News
IT governance
-
October 26, 2023
26
Oct'23
ChatGPT, Bard, lack effective defences against fraudsters, Which? warns
Consumer advocacy Which? warns that popular generative AI tools are vulnerable to loopholes that render existing protections against malicious usage easily bypassed
-
October 26, 2023
26
Oct'23
Sunak sets scene for upcoming AI Safety Summit
Prime minister Rishi Sunak has outlined how the UK will approach making AI safe, but experts say there is still too big a focus on catastrophic but speculative risks over real harms the technology is already causing
-
October 26, 2023
26
Oct'23
Boardrooms losing control in generative AI takeover, says Kaspersky
C-suite executives are increasingly fretful about what they perceive as a ‘silent infiltration’ of generative AI tools across their organisations
-
October 25, 2023
25
Oct'23
UK Finance paints mixed picture of fraud as losses top £500m
UK losses to fraud in the first six months of the year topped £500m, but a slight decline in overall crime rates was observed, according to UK Finance’s latest data
-
October 25, 2023
25
Oct'23
1Password caught up in Okta support breach
After breaches at BeyondTrust and Cloudflare, 1Password, a third customer of Okta operating in the same space, has revealed that it too was impacted in a breach of the IAM house’s support systems
-
October 24, 2023
24
Oct'23
Michelle Donelan reaffirms UK's commitment to AI safety
In a keynote speech, the secretary of state for science, innovation and technology discussed the UK's pro-innovation approach to AI safety
-
October 24, 2023
24
Oct'23
Research team tricks AI chatbots into writing usable malicious code
Researchers at the University of Sheffield have demonstrated that so-called Text-to-SQL systems can be tricked into writing malicious code for use in cyber attacks
-
October 24, 2023
24
Oct'23
Kaspersky opens up over spyware campaign targeting its staffers
Kaspersky has shared more details of the TriangleDB spyware that was used against its own workforce by an unknown APT group
-
October 24, 2023
24
Oct'23
Customers speak out over Okta’s response to latest breach
Customers of identity specialist Okta have been attacked via a compromise of its systems, and are claiming Okta’s response leaves something to be desired
-
October 24, 2023
24
Oct'23
Suzy Lamplugh Trust treads path to improved cyber resilience
Personal safety charity enlists the support of the London Cyber Resilience Centre to improve staff awareness and strengthen its overall cyber resilience
-
October 23, 2023
23
Oct'23
Taxpayers to fund a further £150m for Post Office IT scandal
Total bill for the scandal goes well over £1bn, as subpostmaster campaign leader considers private prosecutions of Post Office executives
-
October 20, 2023
20
Oct'23
Computer Weekly contributor named Godfather of UK Security
Advent IM founder Mike Gillespie was among those honoured at the eighth annual Security Serious Unsung Heroes Awards
-
October 20, 2023
20
Oct'23
CDO interview: Carter Cousineau, vice-president of data and model governance, Thomson Reuters
The news and information provider places a premium on responsible and ethical use of artificial intelligence, and central to that is the governance of data and the models surrounding it
-
October 19, 2023
19
Oct'23
Nuclear regulator raps EDF over cyber compliance
The Office for Nuclear Regulation says EDF has come up short on needed measures to improve cyber security standards at several critical UK nuclear facilities
-
October 19, 2023
19
Oct'23
Sellafield local authority unsure if data was stolen six years on from North Korea ransomware attack
Senior managers at an ‘Achilles heel’ local authority for Europe’s biggest nuclear site ‘still don’t know what was lost’ in a 2017 cyber attack, according to a council source
-
October 19, 2023
19
Oct'23
Post Office auditors presumed subpostmasters were ‘on the fiddle’ or ‘in a muddle’
Public inquiry into Post Office scandal hears how head office staff routinely made negative assumptions about subpostmasters in small branches
-
October 18, 2023
18
Oct'23
What are the cyber risks from the latest Middle Eastern conflict?
The outbreak of war between Hamas and Israel in October 2023 has seen a wide variety of accompanying cyber attacks from hacktivists and other groups. We look at the risks to organisations
-
October 17, 2023
17
Oct'23
Five Eyes issues five tips on thwarting nation state threats
Intelligence chiefs from the UK, Australia, Canada, New Zealand and the US have published guidance on building resilience against nation state cyber threats
-
October 17, 2023
17
Oct'23
Alert sounded over dangerous Cisco IOS XE zero-day
Cisco warns customers using its IOS XE software of a newly discovered vulnerability that could enable a threat actor to take over their systems
-
October 12, 2023
12
Oct'23
Scottish biometrics watchdog outlines police cloud concerns
Police Scotland’s response to the biometrics commissioner’s formal information notice ‘did not ameliorate’ his concerns about the sovereignty and security of the sensitive biometric information being uploaded to cloud infrastructure that is subject ...
-
October 11, 2023
11
Oct'23
Public sector buyers of AI tech must interrogate its suitability
The Ada Lovelace Institute has published a review on public sector use of artificial intelligence foundation models, looking at the risks and opportunities associated with the technology, and how these can be dealt with from the early stages of ...
-
October 10, 2023
10
Oct'23
MGM faces £100m loss from cyber attack on its casinos
MGM Resorts has provided further details on the fallout of the hack targeting its casinos in early September, confirming that a range of personal information has been stolen and that it will likely cost the firm around $100m
-
October 06, 2023
06
Oct'23
Data-sharing strategy needs business buy-in
A Forrester Consulting survey for Capital One Software has found that data experts and businesspeople have differing views on success
-
October 05, 2023
05
Oct'23
Red Cross issues rules of engagement for hackers in conflicts
The digital rules of engagement are the first time cyber activity has been looked at by the conflict watchdog, but a number of hacker groups have already come out and said they will not be following them
-
October 05, 2023
05
Oct'23
Policing minister wants to use UK passport data in facial recognition
The policing minister’s plans to integrate the UK’s passport database with police facial-recognition systems have been met with criticism from campaigners, academics, and the biometrics commissioner for England and Wales
-
October 05, 2023
05
Oct'23
Ransomware dwell times now measured in hours, says Secureworks
Ransomware payloads are now being deployed and executed within 24 hours in more than 50% of cases, according to Secureworks’ annual report
-
October 04, 2023
04
Oct'23
IR35: HMRC completes first phase of CEST upgrades with Ocelot platform migration
HMRC has confirmed that its online IR35 status checker tool has completed its migration to a new platform, as the government tax collection agency’s revamp of the service continues apace
-
October 04, 2023
04
Oct'23
ICO issues guidance on workplace surveillance
Guidance on employee monitoring covers how employers can conduct their digital surveillance lawfully, transparently and fairly, and warns against businesses intruding on their workers’ private lives
-
October 03, 2023
03
Oct'23
Cyber experts urge EU to rethink vulnerability disclosure plans
The European Union’s proposed cyber security vulnerability disclosure measures are well-intentioned but ultimately counterproductive, as making unmitigated vulnerabilities public knowledge increases the risk of their exploitation by various actors, ...
-
October 03, 2023
03
Oct'23
IT decision-makers confident they can handle tech disruptions
The majority of IT decision-makers polled in a recent survey have admitted their organisations has been adversely affected by IT failures
-
October 03, 2023
03
Oct'23
RSA and other crypto systems vulnerable to side-channel attack
A researcher has found that a flaw in RSA is still vulnerable – a quarter of a century after it was first discovered
-
October 03, 2023
03
Oct'23
Public sector needs systemic reform of capacity to innovate
Improving the public sector’s capacity to innovate requires a culture of innovation underpinned by people, skills and new ways of working with the private sector
-
October 03, 2023
03
Oct'23
Top science journal faced secret attacks from Covid conspiracy theory group
A conspiratorial group of extreme Brexit lobbyists mounted an extraordinary campaign against one of the world’s most prestigious science journals – part of a series of joint investigations between Byline Times and Computer Weekly
-
September 29, 2023
29
Sep'23
First subpostmaster Horizon conviction overturned in Scotland
Scotland has seen its first Post Office Horizon conviction overturned, taking the UK total to 92
-
September 29, 2023
29
Sep'23
Government ‘breached privacy’ of Horizon victims with compensation offer, says lawyer
The government breached the privacy of victims of the Post Office Horizon scandal through making a compensation offer public
-
September 29, 2023
29
Sep'23
Scottish watchdog urges wider biometric oversight
Scotland’s biometrics watchdog urges Scottish Parliament to extend oversight of biometric information to include the entire criminal justice system, not just police
-
September 28, 2023
28
Sep'23
US lawmakers write to AI firms about ‘gruelling’ work conditions
Lawmakers have written to nine tech companies – including Amazon, Google and Microsoft – about the working conditions of those they employ to train and maintain their artificial intelligence systems, giving them until 11 October 2023 to respond
-
September 28, 2023
28
Sep'23
Businesses disconnected from realities of API security
Business leaders feel confident they’ve got a handle on API security, but at the same time, incidents are through the roof, according to a report
-
September 28, 2023
28
Sep'23
Security and risk management spending to grow 14% next year
Growth in public cloud services will stand out over the next 12 months, as Gartner projects an overall 14% increase in cyber spending in 2024
-
September 28, 2023
28
Sep'23
Yahoo picks Intigriti to run crowdsourced bug bounty programme
Digital media brand Yahoo is setting up a crowdsourced bug bounty programme with ethical hacking specialist Intigriti, and is reaching out to the Capture the Flag community to participate
-
September 27, 2023
27
Sep'23
City of Las Vegas masters cyber incident response with Darktrace
The high-rolling city of Las Vegas experiences unique cyber security challenges rarely seen elsewhere. CIO Mike Sherwood reveals how he turned to Darktrace to help address incidents quicker and with confidence
-
September 26, 2023
26
Sep'23
UK government quietly disbands data ethics advisory board
The government has disbanded its Centre for Data Ethics and Innovation’s advisory board in favour of pulling the relevant artificial intelligence (AI) and data knowledge from a pool of external experts
-
September 26, 2023
26
Sep'23
Cover-ups still the norm in the wake of a cyber incident
Almost half of organisations that have experienced a cyber incident did not report it to the appropriate authorities, according to a report
-
September 26, 2023
26
Sep'23
Crest and IASME to deliver upcoming NCSC Cyber Exercise programme
Crest and IASME have been tasked with assuring that security services providers signing up to a soon-to-launch NCSC Cyber Incident Exercising scheme are up to the job
-
September 25, 2023
25
Sep'23
Apple fixes three vulnerabilities found by spyware researchers
Apple has patched three more vulnerabilities uncovered by spyware and surveillance researchers at The Citizen Lab
-
September 22, 2023
22
Sep'23
CMA unblocks Microsoft/Activision deal without cloud gaming
Microsoft’s Activision buy looks set to get the thumbs-up after a deal that stops the two companies from distributing cloud gaming to UK consumers
-
September 22, 2023
22
Sep'23
UK-US data bridge to open to traffic on 12 October
Government forges ahead with the implementation of the UK-US data bridge, which will come into effect for real just under three weeks from now
-
September 22, 2023
22
Sep'23
Cyber experts set out plan to secure future US elections
A group of experts are setting out to enhance election cyber security in the United States, and restore public faith in a process tainted by interference and misinformation in the past
-
September 22, 2023
22
Sep'23
Lords begin inquiry into large language models
Lords will examine the risks and opportunities of large language models and look at how government can effectively manage them in the coming years
-
September 21, 2023
21
Sep'23
‘Top’ ransomware gangs favour smaller businesses
Despite high-profile attacks on prominent organisations, the world’s most prolific ransomware operations tend to target smaller businesses