News

IT risk management

• July 25, 2011 25 Jul'11

  UK confirms international cyber rules conference

  UK foreign secretary William Hague has confirmed that the government is to host an international conference on cyberspace in London on 1 and 2 November 2011.

• July 22, 2011 22 Jul'11

  British Computer Society – the case for change

  A year on from the BCS extraordinary general meeting (EGM), Amit Bhagwat looks at how BCS has evolved, why the EGM came about and gave the results that it did, what has followed since and, how BCS might consider its future from here.

• July 21, 2011 21 Jul'11

  Trend Micro aims to secure consumer mobile devices for enterprises

  Security firm Trend Micro has announced an enterprise mobile management product to help organisations integrate consumer devices into an enterprise environment in a secure way.

• July 20, 2011 20 Jul'11

  (ISC)² publishes official guide to CSSLP

  Information security body (ISC)² has published the only official guide to the Certified Secure Software Lifecycle Professional (CSSLP) certification.

• July 20, 2011 20 Jul'11

  Data breach at York University highlights urgency of security checks, says ICO

  The University of York's accidental breach of thousands of students' personal data points to a need for improved security checks, according to the Information Commissioner's Office.

• July 13, 2011 13 Jul'11

  Central government staff lack skills in IT

  A significant proportion of civil servants lack skills in areas such as IT, a National Audit Office report has found.

• July 12, 2011 12 Jul'11

  Cyber terrorism set to increase after al-Qaeda calls for more cyber attacks, says government

  Cyber terrorism will become an increasing problem as the tools and techniques needed for cyber attacks become more widely available, according to a report on the government's new counter-terrorism strategy.

• July 11, 2011 11 Jul'11

  Microsoft packs a lot into July’s four Patch Tuesday security updates

  Microsoft is to release only four security updates in this month's Patch Tuesday security update, but these will cover 22 vulnerabilities in Windows and Office.

• July 08, 2011 08 Jul'11

  Businesses understand social media risks but fail to take precautions, says survey

  Businesses are using social media without taking adequate measures to monitor staff activity, which could open them up to security attacks and create compliance risks.

• July 07, 2011 07 Jul'11

  FireControl project failed because of inadequate EADS contract, MPs told

  The failure of the canned £469m FireControl project was due to an inadequate IT contract, MPs were told at a Public Accounts Committee (PAC).

• July 07, 2011 07 Jul'11

  ICO calls on UK businesses to open their doors to audits and reduce data breaches

  Private enterprises make up a third of data security breach claims, but despite this, many continue to resist the offer of an audit by the Information Commissioner's Office (ICO), according to the privacy watchdog's latest annual report.

• July 05, 2011 05 Jul'11

  ICO issues warning over NHS Data Protection Act breaches

  Following five more NHS Data Protection Act violations, the Information Commissioner’s Office will redouble efforts to help NHS improve security.

• July 04, 2011 04 Jul'11

  Hulu withdraws Facebook Connect feature after software glitch leaked users' data

  US online video service Hulu has withdrawn its Facebook Connect integration because of security problems discovered soon after launch.

• July 04, 2011 04 Jul'11

  Hacker group Anonymous steals user names and passwords in cyber attack on Apple

  Hacker group Anonymous claims to have stolen 25 internal user names and passwords from Apple in the latest of a series of attacks on government and corporate websites around the world.

• June 30, 2011 30 Jun'11

  Japan earthquake and tsunami provides first real test of high-tech disaster recovery, says Microsoft

  Japan's earthquake and tsunami that killed at least 15,000 people and left 11,000 missing in March 2011 was the first real test of disaster recovery and business continuity plans on a large scale in a high-tech country, according to Microsoft.

• June 29, 2011 29 Jun'11

  Update software to reduce risk of cyber attack, top suppliers tell business

  Businesses are unnecessarily exposing themselves to cyber attack simply by failing to update to the latest versions of the software they are running, according to Microsoft and Adobe.

• June 27, 2011 27 Jun'11

  Lulz Security announces it is to disband following 50-day hacking spree 'cruise'

  Lulz Security – a group of hackers claiming responsibility for hacking Sony and Nintendo and taking down the websites of the Serious Organised Crime Agency and the US Senate – has announced it is to disband.

• June 23, 2011 23 Jun'11

  Tesco Bank customers remain locked out of accounts following migration glitch

  Tesco Bank customers are still unable to log into accounts following a migration glitch.

• June 22, 2011 22 Jun'11

  European Commission gives green light to CSC acquisition of beleaguered iSoft

  The European Commission (EC) has approved CSC's acquisition of healthcare software maker iSoft.

• June 22, 2011 22 Jun'11

  Mozilla releases final version of Firefox 5 for download

  Mozilla has released a fifth version of its web browser, Firefox, available to download for Windows, Mac, Linux and Android.

• June 22, 2011 22 Jun'11

  Security awareness tips: Making programmes more effective

  Several information security pros, via LinkedIn, share their best security awareness tips with SearchSecurity.co.UK.

• June 17, 2011 17 Jun'11

  Chinese software flaw makes infrastructure vulnerable, warns report

  China's public infrastructure is vulnerable to cyber attack because of vulnerabilities in software used to run weapons systems, utilities and chemical plants, according to Reuters.

• June 16, 2011 16 Jun'11

  NHS pays £200m advance to CSC as contract renegotiation nears conclusion

  The NHS has paid £200m to troubled supplier CSC as an advance while awaiting the conclusion of discussions on amendments to the controversial deal.

• June 15, 2011 15 Jun'11

  Government to create market for personal identity data

  The government is preparing to create a marketplace for citizens' personal data to be used for accessing online public services, according to documents that were issued to industry in preparation for the coalition's next-generation identity scheme.

• June 13, 2011 13 Jun'11

  Busy Patch Tuesday sees 16 Microsoft fixes coincide with Adobe security update release

  IT administrators will find their hands full this month with Microsoft planning 16 security updates to fix 34 vulnerabilities on the same day as security updates from Adobe.

• June 10, 2011 10 Jun'11

  Former T-Mobile employees ordered to pay nearly £80,000 for data theft

  The Chester Crown Court has ordered two former employees of UK mobile operator T-Mobile to pay a total of £73,700 after stealing and selling customer data from the company in 2008.

• June 07, 2011 07 Jun'11

  UK government to propose national website blocking list

  The UK government is considering setting up a national blocking list of violent and unlawful websites in plans to tackle radicalisation to be unveiled by Home Secretary Theresa May.

• June 02, 2011 02 Jun'11

  E-mail accounts of senior US officials targeted in Chinese hack attack

  Chinese hackers have accessed the accounts of hundreds of Gmail users, including senior US officials, Chinese political activists, military personnel, journalists and officials in several Asian countries, Google has said.

• May 27, 2011 27 May'11

  DWP prepares alternative to identity cards for Universal Credit

  The Department for Work and Pensions (DWP) is grooming a British tech start-up to play a key role in its £2bn Universal Credit benefits system.

• May 26, 2011 26 May'11

  Cross-site scripting attack on Hotmail highlights personal e-mail risk to business

  A vulnerability in the Hotmail site has enabled hackers to steal an unknown number of messages from users' accounts, according to security firm Trend Micro.

• May 25, 2011 25 May'11

  Apple issues Max OS X update to remove fake AV MacDefender malware

  Apple is to release a Mac OS X update to tackle fake antivirus software or "scareware" known as MacDefender, MacSecurity and MacProtector.

• May 18, 2011 18 May'11

  Future of NHS National Programme for IT in critical condition following NAO report

  The remaining NHS National Programme for IT could be scrapped entirely, as the project's aim to deliver electronic records for every patient has fallen far below expectations, according to a National Audit Office report.

• May 12, 2011 12 May'11

  Analysis: Will Android dominance increase IT security threats for business?

  The Android Market is forecast to become the world's biggest mobile content platform by August 2011, according to research by mobile application research firm Distimo.

• May 10, 2011 10 May'11

  New ICO guidance issued on EU cookie law

  The Information Commissioner's Office has released practical guidance for companies to comply with the new EU cookie law.

• May 06, 2011 06 May'11

  Hackers plan third attack on Sony

  Hackers are planning a third attack on Sony in retaliation for its handling of the PlayStation Network and Online Entertainment services data breaches, according to US reports.

• May 05, 2011 05 May'11

  What cloud risks should business consider after Amazon's EC2 outage?

  Amazon's recent outage has raised questions over the reliability of cloud services. If Amazon, with its global reach, cannot get IT right, how can CIOs expect other operators to cope? Jenny Williams investigates.

• April 27, 2011 27 Apr'11

  HSBC Insurance works with IBM to solve Solvency II

  HSBC Insurance in the UK is using IBM Global Services to support its European Solvency...

• April 20, 2011 20 Apr'11

  Infosec 2011: APT attacks a real threat to business, says security panel

  Advanced Persistent Threats are a reality and cannot be dismissed as a myth or media hype, according to a panel of experts debating the top threats at Infosecurity Europe 2011 in London.

• April 19, 2011 19 Apr'11

  Infosec 2011: Cisco announces new tools for securing the mobile enterprise

  Cisco has introduced new security products to its Borderless Networks portfolio to help IT departments manage mobile devices, changing workforce habits and the impact of video on the network.

• April 18, 2011 18 Apr'11

  Growth of NFC to drive overhaul of Chip and PIN equipment

  The growth of near-field communication (NFC) in the UK will drive the replacement of retailers' Chip and PIN point of sale (PoS) equipment, according to an analyst.

• April 13, 2011 13 Apr'11

  Building an Olympics network

  Preparation is clearly the key to Olympic success, as players on 27 July 2012 will see years of finely honed practice condensed into one gruelling fortnight

• April 13, 2011 13 Apr'11

  Infosec 2011: Charity sector shows the way to balance budget and security

  Tackling security project by project is an effective way of securing data on a limited budget, says Matt Holland, head of information security at children's charity NSPCC.

• April 12, 2011 12 Apr'11

  Infosec 2011: Compliance the biggest security juggernaut, says security expert

  The biggest security compliance juggernaut for businesses is concentrating on achieving compliance rather than changing they way they work, says Des Ward, president of the Cloud Security Alliance UK and Ireland chapter.

• April 11, 2011 11 Apr'11

  Manageability issues impede adoption of virtualisation

  Virtual infrastructure management challenges are hindering the adoption of virtualisation within businesses, according to research.

• April 08, 2011 08 Apr'11

  Motivated, information security policye-aware employees are the best defence

  Keeping employees motivated is the best way to ensure you have satisfied customers, and if it is an employee's responsibility to keep the customers happy,...

• April 07, 2011 07 Apr'11

  Sophisticated cyber thieves behind Epsilon data breach, says parent company

  US marketing firm Epsilon was hit by one of the biggest data thefts to date, the work of highly sophisticated cyber thieves, says parent company Alliance...

• April 05, 2011 05 Apr'11

  Sex offence technology helps business avoid legal liability

  Technology that cross references image hash codes against child sexual abuse material will help businesses avoid legal liability.

• April 05, 2011 05 Apr'11

  City of York falls foul of data protection act following printer mix-up

  The City of York Council has fallen foul of the Data Protection Act after having accidentally disclosed personal data following a printer mix-up.

• April 04, 2011 04 Apr'11

  RSA discloses phishing-attack data breach details

  RSA, the security division of EMC, has revealed the firm's data breach in mid March was the result of a spear phishing attack. The spear phishing attack exploited an Adobe Flash vulnerability that was unpatched at the time.

• March 29, 2011 29 Mar'11

  Open Group launches guide to boost ISO 27005 efforts

  A new guide from the Open Group is designed to help organisations meet ISO 27005 standards, but some risk management professionals feel it may not be so effective.