News

IT legislation and regulation

• August 13, 2025 13 Aug'25

  BlackSuit ransomware payment recovered in takedown operation

  US authorities reveal how over a million dollars’ worth of cryptocurrency assets laundered by the BlackSuit ransomware gang were seized ahead of a July takedown operation

• August 13, 2025 13 Aug'25

  Fujitsu orders staff to retain Post Office-related documentation as it braces for legal action

  Japanese supplier tells all UK staff to preserve documents related to its work with the Post Office

• August 12, 2025 12 Aug'25

  Macquarie Data Centres to offer Dell-Nvidia AI tech stack

  The Australian datacentre operator will host the Dell AI Factory with Nvidia infrastructure platform in its sovereign facilities to meet growing demand for local, secure and compliant generative AI infrastructure

• August 11, 2025 11 Aug'25

  Why Intel’s woes show the fragility of the European Chips Act

  Intel is facing political pressure and stress across its business, with its 2022 plans to manufacture in the EU one of the casualties

• August 11, 2025 11 Aug'25

  McCullough Review into PSNI spying on journalists and lawyers delayed

  Angus McCullough KC is to present findings of an independent review of police spying on phone data of lawyers, journalists and NGOs in Northern Ireland in October  

• August 11, 2025 11 Aug'25

  Watching the watchers: Is the Technical Advisory Panel a match for MI5, MI6 and GCHQ?

  Dame Muffy Calder is chair of the Technical Advisory Panel (TAP), a small group of experts that advises the Investigatory Powers Commissioner on surveillance technology. Do they have what it takes to oversee the intelligence community?

• August 07, 2025 07 Aug'25

  Trump slaps 100% tariffs on chips to get tech onshore

  The chip sector is being shaken up by the US administration’s plans to levy a tariff on semiconductors imported into the United States

• August 06, 2025 06 Aug'25

  Companies House ID verification to start in November 2025

  Companies House plans to start vetting director identities from mid-November, but its reliance on the troubled One Login digital identity service may be cause for concern

• August 06, 2025 06 Aug'25

  NCSC updates CNI Cyber Assessment Framework

  Updates to the NCSC’s Cyber Assessment Framework are designed to help providers of critical services better manage their risk profiles

• August 06, 2025 06 Aug'25

  Australian scaleup to bring AI-led data protection to the MoD

  The UK’s Ministry of Defence is embracing AI-led data protection in the wake of a major privacy breach, enlisting Australian cyber firm Castlepoint Systems to oversee sensitive records

• August 01, 2025 01 Aug'25

  Met Police to double facial recognition use amid budget cuts

  The UK’s largest police force is massively expanding its use of live facial recognition technology as it prepares to lose 1,700 officers and staff

• August 01, 2025 01 Aug'25

  Ministry of Justice unveils strategy for safe, secure AI

  A new chief AI officer, together with a framework co-developed with the Alan Turing Institute, form part of a three-year AI action plan at the MoJ

• July 30, 2025 30 Jul'25

  Scattered Spider tactics continue to evolve, warn cyber cops

  CISA, the FBI, NCSC and others have clubbed together to update previous guidance on Scattered Spider's playbook, warning of new social engineering tactics and exploitation of legitimate tools, among other things

• July 29, 2025 29 Jul'25

  European Commission ignores calls to reassess Israel data adequacy

  The European Commission is ignoring calls to reassess Israel’s data adequacy status in spite of concerns raised about its data protection framework and use of personal data in ‘repressive practices’

• July 24, 2025 24 Jul'25

  US seeks ‘unquestioned’ AI dominance

  US AI action plan sets out aims to expand American dominance in the world of artificial intelligence

• July 24, 2025 24 Jul'25

  Scattered Spider victim Clorox sues helpdesk provider

  Cleaning products manufacturer Clorox fell victim to a Scattered Spider social engineering attack two years ago – it blames its IT helpdesk provider, Cognizant

• July 24, 2025 24 Jul'25

  Monzo’s £21m fine highlights banks’ cyber security failures

  Monzo’s recent fine over failings in its customer verification processes highlights wider security and privacy shortcomings in the personal finance world

• July 23, 2025 23 Jul'25

  CMA prepares roadmap ahead of Apple and Google SMS decision

  The two major mobile ecosystems have provisionally been given Strategic Market Service status. Now the Competition and Markets Authority has set out a roadmap of measures

• July 23, 2025 23 Jul'25

  Judge questions HP’s ‘exaggerated’ Autonomy loss claim

  Did HP pay 10% more than it needed to for Mike Lynch’s company?

• July 22, 2025 22 Jul'25

  UK government to bring in ransomware payment ban

  Critical infrastructure operators, hospitals, local councils and schools will be among those banned from giving in to cyber criminal demands as the UK moves forward with proposals to address the scourge of ransomware

• July 22, 2025 22 Jul'25

  The Bank of England’s quiet ‘Big Bang’

  The Bank of England has completed its generational project to replace part of the UK’s critical infrastructure, which went unnoticed beyond the sector it underpins

• July 22, 2025 22 Jul'25

  Fresh allegations of ‘sustained’ police and MI5 surveillance against BBC reporters

  The Investigatory Powers Tribunal is investigating claims that police spied on the phone of investigative journalist Chris Moore amid further claims of a sustained monitoring operation against BBC reporters in Northern Ireland between 2006 and 2022

• July 21, 2025 21 Jul'25

  Government consults public on self-driving vehicles

  The consultation will inform the creation of laws and regulations for autonomous vehicles as the government aims to begin piloting self-driving taxis in spring 2026

• July 21, 2025 21 Jul'25

  Netherlands calls for European shift to post-tracking internet as privacy laws fail

  Dutch research institute argues decade of regulation hasn’t curbed surveillance capitalism, proposes fundamental business model change

• July 18, 2025 18 Jul'25

  DWP accused of shielding AI deployments from public scrutiny

  Amnesty International and Big Brother Watch say Department for Work and Pensions’ ‘unchecked’ and opaque use of AI in the UK benefits system treats claimants as suspicious and is shielded from public scrutiny

• July 17, 2025 17 Jul'25

  European cyber cops target NoName057(16) DDoS network

  A Europol operation has succeeded in disrupting a pro-Russian hacktivist network accused of conducting DDoS cyber attacks on targets in Ukraine and Europe

• July 17, 2025 17 Jul'25

  Terrorist potential of generative AI ‘purely theoretical’

  UK terror legislation advisor takes stock of the potential for generative artificial intelligence systems to be adopted by terrorists, particularly for propaganda and attack planning purposes, but acknowledges the impact may be limited

• July 16, 2025 16 Jul'25

  Co-op chief ‘incredibly sorry’ for theft of 6.5m members’ data

  Co-op chief executive Shirine Khoury-Haq has revealed that all the personal data of all 6.5 million of its members was compromised in the April 2025 cyber attack on its systems

• July 16, 2025 16 Jul'25

  Meta AI training will be challenged at Europe’s highest court, says data protection chief

  The data protection commissioner for Hamburg believes Meta’s AI training should be stopped

• July 15, 2025 15 Jul'25

  Ada Lovelace: using market forces to professionalise AI assurance

  The Ada Lovelace Institute examines how ‘market forces’ can be used to drive the professionalisation of artificial intelligence assurance in the context of a wider political shift towards deregulation

• July 11, 2025 11 Jul'25

  EU broadband challengers warn of fixed connectivity monopolies

  Non-incumbent EU fixed broadband providers raise alarm at proposed legislation, insisting that regulatory certainty is needed to drive investment in connectivity

• July 11, 2025 11 Jul'25

  MoD supply chain cyber scheme gets up and running

  The Ministry of Defence and IASME have launched a certification scheme for organisations working in the UK defence supply chain, with construction firm Morgan Sindall the first business to achieve compliance

• July 11, 2025 11 Jul'25

  UK to create ‘governance framework’ for police facial recognition

  Home secretary Yvette Cooper has confirmed UK will regulate police facial recognition, citing police reticence to deploy systems without proper governance, but declined to say if any new framework will be statutory

• July 11, 2025 11 Jul'25

  UK online safety regime ineffective on misinformation, MPs say

  A report from the Commons Science, Innovation and Technology Committee outlines how the Online Safety Act fails to deal with the algorithmic amplification of ‘legal but harmful’ misinformation

• July 11, 2025 11 Jul'25

  European Commission accused of rigging data watchdog appointment

  The European Commission has been accused of rigging the selection process for the next European Data Protection supervisor

• July 10, 2025 10 Jul'25

  Four arrested in M&S cyber attack investigation

  Police have made four arrests in connection with a trio of cyber attacks on UK retailers Marks & Spencer, Co-op and Harrods

• July 09, 2025 09 Jul'25

  Ofcom: use comms regulation to drive innovation

  As it looks to boost British business by achieving its ambitions in connectivity, UK comms regulator outlines three key areas to prioritise

• July 09, 2025 09 Jul'25

  Three-quarters of UK champion continued broadband infrastructure investment

  Study from trade association for organisations building and delivering UK’s internet services finds almost half of Brits would sooner give up the gym than lose web access, but also highlights a need for real partnership and bolder action to bridge ...

• July 08, 2025 08 Jul'25

  M&S calls for mandatory ransomware reporting

  The government should extend ransomware reporting mandates to businesses to help gather more intelligence and better support victims, says M&S chairman Archie Norman

• July 08, 2025 08 Jul'25

  SEC and SolarWinds to settle lawsuit over 2020 breach

  The US SEC and SolarWinds have reached a settlement in principle to resolve litigation over alleged security failings that led to the 2020 compromise of the supplier’s Orion platform by Russian cyber spies

• July 08, 2025 08 Jul'25

  NHS trust accused of ‘at best cavalier, at worst deceitful’ behaviour after deleting emails

  A London hospital trust faces allegations it withheld key evidence from a tribunal hearing after one of its directors attempted to destroy more than 90,000 emails

• July 02, 2025 02 Jul'25

  Dutch study uncovers cognitive biases undermining cyber security board decisions

  Dutch research reveals how cognitive biases can lead to catastrophic security decisions

• July 01, 2025 01 Jul'25

  Cloudflare to let customers block AI web crawlers

  Publishers and other providers of creative content now have the option to block AI crawlers from accessing and scraping their intellectual property with new tools from Cloudflare.

• June 27, 2025 27 Jun'25

  Over 2 million affected by US supermarket breach

  Belgian-Dutch supermarket operator Ahold Delhaize reveals that more than two million people, including employees, had their data compromised following a November 2024 ransomware attack

• June 27, 2025 27 Jun'25

  MPs propose ban on predictive policing

  MPs are attempting to amend the UK government’s forthcoming Crime and Policing Bill so that it prohibits the use of controversial predictive policing systems

• June 27, 2025 27 Jun'25

  UK joins global health regulator network for safe use of AI

  The Medicines and Healthcare products Regulatory Agency has become a founding member of the HealthAI Global Regulatory Network, aiming to get trustworthy artificial intelligence tools into the NHS

• June 26, 2025 26 Jun'25

  British hacker IntelBroker faces years in a US prison cell

  US authorities have unsealed charges against 25-year-old hacker Kai West, aka IntelBroker, accusing him of being behind multiple cyber attacks

• June 23, 2025 23 Jun'25

  Industrial strategy: Takeaways for UK tech innovations

  Labour wants to put the UK at the forefront of tech innovation. Its industrial strategy offers a funding boost for tech and lighter-touch regulation

• June 23, 2025 23 Jun'25

  Police to gain powers to grab online data when they seize phones and laptops

  Academics and civil liberties experts say that proposed ‘authoritarian’ powers to allow police to trawl online and cloud services used by owners of seized devices should require approval from a judge

• June 20, 2025 20 Jun'25

  UK data reforms become law

  UK passes wide-ranging data protection reforms to ‘simplify’ organisations’ sharing and processing of data, but questions remain whether changes will be accepted by European Commission when renewing UK data adequacy