News

IT governance

November 12, 2024 12 Nov'24
Microsoft fixes 89 CVEs on penultimate Patch Tuesday of 2024

High-profile vulns in NTLM, Windows Task Scheduler, Active Directory Certificate Services and Microsoft Exchange Server should be prioritised from November’s Patch Tuesday update
November 12, 2024 12 Nov'24
Zero-day exploits increasingly sought out by attackers

Threat actors increasingly favour zero-day exploits to attack their victims before patches become available, according to the NCSC and CISA, which have just published a list of the most widely used vulnerabilities of 2023
November 12, 2024 12 Nov'24
More data stolen in 2023 MOVEit attacks comes to light

Over a year since the infamous MOVEit Transfer cyber attacks affected thousands of organisations, more new victims have come to light after an anonymous threat actor leaked their data on the dark web
November 12, 2024 12 Nov'24
Post Office requested four-year Horizon extension, as Fujitsu boss arrived at public inquiry

Fujitsu boss says the Horizon system has reached the end of its life and a long contract extension might not be possible

November 12, 2024 12 Nov'24
Police cloud project raises data protection concerns despite legal reforms

Ongoing data protection issues with the use of hyperscale public cloud infrastructure by UK police could complicate the ambitions of nine forces to move their common records management system into the cloud
November 11, 2024 11 Nov'24
UK Bolt drivers win legal claim to be classed as workers

Employment Tribunal ruling says Bolt must classify its drivers as workers rather than self-employed, putting drivers in line to receive thousands of pounds in compensation from the ride-hailing and delivery app
November 08, 2024 08 Nov'24
Inside Grab’s platform strategy

Grab’s group CTO talks up the super app’s platform strategy, architecture and organisational structure behind its growth across diverse Southeast Asian markets
November 07, 2024 07 Nov'24
Google Cloud MFA enforcement meets with approval

Latest Google Cloud policy to enforce multifactor authentication across its user base is welcomed by security professionals
November 07, 2024 07 Nov'24
AI a force multiplier for the bad guys, say cyber pros

CIISec’s annual report on the security profession finds evidence of growing concern that artificial intelligence will ultimately prove more useful to threat actors than defenders
November 07, 2024 07 Nov'24
Interview: Petra Molnar, author of ‘The walls have eyes’

Refugee lawyer and author Petra Molnar speaks to Computer Weekly about the extreme violence people on the move face at borders across the world, and how increasingly hostile anti-immigrant politics is being enabled and reinforced by a ‘lucrative ...

November 06, 2024 06 Nov'24
UK government launches AI assurance platform for enterprises

The platform is designed to drive demand for the UK’s artificial intelligence assurance sector and help build greater trust in the technology by helping businesses identify and mitigate a range of AI-related risks
November 06, 2024 06 Nov'24
Lords shoplifting inquiry calls for facial recognition laws

A Lords committee has expressed concern about the use of facial recognition technology by retailers to combat shoplifting, and is calling on the government to introduce new laws to ensure there are minimum standards for their deployments
November 06, 2024 06 Nov'24
Starmer announces tech-enabled crackdown on people smuggling

The UK government has announced a further £75m of funding for its Border Security Command, meaning it will now have £150m over two years to spend on new technologies and staff
November 01, 2024 01 Nov'24
CISA looks to global collaboration as fraught US election begins

The US' CISA cyber agency has unveiled a two-year International Strategic Plan to advance collaboration and improve resilience against shared risks and threats
November 01, 2024 01 Nov'24
Outside IR35: What the Autumn Budget’s Employers’ NI changes mean for IT contractors

The UK government used the Autumn Budget to announce an increase to the amount of Employers’ National Insurance Contributions companies will have to pay, which could have big implications for IT contractors
October 31, 2024 31 Oct'24
Post Office scandal affected relationships of two-thirds of victims

The Post Office scandal, regarded as the UK’s widest miscarriage of justice, destroyed the financial wellbeing of former subpostmasters, took away their liberty and inflicted grief on their relationships
October 30, 2024 30 Oct'24
Why geopolitics risks global open source collaborations

Linux Foundation’s decision to ban Russian maintainers has the potential to destroy open source’s global collaboration model
October 30, 2024 30 Oct'24
No simple replacement for digital evidence rules, says Post Office Horizon trial judge

Judge in Post Office Horizon trial says a more flexible approach to how digital evidence is used in court cases may be required as IT complexity increases
October 29, 2024 29 Oct'24
EMEA businesses siphoning budgets to hit NIS2 goals

With NIS2 now in effect, European business leaders are having to divert budget from elsewhere to achieve compliance
October 29, 2024 29 Oct'24
AI core to Nordic net-zero economy

Artificial intelligence will be core to attempts by Nordic countries to become net-zero economies
October 28, 2024 28 Oct'24
Russian Linux kernel maintainers blocked

To ensure compliance, the Linux kernel will no longer allow Russian software developers to work on maintaining the codebase
October 28, 2024 28 Oct'24
UK launches cyber guidance package for tech startups

The NCSC and NPSA, alongside agencies from the Five Eyes alliance, have issued guidance for startups on how to secure themselves against common cyber threats and targeted industrial espionage
October 25, 2024 25 Oct'24
Lords committee warns about risks of the UK losing its EU data adequacy

The UK government must work with the European Commission (EC) to secure a renewal of UK’s two data adequacy statuses, says cross-party Lords committee, in stark warning about impacts of losing the ability to seamlessly exchange citizens’ personal ...
October 25, 2024 25 Oct'24
Dutch critical infrastructure at risk despite high leadership confidence

Stark paradox in Dutch cyber security landscape has business leaders expressing high confidence in their IT infrastructure as cyber attacks rise
October 24, 2024 24 Oct'24
Government ‘urged’ to overturn all convictions based on Post Office Capture

Influential group has written to the government calling for legislation to overturn the criminal convictions of former subpostmasters that were based on Capture system data
October 23, 2024 23 Oct'24
Government hails Cyber Essentials success

Scheme to help keep organisations’ IT safe and secure has given businesses more confidence they won’t fall victim to a cyber attack
October 22, 2024 22 Oct'24
Change to rules on computer evidence will be an ‘outcome’ of Post Office scandal

The executive currently heading up the Post Office’s investigations department has told public inquiry that rules on computer evidence have to change
October 22, 2024 22 Oct'24
Dell CTO: Enterprise AI poised to take off in 2025

After a period of experimentation, the building blocks are in place for wider enterprise adoption of AI, says Dell Technologies’ global CTO, John Roese
October 22, 2024 22 Oct'24
Labour’s 10-year health service plan will open up data sharing

To save the health service, Labour is focusing on bolstering the NHS app and enabling greater sharing of patient records in England
October 22, 2024 22 Oct'24
Former Post Office IT boss alleged to have misrepresented alternative to in-house build

Internal Post Office document reveals allegations that former transformation boss misrepresented off-the-shelf option to replace Horizon
October 21, 2024 21 Oct'24
Can AI be secure? Experts discuss emerging threats and AI safety

International cyber security experts call for global cooperation and proactive strategies to address the security challenges posed by artificial intelligence
October 21, 2024 21 Oct'24
Review of late evidence doesn’t change Post Office Capture system report

Conclusions reached in government-commissioned report into pre-Horizon software are unchanged after late evidence reviewed
October 17, 2024 17 Oct'24
Met Police investigating senior Post Office worker over evidence destruction allegation

Public inquiry evidence confirms that the Metropolitan Police are investigating a senior Post Office staff member regarding instructions to destroy evidence
October 17, 2024 17 Oct'24
NCSC chief warns of gap in cyber threats and defence capabilities

The UK and its allies must take collective action to improve their cyber resilience and repel the increasing volume of severe cyber attacks, says NCSC chief
October 17, 2024 17 Oct'24
EU cyber security bill NIS2 hits compliance deadline

The EU’s NIS2 bill will harmonise how companies and member states approach cyber security, but its success will depend on how well it is implemented and enforced
October 16, 2024 16 Oct'24
Former police officer heading Post Office operations did nothing to help innocent subpostmasters

Former chief operating officer did nothing when action could have put a stop to the Post Office wrongful prosecutions
October 15, 2024 15 Oct'24
Tech and digital skills key to improving police productivity

The Policing Productivity Review sees data and technology as a way of improving productivity and outcomes, as well as a potential means of restoring diminishing legitimacy, but warns there needs to be a revamp in digital skills, investment and ...
October 15, 2024 15 Oct'24
UK government unveils AI safety research funding details

Through its AI Safety Institute, the UK government has committed an initial pot of £4m to fund research into various risks associated with AI technologies, which will increase to £8.5m as the scheme progresses
October 15, 2024 15 Oct'24
Hillingdon Council commits £9m to tech revamp in digital strategy

Hillingdon’s three-year digital strategy will see the council fund attempts to modernise its systems and infrastructure, change how residents interact with the local authority and make better use of data
October 15, 2024 15 Oct'24
NCSC expands school cyber service to academies and private schools

The National Cyber Security Centre is expanding its PDNS for Schools service to encompass a wider variety of institutions up and down the UK
October 11, 2024 11 Oct'24
Post Office believes it took £36m from subpostmasters with unexplained losses

The Post Office wrongly blamed subpostmasters for unexplained account shortfalls and made them cover losses out of their own pockets - then banked the money itself
October 11, 2024 11 Oct'24
Post Office set to axe in-house-developed New Branch IT software

Troubled business may ditch its plan to build a new core branch system in-house and buy an off-the-shelf alternative
October 10, 2024 10 Oct'24
NCSC issues fresh alert over wave of Cozy Bear activity

The NCSC, FBI and NSA publish updated warning about Cozy Bear’s activities, highlighting a range of vulnerabilities the threat actor is using to set up its cyber attacks
October 10, 2024 10 Oct'24
Government launches cyber standard for local authorities

Local government bodies are being invited to take advantage of a new NCSC-derived Cyber Assessment Framework to help enhance their resilience and ward off cyber attacks
October 10, 2024 10 Oct'24
Internet Archive web historians target of hacktivist cyber attack

The Internet Archive nonprofit digital library and Wayback Machine operator has been attacked by pro-Palestinian hacktivists
October 10, 2024 10 Oct'24
How Recorded Future finds ransomware victims before they get hit

Threat intel specialists at Recorded Future have shared details of newly developed techniques they are using to disrupt Rhysida ransomware attacks before the gang even has a chance to execute them
October 10, 2024 10 Oct'24
UK and US pledge closer working on children’s online safety

In their first agreement on the subject of children’s online safety, the UK and US governments have said they will create a new working group to boost cooperation
October 10, 2024 10 Oct'24
Australia bolsters cyber defences with security bill

Legislation tackles IoT security and establishes a Cyber Incident Review Board to bolster Australia’s cyber resilience
October 09, 2024 09 Oct'24
MoneyGram customer data breached in attack

MoneyGram confirms that customer data has been stolen in an incident that appears to have started with a social engineering attack on its IT helpdesk staff
October 09, 2024 09 Oct'24
Five zero-days to be fixed on October Patch Tuesday

Stand-out vulnerabilities in Microsoft’s latest Patch Tuesday drop include problems in Microsoft Management Console and the Windows MSHTML Platform