News

IT governance

• July 10, 2024 10 Jul'24

  The security interview: Managing the ‘no’ mindset

  Matt Riley, data protection and information security officer at Sharp Europe, discusses balancing cyber risks with business leaders’ goals

• July 09, 2024 09 Jul'24

  Hyper-V zero-day stands out on a busy Patch Tuesday

  Microsoft has fixed almost 140 vulnerabilities in its latest monthly update, with a Hyper-V zero-day singled out for urgent attention

• July 09, 2024 09 Jul'24

  Chinese spies target vulnerable home office kit to run cyber attacks

  China’s APT40 is ramping up targeting of victims using vulnerable small and home office networking kit as command and control infrastructure, according to an international alert

• July 09, 2024 09 Jul'24

  Lessons from war: How Israel is fighting Iranian state-backed hacking

  The general director of the Israel National Cyber Directorate talks about the rise in cyber attacks and what lessons the country has gleaned to defend against hacking from foreign parties

• July 09, 2024 09 Jul'24

  Revamped DSIT to transform digital public services, says government

  The incoming government sets out preliminary plans to conduct a major revamp and relaunch of the Department for Science, Innovation and Technology

• July 08, 2024 08 Jul'24

  Synnovis attack highlights degraded, outdated state of NHS IT

  More cyber attacks against the health service are likely, and will succeed if something isn’t done to address the increasingly elderly NHS IT estate, experts are warning

• July 03, 2024 03 Jul'24

  NCA’s Operation Morpheus targets illicit Cobalt Strike use

  International law enforcement operation targets cyber criminals using the Cobalt Strike penetration testing framework for dodgy purposes

• July 03, 2024 03 Jul'24

  Former Post Office chair 'regrets' keeping critical Horizon report secret

  Tim Parker, chairman of the Post Office from 2015 to 2022, admits he should not have accepted legal advice to prevent release of a review that could have supported victims of the Horizon scandal

• June 27, 2024 27 Jun'24

  Gulf Edge to operate Google Distributed Cloud in Thailand

  The Gulf Energy subsidiary will offer Google’s sovereign cloud service in Thailand with a focus on air-gapped configurations

• June 26, 2024 26 Jun'24

  Police Scotland did not consult ICO about high-risk cloud system

  Police Scotland chose not to formally consult with the data regulator about the risks identified with a cloud-based digital evidence sharing system, while the regulator itself did not follow up for nearly three months

• June 25, 2024 25 Jun'24

  NHS experts raise warning over patient data breach risk in registries project

  Clinicians warn that the NHS England Outcome Registries Platform has poor security and is vulnerable to cyber attack, putting critical patient data at risk of being exposed

• June 24, 2024 24 Jun'24

  Sellafield pleads guilty to criminal charges over cyber security

  Nuclear Decommissioning Authority-backed organisation Sellafield Ltd pleads guilty to criminal charges brought over significant cyber security failings that could have compromised sensitive nuclear information

• June 21, 2024 21 Jun'24

  Qilin ransomware gang publishes stolen NHS data online

  The ransomware gang behind a major cyber attack on NHS supplier Synnovis has published a 400GB trove of private healthcare data online

• June 21, 2024 21 Jun'24

  Executive interview: Open models pros and cons

  We speak to Meta’s vice-president of AI research about recent publicly released research and models, and the role of closed AI models

• June 21, 2024 21 Jun'24

  ICO police cloud guidance released under FOI

  Long-awaited guidance from the UK data regulator on police cloud deployments highlights some potential data transfer mechanisms it thinks can clear up ongoing legal issues, but tells forces it’s up to them to decide if the measures would work

• June 19, 2024 19 Jun'24

  Microsoft admits no guarantee of sovereignty for UK policing data

  Documents show Microsoft’s lawyers admitted to Scottish policing bodies that the company cannot guarantee sensitive law enforcement data will remain in the UK, despite long-standing public claims to the contrary

• June 17, 2024 17 Jun'24

  Artificial intelligence to make Olympic Games more inclusive

  The International Olympic Committee is working with Intel to use AI at the Paris Olympic and Paralympic Games

• June 13, 2024 13 Jun'24

  AI’s environmental cost could outweigh sustainability benefits

  Artificial intelligence can help organisations manage and mitigate their environmental impacts in a number of ways, but the highly polluting nature of the technology could outweigh its other sustainability benefits if not dealt with

• June 13, 2024 13 Jun'24

  Black Basta ransomware crew may be exploiting Microsoft zero-day

  A Microsoft vulnerability that was addressed without fanfare in March may in fact have been exploited as a zero-day by the notorious Black Basta ransomware gang, threat hunters warn

• June 13, 2024 13 Jun'24

  Q&A: Adalbjorn Thorolfsson on IT project management in Iceland

  With a small, but very sophisticated population, Iceland has unique ways of keeping up with the rest of the world in the IT sector. Adalbjorn Thorolfsson, president of the Icelandic Project Management Association, describes some lessons for the rest...

• June 11, 2024 11 Jun'24

  PSNI ran secret unit to monitor journalists’ and lawyers’ phones, claims former senior officer

  The Police Service of Northern Ireland denies claims that its anti-corruption unit used a standalone computer to ‘avoid scrutiny and control’

• June 11, 2024 11 Jun'24

  More than 160 Snowflake customers hit in targeted data theft spree

  Mandiant reports that more than 160 Snowflake customers have been hit in a broad data theft and extortion campaign targeting organisations that have failed to pay proper attention to securing valuable credentials

• June 10, 2024 10 Jun'24

  NHS blood stocks running low after ransomware attack

  The NHS is appealing for people with O Positive and O Negative blood types to come forward to donate as hospitals in London struggle to keep critical services running after ransomware attack

• June 10, 2024 10 Jun'24

  AI firms can’t be trusted to voluntarily share risk information

  Workers at frontier AI firms have warned that their employers – including OpenAI, DeepMind and Anthropic – can’t be trusted to voluntarily share information about their systems capabilities and risks with governments or civil society

• June 10, 2024 10 Jun'24

  Driving customer experience through cloud and AI

  Autodesk’s global CIO Prakash Kota explains how the company is modernising its IT infrastructure and adopting cloud and AI to drive customer experience

• June 07, 2024 07 Jun'24

  DDoS gang threatens to disrupt European elections

  Russian hacktivists are threatening to disrupt the European Parliament elections, while the BBC reports on new deepfake threats to the UK’s electoral process

• June 07, 2024 07 Jun'24

  Bitdefender makes MDR services free to NHS bodies hit by Qilin

  Bitdefender offers NHS bodies affected by a major cyber incident free access to its product suite, as the health service continues to deal with the impact of the Qilin ransomware attack on partner Synnovis

• June 07, 2024 07 Jun'24

  Rapid AI development poses supervisory challenges in the Netherlands

  In the Netherlands, the financial regulator and the monetary authority are grappling with the pace of artificial intelligence development and its implications for the financial industry

• June 05, 2024 05 Jun'24

  Qilin ransomware gang likely behind crippling NHS attack

  Security experts investigating a major cyber attack on an NHS partner that has caused frontline services across South London to grind to a halt say the Qilin ransomware gang appears to be the culprit

• June 05, 2024 05 Jun'24

  Lack of upfront specifications kill agile projects

  Research shows there is a high chance of failure when a software development project begins without a specification being signed off

• June 04, 2024 04 Jun'24

  Invasive tracking ‘endemic’ on sensitive support websites

  Websites set up by police, charities and universities to help people get support for sensitive issues like addiction and sexual harassment are deploying tracking technologies that harvest information without proper consent

• June 04, 2024 04 Jun'24

  NHS services at major London hospitals disrupted by cyber attack

  A major cyber attack at NHS services provider Synnovis is disrupting frontline care at hospitals across London

• June 04, 2024 04 Jun'24

  Russia used fake AI Tom Cruise in Olympic disinformation campaign

  Microsoft threat researchers report a surge in Russian disinformation campaigns targeting the 2024 Summer Olympics, including AI-enhanced propaganda

• June 03, 2024 03 Jun'24

  97 FTSE 100 firms exposed to supply chain breaches

  Between March 2023 and March 2024, 97 out of 100 companies on the UK’s FTSE 100 list were put at risk of compromise following supply chain breaches at third-party suppliers

• June 03, 2024 03 Jun'24

  Major breaches allegedly caused by unsecured Snowflake accounts

  Significant data breaches at Ticketmaster and Santander appear to have been orchestrated through careful targeting of the victims’ Snowflake cloud data management accounts

• June 03, 2024 03 Jun'24

  AI Seoul Summit review

  Dozens of governments and tech companies attending the second global AI Safety Summit have committed themselves to the safe and inclusive development of the technology, but questions remain around whether the commitments made go far enough

• May 31, 2024 31 May'24

  IBM, AI Singapore to bolster Sea-Lion LLM

  IBM will work with AI Singapore on technical exchanges to enhance Sea-Lion and make the region’s first LLM available to data scientists and engineers through its AI use case library

• May 30, 2024 30 May'24

  Post Office Horizon replacement project labelled 'unachievable' as taxpayer bill reaches £1bn

  The project to replace the Horizon IT system in Post Office branches is late, over budget and lacking quality – and government auditors sent in to assess a request for £1bn funding say it is currently unachievable

• May 30, 2024 30 May'24

  Europol sting operation smokes multiple botnets

  Malware droppers including Bumblebee and Smokeloader were among those targeted in one of the largest ever joint operations against cyber criminal botnets

• May 29, 2024 29 May'24

  Proofpoint exposes AFF scammers’ piano gambit

  Ransomware and nation state actors dominate the headlines, but fraud and scams still net career cyber criminals thousands from unsuspecting members of the public. Proofpoint reports on a campaign targeting victims of a musical inclination

• May 29, 2024 29 May'24

  Organisations value digital trust, but aren’t working at it

  Three quarters of organisations believe digital trust is relevant to their businesses, yet clear gaps in strategies still seem to persist

• May 29, 2024 29 May'24

  Survey reveals generative AI employee fear

  IBM/Oxford Economics global CEO survey shows generative AI success relies on employee training and business leader vision

• May 29, 2024 29 May'24

  Next UK government must be prepared to legislate on AI, say MPs

  The House Science, Innovation and Technology Committee says the next government should be ready to legislate on artificial intelligence to plug any regulatory gaps

• May 28, 2024 28 May'24

  Executive Interview: Why Dell wants to be your one-stop AI shop

  At Dell Technologies World in Las Vegas, artificial intelligence was the talk of the town as Dell staked out an all-encompassing strategy ahead of an anticipated goldrush. Dell’s Nick Brackney explains why the tech giant believes it's onto a winner

• May 24, 2024 24 May'24

  Paula Vennells boasted about removing Horizon risk reference in Royal Mail flotation prospectus

  A reference to Horizon was removed from Royal Mail prospectus by Paula Vennells in the eleventh hour

• May 23, 2024 23 May'24

  Northern Ireland police face £750,000 fine after data protection blunder put lives at risks

  Information commissioner John Edwards uses discretion to reduce proposed fine from £5.6m to £750,000

• May 22, 2024 22 May'24

  Rockwell urges users to disconnect ICS equipment

  ICS systems maker Rockwell Automation calls on users to take steps to secure their equipment, and reminds them there is no reason to ever have its hardware connected to the public internet, as it tracks an increase in global threat activity

• May 22, 2024 22 May'24

  ‘You knew’ – former ally accused Paula Vennells of knowing about Horizon problems

  Former Royal Mail CEO messaged Paula Vennells following the broadcasting of ITV’s dramatisation of the Post Office scandal, questioning what the former Post Office boss knew and removed her support

• May 22, 2024 22 May'24

  AI Seoul Summit: 27 nations and EU to set red lines on AI risk

  The countries will now work together to identify thresholds at which the risks presented by an AI model or system would be unacceptable without safeguards in place, as well as develop interoperable safety testing regimes for the technology

• May 21, 2024 21 May'24

  AI Seoul Summit: 10 nations and EU recommit to safe inclusive AI

  During the latest AI Summit in South Korea, the participating governments reaffirmed their prior commitments to deepening international cooperation on AI safety, and have agreed to launch an international network of ‘safety institutes’