News

IT risk management

• January 28, 2016 28 Jan'16

  Business urged to take action on data privacy

  Security professionals use Data Protection Day to encourage businesses to do more to protect personal data

• January 27, 2016 27 Jan'16

  Keep data safe or risk financial impact, ICO warns business

  The knock-on effect of a data breach can be devastating for a company, warns information commissioner Christopher Graham

• January 27, 2016 27 Jan'16

  Average DDoS attacks fatal to most businesses, report reveals

  Criminal activity is top motivation for DDoS attacks as average attacks become strong enough to down most businesses, Arbor Networks report reveals

• January 19, 2016 19 Jan'16

  Most Android devices running outdated versions

  Nearly a third of Android devices in enterprises today are running version 4.0 or older of the operating system, leaving them highly susceptible to vulnerabilities, a study shows

• January 18, 2016 18 Jan'16

  Chinese university targeted by Islamic State hacktivist

  Beijing’s Tsinghua University is the latest organisation to be attacked by hackers with a social or political agenda

• January 13, 2016 13 Jan'16

  UK not involved in mass surveillance, says Theresa May

  Coffee shops and libraries could be the target of interception warrants, Theresa May tells MPs and peers

• January 13, 2016 13 Jan'16

  Watchdog urges US nuclear agency to close cyber security gaps

  An audit report has called on the US nuclear agency to revise its IT contracts to ensure better cyber security

• January 12, 2016 12 Jan'16

  Police take action against cyber extortion gang DD4BC

  Police have made one arrest and gathered evidence in searches of properties in an international operation aimed at cyber extortion gang DD4BC

• January 06, 2016 06 Jan'16

  UK IoT research hub opens with support from academic world

  A consortium of nine UK universities have come together to work alongside the Engineering and Physical Sciences Research Council on research into the internet of things

• January 06, 2016 06 Jan'16

  Upgrade to Internet Explorer 11 to reduce risk

  Failure to update to the latest version of Internet Explorer by 12 January 2016 could put users at risk, Microsoft warns

• December 31, 2015 31 Dec'15

  Top 10 internet of things stories of 2015

  2015 was the year the internet of things began to move from theory to widespread practice, and the fledgling industry shook off the millstone of connected kitchen appliances

• December 24, 2015 24 Dec'15

  Top 10 IT security stories of 2015

  Computer Weekly looks back at the most significant stories on IT security in the past 12 months

• December 23, 2015 23 Dec'15

  Top 10 cyber crime stories of 2015

  Computer Weekly takes a look back at the top cyber crime stories of 2015

• December 11, 2015 11 Dec'15

  UK firms act quickly to fix payment card data encryption

  Security firm found that 16 global companies had failed to effectively encrypt traffic to the payment portion of their websites and apps

• December 07, 2015 07 Dec'15

  Cyber attacks an increasing concern for Asean countries

  Organisations in the Association of Southeast Asian Nations are increasingly the targets for cyber criminals, according to a report focused on the region

• December 03, 2015 03 Dec'15

  Workday ringfences support in Europe after Safe Harbour ruled unsafe

  US cloud HR and financial services provider reponds to Safe Harbour failure by ringfencing European data

• December 01, 2015 01 Dec'15

  Security analytics needs practical approach, says Fico Ciso Vickie Miller

  Analytics must form part of a comprehensive defence-in-depth strategy, according to chief information security officer (Ciso) Vickie Miller at software firm Fico

• November 26, 2015 26 Nov'15

  Use legal protection to soften cyber attack impact, says Kemp Little

  IT outsourcing provides an opportunity for businesses to transfer risk and recover losses from cyber attacks, says law firm Kemp Little

• November 20, 2015 20 Nov'15

  Coalition of top tech firms opposes weakened encryption

  Weakening security with the aim of advancing security simply does not make sense, a coalition of top tech firms tells US president Barack Obama

• November 18, 2015 18 Nov'15

  Cyber security mindset needs to change, says report

  Government organisations are prime targets for cyber attacks, leading to increased importance on robust information security, according to a report by Intel Security and the Digital Government Security Forum

• November 17, 2015 17 Nov'15

  Irish hospital to offer patient access to records by November 2016

  Galway Clinic plans a big-bang launch of its Meditech electronic medical record system, which includes a patient portal and mobile app

• November 11, 2015 11 Nov'15

  Snoopers’ charter will force ISPs to raise broadband prices

  The Science and Technology Select Committee hears that ISPs may be forced to put up their service charges to cover the cost of retaining communications data, should the Investigatory Powers Bill become law

• October 29, 2015 29 Oct'15

  M&S data breach forces retailer to temporarily suspend service

  A glitch that allowed online customers to see each others' details forced retailer Mark & Spencer to take its website offline while it resolved the issue

• October 28, 2015 28 Oct'15

  Lack of data classification very costly to firms, says survey

  Most data retained by organisations is not identified or classified and gobbles budget spent on storage, as well as being potentially non-compliant, reveals Veritas-sponsored survey

• October 21, 2015 21 Oct'15

  Infosec pros should start preparing for the future, say experts

  Information security professionals need to grow their skills, engage with the business, increase security awareness, set business goals and tailor their messages, says a panel of experts

• October 12, 2015 12 Oct'15

  Encryption is a double-edged sword, says Blue Coat

  Seven more security suppliers join Blue Coat encrypted traffic management programme amid fresh warnings of attackers using encryption to hide malicious activity

• September 29, 2015 29 Sep'15

  120-day patching gap puts many firms at risk of cyber attack, study shows

  The probability of a vulnerability being exploited hits 90% between 40-60 days after discovery, but many firms are taking up to 60 days beyond that to patch, while others are failing to patch at all, a study shows

• September 21, 2015 21 Sep'15

  Department for Culture, Media and Sport takes over responsibility for data protection policy

  Government transfers responsibility for data protection policy and ICO oversight from Ministry of Justice (MOJ) to Department for Culture, Media and Sport (DCMS)

• September 21, 2015 21 Sep'15

  Health chief 'should be held to account' for whistleblow errors

  Former nurse and clincial commissioner Bernie Rochford claims unfair dismissal after blowing the whistle on IT problems which put patient care at risk

• September 18, 2015 18 Sep'15

  Public-private co-operation in the Nordics tackles growing cyber crime threat

  Nordic governments and businesses are putting cyber security at the centre of their planning as threats increase

• September 16, 2015 16 Sep'15

  BT launches ethical hacking service for bankers

  BT introduces a certified Crest Star ethical hacking test service for financial services customers

• September 15, 2015 15 Sep'15

  Most DDoS attacks hiding something more sinister, Neustar warns

  Smaller DDoS attacks can be more dangerous than a powerful attack that knocks a company offline but does not install malware or steal data, warns Neustar

• September 15, 2015 15 Sep'15

  NHS trust denies bullying and intimidation of IT whistleblower

  Managers were already aware of whistleblower's concerns about the accuracy of NHS Southwark's data, tribunal hears

• September 11, 2015 11 Sep'15

  Security industry welcomes GCHQ password guidelines

  GCHQ's guidance on password policy covers some of the most pressing issues facing UK businesses and employees today, according to Skyhigh Networks

• September 11, 2015 11 Sep'15

  DD4BC cyber extortion gang adds social media to arsenal

  Cyber extortion gang DD4BC is using social media campaigns to garner more attention for its ability to create service disruptions by publicly embarrassing large organisations

• September 10, 2015 10 Sep'15

  Researchers discover Android PIN locker ransomware

  Researchers say LockerPIN is a self-defending, aggressive piece of ransomware currently targeting Android devices, mainly in the US

• September 09, 2015 09 Sep'15

  Security pros failing to address digital certificate risks, survey shows

  Even though 90% of security professionals believe a leading CA will be compromised in next two years, only 13% have existing automation to deal with that happening

• September 09, 2015 09 Sep'15

  Conventional security measures hit productivity, study shows

  Most IT professionals say context-aware security would improve productivity without compromising security, a survey from Dell reveals

• September 09, 2015 09 Sep'15

  Security vulnerability management more than patching, warns Secunia

  Keeping track of what makes an IT environment vulnerable is an ongoing and complex task, according to Secunia

• September 04, 2015 04 Sep'15

  US State Department plans cyber security playbook

  The US State Department issues a request for information to determine the capabilities of commercial industry to provide and maintain a cyber security playbook

• September 01, 2015 01 Sep'15

  DDoS attack on NCA highlights need to be prepared, says Barracuda Networks

  A Lizard Squad DDoS attack the NCA says is a fact of life highlights the need for organisations to be prepared, according to Barracuda Networks

• August 27, 2015 27 Aug'15

  Rapid7 calls on router makers to eliminate backdoors

  Until manufacturers stop using default passwords, we will continue to see opportunistic attacks on home and small business routers, says Rapid7's Tod Beardsley

• August 26, 2015 26 Aug'15

  Many firms not getting to grips with third-party data security risk

  Supply chain data security risk is pervasive, but being unable to deal with it is down to basic failings, says a cyber risk expert

• August 20, 2015 20 Aug'15

  Premiership Rugby scores security and efficiency with Intralinks

  By setting access controls, Premiership Rugby can ensure that its partners get quick access only to role-appropriate content

• August 16, 2015 16 Aug'15

  Mobile phone users at risk as hackers bug and track victims

  An investigation by Australian TV show 60 Minutes demonstrates how hackers based thousands of miles away in Germany were able to record the calls of an Australian senator and track his movements

• August 10, 2015 10 Aug'15

  BlackHat 2015: Industrial hacking - the untold story

  Hackers have been penetrating industrial control systems for at least a decade for extortion, yet little is known about how they gain access

• August 03, 2015 03 Aug'15

  Why the time is ripe for security behaviour analytics

  Recent months have seen an uptick in announcements by security suppliers around behavioural analytics, but what is driving this trend?

• July 29, 2015 29 Jul'15

  A third of employees will sell company data if the price is right, study reveals

  For £5,000, a quarter of employees polled said they would sell confidential company data, and risk both their job and criminal convictions

• July 22, 2015 22 Jul'15

  Jeep hack raises questions about responsibility for security

  The hack of a Jeep raises the question whether users or car manufacturers should be responsible for protecting against cyber attackers

• July 21, 2015 21 Jul'15

  Information security governance maturing, says Gartner

  Increasing awareness of the impact of digital business risks, coupled with high levels of publicity regarding cyber security incidents, is making IT risk a board-level issue, says Gartner