News

IT governance

• October 17, 2024 17 Oct'24

  EU cyber security bill NIS2 hits compliance deadline

  The EU’s NIS2 bill will harmonise how companies and member states approach cyber security, but its success will depend on how well it is implemented and enforced

• October 16, 2024 16 Oct'24

  Former police officer heading Post Office operations did nothing to help innocent subpostmasters

  Former chief operating officer did nothing when action could have put a stop to the Post Office wrongful prosecutions

• October 15, 2024 15 Oct'24

  Tech and digital skills key to improving police productivity

  The Policing Productivity Review sees data and technology as a way of improving productivity and outcomes, as well as a potential means of restoring diminishing legitimacy, but warns there needs to be a revamp in digital skills, investment and ...

• October 15, 2024 15 Oct'24

  UK government unveils AI safety research funding details

  Through its AI Safety Institute, the UK government has committed an initial pot of £4m to fund research into various risks associated with AI technologies, which will increase to £8.5m as the scheme progresses

• October 15, 2024 15 Oct'24

  Hillingdon Council commits £9m to tech revamp in digital strategy

  Hillingdon’s three-year digital strategy will see the council fund attempts to modernise its systems and infrastructure, change how residents interact with the local authority and make better use of data

• October 15, 2024 15 Oct'24

  NCSC expands school cyber service to academies and private schools

  The National Cyber Security Centre is expanding its PDNS for Schools service to encompass a wider variety of institutions up and down the UK

• October 11, 2024 11 Oct'24

  Post Office believes it took £36m from subpostmasters with unexplained losses

  The Post Office wrongly blamed subpostmasters for unexplained account shortfalls and made them cover losses out of their own pockets - then banked the money itself

• October 11, 2024 11 Oct'24

  Post Office set to axe in-house-developed New Branch IT software

  Troubled business may ditch its plan to build a new core branch system in-house and buy an off-the-shelf alternative

• October 10, 2024 10 Oct'24

  NCSC issues fresh alert over wave of Cozy Bear activity

  The NCSC, FBI and NSA publish updated warning about Cozy Bear’s activities, highlighting a range of vulnerabilities the threat actor is using to set up its cyber attacks

• October 10, 2024 10 Oct'24

  Government launches cyber standard for local authorities

  Local government bodies are being invited to take advantage of a new NCSC-derived Cyber Assessment Framework to help enhance their resilience and ward off cyber attacks

• October 10, 2024 10 Oct'24

  Internet Archive web historians target of hacktivist cyber attack

  The Internet Archive nonprofit digital library and Wayback Machine operator has been attacked by pro-Palestinian hacktivists

• October 10, 2024 10 Oct'24

  How Recorded Future finds ransomware victims before they get hit

  Threat intel specialists at Recorded Future have shared details of newly developed techniques they are using to disrupt Rhysida ransomware attacks before the gang even has a chance to execute them

• October 10, 2024 10 Oct'24

  UK and US pledge closer working on children’s online safety

  In their first agreement on the subject of children’s online safety, the UK and US governments have said they will create a new working group to boost cooperation

• October 10, 2024 10 Oct'24

  Australia bolsters cyber defences with security bill

  Legislation tackles IoT security and establishes a Cyber Incident Review Board to bolster Australia’s cyber resilience

• October 09, 2024 09 Oct'24

  MoneyGram customer data breached in attack

  MoneyGram confirms that customer data has been stolen in an incident that appears to have started with a social engineering attack on its IT helpdesk staff

• October 09, 2024 09 Oct'24

  Five zero-days to be fixed on October Patch Tuesday

  Stand-out vulnerabilities in Microsoft’s latest Patch Tuesday drop include problems in Microsoft Management Console and the Windows MSHTML Platform

• October 08, 2024 08 Oct'24

  Secureworks: Ransomware takedowns didn’t put off cyber criminals

  The number of active cyber criminal ransomware gangs has surged by almost a third in the space of 12 months, according to the latest intelligence from Secureworks

• October 08, 2024 08 Oct'24

  Post Office IT transformation project was ‘set up to fail’, chairman tells inquiry

  Post Office interim chairman tells Horizon public inquiry that the Post Office needs to reset New Branch IT project

• October 08, 2024 08 Oct'24

  UK’s cyber incident reporting law to move forward in 2025

  The UK government says that enforced cyber incident and ransomware reporting for critical sectors of the economy will help to build a better picture of the threat landscape and enable more proactive and preventative responses

• October 08, 2024 08 Oct'24

  Can the Post Office project to replace Horizon be rescued?

  Evidence from the Post Office public inquiry shows huge problems with the critical project to replace the troubled Horizon IT system – after two government-mandated reviews, is there any sign it can succeed?

• October 07, 2024 07 Oct'24

  Labour sets up new office to coordinate tech innovation regulations

  The newly formed Regulatory Innovation Office has been set up to ensure existing regulations do not become barriers to emerging tech innovations

• October 04, 2024 04 Oct'24

  NCSC celebrates eight years as Horne blows in

  Outgoing NCSC interim leader Felicity Oswald shares her thoughts on the body’s work over the past eight years as she hands over the reins to incoming CEO Richard Horne

• October 04, 2024 04 Oct'24

  Post Office senior executive suspended over allegations of destroying evidence

  Statement to public inquiry reveals that investigation is underway over allegations that a senior Post Office executive instructed staff to destroy evidence

• October 03, 2024 03 Oct'24

  Microsoft files lawsuit to seize domains used by Russian spooks

  Microsoft has been given permission to seize multiple domains used by the Russian state threat actor Star Blizzard as part of a coordinated disruption effort undertaken ahead of the US elections

• October 03, 2024 03 Oct'24

  SOC teams falling out of love with threat detection tools

  Security operations centre practitioners are fed up of being flooded with pointless alerts and many no longer have much confidence in their threat detection tools, according to a report

• October 03, 2024 03 Oct'24

  Local councils need ‘better support’ to buy AI responsibly

  The Ada Lovelace Institute says there is lack of adequate support on how councils can safely and responsibly procure artificial intelligence systems in the public interest

• October 03, 2024 03 Oct'24

  Post Office and Fujitsu: from blood brothers to bad blood

  Former Post Office chief transformation officer’s evidence to the public inquiry reveals organisation’s strained relationship with main IT supplier Fujitsu

• October 02, 2024 02 Oct'24

  UK and Singapore to collaborate on supporting ransomware victims

  At the fourth Counter Ransomware Initiative Summit in the US, both the UK and Singapore have committed to working on new guidance designed to better support victims and undermine cyber criminal business models

• October 01, 2024 01 Oct'24

  APAC organisations embrace generative AI

  Study reveals a surge in GenAI adoption across APAC, with businesses looking to train their own models, likely to address specific regional needs and market dynamics

• October 01, 2024 01 Oct'24

  Post Office ditches MoneyGram after cyber attack

  The Post Office offered a short extension to enable it to asses the impact of the MoneyGram cyber incident, but the contract has now expired and MoneyGram services are no longer available in Post Office branches

• September 30, 2024 30 Sep'24

  Investigation finds 'reasonable likelihood' Post Office Capture software caused accounting losses

  An independent forensic analysis finds the predecessor to Horizon IT system was also likely to have caused shortfalls for which subpostmasters were blamed, years before the Post Office scandal

• September 27, 2024 27 Sep'24

  Printing vulnerability affecting Linux distros raises alarm

  Security pros need to get in front of a series of vulnerabilities affecting the Cups Linux printing service after an apparently botched disclosure process saw technical details published in advance of a patch

• September 26, 2024 26 Sep'24

  Racist Network Rail Wi-Fi hack was work of malicious insider

  Police have revealed that this week’s racist cyber attack on public Wi-Fi networks at stations across the UK appears to have been the work of a malicious insider, after arresting an employee of one of the service providers

• September 26, 2024 26 Sep'24

  Subpostmasters living years with disputed but unresolved debts to the Post Office, inquiry told

  Continued errors with the Horizon system mean subpostmasters have unresolved account shortfalls hanging over them for years

• September 26, 2024 26 Sep'24

  Islamophobic cyber attack downs Wi-Fi at UK transport hubs

  An apparent hacktivist attack disrupted public-facing Wi-Fi networks at UK rail stations to display Islamophobic content

• September 25, 2024 25 Sep'24

  CrowdStrike apologises to US government for global mega-outage

  CrowdStrike executive Adam Meyers appears before a US government committee to explain the series of errors that led directly to one of the biggest IT outages in history

• September 25, 2024 25 Sep'24

  Post Office IT procurement mess saw £35m spent on air conditioner, says board member

  Post Office IT procurement mistakes have wasted millions of pounds of taxpayers money, non-executive board member tells public inquiry

• September 24, 2024 24 Sep'24

  Money transfer firm MoneyGram rushes to contain cyber attack

  Money transfer specialist MoneyGram services remain down several days after a network outage developed into a full-blown cyber security incident

• September 24, 2024 24 Sep'24

  Unique malware sample volumes seen surging

  BlackBerry’s latest ‘Global threat intelligence’ report details a surge in unique malware samples as threat actors ramp up the pace of targeted attacks

• September 23, 2024 23 Sep'24

  Microsoft shares progress on Secure Future Initiative

  Microsoft has published a progress report on its Secure Future Initiative, launched last year in the wake of multiple security incidents, and made a series of commitments to improve its internal cyber culture

• September 23, 2024 23 Sep'24

  Home Office eVisa scheme is ‘broken’, says Open Rights Group

  Digital rights campaigners say the Home Office’s plan to make its new electronic Visa scheme a real-time online-only process is part and parcel of the 'hostile environment' around immigration status

• September 20, 2024 20 Sep'24

  UN body urges ‘globally inclusive and distributed’ AI governance

  A United Nations body set up to investigate the international governance of AI says the nature of how the technology currently operates requires a global approach to regulation that prioritises equity and inclusion

• September 19, 2024 19 Sep'24

  CIOs urged to pace AI adoption

  At the recent Gartner IT Symposium 2024 in Gold Coast, experts call for CIOs to pace their adoption of AI, manage costs and embrace ‘augmented leadership’

• September 18, 2024 18 Sep'24

  NCSC exposes Chinese company running malicious Mirai botnet

  The NCSC and its Five Eyes allies have published details of the activities of a China-based cyber security company that is operating a Mirai IoT botnet in the service of government-backed intrusions

• September 18, 2024 18 Sep'24

  Public digital transformation will be challenged by austerity

  Public sector and IT industry figures gathered at TechUK’s 10th annual Building the Smarter State event discussed how Labour’s ‘mission-driven’ policy approach can drive digital transformation efforts in the context of fresh austerity measures

• September 17, 2024 17 Sep'24

  Salesforce’s agentic AI platform to transform business automation

  CRM giant’s Agentforce lets organisations build and deploy autonomous agents to automate business processes through advanced learning and data integration

• September 17, 2024 17 Sep'24

  Fujitsu loses £50m in sales after Post Office scandal furore

  Supplier of the controversial Horizon IT system has been hit by public outrage after the Post Office scandal became mainstream news

• September 12, 2024 12 Sep'24

  Lord introduces bill to regulate public sector AI and automation

  A private members’ bill seeking to regulate the use of artificial intelligence (AI) and other automated technologies throughout the public sector has been brought to Parliament

• September 12, 2024 12 Sep'24

  Data sharing for immigration raids ferments hostility to migrants

  Data sharing between public and private bodies for the purposes of carrying out immigration raids helps to prop up the UK’s hostile environment by instilling an atmosphere of fear and deterring migrants from accessing public services

• September 12, 2024 12 Sep'24

  UK and others sign first ‘binding’ treaty on AI and human rights

  The UK, US and EU have all signed a treaty from the Council of Europe that aims to mitigate the threat AI poses to human rights, democracy and the rule of law, but commentators say it lacks enforcement mechanisms and creates loopholes