News

IT governance

• December 07, 2021 07 Dec'21

  Investigation mounted into Spar supermarket cyber attack

  Possible supply chain cyber attack left more than 300 Spar supermarkets unable to process credit card payments

• December 06, 2021 06 Dec'21

  IT Priorities 2022: Pandemic’s long tail for cyber buyers

  Pandemic response has been top of mind for cyber leaders these past 18 months, and as Covid-19 turns two, the TechTarget/Computer Weekly IT Priorities 2022 study shows buyers are still focused on how Covid has upended the workplace

• December 03, 2021 03 Dec'21

  Serious violence duty in PCSC Bill would gut UK data rights

  Proposed data gathering powers for UK police could override existing data protection rules, damage citizens’ trust in essential public services and further entrench discriminatory policing practices

• December 01, 2021 01 Dec'21

  Kaspersky introduces cyber policy for bionic devices

  Cyber firm Kaspersky has become one of the first organisations in the world to develop and implement a security policy covering the use of bionic devices and other forms of human augmentation

• December 01, 2021 01 Dec'21

  Cloud-based Redwood becomes latest challenger bank to make a profit

  Cloud-based business bank becomes the latest of the new wave of challengers to achieve profit

• November 30, 2021 30 Nov'21

  Compliance, device management a challenge for NHS cyber teams

  Information gleaned by asset visibility specialist Armis reveals that despite improvements, some daunting security challenges still dog the NHS

• November 30, 2021 30 Nov'21

  HP patches bugs in over 150 printer models

  More than 150 HP multifunction printers are at risk of compromise through a series of newly disclosed vulnerabilities, one of them wormable

• November 30, 2021 30 Nov'21

  Recovering from ransomware: One organisation’s inside story

  In February 2021, French office equipment supplier Manutan fell victim to a DoppelPaymer ransomware hit. IT ops director Jérôme Marchandiau tells the inside story of the incident

• November 30, 2021 30 Nov'21

  Over 100 civil society groups call for changes to EU AI Act

  Civil, human and digital rights organisations sign open letter calling on European policymakers to put fundamental rights at the heart of the proposed Artificial Intelligence Act

• November 29, 2021 29 Nov'21

  Second Mizuho executive quits after IT problems

  IT failures have forced the CEO of Japanese financial services group to step down

• November 29, 2021 29 Nov'21

  British Army picks Immersive Labs for cyber training

  The British Army will make Immersive Labs’ security training platform available to all serving personnel

• November 29, 2021 29 Nov'21

  Three latest trends and developments around the Mitre ATT&CK framework

  Framework is set to receive important updates to help organisations and businesses evolve their cyber security. Learn more about what it offers

• November 25, 2021 25 Nov'21

  Government must prove its plans to police encryption work, says ex-cyber security chief

  Ciaran Martin, the former UK cyber security chief, says the government must explain how it can access encrypted communications without damaging cyber security and weakening privacy

• November 24, 2021 24 Nov'21

  Regulation of AI needed to avoid the mistakes of social media

  Government is urged to work with industry on a flexible regulatory framework to ensure the explainability, reliability and robustness of artificial intelligence

• November 24, 2021 24 Nov'21

  Consumer cyber bill to protect mobiles, smart devices

  Product Security and Telecommunications Infrastructure Bill will reinforce protections for consumer devices and mandate improvements to default security settings

• November 24, 2021 24 Nov'21

  Apple sues under-fire malware firm NSO

  Lawsuit alleges spyware firm NSO Group targeted Apple’s users, adding to the pressure on the under-fire company

• November 24, 2021 24 Nov'21

  Police tech introduced with little scrutiny or training

  A Lords inquiry into the adoption of advanced algorithmic technologies by police in England and Wales has been told that new tools are being introduced without proper training and with little scrutiny of their impacts

• November 22, 2021 22 Nov'21

  Upcoming holidays prompt ransomware warning from authorities

  Ransomware gangs know how calendars work, and may target their attacks around major holidays to take advantage of more people being off work, according to a new alert

• November 22, 2021 22 Nov'21

  Black Friday cyber warning for 4,000 card-skimming victims

  NCSC warns thousands of small retailers that their websites are being exploited to steal customer data

• November 19, 2021 19 Nov'21

  Why is Emotet back, and should we be worried about it?

  The sudden reappearance of Emotet this week has security teams on high alert, but do we need to be worried about its return, and what should we be doing about it?

• November 19, 2021 19 Nov'21

  UK government announces safety tech challenge fund winners

  The Safety Tech Challenge Fund winners will now develop technologies to limit the spread of child abuse material in encrypted environments, which the government has claimed will not be repurposed for other uses

• November 19, 2021 19 Nov'21

  GCHQ, NSA chiefs recommit to counter cyber threats

  UK and US intelligence services reaffirm a joint commitment to disrupt and deter new and emerging cyber threats

• November 18, 2021 18 Nov'21

  UK government enshrines law to strip out ‘high-risk’ suppliers’ tech from networks

  UK Telecommunications (Security) Act receives Royal Assent, mandating stronger legal duties on telecoms firms to protect the UK’s networks and giving the government new powers to control use of high-risk suppliers

• November 18, 2021 18 Nov'21

  Memento ransomware gang quick to retool for ‘optimum’ outcome

  The operators of a new ransomware called Memento are quick to retool for ‘success’ if they run up against a competent defender, says Sophos

• November 18, 2021 18 Nov'21

  Sky ECC provided free cryptophones to a Canadian police force

  Internal emails disclosed in a US court show how Sky Global supplied sample encrypted phones to a Canadian police force before its phone users became subject to an international police investigation

• November 18, 2021 18 Nov'21

  AstraZeneca looks at the bigger picture in enterprise social media

  How do you work with people in different time zones and from different cultures and what happens when people leave the company?

• November 18, 2021 18 Nov'21

  Cryptophone supplier Sky Global takes legal action over US government website seizures

  Canadian tech company Sky Global has filed a legal motion claiming that the US government unlawfully seized the company’s internet sites following police investigations into the use of its cryptophones by organised crime

• November 17, 2021 17 Nov'21

  Security startups line up on Cyber Runway

  Some 108 cyber security startups representing the UK’s most cutting-edge innovators are to join Plexal’s Cyber Runway accelerator

• November 17, 2021 17 Nov'21

  Zero-days: The next element of the service-based cyber economy?

  Digital Shadows researchers have reported on the emergence of zero-days as a service, which could be the next big thing in the cyber criminal underworld

• November 17, 2021 17 Nov'21

  GovTech to enhance Government on Commercial Cloud

  GCC 2.0 will include improvements in user onboarding and provide single credential access to public cloud services and engineering tools, among other areas

• November 16, 2021 16 Nov'21

  One-fifth of NCSC-supported cyber incidents linked to Covid-19

  National Cyber Security Centre has helped to thwart multiple cyber incidents that could have seriously disrupted the UK’s response to the pandemic

• November 15, 2021 15 Nov'21

  UK government proposes new rules for digital supply chain security

  Proposals could see IT service providers legally required to adhere to the NCSC’s Cyber Assessment Framework, among other things

• November 12, 2021 12 Nov'21

  New law needed to rein in AI-powered workplace surveillance

  MPs and peers call for new legislation to regulate the growing use of artificial intelligence in the workplace, which is being used to surveil workers’ performance and behaviour

• November 12, 2021 12 Nov'21

  Oversight of biometrics and surveillance should not go to ICO

  Biometrics and surveillance camera commissioner Fraser Sampson has panned the UK government’s proposed plan to absorb the functions of those roles under the remit of the information commissioner

• November 12, 2021 12 Nov'21

  BT applies Covid-19 R number modelling to threat response

  A prototype cyber security tool developed at BT uses epidemiological principles to detect and respond to cyber threats

• November 11, 2021 11 Nov'21

  HPE’s Aruba networking unit hit by cyber attack

  Undisclosed threat actor compromised data buckets used to run the Aruba Central cloud environment using a stolen access key

• November 11, 2021 11 Nov'21

  Finance ombudsman overturns more than three-quarters of bank decisions on APP fraud

  The financial services ombudsman is siding with customers in over 75% of complaints against banks that refuse to repay losses to authorised push payment fraud

• November 11, 2021 11 Nov'21

  Scale of crime-as-a-service economy a growing concern, say researchers

  The cyber criminal underground continues its evolution towards a service-based economy

• November 11, 2021 11 Nov'21

  Bank of England loses 161 computing devices in three years

  Bank cannot account for phones, laptops and tablets that have gone missing over the past three years

• November 11, 2021 11 Nov'21

  Lloyd v Google Supreme Court verdict brings end to privacy class actions against big tech in UK

  A ruling by the Supreme Court has left it financially unviable for individuals to bring class actions in the UK against big tech companies for privacy breaches

• November 10, 2021 10 Nov'21

  November Patch Tuesday drop fixes bugs in Excel, Exchange Server

  Another relatively light Patch Tuesday drop from Microsoft addresses 55 vulnerabilities, two of them already being exploited

• November 10, 2021 10 Nov'21

  EU artificial intelligence regulation risks undermining social safety net

  Europe’s proposed artificial intelligence regulation will not adequately protect people from European governments' increasing use of the technology in social security decisions and resource allocation, says Human Rights Watch

• November 09, 2021 09 Nov'21

  Yoti develops age estimation algorithm for under-13s

  Age estimation technology developed by Yoti is being pitched as a way of helping social media platforms and other online businesses protect younger internet users from harm

• November 09, 2021 09 Nov'21

  Blockchain technology will help banks will cut cross-border payment costs by $10bn in 2030

  The use of blockchain technology in cross-border payments will save global banks $10bn in 2030, according to research

• November 09, 2021 09 Nov'21

  US seeks to extradite REvil affiliate who attacked Kaseya

  US Department of Justice unseals charges against a Ukrainian national accused of being behind the summer 2021 REvil ransomware attack on Kaseya

• November 08, 2021 08 Nov'21

  REvil associates arrested in international ransomware crackdown

  Two individuals suspected of conducting 5,000 REvil ransomware attacks were arrested by Romanian police last week as an international crackdown on the crime gang gathers pace

• November 08, 2021 08 Nov'21

  Gig economy workforce nearly trebles over five years

  Over four million people in England and Wales now work for gig economy platforms at least once a week, marking a nearly threefold increase since 2016

• November 08, 2021 08 Nov'21

  How cosmetics retailer Lush made over its approach to authentication

  Evolving approaches to IT at cosmetics retailer Lush meant the organisation’s previous approach to authentication was no longer up to scratch. Find out how it overcame this hurdle

• November 05, 2021 05 Nov'21

  Digital secretary calls for permanent online safety committee

  Digital secretary commits to establishing ongoing oversight of the Online Safety Bill and its implementation, and suggests the grace period on criminal liability for tech company execs should be shortened from two years to a maximum of six months ...

• November 05, 2021 05 Nov'21

  US offers $10m reward for intel on DarkSide ransomware gang

  US government puts up a $10m reward for information on the DarkSide ransomware gang, the group that attacked Colonial Pipeline six months ago