News
IT governance
-
July 23, 2024
23
Jul'24
Former minister felt she was fighting department over Post Office controversy
Former government minister was fighting with Shareholder Executive officials as she probed for information following allegations brought to her by MPs
-
July 23, 2024
23
Jul'24
Chrome cookies reprieved amid Google Privacy Sandbox changes
Google abruptly changes tack on third-party cookies in its Chrome web browser, cancelling plans to deprecate them in favour of an unspecified ‘new experience’ for users
-
July 22, 2024
22
Jul'24
CrowdStrike chaos shows risks of concentrated ‘big IT’
The concentration of so much mission-critical technology in the hands of a few large suppliers makes incidents like the Microsoft-CrowdStrike outage all the more dangerous
-
July 22, 2024
22
Jul'24
Ed Davey and Jo Swinson ‘handled’ by civil servants in Post Office cover-up, says Sir Alan Bates
Evidence in public inquiry revealed how ministers in charge of Post Office were left in the dark at a time when campaigners, MPs and journalists were looking for answers
-
July 17, 2024
17
Jul'24
UK Cyber Bill teases mandatory ransomware reporting
In the Cyber Security and Resilience Bill introduced in the King's Speech, the UK's new government pledges to give regulators more teeth to ensure compliance with security best practice and to mandate incident reporting
-
July 17, 2024
17
Jul'24
Hackney Council reprimanded over 2020 ransomware attack
The London Borough of Hackney has been reprimanded by the ICO over a series of failures that led to a devastating cyber attack, but at the same time, the regulator praised the local authority for its response and commitment to making improvements
-
July 16, 2024
16
Jul'24
Strategic Defence Review must emphasise cyber security, says industry
Cyber security leaders say the new government's Strategic Defence Review needs to put digital security front and centre
-
July 16, 2024
16
Jul'24
CMA looks deeper into Microsoft’s AI hirings
Microsoft recently hired two former co-founders of AI specialist Inflection AI, and signed a deal to host the company’s AI model on Azure
-
July 15, 2024
15
Jul'24
NHS Trusts cancelled over 6,000 appointments after Qilin cyber attack
The two NHS Trusts most heavily impacted by the Qilin ransomware attack on pathology services provider Synnovis have cancelled over 6,000 appointments and procedures in the past five weeks
-
July 15, 2024
15
Jul'24
How Snowflake is tackling AI challenges
Snowflake’s regional leader Sanjay Deshmukh outlines how the company is helping customers to tackle the security, skills and cost challenges of AI implementations
-
July 15, 2024
15
Jul'24
Civil servant said subpostmasters’ threat of legal action was ‘sabre-rattling’
Post Office scandal public inquiry hears damning evidence capping off a bad week for the reputation of high-profile civil servants
-
July 12, 2024
12
Jul'24
AT&T loses ‘nearly all’ phone records in Snowflake breach
Hackers have stolen records of virtually every call made by AT&T's customers during a six-month period in 2022, after compromising the US telco's Snowflake data environment
-
July 12, 2024
12
Jul'24
Public awareness of ID security grows, but big obstacles remain
Consumers are improving their awareness of the issues around digital identity security, but there are still some big issues preventing many from doing better, according to an Okta report
-
July 12, 2024
12
Jul'24
IBM: Reimagine processes to unlock AI’s value
Asia-Pacific organisations must reimagine processes for AI success, says IBM’s general manager for the region, Paul Burton
-
July 11, 2024
11
Jul'24
Dutch research firm TNO pictures the SOC of the future
In only a few years, security operations centres will have a different design and layout, and far fewer will remain
-
July 10, 2024
10
Jul'24
The security interview: Managing the ‘no’ mindset
Matt Riley, data protection and information security officer at Sharp Europe, discusses balancing cyber risks with business leaders’ goals
-
July 09, 2024
09
Jul'24
Hyper-V zero-day stands out on a busy Patch Tuesday
Microsoft has fixed almost 140 vulnerabilities in its latest monthly update, with a Hyper-V zero-day singled out for urgent attention
-
July 09, 2024
09
Jul'24
Chinese spies target vulnerable home office kit to run cyber attacks
China’s APT40 is ramping up targeting of victims using vulnerable small and home office networking kit as command and control infrastructure, according to an international alert
-
July 09, 2024
09
Jul'24
Lessons from war: How Israel is fighting Iranian state-backed hacking
The general director of the Israel National Cyber Directorate talks about the rise in cyber attacks and what lessons the country has gleaned to defend against hacking from foreign parties
-
July 09, 2024
09
Jul'24
Revamped DSIT to transform digital public services, says government
The incoming government sets out preliminary plans to conduct a major revamp and relaunch of the Department for Science, Innovation and Technology
-
July 08, 2024
08
Jul'24
Synnovis attack highlights degraded, outdated state of NHS IT
More cyber attacks against the health service are likely, and will succeed if something isn’t done to address the increasingly elderly NHS IT estate, experts are warning
-
July 03, 2024
03
Jul'24
NCA’s Operation Morpheus targets illicit Cobalt Strike use
International law enforcement operation targets cyber criminals using the Cobalt Strike penetration testing framework for dodgy purposes
-
July 03, 2024
03
Jul'24
Former Post Office chair 'regrets' keeping critical Horizon report secret
Tim Parker, chairman of the Post Office from 2015 to 2022, admits he should not have accepted legal advice to prevent release of a review that could have supported victims of the Horizon scandal
-
June 27, 2024
27
Jun'24
Gulf Edge to operate Google Distributed Cloud in Thailand
The Gulf Energy subsidiary will offer Google’s sovereign cloud service in Thailand with a focus on air-gapped configurations
-
June 26, 2024
26
Jun'24
Police Scotland did not consult ICO about high-risk cloud system
Police Scotland chose not to formally consult with the data regulator about the risks identified with a cloud-based digital evidence sharing system, while the regulator itself did not follow up for nearly three months
-
June 25, 2024
25
Jun'24
NHS experts raise warning over patient data breach risk in registries project
Clinicians warn that the NHS England Outcome Registries Platform has poor security and is vulnerable to cyber attack, putting critical patient data at risk of being exposed
-
June 24, 2024
24
Jun'24
Sellafield pleads guilty to criminal charges over cyber security
Nuclear Decommissioning Authority-backed organisation Sellafield Ltd pleads guilty to criminal charges brought over significant cyber security failings that could have compromised sensitive nuclear information
-
June 21, 2024
21
Jun'24
Qilin ransomware gang publishes stolen NHS data online
The ransomware gang behind a major cyber attack on NHS supplier Synnovis has published a 400GB trove of private healthcare data online
-
June 21, 2024
21
Jun'24
Executive interview: Open models pros and cons
We speak to Meta’s vice-president of AI research about recent publicly released research and models, and the role of closed AI models
-
June 21, 2024
21
Jun'24
ICO police cloud guidance released under FOI
Long-awaited guidance from the UK data regulator on police cloud deployments highlights some potential data transfer mechanisms it thinks can clear up ongoing legal issues, but tells forces it’s up to them to decide if the measures would work
-
June 19, 2024
19
Jun'24
Microsoft admits no guarantee of sovereignty for UK policing data
Documents show Microsoft’s lawyers admitted to Scottish policing bodies that the company cannot guarantee sensitive law enforcement data will remain in the UK, despite long-standing public claims to the contrary
-
June 17, 2024
17
Jun'24
Artificial intelligence to make Olympic Games more inclusive
The International Olympic Committee is working with Intel to use AI at the Paris Olympic and Paralympic Games
-
June 13, 2024
13
Jun'24
AI’s environmental cost could outweigh sustainability benefits
Artificial intelligence can help organisations manage and mitigate their environmental impacts in a number of ways, but the highly polluting nature of the technology could outweigh its other sustainability benefits if not dealt with
-
June 13, 2024
13
Jun'24
Black Basta ransomware crew may be exploiting Microsoft zero-day
A Microsoft vulnerability that was addressed without fanfare in March may in fact have been exploited as a zero-day by the notorious Black Basta ransomware gang, threat hunters warn
-
June 13, 2024
13
Jun'24
Q&A: Adalbjorn Thorolfsson on IT project management in Iceland
With a small, but very sophisticated population, Iceland has unique ways of keeping up with the rest of the world in the IT sector. Adalbjorn Thorolfsson, president of the Icelandic Project Management Association, describes some lessons for the rest...
-
June 11, 2024
11
Jun'24
PSNI ran secret unit to monitor journalists’ and lawyers’ phones, claims former senior officer
The Police Service of Northern Ireland denies claims that its anti-corruption unit used a standalone computer to ‘avoid scrutiny and control’
-
June 11, 2024
11
Jun'24
More than 160 Snowflake customers hit in targeted data theft spree
Mandiant reports that more than 160 Snowflake customers have been hit in a broad data theft and extortion campaign targeting organisations that have failed to pay proper attention to securing valuable credentials
-
June 10, 2024
10
Jun'24
NHS blood stocks running low after ransomware attack
The NHS is appealing for people with O Positive and O Negative blood types to come forward to donate as hospitals in London struggle to keep critical services running after ransomware attack
-
June 10, 2024
10
Jun'24
AI firms can’t be trusted to voluntarily share risk information
Workers at frontier AI firms have warned that their employers – including OpenAI, DeepMind and Anthropic – can’t be trusted to voluntarily share information about their systems capabilities and risks with governments or civil society
-
June 10, 2024
10
Jun'24
Driving customer experience through cloud and AI
Autodesk’s global CIO Prakash Kota explains how the company is modernising its IT infrastructure and adopting cloud and AI to drive customer experience
-
June 07, 2024
07
Jun'24
DDoS gang threatens to disrupt European elections
Russian hacktivists are threatening to disrupt the European Parliament elections, while the BBC reports on new deepfake threats to the UK’s electoral process
-
June 07, 2024
07
Jun'24
Bitdefender makes MDR services free to NHS bodies hit by Qilin
Bitdefender offers NHS bodies affected by a major cyber incident free access to its product suite, as the health service continues to deal with the impact of the Qilin ransomware attack on partner Synnovis
-
June 07, 2024
07
Jun'24
Rapid AI development poses supervisory challenges in the Netherlands
In the Netherlands, the financial regulator and the monetary authority are grappling with the pace of artificial intelligence development and its implications for the financial industry
-
June 05, 2024
05
Jun'24
Qilin ransomware gang likely behind crippling NHS attack
Security experts investigating a major cyber attack on an NHS partner that has caused frontline services across South London to grind to a halt say the Qilin ransomware gang appears to be the culprit
-
June 05, 2024
05
Jun'24
Lack of upfront specifications kill agile projects
Research shows there is a high chance of failure when a software development project begins without a specification being signed off
-
June 04, 2024
04
Jun'24
Invasive tracking ‘endemic’ on sensitive support websites
Websites set up by police, charities and universities to help people get support for sensitive issues like addiction and sexual harassment are deploying tracking technologies that harvest information without proper consent
-
June 04, 2024
04
Jun'24
NHS services at major London hospitals disrupted by cyber attack
A major cyber attack at NHS services provider Synnovis is disrupting frontline care at hospitals across London
-
June 04, 2024
04
Jun'24
Russia used fake AI Tom Cruise in Olympic disinformation campaign
Microsoft threat researchers report a surge in Russian disinformation campaigns targeting the 2024 Summer Olympics, including AI-enhanced propaganda
-
June 03, 2024
03
Jun'24
97 FTSE 100 firms exposed to supply chain breaches
Between March 2023 and March 2024, 97 out of 100 companies on the UK’s FTSE 100 list were put at risk of compromise following supply chain breaches at third-party suppliers
-
June 03, 2024
03
Jun'24
Major breaches allegedly caused by unsecured Snowflake accounts
Significant data breaches at Ticketmaster and Santander appear to have been orchestrated through careful targeting of the victims’ Snowflake cloud data management accounts