News

IT operations management and IT support

• February 09, 2023 09 Feb'23

  Banking regulatory body wants a ‘tripwire’ to flag APP fraud

  Banking code of practice organisation wants banks to monitor where authorised push payment scammers are sending stolen money

• February 08, 2023 08 Feb'23

  Campaigners lament lack of movement on Computer Misuse Act reform

  Westminster has opened a new consultation on proposed reforms to the Computer Misuse Act of 1990, but campaigners who want the law changed to protect cyber professionals have been left disappointed

• February 07, 2023 07 Feb'23

  Benelux CIO interview: Marijn Grevink, leader of digital transformation, Mars

  In an interview with Computer Weekly, the digital head at Mars, Marijn Grevink, takes the wrapper off digital transformation at the company in the Netherlands

• February 07, 2023 07 Feb'23

  TSB pilots pods as branch replacements

  TSB joins Barclays in adopting banking pods to ensure customers have access to physical banking services as the number of high street branches declines

• February 06, 2023 06 Feb'23

  The Security Interviews: How to overcome data protection compliance challenges

  Complying with the vast swathe of data protection legislation around the world is complex, especially for smaller organisations without the necessary expertise. Could the compliance process be simplified, and if so, how?

• February 02, 2023 02 Feb'23

  North Korea’s Lazarus gang exposes itself in opsec failure

  WithSecure researchers linked a campaign of cyber attacks targeting medical research and energy firms to North Korea’s infamous Lazarus APT after a group member accidentally screwed up

• February 02, 2023 02 Feb'23

  Suspected LockBit ransomware attack causes havoc in City of London

  A suspected LockBit ransomware attack on trading software firm Ion has caused chaos for City of London traders

• February 01, 2023 01 Feb'23

  Cisco fixes two bugs that could have led to supply chain attacks on users

  Two vulnerabilities uncovered in Cisco hardware could have opened the door to serious supply chain cyber attacks, according to the Trellix researchers who found them

• February 01, 2023 01 Feb'23

  Malware variant can block contactless payments

  Kaspersky warns that the latest variant of the Prilex malware can block contactless payments to force people to insert cards, enabling criminals to steal money

• February 01, 2023 01 Feb'23

  UK Cyber Council and ISACA launch audit, assurance programme

  The UK Cyber Security Council has teamed up with ISACA to partner on a new audit and assurance programme for security pros

• January 31, 2023 31 Jan'23

  Cyber training firm launches £20k data protection scholarship

  Training specialist Freevacy has launched a £20,000 scholarship fund to train data privacy and protection professionals

• January 31, 2023 31 Jan'23

  Russian DDoS hacktivists seen targeting western hospitals

  A swathe of attacks by the Putin-supporting DDoS operation known as Killnet has targeted hospitals and other infrastructure in several Nato countries, with the UK thought to be at risk

• January 31, 2023 31 Jan'23

  GitHub warns Desktop, Atom users after code-signing certificates pinched

  Threat actors stole encrypted code-signing certificates for GitHub’s Desktop and Atom applications in December 2022, prompting warnings for users

• January 31, 2023 31 Jan'23

  Digital banking changing the high street forever as banks close branches and open alternatives

  Banks are reshaping their channels as customers move to digital services, with physical innovation complementing digital strategies

• January 31, 2023 31 Jan'23

  Royal Mail recovers more International Tracked services

  Royal Mail is making further progress in recovering IT systems hit by a ransomware attack, and has re-enabled another tranche of international export services

• January 30, 2023 30 Jan'23

  Former Fujitsu staff under police investigation to face Post Office IT scandal inquiry

  Two former Fujitsu IT professionals being investigated for potential perjury will face Post Office Horizon public inquiry in May

• January 30, 2023 30 Jan'23

  Noventiq eyes APAC IT services market

  IT services provider Noventiq has been expanding its presence in APAC through several acquisitions in India, and is eyeing a bigger slice of the region’s IT services pie

• January 27, 2023 27 Jan'23

  UK local authorities reveal connectivity priorities, challenges

  Study examining topics ranging from gigabit-capable broadband to 5G, smart places, telecoms and net-zero finds progress being made in UK local government, but challenges remain in the drive to improve digital connectivity

• January 27, 2023 27 Jan'23

  Hive ransomware gang taken down after FBI hacks back

  The FBI hacked into Hive’s servers, stole its decryption keys and then took down its servers in a major action that has successfully disrupted a prolific and dangerous ransomware operation

• January 25, 2023 25 Jan'23

  Leeds Building Society uses AIops in Dynatrace to improve observability

  Automation and AI is improving how the service delivery team assesses the business impact of an IT service degradation

• January 25, 2023 25 Jan'23

  Arnold Clark cyber attack claimed by Play ransomware gang

  A cyber attack that struck car dealer Arnold Clark prior to Christmas has been claimed as the work of the Play ransomware cartel

• January 25, 2023 25 Jan'23

  Boards struggle to resolve cyber risk in digital supply chains

  Accelerated digitisation of supply chains is introducing more cyber risk for which many organisations seem unprepared, according to the BSI’s annual report on supply chain risk

• January 24, 2023 24 Jan'23

  Nationwide Building Society CIO to join Co-operative Bank

  Gary Delooze to join Co-operative Bank as CIO after six years heading up Nationwide Building Society’s IT department

• January 24, 2023 24 Jan'23

  SSRF attacks hit 100,000 businesses globally since November

  There has been a dramatic increase in attacks exploiting the ProxyNotShell/OWASSRF exploit chains to target Microsoft Exchange servers

• January 24, 2023 24 Jan'23

  SMEs keen on embedded finance, but more choice needed to increase take-up

  Suppliers to small and medium-sized enterprises need to offer more choice when embedding financial products in their services if take-up is to increase

• January 23, 2023 23 Jan'23

  Trellix automates patching for 62,000 vulnerable open source projects

  Since revealing startling statistics about the prevalence of a 15-year-old Python vulnerability, Trellix says it has helped fix almost 62,000 vulnerable projects in the past four months

• January 23, 2023 23 Jan'23

  NCSC warning over cyber risk to charity sector

  Cash-strapped charities without the resource to tackle their resilience deficit are increasingly at risk from malicious actors, says the NCSC

• January 23, 2023 23 Jan'23

  More than 1,000 tech roles chopped at Capital One

  US bank makes tech job cuts as its digital transformation moves into a new phase

• January 19, 2023 19 Jan'23

  UK seeks to ban sharing ‘positive’ Channel crossing videos online

  Under UK government amendments to the Online Safety Bill, video footage that shows people crossing the Channel in a ‘positive light’ could be added to a list of illegal content that all tech platforms must proactively prevent from reaching users, ...

• January 19, 2023 19 Jan'23

  Outdated IT infrastructure poses growing risk to UK Security Vetting

  Delays to UKSV’s important work in safeguarding the country’s national security are in part down to a legacy IT estate in dire need of modernisation, says the NAO

• January 18, 2023 18 Jan'23

  Ukraine cyber teams responded to more than 2,000 attacks in 2022

  The Ukrainian authorities responded to more than 2,000 major cyber incidents during 2022, and are blocking thousands more potential attacks every day

• January 18, 2023 18 Jan'23

  Advisory board goal for Post Office scandal victims to be returned to rightful financial position

  The board set up to monitor the compensation scheme for Post Office scandal victims agrees goal of returning them to the financial position they would be in had the scandal never happened

• January 17, 2023 17 Jan'23

  Benelux CIO interview: Richard Ventre, SHV Holdings

  In his role at Netherlands-based SHV Holdings, Richard Ventre is tackling the challenge of enabling a diverse set of digital transformations across a range of industries

• January 17, 2023 17 Jan'23

  Crest throws support behind CyberUp CMA reform campaign

  Cyber accreditation association Crest International has lent its support to the CyberUp campaign for reform to the Computer Misuse Act of 1990

• January 17, 2023 17 Jan'23

  Royal Mail promises ‘workarounds’ to restore services after ransomware attack

  Royal Mail CEO Simon Thompson apologises to customers whose businesses are being disrupted by a ransomware attack and promises a ‘workaround’ will be in place in the near future

• January 13, 2023 13 Jan'23

  LockBit cartel suspected of Royal Mail cyber attack

  The still-developing cyber incident at Royal Mail may be the work of the infamous LockBit ransomware operation

• January 13, 2023 13 Jan'23

  BBC assures UK Parliament that digital transformation plans are on track

  UK Parliamentary accounts watchdog probes British Broadcasting Corporation senior management regarding plans to reconstruct organisation to be fit for purpose in modern media industry and satisfy multiplatform needs of licence fee payers

• January 12, 2023 12 Jan'23

  Guardian confirms Christmas 2022 cyber attack was ransomware

  Guardian Media Group bosses confirm the 20 December cyber attack that left staff locked out of its London office and disrupted several key systems was an untargeted ransomware attack

• January 12, 2023 12 Jan'23

  How Indian banks can drive automation in corporate banking

  Banks should prioritise their processes for automation based on the level of human intervention, understand their processes thoroughly and put employees at the centre of their automation efforts

• January 11, 2023 11 Jan'23

  Royal Mail services hit by major cyber attack

  UK postal service Royal Mail is asking customers not to send any overseas letters or parcels while it deals with the impact of an ongoing cyber attack

• January 11, 2023 11 Jan'23

  Should we be worried about malicious use of AI language models?

  WithSecure research into GPT-3 language models, used by the likes of ChatGPT, surfaces concerning findings about how easy it is to use large language models for malicious purposes. Should security teams be concerned?

• January 11, 2023 11 Jan'23

  Microsoft fixes EoP zero-day on January Patch Tuesday

  On the first Patch Tuesday of 2023, Microsoft fixed an elevation of privilege vulnerability in Windows Advanced Local Procedure Call, which has been actively exploited in the wild and may be co-opted into ransomware campaigns

• January 10, 2023 10 Jan'23

  Latest Innovate Finance report reveals decrease in UK fintech investment, but like-for-like increase

  Innovate Finance’s latest figures on fintech investment show reduction in UK, but report methodology leaves this open to change

• January 10, 2023 10 Jan'23

  Tech firms failing to address forced labour in supply chains

  Subpar due diligence processes in the tech sector – including poor purchasing practices, sparsely implemented collective bargaining coverage, and a lack of redress for workers – is leaving supply chain workers open to abuse, says KnowTheChain

• January 08, 2023 08 Jan'23

  Vulnerable organisations to get free Cyber Essentials support

  Charities and legal aid firms are among those to be offered free security checks and certifications from the National Cyber Security Centre

• January 06, 2023 06 Jan'23

  Vice Society cyber gang targeted multiple UK schools

  The Vice Society ransomware gang has made a habit of attacking educational institutions, and now appears to have struck multiple schools, colleges and universities in the UK

• January 05, 2023 05 Jan'23

  Cyber gang abused free trials to exploit public cloud CPU resources

  A South Africa-based cyber crime gang exploited free trials and introductory offers to run cryptominers via public cloud services, then did a runner without paying

• January 05, 2023 05 Jan'23

  Warning over ransomware attacks spreading via Fortinet kit

  Following the disclosure of a critical vulnerability in October 2022, Fortinet VPN devices were exploited in two known ransomware attacks, with access likely sold on the dark web

• January 05, 2023 05 Jan'23

  Fallout from Guardian cyber attack to last at least a month

  The Guardian newspaper’s offices remained shut into the New Year following a supposed ransomware attack, with disruption likely to last some time

• January 04, 2023 04 Jan'23

  Traditional banking under threat from platform-based alternatives

  Banking as a service embedded in non-banking business offerings will take large chunks from traditional banks