News

IT governance

• March 28, 2023 28 Mar'23

  Europol warns cops to prep for malicious AI abuse

  In a report looking at how large language models can be used by criminals, Europol’s Innovation Lab calls on law enforcement agencies to prepare themselves for wide-ranging impacts on their work

• March 28, 2023 28 Mar'23

  Ethical hackers urged to respond to Computer Misuse Act reform proposals

  The deadline for submissions to the government’s consultation on reform of the Computer Misuse Act is fast approaching, and ethical hackers and security experts need to make their voices heard, says Bugcrowd

• March 27, 2023 27 Mar'23

  Many of world’s biggest banks lack transparent policies for responsible AI

  It is unclear whether many of the world’s largest banks have adopted and are using ethical artificial intelligence development principles

• March 27, 2023 27 Mar'23

  Lords AI weapons committee holds first evidence session

  In first evidence session of Lords AI weapons committee, expert witnesses unpack claims that artificial intelligence in weapon systems will help military organisations to improve their compliance with international humanitarian law

• March 27, 2023 27 Mar'23

  France latest to ban TikTok on government devices

  Following bans in the UK and US, France has moved to enact restrictions on TikTok, and other social media apps, on government devices

• March 22, 2023 22 Mar'23

  Government launches seven-year NHS cyber strategy

  The new Cyber Security Strategy for Health and Adult Social Care lays out a plan for promoting cyber resilience in the sector by 2030 to protect services and patients alike

• March 21, 2023 21 Mar'23

  Hitachi Energy emerges as victim of Clop gang’s Fortra attack

  The power and energy division of Japanese conglomerate Hitachi has disclosed that it has fallen victim to a Clop cyber attack, but insists customer data is safe

• March 21, 2023 21 Mar'23

  Ferrari rejects ransom demand after cyber attack

  Italian carmaker Ferrari says it will refuse to pay a ransom after an unspecified threat actor broke into its IT systems and stole customer data

• March 21, 2023 21 Mar'23

  Ransomware gangs harass victims to ‘bypass’ backups

  Analysis reveals how cyber criminal gangs are turning to extensive, targeted harassment campaigns to force victims to pay up, even if their backups are in good order

• March 20, 2023 20 Mar'23

  BBC cracks down on TikTok after review

  The BBC is asking staff not to install TikTok on corporate-owned devices without a justified business purpose, although its use will still be allowed to share media content with its audiences

• March 17, 2023 17 Mar'23

  CIO interview: Russ Thornton, chief technology officer, Shawbrook Bank

  Russ Thornton swapped life on the theatre podium for financial services IT, but thrives in an environment where orchestrating IT teams is a core skill

• March 17, 2023 17 Mar'23

  UK government to create code of practice for generative AI firms

  The code will look to strike a balance between copyright holders and generative AI firms so that both parties can benefit from the use of copyrighted material in training data

• March 16, 2023 16 Mar'23

  BEC attacks doubled in 2022, outstripping ransomware

  Massive growth in the volume of Business Email Compromise or BEC attacks was linked to a surge in successful phishing campaigns, according to data from Secureworks

• March 16, 2023 16 Mar'23

  TikTok banned on UK government devices

  The UK government has followed in the footsteps of its US and European counterparts and banned the use of Chinese social media app TikTok on official devices

• March 15, 2023 15 Mar'23

  Chinese Silkloader cyber attack tool falls into Russian hands

  A loader tool used by Chinese cyber criminals seems to have been enthusiastically taken up in recent weeks by Russian ransomware operators

• March 15, 2023 15 Mar'23

  Microsoft patches Outlook zero-day for March Patch Tuesday

  A highly dangerous privilege escalation bug in Outlook is among 80 different vulnerabilities patched in Microsoft’s March Patch Tuesday update

• March 14, 2023 14 Mar'23

  AI interview: Elke Schwarz, professor of political theory

  Elke Schwarz speaks with Computer Weekly about the ethics of military artificial intelligence and the dangers of allowing governments and corporations to push forward without oversight or scrutiny

• March 13, 2023 13 Mar'23

  MI5 to oversee new National Protective Security Authority

  The new National Protective Security Authority will address various national security threats including state-sponsored cyber espionage against UK targets

• March 10, 2023 10 Mar'23

  Technology minister Michelle Donelan defends data reforms

  Secretary of state Michelle Donelan has defended the government’s new data reforms as providing certainty for businesses while simultaneously retaining high standards of data protection, but industry figures are having mixed reactions

• March 08, 2023 08 Mar'23

  UK government introduces revised data reform bill to Parliament

  Designed in close collaboration with technology businesses, the UK government is re-introducing an updated version of its Data Protection and Digital Information Bill to Parliament, which civil society groups say upends key safeguards

• March 07, 2023 07 Mar'23

  Taking back control: Could a distributed model breed a better AI?

  AI tools such as ChatGPT are trained on datasets scraped from the web, but you don’t have much say if your data is used. Technologist Bruce Schneier says it’s time to give control of AI training data back to the people

• March 06, 2023 06 Mar'23

  Lords Committee to investigate use of AI-powered weapons systems

  House of Lords to investigate the use of artificial intelligence in weapons systems, following UK government publication of AI defence strategy in June 2022

• March 03, 2023 03 Mar'23

  White House unveils National Cybersecurity Strategy

  The strategy will focus on ensuring closer collaboration on cyber security between government and industry, while giving software and other tech companies a bigger role in combatting threats due to their resources and expertise

• March 02, 2023 02 Mar'23

  AI interview: Michael Osborne, professor of machine learning

  Artificial intelligence researcher speaks with Computer Weekly about the implications of a market-driven AI arms race and the overwhelming dominance of the private sector over the technology

• February 28, 2023 28 Feb'23

  Industrial safetytech startups secure £150m funding since 2020

  Industrial safetytech investment reached a record high of $100m in 2021, and remains significantly ahead of pre-pandemic funding levels despite a dip in 2022

• February 28, 2023 28 Feb'23

  Post Office’s most senior executives hushed up Horizon errors, public inquiry told

  The Post Office messaging strategy was designed to reassure staff that the Horizon accounting system was robust after Computer Weekly first revealed problems in 2009

• February 27, 2023 27 Feb'23

  Advanced digital resiliency can save organisations millions

  Businesses that build out their digital resiliency are not only more secure, they also have more opportunities to innovate with IT

• February 27, 2023 27 Feb'23

  How Dell is future-proofing its business

  Dell Technologies is building a more resilient supply chain, investing in growth areas like edge and multicloud, and responding to shifts in consumption models to position itself for long-term growth

• February 24, 2023 24 Feb'23

  UK police have ‘culture of retention’ around biometric data

  A culture of retention around biometric data in UK policing is damaging public trust, says UK biometrics commissioner, who is calling for clear regulation to govern police use of biometric technologies

• February 22, 2023 22 Feb'23

  UK HSE to launch regulatory sandbox for industrial safety tech

  The sandbox will see the regulator work with industry and tech startups to accelerate the development and adoption of a range of safety-related technologies, with a particular emphasis on data and analytics

• February 22, 2023 22 Feb'23

  UK forces lead live-fire cyber war exercise

  The seven-day Defence Cyber Marvel 2 exercise put cyber responders from 11 countries through their paces

• February 22, 2023 22 Feb'23

  Half of cyber leaders to switch jobs by 2025, citing stress

  A substantial number of cyber security leaders are plotting their great escape, saying the industry is leaving them too stressed to go on, according to a study

• February 21, 2023 21 Feb'23

  Royal Mail resumes full export service after cyber attack

  Royal Mail resumes the last of its international services as it recovers from a ransomware attack, while the Post Office offers postmasters compensation for their lost business

• February 21, 2023 21 Feb'23

  Care provider’s IT capability expands to support wider sector and beyond

  Care Plus’s IT operation went from being under NHS control to an autonomous department selling its services

• February 20, 2023 20 Feb'23

  Veeam bundles backup products into Veeam Data Platform

  Backup and data protection specialist Veeam upgrades and rebrands, with a focus on the challenges of ransomware and rapid recovery, and a claimed 500 new functions

• February 20, 2023 20 Feb'23

  Twitter 2FA changes bring more risks than benefits

  Twitter’s approach to nudging users away from insecure SMS-based 2FA is being questioned over its logic

• February 17, 2023 17 Feb'23

  CIO interview: Hans van der Waal, director of global IT, Travelex

  Travelex has weathered a storm that saw it sink into administration, before emerging to solidify its digital foundations for the future

• February 16, 2023 16 Feb'23

  Mock crime prediction tool profiles MEPs as potential criminals

  Developed by Fair Trials, the example crime prediction tool uses the same information as police systems to assess the likelihood of someone committing a crime in the future

• February 16, 2023 16 Feb'23

  Financial advisory firm Succession Wealth probes cyber attack

  Aviva-owned wealth consultancy and financial advisory practice Succession Wealth was hit by an undisclosed security incident on 8 February

• February 15, 2023 15 Feb'23

  Home Office partners with BAE Systems on border analytics

  BAE Systems wins three-year contract worth £38m to help Home Office develop Cerberus, a project to secure UK borders through advanced data systems and analytics

• February 15, 2023 15 Feb'23

  Multi-purpose malwares can use more than 20 MITRE ATT&CK TTPs

  Report warns of the development of increasingly sophisticated, multi-purpose malwares, and calls on defenders to play close attention to the MITRE ATT&CK framework to ward them off

• February 15, 2023 15 Feb'23

  Microsoft fixes three zero-days in February update

  February’s Patch Tuesday update contains fixes for three previously unpublicised zero-days in Microsoft Office, Windows Graphics Component and Windows Common Log File System Driver

• February 14, 2023 14 Feb'23

  Vidar, nJRAT re-emerge as prominent malware threats in January

  Trojans and infostealers once again dominate the list of most commonly observed threats, according to Check Point’s latest telemetry

• February 14, 2023 14 Feb'23

  UK authorities clamp down on illegal crypto ATMs

  The Financial Conduct Authority and West Yorkshire Police have disrupted a number of illegal crypto ATMs

• February 14, 2023 14 Feb'23

  OSC&R framework to stop supply chain attacks in the wild

  The backers of a new MITRE ATT&CK style framework called OSC&R hope to help organisations get to grips with threats to their software supply chains

• February 13, 2023 13 Feb'23

  Russian spear phishing campaign escalates efforts toward critical UK, US and European targets

  Russian hacking group Seaborgium refines its tactics in a continuation of attacks against targets including not-for-profit organisations with geopolitical affiliations

• February 13, 2023 13 Feb'23

  KPMG launches metaverse and digital twin hub in Saudi Arabia

  The Saudi Arabian government’s commitment to investing in metaverse technology has attracted a KPMG centre of excellence to its shores

• February 13, 2023 13 Feb'23

  Security buyers lack insight into threats, attackers, report finds

  The majority of cyber security purchasing decisions are made without proper insight into the attackers organisations are facing, according to a Mandiant report

• February 13, 2023 13 Feb'23

  Police tech needs clear legal rules, says biometrics regulator

  Police use of artificial intelligence and facial recognition needs to be controlled by strict rules and mechanisms to ensure public trust

• February 10, 2023 10 Feb'23

  Social media platform Reddit breached in phishing attack

  An unspecified threat actor obtained access to internal documents, code and business systems at Reddit after stealing employee credentials in a phishing attack