News

IT governance

• March 31, 2022 31 Mar'22

  Bank fraud prevention scheme blocked £60m in fraud last year

  Scheme to catch fraudsters, including online scammers, before they commit their crimes has reported a significant increase in crimes prevented

• March 30, 2022 30 Mar'22

  One-third of UK firms suffer a cyber attack every week

  New statistics from the annual DCMS Cyber security breaches survey reveal the extent and frequency with which UK organisations are being attacked by malicious actors

• March 29, 2022 29 Mar'22

  Overhaul of UK police tech needed to prevent abuse

  Lords inquiry finds UK police are deploying artificial intelligence and algorithmic technologies without a thorough examination of their efficacy or outcomes, and are essentially ‘making it up as they go along’

• March 29, 2022 29 Mar'22

  NCSC: Not necessarily wise to ditch Kaspersky

  UK’s National Cyber Security Centre issues refreshed guidance on organisations’ usage of technology and services of Russian origin, but stops short of advising users to expunge all Russian products from their IT estates

• March 29, 2022 29 Mar'22

  Wave of Log4j-linked attacks targeting VMware Horizon

  Sophos issues a new warning to organisations that have so far failed to patch their VMware Horizon servers against Log4Shell

• March 29, 2022 29 Mar'22

  FCA reports 52% jump in security incidents

  The Financial Conduct Authority received 116 cyber incident reports in 2021, a fifth of them involving ransomware

• March 25, 2022 25 Mar'22

  European Commission proposes new cyber security regulations

  New cyber and information security regulations have been proposed by the European Commission to create a minimum set of standards in both areas

• March 24, 2022 24 Mar'22

  The Security Interviews: Red gets automated

  We speak to Jack Stockdale, CTO of Darktrace, about Cambridge’s strong data analytics and artificial intelligence links and the role of AI in cyber security

• March 21, 2022 21 Mar'22

  Siloed data holding back coordinated health responses

  Digital health experts discuss the role of data in coordinating the NHS’s pandemic response and how managing privacy and governance issues are key to further success

• March 18, 2022 18 Mar'22

  Electronic patient records key to NHS digital transformation

  Getting EPR systems rolled out across NHS organisations will help boost digital transformation efforts, and are key to fulfilling government healthcare plans

• March 18, 2022 18 Mar'22

  Russian IT sector faces unprecedented crisis

  The Russian IT sector faces a major crisis as IT professionals and businesses flee the country after its invasion of Ukraine

• March 17, 2022 17 Mar'22

  Kaspersky CEO: Ukraine war must end through diplomacy

  Eugene Kaspersky speaks out on the war in Ukraine, and rebuffs Germany’s BSI, branding its warnings over his company’s trustworthiness as insulting

• March 17, 2022 17 Mar'22

  Online Safety Bill introduced in Parliament

  The government has introduced its long-awaited Online Safety Bill in Parliament, alongside new criminal offences and sanctions for tech company execs

• March 17, 2022 17 Mar'22

  Alarm raised over ‘trickster’ LokiLocker ransomware

  The new LokiLocker ransomware is, like its namesake, adept at tricks and misdirection, say BlackBerry researchers

• March 16, 2022 16 Mar'22

  German authorities warn on Kaspersky but stop short of ban

  Germany authorities warn Kaspersky users to consider alternatives to the firm’s flagship antivirus software, citing national security concerns and the war on Ukraine

• March 11, 2022 11 Mar'22

  Majority of UK adults support legal right to disconnect

  The introduction of ‘right to disconnect’ legislation to stop employees having to engage in work-related electronic communications outside their normal hours remains popular in the UK

• March 10, 2022 10 Mar'22

  Tech brands sign on to HackerOne responsible security drive

  Tech companies sign HackerOne’s new corporate security responsibility pledge to bring cyber out of the shadows and promote effective, secure development practices

• March 09, 2022 09 Mar'22

  Paid-for advertising measures included in Online Safety Bill

  New measures to deal with fraudulent paid-for advertising have been included in the government’s draft Online Safety Bill, marking the fourth extension in two months

• March 09, 2022 09 Mar'22

  Strategic Review of Policing: Police tech needs better ethical scrutiny

  The Strategic Review of Policing confirms the central role that tech will be playing going forward, but warns of the need for greater ethical scrutiny to ensure public trust

• March 09, 2022 09 Mar'22

  Microsoft serves up three zero-days on March Patch Tuesday

  Three zero-days pop up in Microsoft’s March update, along with a number of other noteworthy concerns for defenders

• March 08, 2022 08 Mar'22

  Challenges for IT providers as Ukraine crisis worsens

  Many IT providers have ceased sales to Russia, but cloud services can operate and be delivered anywhere, helping – indirectly – to fund the invasion

• March 07, 2022 07 Mar'22

  Ukraine joins Nato cyber knowledge hub

  Ukraine is to become a contributing participant in Nato’s Cooperative Cyber Defence Centre of Excellence

• March 04, 2022 04 Mar'22

  Scrapping NHS Digital a backward step for patient data rights

  Former NHS Digital chair Kingsley Manning has spoken out over proposals to fold NHS Digital into NHS England, saying that more oversight is needed to safeguard patient data in light of recent events

• March 02, 2022 02 Mar'22

  How FinOps can rein in cloud costs

  More organisations are warming to FinOps to keep escalating cloud costs in check, amid growing usage of public cloud services

• March 02, 2022 02 Mar'22

  Ban predictive policing systems in EU AI Act, says civil society

  A coalition of civil society groups has called on European lawmakers to use the upcoming Artificial Intelligence Act as an opportunity to ban predictive policing systems

• March 01, 2022 01 Mar'22

  Toyota production to resume after supply chain attack

  Toyota production has been set back by over 10,000 vehicles following a cyber attack on a critical components supplier in Japan

• March 01, 2022 01 Mar'22

  DCMS opens consultation on telecoms cyber standards

  Proposed rules will set out the specific measures telecoms providers need to take to fulfil their legal duties under the Telecommunications Security Act

• March 01, 2022 01 Mar'22

  Workplace surveillance ‘spiralling out of control’, says TUC

  Trade union body pushes for workers to be consulted on the implementation of new technologies at work, warning that invasive surveillance practices are getting out of hand

• February 28, 2022 28 Feb'22

  Online Safety Bill updated to deal with anonymous abuse

  Social media companies will be forced to deal with anonymous abuse online by the introduction of new measures in the Online Safety Bill

• February 24, 2022 24 Feb'22

  Security organisations form Nonprofit Cyber coalition

  Founding members of the Nonprofit Cyber coalition pledge to enhance joint action on cyber security around the world

• February 24, 2022 24 Feb'22

  New cyber guidelines to safeguard construction sector

  NCSC launches sector-specific security guidance for organisations in the construction industry, with input from the Chartered Institute of Building

• February 23, 2022 23 Feb'22

  Paid-for advertising still not covered in Online Safety Bill

  Consumer group Which? calls again for government to include measures against scam paid-for advertising in the Online Safety Bill

• February 23, 2022 23 Feb'22

  Tech acquisition to be major priority for UK police

  Policing minister cites technology as major focus for future of UK police, in comments made ahead of the publication of the Strategic Review of Policing in England and Wales

• February 22, 2022 22 Feb'22

  UK organisations swift to chide phishing victims

  While UK organisations are doing better at security training, many are quick to punish employees who fall victim to phishing attacks, whether real or simulated

• February 21, 2022 21 Feb'22

  Zoom gains NCSC Cyber Essentials Plus and NHS security badges

  Video platform Zoom has added a number of UK-specific cyber certifications to help it demonstrate its platform is safeguarded against common threats

• February 21, 2022 21 Feb'22

  Union pushes for collective bargaining around technology and data

  Prospect union releases guidance on how workers and unions can engage employers over the use of technology at work, with particular emphasis on the need to include technology provisions in collective bargaining agreements

• February 18, 2022 18 Feb'22

  UK organisations untroubled by Trickbot surge

  A surge in Trickbot infections is targeting some of the world’s most prominent brands, but UK organisations seem thankfully unaffected

• February 16, 2022 16 Feb'22

  DWP data sharing pilot aims for single source of the truth

  A pilot to share labour data across government departments aims to develop a safe framework for collaboration and to improve policy-making

• February 16, 2022 16 Feb'22

  DDoS attacks hit Ukrainian defence ministry and banks

  A further wave of cyber attacks has taken place against targets in Ukraine amid heightened tension in the region

• February 16, 2022 16 Feb'22

  BlackCat ransomware gang claims responsibility for Swissport attack

  Ransomware gang is trying to offload 1.6TB of data stolen from aviation services firm

• February 16, 2022 16 Feb'22

  CIO interview: Steve Williams, M&A lead and IT director, Waterstons

  Steve Williams is applying decades of CIO experience to the advice he gives businesses during major mergers and acquisitions

• February 15, 2022 15 Feb'22

  Botched third-party configuration exposes Internet Society data to web

  Personal data on members of The Internet Society was exposed after a supplier failed to secure its Azure storage

• February 15, 2022 15 Feb'22

  TA2451 targets aviation and transport sector with tailored lures

  Newly designated cyber criminal group favours highly specific lures and a tried-and-tested modus operandi to compromise targets in the aviation, aerospace and transport sectors

• February 11, 2022 11 Feb'22

  CMA secures final Privacy Sandbox guarantees from Google

  The CMA has secured a final set of Privacy Sandbox commitments from Google relating to the proposed removal of third-party cookies from its Chrome browser

• February 11, 2022 11 Feb'22

  Why security professionals should pay attention to what Russia is doing

  Even though the average organisation is an unlikely target for a Russian state cyber attack, here's why security teams still need to watch what Russian threat groups are up to

• February 10, 2022 10 Feb'22

  IR35 reforms: HMRC slammed for ‘over-collecting tax’ from non-compliant public sector bodies

  HMRC has moved to play down claims it is collecting more tax than it is due when tackling non-compliance with the IR35 reforms in the public sector

• February 10, 2022 10 Feb'22

  UK second in money laundering hall of shame

  Banks need to step up their anti-money laundering processes if billions of pounds’ worth of criminal activity is to be prevented

• February 09, 2022 09 Feb'22

  Minister defends digital economy legislation before Lords

  A digital minister has said that the UK’s forthcoming digital markets legislation is ‘superior’ to similar efforts in the EU, but could not commit to a specific time frame for when it will be introduced to Parliament

• February 09, 2022 09 Feb'22

  Linux-based clouds an open door for attackers, says VMware

  Its prevalence as a cloud operating system means Linux is becoming a meal ticket for malicious actors, but the security industry does not seem to have cottoned on to this yet, says VMware

• February 09, 2022 09 Feb'22

  Ransomware ever more sophisticated and impactful, warns NCSC

  UK’s National Cyber Security Centre teams up with US and Australian partners in a joint advisory warning organisations of the increasing sophistication exhibited by criminal ransomware gangs