News

IT risk management

• November 26, 2025 26 Nov'25

  London councils endure wave of cyber attacks, shared IT services hit

  Four London councils – Kensington and Chelsea; Hackney; Westminster; and Hammersmith and Fulham – have suffered cyber attacks, disrupting services and prompting NCSC-supported investigation

• November 26, 2025 26 Nov'25

  US breach reinforces need to plug third-party security weaknesses

  Cyber breach at US financial sector tech provider highlights the risk of third-party vulnerabilities in finance ecosystems

• November 20, 2025 20 Nov'25

  Russian money launderers bought a bank to disguise ransomware profit

  A billion-dollar money laundering network active in the UK funnelled money, including the profits of ransomware attacks, into its own bank to circumvent sanctions on Russia and help fund its attacks on Ukraine

• November 20, 2025 20 Nov'25

  Swedish welfare authorities suspend ‘discriminatory’ AI model

  A machine learning model used by Sweden’s social security agency to flag benefit fraud has been discontinued following investigations by media outlets and the country’s data protection watchdog

• November 19, 2025 19 Nov'25

  Cloudflare contrite after worst outage since 2019

  Cloudflare CEO Matthew Prince apologises for the firm’s worst outage in years and shares details of how a change to database system permissions caused a cascading effect that brought down some of the web’s biggest names

• November 19, 2025 19 Nov'25

  UAE to launch first space-to-ground quantum communication network

  Technology Innovation Institute and Space42 unveil a collaboration at the Dubai Airshow to deliver the UAE’s first space-enabled quantum communication network, strengthening national cyber resilience and advancing sovereign leadership in ...

• November 19, 2025 19 Nov'25

  Cisco: Network architectures must be rebuilt for agentic AI

  Rising traffic volumes, AI-powered security threats and the move to agentic workflows will require organisations to modernise their network infrastructure

• November 18, 2025 18 Nov'25

  Microsoft unveils AI agents to automate security operations

  Tech giant bakes AI agents into its security products to democratise advanced security capabilities, automate repetitive tasks and provide context-aware intelligence for cyber defenders

• November 18, 2025 18 Nov'25

  Fintech leaders call for united front against AI-driven cyber crime

  As AI makes financial scams more personalised and convincing, fintech experts have called for deeper collaboration and the use of behavioural analytics and other technologies to protect consumers

• November 16, 2025 16 Nov'25

  Australia lags regional peers in AI adoption

  Report finds governance gaps, a lack of training and fear of risks as key reasons for the nation’s slow uptake of artificial intelligence compared with regional peers

• November 12, 2025 12 Nov'25

  Hungry for data: Inside Europol’s secretive AI programme

  The EU’s law enforcement agency has been quietly amassing data to feed an ambitious but secretive artificial intelligence development programme that could have far-reaching privacy implications for people across the bloc

• November 12, 2025 12 Nov'25

  US cyber intel sharing law set for temporary extension

  The CISA 2015 cyber intelligence sharing law, which lapsed just over a month ago amid a wider shutdown, will receive a temporary lease of life should attempts to reopen the federal government succeed

• November 12, 2025 12 Nov'25

  IT services companies and datacentres face regulation as cyber security bill reaches Parliament

  The Cyber Security and Resilience Bill will require large IT services companies, including datacentres, to report security incidents within 24 hours

• November 11, 2025 11 Nov'25

  Google: Don’t get distracted by AI, focus on real cyber threats

  While hackers are using artificial intelligence to optimise attacks, many of the most damaging breaches still rely on old-school methods, says a top security analyst from Google

• November 07, 2025 07 Nov'25

  Popular LLMs dangerously vulnerable to iterative attacks, says Cisco

  Cisco researchers probed some of the most widely used public GenAI LLMs and found many of them were dangerously susceptible to so-called multi-turn cyber attacks producing undesirable outputs

• November 07, 2025 07 Nov'25

  How Palo Alto Networks is leveraging AI

  Palo Alto Networks CIO Meerah Rajavel explains how the company is using AI to sieve through 90 billion security events a day, and why security and user experience are two sides of the same coin

• November 06, 2025 06 Nov'25

  Cisco beefs up secure AI enterprise network architecture

  IT and networking giant builds on enterprise network architecture with systems designed to simplify operations across campus and branch deployments such as network configuration

• November 05, 2025 05 Nov'25

  Darktrace: Developer tools under constant attack

  Attackers are using automated tools to target development environments within seconds of them going live, warns Darktrace’s global field chief information security officer

• November 05, 2025 05 Nov'25

  Dutch boardroom cyber security knowledge gap exposed

  Cyber security governance professor warns that executives lack the capability to assess cyber threats in implementation approaches

• November 04, 2025 04 Nov'25

  Ryt Bank taps agentic AI for conversational banking

  Malaysia’s Ryt Bank is using its own LLM and agentic AI framework to allow customers to perform banking transactions in natural language, replacing traditional menus and buttons

• November 04, 2025 04 Nov'25

  Nordic investors drive investment in region’s defence sector

  Slush Startup in Helsinki will feature dual-use, defence and security events that bring suppliers together

• November 04, 2025 04 Nov'25

  UAE Sovereign Launchpad begins nationwide roll-out with support from e& and AWS

  The cloud infrastructure platform aims to strengthen digital resilience and regulatory compliance across government and regulated sectors in the United Arab Emirates

• November 04, 2025 04 Nov'25

  Fewer data breaches in Australia, but human error now a bigger threat

  Australian privacy commissioner warns that the human factor is a growing threat as notifications caused by staff mistakes rose significantly even as total breaches declined 10% from a record high

• November 03, 2025 03 Nov'25

  CrowdStrike: Europe second only to North America for cyber attacks

  Europe faces rising cyber threats from criminals and nation-states, according to CrowdStrike. Ransomware attacks now take just 24 hours, with 22% of global victims being European

• October 31, 2025 31 Oct'25

  European governments opt for open source alternatives to Big Tech encrypted communications

  European governments are rolling out decentralised secure messaging and collaboration services as they seek to reduce their reliance on Big Tech companies

• October 31, 2025 31 Oct'25

  Cyber agencies co-sign Exchange Server security guide

  US and allied cyber agencies team up to try to nudge users to pay more attention to securing Microsoft Exchange Server

• October 30, 2025 30 Oct'25

  Yubico bolsters APAC presence, touts device subscriptions

  Yubico is hiring local teams in Singapore and pitching its subscription service to help enterprises secure employee access to corporate networks and applications

• October 30, 2025 30 Oct'25

  US senators seek to prohibit minors from using AI chatbots

  Two US senators have proposed legislation that would require AI chatbot companies to verify the ages of people using their chatbots, in attempt to limit their harmful effects on children

• October 29, 2025 29 Oct'25

  Rapid7: Cyber defences stuck in the 1980s as threats mount

  The company’s chief product officer notes that many defence tactics are still stuck in the past, urging organisations to adopt AI-driven security platforms to improve threat detection and response

• October 28, 2025 28 Oct'25

  Cisco and Splunk plot multi-year data fabric journey

  Company leaders talk up their vision for the Cisco Data Fabric that will allow enterprises to gain insights about their IT infrastructure and security posture from machine data wherever it resides, from the network edge to the cloud

• October 27, 2025 27 Oct'25

  BDO Unibank taps Zscaler to secure cloud migration

  Zscaler’s deal with the Philippine bank comes as it is expanding its platform’s capabilities and footprint across Asia

• October 24, 2025 24 Oct'25

  UK ramps up ransomware fightback with supply chain security guide

  Multinational guidance, developed by the UK and Singapore, is designed to help organisations reinforce their supply chain against ransomware attacks

• October 23, 2025 23 Oct'25

  Bereaved families call for public inquiry over suicide forum

  The Molly Rose Foundation and families bereaved by suicide claim Ofcom and government departments have not taken effective action to deal with a forum promoting suicide

• October 23, 2025 23 Oct'25

  Amid CISA cuts, US state launches first VDP

  Legislators in Annapolis, Maryland, have teamed up with Bugcrowd to launch a statewide vulnerability disclosure programme

• October 22, 2025 22 Oct'25

  Singapore unveils efforts to govern agentic AI, prepare for post-quantum era

  Guidelines and tools will help organisations in the city-state manage risks from AI agents and prepare for a future where quantum computers could break current encryption

• October 22, 2025 22 Oct'25

  Building security and trust in AI agents

  AI agents require standardised guidelines, clear human responsibility and a shared language between developers and policymakers to be secure and trusted, experts say

• October 21, 2025 21 Oct'25

  New cyber resilience centre to help SMEs fend off cyber threats

  Spearheaded by the Singapore Business Federation, the cyber resilience centre will equip SMEs in the city-state with cyber security capabilities to mitigate and recover from cyber attacks

• October 20, 2025 20 Oct'25

  France’s Atos eyes UK public sector with investment in secure UK infrastructure

  French IT services supplier invests in highly secure and accredited UK-based infrastructure

• October 20, 2025 20 Oct'25

  Microsoft admonished for role in facilitating Gaza genocide

  Following credible allegations that Microsoft Azure was being used to facilitate mass surveillance and lethal force against Palestinians, which prompted the company to suspend services to the Israeli military unit responsible, human rights ...

• October 16, 2025 16 Oct'25

  Microsoft identifies boardroom cyber awareness as a top priority

  Digital security report urges IT leaders to convince company boards that cyber security is a board-level problem

• October 16, 2025 16 Oct'25

  Securing the AI era: Huawei’s cyber security strategy for the GCC

  At Gitex 2025, Sultan Mahmood, chief security officer for Huawei Gulf North, outlined how the company supports GCC digital sovereignty, AI security, and enterprise cyber resilience

• October 16, 2025 16 Oct'25

  F5 admits nation-state actor stole BIG-IP source code

  F5 discloses that a nation-state actor has stolen source code and unpatched vulnerability data for its widely used BIG-IP products, raising supply chain security concerns across the industry

• October 15, 2025 15 Oct'25

  ICO fines Capita £14m after ransomware caused major data breach

  Outsourcing giant hit with £14m fine over 2023 cyber attack, but costs could rise as legal actions continue

• October 15, 2025 15 Oct'25

  Obsession with cyber breach notification fuelling costly mistakes

  The race to meet security breach notification deadlines is leading to staff burnout, destroyed evidence and a culture of blame, warns a Trend Micro risk and security strategist

• October 15, 2025 15 Oct'25

  China responsible for rising cyber attacks, says NCSC

  Ministers write to business leaders urging them to step up cyber security in wake of threats from ransomware and nation state-sponsored hackers

• October 14, 2025 14 Oct'25

  NCSC calls for action after rise in ‘nationally significant’ cyber incidents

  National Cyber Security Centre says businesses should take action now as the number of nationally significant cyber incidents doubles

• October 13, 2025 13 Oct'25

  Court dismisses Apple’s appeal against Home Office backdoor

  Investigatory Powers Tribunal rules that Apple’s appeal against a Home Office order to access encrypted data of Apple users world wide will no longer proceed.

• October 13, 2025 13 Oct'25

  Thales: Trust in AI for critical systems needs to be engineered

  Confidence in artificial intelligence capabilities that power critical systems must go beyond words and be built on a hybrid model that combines data with physics and logic to prove reliability, according to Thales’s chief scientist

• October 07, 2025 07 Oct'25

  Alert over Medusa ransomware attacks targeting Fortra MFT

  Microsoft warns it is seeing potential mass exploitation of a Fortra GoAnywhere vulnerability by a threat actor linked to the Medusa ransomware-as-a-service operation.

• October 07, 2025 07 Oct'25

  The Security Interviews: David Bradbury, CSO, Okta

  Okta’s chief security officer talks security by default and explains why he thinks time is running out for the shared responsibility model