News

IT risk management

• June 04, 2024 04 Jun'24

  NHS services at major London hospitals disrupted by cyber attack

  A major cyber attack at NHS services provider Synnovis is disrupting frontline care at hospitals across London

• June 04, 2024 04 Jun'24

  Russia used fake AI Tom Cruise in Olympic disinformation campaign

  Microsoft threat researchers report a surge in Russian disinformation campaigns targeting the 2024 Summer Olympics, including AI-enhanced propaganda

• June 03, 2024 03 Jun'24

  97 FTSE 100 firms exposed to supply chain breaches

  Between March 2023 and March 2024, 97 out of 100 companies on the UK’s FTSE 100 list were put at risk of compromise following supply chain breaches at third-party suppliers

• June 03, 2024 03 Jun'24

  Sellafield local authority slammed over response to North Korean ransomware attack

  The local authority for Europe’s biggest nuclear site has been slammed by auditors for its response to a North Korea-linked cyber attack that temporarily crippled its operations

• June 02, 2024 02 Jun'24

  Ticketek Australia hit by data breach

  Customer names, dates of birth and email addresses of Ticketek Australia account holders reportedly impacted in latest data breach affecting event ticketing firm

• May 31, 2024 31 May'24

  Law student ‘unfairly disciplined’ after reporting data breach blunder

  A law student has accused a leading legal college of unethical behaviour and a “lack of integrity” after it brought misconduct proceedings against him when he reported a data security blunder

• May 30, 2024 30 May'24

  Europol sting operation smokes multiple botnets

  Malware droppers including Bumblebee and Smokeloader were among those targeted in one of the largest ever joint operations against cyber criminal botnets

• May 29, 2024 29 May'24

  Storebrand divests from IBM over supply of biometrics to Israel

  Norwegian asset manager Storebrand’s decision to divest from IBM comes amid growing scrutiny of the role technology companies play in Israel’s human rights abuses

• May 29, 2024 29 May'24

  Proofpoint exposes AFF scammers’ piano gambit

  Ransomware and nation state actors dominate the headlines, but fraud and scams still net career cyber criminals thousands from unsuspecting members of the public. Proofpoint reports on a campaign targeting victims of a musical inclination

• May 29, 2024 29 May'24

  Organisations value digital trust, but aren’t working at it

  Three quarters of organisations believe digital trust is relevant to their businesses, yet clear gaps in strategies still seem to persist

• May 28, 2024 28 May'24

  Executive Interview: Why Dell wants to be your one-stop AI shop

  At Dell Technologies World in Las Vegas, artificial intelligence was the talk of the town as Dell staked out an all-encompassing strategy ahead of an anticipated goldrush. Dell’s Nick Brackney explains why the tech giant believes it's onto a winner

• May 28, 2024 28 May'24

  Why reliable data is essential for trustworthy AI

  In little over two years, generative AI has changed the shape of the technology industry. Now is the time for proper due diligence

• May 24, 2024 24 May'24

  Parliamentarians warn of UK election threat from Russia, China and North Korea

  Joint parliamentary security committee chair Margaret Beckett writes to prime minister urging government to prepare for foreign states interfering with 4 July election

• May 23, 2024 23 May'24

  Munich Re sees strong growth in AI insurance

  Global reinsurance giant Munich Re expects more demand for AI insurance from organisations that are looking to manage the risks of AI as they experiment more with the technology

• May 22, 2024 22 May'24

  Rockwell urges users to disconnect ICS equipment

  ICS systems maker Rockwell Automation calls on users to take steps to secure their equipment, and reminds them there is no reason to ever have its hardware connected to the public internet, as it tracks an increase in global threat activity

• May 21, 2024 21 May'24

  The Security Interviews: What is the real cyber threat from China?

  Former NCSC boss Ciaran Martin talks about nation-state attacks, why the UK has become so exercised about cyber espionage, and how our leaders are in danger of misunderstanding their adversaries

• May 20, 2024 20 May'24

  WikiLeaks founder Julian Assange granted appeal

  Two high court judges granted WikiLeaks founder Julian Assange leave to appeal against extradition to the US after defence lawyers argued that the US had failed to give adequate assurances

• May 17, 2024 17 May'24

  Why the UK needs to fix its broken IT security market

  Ollie Whitehouse, CTO of GCHQ’s National Cyber Security Centre, says the market for secure software is broken. Are new laws required to make software companies liable for poor security?

• May 15, 2024 15 May'24

  GCHQ to protect politicians and election candidates from cyber attacks

  The National Cyber Security Centre, part of GCHQ, to protect election candidates from hostile state cyber attacks

• May 15, 2024 15 May'24

  Cyber Safety Force wants to change conversation around risk

  A consortium to help cyber pros better manage risk has launched, with ambitious goals to change the nature of the conversation from cyber security to cyber safety

• May 15, 2024 15 May'24

  Critical SharePoint, Qakbot-linked flaws focus of May Patch Tuesday

  A critical SharePoint vulnerability warrants attention this month, but it is another flaw that seems to be linked to the infamous Qakbot malware that is drawing attention

• May 15, 2024 15 May'24

  WikiLeaks founder’s extradition case labelled ‘institutional corruption’

  Call for Julian Assange to be prosecuted in the US has been condemned as ‘institutional corruption on a judicial level’ with the WikiLeaks founder a ‘political prisoner’

• May 14, 2024 14 May'24

  China poses genuine and increasing cyber security risk to UK, says GCHQ director

  GCHQ director Anne Keast-Butler uses her first major public speech to warn that China poses a significant cyber security threat to the UK

• May 14, 2024 14 May'24

  CyberUK 24: UK insurance industry gets tough on ransomware

  Three of the UK’s largest insurance associations have signed on to a new initiative spearheaded by the NCSC to try to bring down the number of ransomware payments being made

• May 10, 2024 10 May'24

  Major breach of customer information developing at Dell

  Almost 50 million data records relating to Dell customers appear to have been compromised in a major cyber breach

• May 09, 2024 09 May'24

  Wales gets UK’s first national SOC

  The first national security operations centre of its kind in the UK has opened in the south of Wales to safeguard public sector bodies across the country

• May 09, 2024 09 May'24

  Ofcom publishes draft online child safety rules for tech firms

  In the draft codes, Ofcom calls on technology firms to use ‘robust’ age-checking and content moderation systems to keep harmful material away from children online

• May 08, 2024 08 May'24

  Cyber attack ruled out as source of UK Border Force outage

  An IT outage that caused automated passport control e-gates to crash across the UK has been resolved, with a cyber attack ruled out as the cause

• May 06, 2024 06 May'24

  Microsoft beefs up cyber initiative after hard-hitting US report

  Microsoft is expanding its recently launched Secure Future Initiative in the wake of a hard-hitting US government report on recent nation state intrusions into its systems

• May 03, 2024 03 May'24

  Adobe expands bug bounty programme to account for GenAI

  Adobe has expanded the scope of its HackerOne-driven bug bounty scheme to incorporate flaws and risks arising from the development of generative artificial intelligence

• May 03, 2024 03 May'24

  Patch GitLab vuln without delay, users warned

  The addition of a serious vulnerability in the GitLab open source platform to CISA’s KEV catalogue prompts a flurry of concern

• May 03, 2024 03 May'24

  EU calls out Fancy Bear over attacks on Czech, German governments

  The European Union, alongside member states Czechia and Germany, have accused Russian government APT Fancy Bear of being behind a series of attacks on political parties and government bodies

• May 03, 2024 03 May'24

  Why IAM is central to cyber security

  BeyondTrust’s chief security strategist talks up the importance of identity and access management, and the role of cyber insurance in driving security improvements

• May 02, 2024 02 May'24

  NCSC updates warning over hacktivist threat to CNI

  The NCSC and CISA have warned about the evolving threat from Russia-backed hacktivist threat actors targeting critical national infrastructure, after a number of American utilities were attacked

• May 02, 2024 02 May'24

  BBC instructs lawyers over allegations of police surveillance of journalist

  Lawyers for the BBC have written to the Investigatory Powers Tribunal over allegations that the Police Service of Northern Ireland spied on investigative journalist Vincent Kearney

• May 02, 2024 02 May'24

  How Okta is fending off identity-based attacks

  Okta has been bolstering the security of its own infrastructure and building new tools to scan customer environments for vulnerable identities, among other efforts to fend off identity-based attacks

• May 01, 2024 01 May'24

  EMEA CISOs must address human factors behind cyber incidents

  The 17th annual Verizon report on data breaches makes for sobering reading for security pros, urging them to do more to address the human factors involved in cyber incidents, and highlighting ongoing issues with zero-day patching

• May 01, 2024 01 May'24

  Autonomous weapons reduce moral agency and devalue human life

  Military technology experts gathered in Vienna have warned about the detrimental psychological effects of AI-powered weapons, arguing that implementing systems of algorithmic-enabled killing dehumanises both the user and the target

• April 30, 2024 30 Apr'24

  Global majority united on multilateral regulation of AI weapons

  Foreign ministers and civil society representatives say that multilateralism is key to controlling the proliferation and use of AI-powered autonomous weapons, but that a small number of powerful countries are holding back progress

• April 30, 2024 30 Apr'24

  Bad bot traffic in Australia grew 23% in 2023

  Traffic from bad bots that perform malicious tasks accounted for 30.2% of Australia’s internet traffic in 2023

• April 29, 2024 29 Apr'24

  UK’s long-awaited device security law kicks in

  The Product Security and Telecommunications Infrastructure Act has become law across the UK, enforcing basic cyber security standards across connected products sold to the public

• April 25, 2024 25 Apr'24

  Zero trust is a strategy, not a technology

  Zero-trust security should be seen as a strategy to protect high-value assets and is not tied to a specific technology or product, says the model’s creator John Kindervag

• April 24, 2024 24 Apr'24

  Cyber training leader KnowBe4 to buy email security firm Egress

  Security awareness training and phishing simulation specialist KnowBe4 is to buy email security expert Egress

• April 24, 2024 24 Apr'24

  Education will be key to good AI regulation: A view from the USA

  Computer Weekly sat down with Salesforce’s vice-president of federal government affairs, Hugh Gamble, to find out how the US is forging a path towards AI regulation, and how things look from Capitol Hill

• April 23, 2024 23 Apr'24

  GooseEgg proves golden for Fancy Bear, says Microsoft

  Microsoft’s threat researchers have uncovered GooseEgg, a never-before-seen tool being used by Forest Blizzard, or Fancy Bear, in conjunction with vulnerabilities in Windows Print Spooler

• April 23, 2024 23 Apr'24

  Lords split over UK government approach to autonomous weapons

  During a debate on autonomous weapons systems, Lords expressed mixed opinions towards the UK government’s current position, including its reluctance to adopt a working definition and commit to international legal instruments controlling their use

• April 22, 2024 22 Apr'24

  Former Sellafield consultant claims the nuclear complex tampered with evidence

  Whistleblower Alison McDermott claims former employer Sellafield tampered with metadata in letters used in evidence during an employment tribunal

• April 22, 2024 22 Apr'24

  Fujifilm plans to ‘make tape easy’ with Kangaroo SME appliance

  Fujifilm to add 100TB SME-focused Kangaroo tape infrastructure in a box to existing 1PB offer, as energy efficiency and security of tape make it alluring to customers

• April 22, 2024 22 Apr'24

  NCSC announces PwC’s Richard Horne as CEO

  Former PwC and Barclays cyber chief Richard Horne set to join UK’s National Cyber Security Centre as CEO

• April 22, 2024 22 Apr'24

  IT leaders hiring CISOs aplenty, but don’t fully understand the role

  Most businesses now have a CISO, but perceptions of what CISOs are supposed to do, and confusion over the value they offer, may be holding back harmonious relations, according to a report