News

IT risk management

• February 10, 2025 10 Feb'25

  Apple: British techies to advise on ‘devastating’ UK global crypto power grab

  A hitherto unknown British organisation – which even the government may have forgotten about – is about to be drawn into a global technical and financial battle, facing threats from Apple to pull out of the UK

• February 07, 2025 07 Feb'25

  Tech companies brace after UK demands backdoor access to Apple cloud

  The UK has served a notice on Apple demanding backdoor access to encrypted data stored by users anywhere in the world on Apple’s cloud service

• February 07, 2025 07 Feb'25

  US lawmakers move to ban DeepSeek AI tool

  US politicians have introduced a bill seeking to ban the use of the DeepSeek AI tool on government-owned devices, citing national security concerns due to its alleged links to the Chinese state

• February 07, 2025 07 Feb'25

  Ransomware payment value fell over 30% in 2024

  Several factors, including the impact of law enforcement operations disrupting cyber criminal gangs and better preparedness among users, may be behind a significant drop in the total value of ransomware payments

• February 06, 2025 06 Feb'25

  UK’s Cyber Monitoring Centre begins incident classification work

  The Cyber Monitoring Centre will work to categorise major incidents against a newly developed scale to help organisations better understand the nature of systemic cyber attacks and learn from their impact

• February 05, 2025 05 Feb'25

  Youth activists protest Meta over mental health impacts

  Protest outside Meta’s London offices marks launch of Mad Youth Campaign, an effort by activists to challenge the ways in which corporate power negatively shapes the conditions young people live under

• February 05, 2025 05 Feb'25

  MoD set to develop £50m data analytics platform with Kainos

  The Ministry of Defence has chosen IT services provider Kainos to develop its £50m data analytics platform across all armed services, over a three-year programme

• February 03, 2025 03 Feb'25

  New Relic extends observability to DeepSeek

  The observability tools supplier now offers enhanced monitoring for DeepSeek models to help businesses reduce the costs and risks of generative AI development

• February 03, 2025 03 Feb'25

  Government sets out cyber security practice code to stoke AI growth

  The government has set out a cyber security code of practice for developers to follow when building AI products

• February 03, 2025 03 Feb'25

  DeepSeek-R1 more readily generates dangerous content than other large language models

  Research scientists at cyber firm Enkrypt AI publish concerning findings from a red team exercise conducted against DeepSeek, the hot new generative AI tool

• January 31, 2025 31 Jan'25

  Barclays hit by major IT outage on HMRC deadline day

  Customers of Barclays Bank are left unable to access web app and online banking following a significant IT outage that seems to have come at the worst possible time

• January 31, 2025 31 Jan'25

  AI jailbreaking techniques prove highly effective against DeepSeek

  Researchers at Palo Alto have shown how novel jailbreaking techniques were able to fool breakout GenAI model DeepSeek into helping to create keylogging tools, steal data, and make a Molotov cocktail

• January 31, 2025 31 Jan'25

  DeepSeek API, chat log exposure a ‘rookie’ cyber error

  Security researchers at Wiz find a trove of DeepSeek data including API secrets and chat logs publicly exposed via an open source database management tool, raising questions about the fast-growing service’s approach to security

• January 30, 2025 30 Jan'25

  First international AI safety report published

  A global cohort of nearly 100 artificial intelligence experts publish first international AI safety report ahead of the third AI summit, outlining an array of challenges posed by the technology that will be used to inform upcoming discussions

• January 29, 2025 29 Jan'25

  How government hackers are trying to exploit Google Gemini AI

  Google’s threat intel squad has shared information on how nation state threat actors are attempting to exploit its Gemini AI tool for nefarious ends

• January 29, 2025 29 Jan'25

  Vallance rejects latest charge to reform UK hacking laws

  Science minister Patrick Vallance rejects proposed amendments to the Computer Misuse Act, arguing that they could create a loophole for cyber criminals to exploit

• January 28, 2025 28 Jan'25

  NAO: UK government cyber resilience weak in face of mounting threats

  The National Audit Office has found UK government cyber resilience wanting, weakened by legacy IT and skills shortages, and facing mounting threats

• January 27, 2025 27 Jan'25

  Cyber incident that closed British Museum was inside job

  An IT incident that disrupted visitor access to the British Museum last week was the work of a disgruntled contractor who had been let go

• January 27, 2025 27 Jan'25

  Inside CyberArk’s security strategy

  CyberArk CIO Omer Grossman talks up the company’s security-first ethos, the importance of an assumed breach mentality and how the company is addressing threats from the growing use of AI

• January 24, 2025 24 Jan'25

  MPs and peers start inquiry into Russian and Chinese sabotage threats to subsea internet cables

  MPs and Lords on the Joint Committee on the National Security Strategy have begun an inquiry into the resilience of UK internet cables, following heightened threats of Russian and Chinese sabotage

• January 24, 2025 24 Jan'25

  US indicts five in fake North Korean IT contractor scandal

  The US authorities have accused five men, including two American citizens, of involvement in a scheme which saw companies duped into hiring fake North Korean IT contractors

• January 24, 2025 24 Jan'25

  High Court: Sky Betting ‘parasitic’ in targeting problem gambler

  UK High Court rules that Sky Betting acted unlawfully after breaching a customer’s data protection rights when it obtained his personal data through cookies and used it to profile him for the purposes of direct marketing, despite his ‘impaired’ ...

• January 24, 2025 24 Jan'25

  CISOs boost board presence by 77% over two years

  A global research study, from Splunk and Oxford Economics, into how chief information security officers interact with boards finds greater participation but enduring gaps

• January 23, 2025 23 Jan'25

  UK eVisa system problems persist despite repeated warnings

  Travellers are already having issues boarding UK-bound flights, while refugees have been left with no way to prove their immigration status in the UK, just two weeks after the Home Office transitioned to electronic visas

• January 22, 2025 22 Jan'25

  Privacy professionals expect budget cuts, lack confidence

  Over 50% of privacy professionals in Europe expect to see less money earmarked for data security initiatives in 2025, and many don’t have faith their organisations are taking the issue seriously, according to an ISACA report

• January 22, 2025 22 Jan'25

  Europol seeks evidence of encryption on crime enforcement as it steps-up pressure on Big Tech

  Europol wants examples of police investigations hampered by end-to-end encryption as it pressures tech companies to provide law enforcement access to encrypted messages

• January 22, 2025 22 Jan'25

  APAC businesses face surge in email attacks

  Sophisticated phishing and business email compromise campaigns are increasingly targeting organisations across the Asia-Pacific region, research reveals

• January 16, 2025 16 Jan'25

  Biden signs new cyber order days before Trump inauguration

  With days left in the White House, outgoing US president Joe Biden has signed a wide-ranging cyber security executive order with far-reaching implications

• January 16, 2025 16 Jan'25

  Almost half of UK banks set to miss DORA deadline

  A significant minority of financial services organisations in the UK will not be fully compliant with the EU’s DORA cyber and risk management regulation when it comes into force on 17 January

• January 16, 2025 16 Jan'25

  Davos 2025: Digital supply chains at risk as world faces two years of turbulence

  World Economic Forum urges digital business leaders to build the resilience of supply chains, improve cyber defences and develop contingency plans

• January 15, 2025 15 Jan'25

  Cyber security dovetails with AI to lead 2025 corporate IT investment

  Cyber security and GenAI top enterprise IT investment plans for 2025, whether singly or together, according to research from Enterprise Strategy Group

• January 15, 2025 15 Jan'25

  Users protest, flee TikTok as clock ticks on US ban

  As the US Supreme Court prepares to rule on the future of TikTok, rumours of a sale are swirling around Washington DC while panicked users make plans for an exodus

• January 15, 2025 15 Jan'25

  Davos 2025: Misinformation and disinformation are most pressing risks, says World Economic Forum

  World leaders, business chiefs and civil society organisations will discuss the risks posed by misinformation, disinformation and artificial intelligence at the World Economic Forum

• January 15, 2025 15 Jan'25

  Cohesity CEO on Veritas integration and IPO plans

  Cohesity CEO Sanjay Poonen shares his vision for integrating Veritas’ enterprise data protection business, uniting 12,000 customers, driving AI-powered innovation and building a public-ready company

• January 13, 2025 13 Jan'25

  UK government plans to extend ransomware payment ban

  A ban on ransomware payments by UK government departments will be extended to cover organisations such as local councils, schools and the NHS should new government proposals move forward

• January 13, 2025 13 Jan'25

  CNI operators should ask these 12 questions of their OT suppliers

  The NCSC, CISA and others have set out 12 cyber security considerations CNI organisations and other users of operational technology should incorporate into their buying processes to force their suppliers to do better

• January 10, 2025 10 Jan'25

  Mandiant: Latest Ivanti vulns exploited by Chinese cyber spooks

  Threat actors are once again lining up to exploit vulnerabilities in the widely used Ivanti product suite, with an apparent link to Chinese espionage activity

• January 08, 2025 08 Jan'25

  German court finds hacked EncroChat phone evidence inadmissible

  The Berlin Regional Court has found that evidence obtained by a joint French and Dutch operation to hack the EncroChat encrypted mobile phone network is legally inadmissible, raising questions about its use in other European countries

• January 03, 2025 03 Jan'25

  US Treasury incident a clear warning on supply chain security in 2025

  A cyber incident at the US Department of the Treasury – blamed on a Chinese state actor – raises fresh warnings about supply chain risk after it was found to have originated via vulnerabilities in a remote tech support product

• January 03, 2025 03 Jan'25

  Corporate cover-up behind world-beating cyber security record in Middle East

  Report ranking Gulf corporations ahead of US and EU counterparts for cyber security has sparked debate about the region’s tendency for secrecy and state control

• December 27, 2024 27 Dec'24

  Top 10 ANZ stories of 2024

  The 2024 tech landscape in Australia and New Zealand was dotted with developments spanning cloud migrations and AI adoption to heightened data security and real-time data streaming

• December 24, 2024 24 Dec'24

  Top 10 police technology stories of 2024

  Here are Computer Weekly’s top 10 police technology stories of 2024

• December 20, 2024 20 Dec'24

  Top 10 data and ethics stories of 2024

  Here are Computer Weekly’s top 10 data and ethics stories of 2024

• December 19, 2024 19 Dec'24

  Latest attempt to override UK’s outdated hacking law stalls

  Amendments to the Data Bill that would have given the UK cyber industry a boost by updating restrictive elements of the Computer Misuse Act have failed to progress beyond a Lords committee

• December 18, 2024 18 Dec'24

  Top 10 cyber security stories of 2024

  Data breaches, data privacy and protection, and the thorny issue of open source security were all hot topics this year. Meanwhile, security companies frequently found themselves hitting the headlines, and not always for good reasons. Here are ...

• December 18, 2024 18 Dec'24

  Top 10 cyber crime stories of 2024

  From ransomware targeting the NHS to nation-state-backed intrusions, 2024 was another big year for cyber criminals and cyber spooks alike, but they didn't have it all their own way as the good guys fought back

• December 18, 2024 18 Dec'24

  Axon still in possession of Police Scotland encryption keys

  Supplier’s possession of encryption keys for Police Scotland data sharing system opens potential for access and transfer of sensitive data without the knowledge or consent of the force

• December 17, 2024 17 Dec'24

  Conservative MP adds to calls for public inquiry over PSNI police spying

  Conservative MP David Davis calls for a public inquiry following a court ruling that the PSNI and Metropolitan Police unlawfully placed journalists under electronic surveillance

• December 17, 2024 17 Dec'24

  Digital Ethics Summit 2024: recognising AI’s socio-technical nature

  At trade association TechUK’s eighth annual Digital Ethics Summit, public officials and industry figures and civil society groups met to discuss the ethical challenges associated with the proliferation of artificial intelligence tools globally and ...

• December 17, 2024 17 Dec'24

  Tribunal criticises PSNI and Met Police for spying operation to identify journalists’ sources

  The Investigatory Powers Tribunal has criticised the Police Service of Northern Ireland and the Metropolitan Police for unlawfully spying on journalists