat to CNI
Russian hacktivists supportive of their government’s war on Ukraine are turning their attention to disruptive or destructive attacks on critical infrastructure in the UK, the NCSC has warned
-
April 18, 2023
18
Apr'23
CyberUK 23: NCSC conference centres cyber collaboration
The NCSC’s annual CyberUK conference gets underway in Belfast this week, with collaboration and cooperation high on the agenda
-
April 18, 2023
18
Apr'23
Focus on these three risky behaviours to boost cloud security
Some 80% of cloud security alerts are triggered by just 5% of security rules. Security teams can substantially improve their resilience by zeroing in on a small set of risky behaviours, according to a report
-
April 18, 2023
18
Apr'23
UK presses on with post-Brexit data protection reform
The revised version of the Data Protection and Digital Information Bill has had its second reading in Parliament as the government presses on with post-Brexit changes, but critics remain sceptical that the EU will be convinced to maintain the UK's ...
-
April 17, 2023
17
Apr'23
Charity data stolen in ransomware attack on supplier
A number of charities in Ireland and the UK have had their data compromised following a ransomware attack on an IT supplier
-
April 14, 2023
14
Apr'23
Former TSB CIO fined for migration meltdown
Both TSB and its CIO have now been fined for the catastrophic migration of TSB’s core banking system
-
April 13, 2023
13
Apr'23
UK joins key allies to launch secure-by-design guidelines
The UK has joined international partners in sharing new advice to help technology companies embed security into the product design and development process
-
April 13, 2023
13
Apr'23
Italy to lift ChatGPT ban subject to new data protection controls
Italian regulator will lift its ban on OpenAI’s ChatGPT subject to a strict new data protection regime
-
April 13, 2023
13
Apr'23
ICO responds to UK government AI regulation plans
The ICO has officially responded to the government’s plans for regulating artificial intelligence as outlined in its recent whitepaper, but called for clarity on certain aspects before the proposals are taken further
-
April 12, 2023
12
Apr'23
UK police double down on ‘improved’ facial recognition
The Met and South Wales Police have doubled down on their use of facial recognition technology after research found improved accuracy in their algorithms when using certain settings, but civil society groups maintain that the tech will still be used...
-
April 12, 2023
12
Apr'23
April Patch Tuesday fixes zero-day used to deliver ransomware
A zero-day in the Microsoft Common Log File System that has been abused by the operator of the Nokoyawa ransomware is among 97 vulnerabilities fixed in April’s Patch Tuesday update
-
April 12, 2023
12
Apr'23
Gartner: Rebalance cyber investment towards human-centric elements
Security decision-makers need to reprioritise their investment outlooks towards people, rather than technology, according to the latest market forecast from Gartner
-
April 11, 2023
11
Apr'23
Anne Keast-Butler named as new director of GCHQ
The government has appointed current MI5 deputy director general Anne Keast-Butler to head signals and cyber agency GCHQ
-
April 11, 2023
11
Apr'23
KFC, Pizza Hut data stolen in January ransomware attack
Yum!, the parent organisation behind KFC and Pizza Hut in the UK, has disclosed that employee data was accessed and exfiltrated in a January 2023 ransomware attack
-
April 06, 2023
06
Apr'23
IBM's Nataraj Nagaratnam on the cyber challenges facing cloud services
Governments are introducing increasingly prescriptive data protection policies, but with organisations becoming ever more reliant on multiple cloud service platforms for essential business needs, how can they ensure they meet regulatory requirements?
-
April 06, 2023
06
Apr'23
Prioritise automated hardening over traditional cyber controls, says report
A report from strategic risk specialist Marsh McLennan advises security buyers to funnel their budgets towards automated cyber security hardening techniques, saying they have a much better chance of reducing risk in a meaningful way
-
April 05, 2023
05
Apr'23
Italy’s ChatGPT ban: Sober precaution or chilling overreaction?
Italy’s data protection authority issued a temporary ban on ChatGPT citing data protection concerns and alleged breaches of the GDPR. Is this a reasonable precaution, or a chilling restriction on personal freedoms?
-
April 05, 2023
05
Apr'23
Scottish police tech piloted despite major data protection issues
Scottish policing bodies are pressing ahead with a data sharing pilot despite data protection issues around the use of US cloud providers, placing sensitive personal data of tens of thousands of people at risk
-
April 04, 2023
04
Apr'23
TikTok fined in UK over unlawful use of children’s data
The ICO has fined TikTok £12.7m for breaches of data protection law, including unlawfully collecting data on children under 13
-
April 04, 2023
04
Apr'23
Over 90% of organisations find threat hunting a challenge
Understaffed security teams and high levels of background noise are making basic security operations tasks a chore for defenders, according to a report
-
April 03, 2023
03
Apr'23
Better SME connectivity could contribute more than £5bn a year to local economies
Operator research finds almost two-thirds of small to medium-sized enterprises in UK’s second city reveal their business could grow faster if they had access to better tech
-
April 03, 2023
03
Apr'23
CIO interview: Carter Busse, CIO, Workato
Workato CIO Carter Busse talks up the company’s approach towards automation and its efforts to drive the technology across its business
-
March 31, 2023
31
Mar'23
Mounting Russian disinformation campaign targeting Arab world
Researchers have found evidence of a broad Russian disinformation campaign targeting Arabic-speakers in the Middle East and North Africa
-
March 31, 2023
31
Mar'23
Ukrainians bust cyber criminals who stole over £3m across Europe
Ukrainian police have arrested members of a cyber crime gang who stole and embezzled millions of pounds from victims across Europe
-
March 30, 2023
30
Mar'23
OSC&R supply chain security framework goes live on Github
The OSC&R framework for understanding and evaluating threats to supply chain security has made its debut on Github to allow anybody to contribute to the framework
-
March 30, 2023
30
Mar'23
NCSC issues revised security Board Toolkit for business leaders
National Cyber Security Centre calls on CEOs and senior business leaders to take a more hands-on approach to cyber resilience with the launch of revised board-level tools
-
March 30, 2023
30
Mar'23
UK government study reveals 50,000 people employed in AI sector
Government publishes baseline analysis of UK artificial intelligence sector as it pins hopes on future growth
-
March 30, 2023
30
Mar'23
NHS Highland rapped over data breach affecting HIV patients
NHS Highland inadvertently exposed the personal data of individuals likely to be accessing HIV services in a lapse of email hygiene