News

IT risk management

• January 30, 2018 30 Jan'18

  Government surveillance regime unlawful, court rules in Tom Watson case

  Appeal court ruled in favour of Labour MP Tom Watson in a legal battle with the government over the UK’s surveillance laws, leading to calls to rethink controversial Investigatory Powers Act

• January 30, 2018 30 Jan'18

  Most online retail sites put customers at risk of phishing

  Most top online retail sites fail to protect consumers from phishing attacks, a study has revealed

• January 29, 2018 29 Jan'18

  Millennials set to disrupt authentication, shows IBM study

  Young adults are lax on passwords, but are more comfortable than older generations with biometric and multifactor authentication, an IBM study shows

• January 29, 2018 29 Jan'18

  Hefty fines confirmed for CNI providers with poor cyber security

  The government has confirmed that critical infrastructure providers with poor cyber security face fines of millions of pounds as the National Cyber Security Centre publishes new guidance for the industry

• January 29, 2018 29 Jan'18

  Business cyber crime up 63%, UK stats show  

  Despite an overall decrease in fraud and computer misuse in 2017, the latest Office for National Statistics (ONS) reports show that incidents involving computer misuse and malware against business are way up

• January 26, 2018 26 Jan'18

  ICO launches data protection excellence award

  UK’s privacy watchdog launches data protection excellence award to mark international Data Protection Day, as security suppliers issue data protection tips and guidelines

• January 25, 2018 25 Jan'18

  IoT security risks need immediate action, says report

  The security failings in today’s internet-connected devices will only become more pervasive unless action is taken immediately, according to industry experts

• January 25, 2018 25 Jan'18

  Ransomware was most popular cyber crime tool in 2017

  Detections of ransomware increased by more than 90% last year compared with 2016

• January 25, 2018 25 Jan'18

  Security spending not on most-effective controls, report reveals

  While planned spending on IT security is up globally, so too are data breaches, with evidence mounting that hackers are hitting the bottom line, a global security survey reveals

• January 24, 2018 24 Jan'18

  Most UK organisations unaware of new data protection laws

  The UK’s digital and culture secretary is urging businesses and charities to prepare for stronger data protection laws in the light of new information

• January 24, 2018 24 Jan'18

  Sweden puts government IT outsourcing under increased scrutiny

  Government introduces rules to tighten security in IT outsourcing deals following a very public data leak last year

• January 24, 2018 24 Jan'18

  Dark web Dream Market drives cyber fraud industry

  An international operation shut down the AlphaBay and Hansa marketplaces in July 2017, but new ones have sprung up on the dark web, with one in particular helping to drive cyber fraud

• January 23, 2018 23 Jan'18

  Intel recalls botched Spectre fix

  The inventor of Linux, Linus Torvalds, vents his frustration and suggests Intel has no plans to fix Spectre flaw

• January 23, 2018 23 Jan'18

  Thousands of critical systems affected by serious security flaws

  Multiple and serious vulnerabilities have been found in a software management system widely used in corporate and industrial control environments, researchers warn

• January 23, 2018 23 Jan'18

  New controversies as Trump passes US Foreign Intelligence Surveillance Act

  The amended Foreign Intelligence Surveillance Act, which seeks to legitimise US surveillance on foreigners, has been signed off by president Trump

• January 22, 2018 22 Jan'18

  Taking complexity out of cyber security

  The key to improving the cyber security posture of organisations is to keep complexity at bay, according to a senior Microsoft executive

• January 22, 2018 22 Jan'18

  Judge will take time to seek answers from EU court over Max Schrems Facebook privacy fight

  The Irish High Court will take time to decide what questions to put before the European Court of Justice in a case with significant implications for EU and US trade and the privacy of EU citizens

• January 22, 2018 22 Jan'18

  European Parliament votes to restrict exports of surveillance equipment

  European Parliament votes to tighten export controls to restrict supply of surveillance and encryption technology to states with poor human rights records amid fears British companies may not have to comply after Brexit

• January 22, 2018 22 Jan'18

  Cyber attackers exploiting trust in FTP servers

  Some cyber attackers are exploiting trust in FTP servers to distribute malware, security researchers warn

• January 22, 2018 22 Jan'18

  Powerful Zyklon malware exploiting MS Office flaws

  Cyber attackers are exploiting three recently discovered vulnerabilities in Microsoft Office to spread multifunction Zyklon malware, security researchers warn

• January 18, 2018 18 Jan'18

  Create security culture to boost cyber defences, says Troy Hunt

  Security suffers when there is tension between software developers and security professionals, but it is common in many organisations, says world-renowned security blogger and trainer

• January 18, 2018 18 Jan'18

  Cyber attackers upped their game in 2017, warns report

  Cyber attackers ranging from criminals to nation states have upped their game in the past year, “moving the needle” in terms of tactics, techniques and procedures, a report by a cyber security firm warns

• January 17, 2018 17 Jan'18

  North Korean hackers tied to cryptocurrency attacks in South Korea

  North Korea's Lazarus Group targeted South Korean cryptocurrency exchanges and users in late 2017, but may soon go after exchanges and users in other countries, warns report

• January 17, 2018 17 Jan'18

  Davos: Disintegration of the internet could create economic turmoil

  Politicians and business leaders will discuss the risks posed by fake news, cyber attacks, and artificial intelligence to jobs, political stability and global security, at the World Economic Forum in Davos

• January 16, 2018 16 Jan'18

  Vulnerability exploit report shows importance of patching

  Latest vulnerability exploit report by security firm AlienVault shows the most popular vulnerabilities remain exploited for several years

• January 16, 2018 16 Jan'18

  Skygofree Android spyware active since 2014, say researchers

  Powerful, highly advanced spyware has been targeting Android mobiles for the past four years, security researchers have discovered

• January 16, 2018 16 Jan'18

  Beware fake Meltdown and Spectre patches

  Security experts have warned that cyber attackers will be quick to use the Meltdown and Spectre exploits, but the first attempt to capitalise on them has come in the form of fake updates

• January 16, 2018 16 Jan'18

  Most UK enterprise mobiles not patched for Meltdown and Spectre

  Very few UK enterprise mobile devices have been patched against the recently discovered Meltdown and Spectre exploits and almost a quarter cannot be patched, a study shows

• January 12, 2018 12 Jan'18

  Call for statutory regulation of police number plate cameras amid concerns over accuracy

  The UK’s automatic number plate recognition database – one the largest non-military data-gathering systems – records up to 1.2 million false readings of number plates every day. It should be subject to statutory regulation, says an independent ...

• January 12, 2018 12 Jan'18

  Intel makes security-first pledge

  As it scrambles to deal with the Meltdown and Spectre processor exploits, Intel has made a series of security commitments

• January 12, 2018 12 Jan'18

  F-Secure highlights another critical Intel security issue

  As Intel scrambles to issue security updates to address the Meltdown and Spectre exploits, researchers have highlighted another, unrelated, critical security issue that could affect millions of corporate laptops

• January 11, 2018 11 Jan'18

  Mobile app flaws are a risk to industrial IT systems, says report

  Cyber security vulnerabilities in mobile applications could be exploited to compromise industrial network infrastructure, a report warns

• January 11, 2018 11 Jan'18

  Nuclear weapons’ cyber attack risk relatively high, says report

  With the potential for catastrophic consequences from a nuclear weapons detonation attack, it is crucial to have the most robust nuclear policies in place, says an international affairs think-tank

• January 10, 2018 10 Jan'18

  Cyber criminals exploit Oracle WebLogic flaw

  Researchers are urging companies to apply a security update to patch a flaw in Oracle’s WebLogic Server component that is being exploited to mine cryptocurrency

• January 10, 2018 10 Jan'18

  UAE tech growth prompts firms to review internal IT security

  As IT becomes more prominent in the UAE economy, more and more internal connections between people and systems are created, all of which need to be secured

• January 10, 2018 10 Jan'18

  ICO fines Carphone Warehouse £400,000

  Mobile retailer hit with one of the highest fines for putting personal data at risk as UK privacy watchdog warns that more stringent data protection laws will apply from 25 May 2018

• January 10, 2018 10 Jan'18

  Spectre: How reverse-engineering a microprocessor revealed a fundamental flaw

  Researchers have published their work on Spectre, a flaw that affects every modern CPU. We find out what went wrong from one of the engineers

• January 09, 2018 09 Jan'18

  Meltdown and Spectre a big deal for enterprises

  Although consumers are relatively unaffected by the recently disclosed security vulnerabilities in most modern processors, enterprises need to take the threat seriously. Computer Weekly looks at how enterprise IT and security professionals should be...

• January 09, 2018 09 Jan'18

  Cyber attacks in 2017 drive Nordic security efforts

  The volume of cyber attacks last year has increased boardroom focus on security in the Nordic region

• January 09, 2018 09 Jan'18

  Intel to set up new group to focus on hardware security

  Chip maker is reportedly planning to form a new group to focus on hardware security as it scrambles to limit the impact of recently discovered security flaws in chip designs

• January 08, 2018 08 Jan'18

  Sweden steps up cyber defence measures

  Sweden is tightening up its cyber security defences as part of a wider national security strategy

• January 05, 2018 05 Jan'18

  Patch systems against Meltdown and Spectre, urges ICO

  UK’s data protection watchdog is calling for organisations to apply security updates to mitigate against exploits of microprocessor flaws as soon as possible to safeguard personal data

• January 05, 2018 05 Jan'18

  2018 could be year of critical infrastructure attacks, says report

  The coming year is likely to see an increase in the number of cyber attacks on critical national infrastructure (CNI), according to a report based on experts’ forecasts

• January 05, 2018 05 Jan'18

  Apple confirms all devices affected by Meltdown and Spectre

  Apple has confirmed that all iPhones, iPads and Mac computers are affected by the recently discovered microprocessor exploits as the financial services industry assesses the risk

• January 04, 2018 04 Jan'18

  Meltdown and Spectre: AWS, Google and Microsoft rush to patch cloud chip flaws

  Amazon, Google and Microsoft rush to fix chip flaws that could leave cloud customers at risk of having their data accessed or stolen by other users

• January 03, 2018 03 Jan'18

  Critical Intel security patch will slow PCs, servers and Macs

  AMD shares rise on news that the performance of millions of Windows PCs, Linux servers and Apple Macs is to be impacted by critical updates for a recently discovered security flaw in Intel chips manufactured in the past 10 years

• January 03, 2018 03 Jan'18

  What the EU’s new data protection regime means for ASEAN

  A large proportion of businesses in the regional economic grouping will be affected by Europe’s General Data Protection Regulation, but awareness of the new rules remains low, even in countries with existing data protection laws

• January 03, 2018 03 Jan'18

  IoT botnet DDoS attacks predicted after exploit code published

  Security researchers are urging businesses to ensure they are prepared for large-scale DDoS attacks following the online publication of code to exploit a vulnerability in Huawei HG532 routers

• January 03, 2018 03 Jan'18

  Top IT priorities for Nordic CIOs in 2018

  Nordic CIOs tell Computer Weekly about their intentions for the year ahead

• January 02, 2018 02 Jan'18

  Ransomware to hit cloud computing in 2018, predicts MIT

  Ransomware targeting cloud services is one of the six biggest cyber threats likely to face organisations in 2018, according to the Massachusetts Institute of Technology