News

IT security

• February 11, 2019 11 Feb'19

  Lauri Love takes legal action against NCA for return of seized computers

  Lauri Love, a former engineering student who won a battle with the US Department of Justice against extradition to the US to face hacking charges, is suing the UK's intelligence agency, the NCA, for the return of his seized computers

• February 10, 2019 10 Feb'19

  Australia’s defence department keeps old PCs out of landfills

  Department has securely wiped data from used devices and kept 1,300 tonnes of e-waste out of landfills

• February 08, 2019 08 Feb'19

  Mumsnet denies 'thousands' affected by software glitch-induced data breach

  Parenting advice site Mumsnet moves to clear up reports that thousands of users have been affected by its recent data breach

• February 08, 2019 08 Feb'19

  NHS extends trials of digital identity system

  The NHS in England is working with external organisations in new pilots to test its secure online login system for healthcare

• February 07, 2019 07 Feb'19

  Data breaches in Australia show no sign of abating

  Australia’s privacy watchdog recorded over 800 cases of data breaches, nearly one year into the country’s mandatory data breach notification regime

• February 06, 2019 06 Feb'19

  Huawei: We are not spying on the UK

  Huawei’s Ryan Ding tells the British government that the company has never, and will never, use its technology to assist the Chinese intelligence services

• February 06, 2019 06 Feb'19

  What is CIO best practice when it comes to cloud security?

  As businesses increasingly adopt cloud-first strategies, how can they ensure their security is up to scratch? Computer Weekly asks the experts

• February 06, 2019 06 Feb'19

  Tech sector tells government that digital identity policy is 'urgently required'

  The UK tech sector has urged the government to publish policy to support the creation of a “fully functioning” digital identity market, to boost the digital economy

• February 05, 2019 05 Feb'19

  Civil liberties groups to challenge bulk surveillance and intelligence sharing in Strasbourg

  Coalition of campaigning groups wins the right to challenge the UK’s use of bulk surveillance powers, which allows suspicionless surveillance of the population and sharing of intercepted data with overseas intelligence agencies, in European Court of...

• February 05, 2019 05 Feb'19

  Cambridge launches urban data IoT project

  The city of Cambridge will use Telensa IoT sensors and a Microsoft Azure platform to better manage its urban data assets

• February 04, 2019 04 Feb'19

  Massive uptick in cyber attacks targeting Student Loans Company

  Cyber criminals used a range of techniques, as well as malware, malicious emails and calls, in attempts to access confidential financial data belonging to students, in massive uptick in attacks in the past year

• February 01, 2019 01 Feb'19

  Met Police deploys live facial recognition technology for ninth time

  Police say technology is helping to prevent and detect crime by identifying wanted criminals, but privacy groups have voiced their opposition

• February 01, 2019 01 Feb'19

  Orange acquires UK’s SecureData

  The Orange telecommunications group is to acquire UK cyber security firm SecureData to strengthen its leadership position in Europe in this sector

• February 01, 2019 01 Feb'19

  Innocent people arrested following surveillance blunders, IPCO reveals

  Interception of communications commissioner Adrian Fulford warns of “grave” repercussions for people wrongly identified as suspects due to errors made when government bodies access email, phone and telephone data

• February 01, 2019 01 Feb'19

  ICO to audit Leave.EU and Eldon Insurance

  UK privacy watchdog will audit the data protection practices at Leave.EU and Eldon Insurance and has confirmed fines for both companies for unlawful marketing messages

• February 01, 2019 01 Feb'19

  New stolen credentials cache puts spotlight on authentication

  The discovery of billions more stolen usernames and passwords in Collections #2 to #5 have prompted fresh calls for the implementation of better authentication methods across industry

• January 31, 2019 31 Jan'19

  Cisco Live Europe: Intent-based networking meets the IoT head-on

  Networking and communications technology supplier Cisco plans to bring intent-based networking techniques to bear on the internet of things

• January 31, 2019 31 Jan'19

  Airbus investigates personnel data breach

  Intruders were detected in the information systems of manufacturer’s commercial aircraft business, highlighting the need for a new approach to data protection

• January 31, 2019 31 Jan'19

  Facebook profit up despite privacy failings

  Social media giant reports profit gains for the last quarter and the past year, despite a string of privacy blunders that came to light in 2018

• January 31, 2019 31 Jan'19

  Cyber insurance uptake growing, but not all firms convinced

  The adoption of cyber insurance is expected to grow, but one in three companies still are not sold on the benefits, a survey shows

• January 30, 2019 30 Jan'19

  YouTuber impersonation scam not new, say researchers

  Scam that tricked users into clicking on phishing links has affected tens of thousands of victims and has been active for several years, say security researchers

• January 30, 2019 30 Jan'19

  Unconfigured IoT is a security risk, warns researcher

  Internet of things researcher says unconfigured internet-connected devices are a largely unrecognised cyber security risk to businesses and consumers, and welcomes the increased likelihood of UK IoT legislation

• January 30, 2019 30 Jan'19

  How traffic scrubbing can guard against DDoS attacks

  Although most scrubbing services can help fend off distributed denial of service attacks, a more comprehensive mitigation strategy is required to remain unscathed

• January 29, 2019 29 Jan'19

  No-deal Brexit would undermine digital economy, BCS warns

  Skills, funding and the free flow of data are all at risk, says the chartered institute for IT

• January 29, 2019 29 Jan'19

  Global cyber attack could cost up to $193bn, study shows

  A coordinated global cyber attack could have an economic impact of up to $193bn, an insurance industry-backed report claims

• January 29, 2019 29 Jan'19

  UK police target hundreds of DDoS attackers

  National Crime Agency is investigating hundreds of suspected users of a distributed denial of service-for-hire site that was taken down by an international law enforcement operation

• January 29, 2019 29 Jan'19

  New tech putting sensitive data at risk, report confirms

  Deployments of new technologies are putting sensitive corporate data at risk because organisations are struggling to secure these new IT environments, a report confirms

• January 28, 2019 28 Jan'19

  Personal records of HIV-positive individuals in Singapore leaked online

  The personal information of 14,200 people with the human immunodeficiency virus was leaked by an American who lived in Singapore

• January 28, 2019 28 Jan'19

  Security alert for vulnerabilities in Siemens PLCs

  Industries that use Siemens Simatic controllers to automate manufacturing processes have been urged to update software without delay

• January 28, 2019 28 Jan'19

  Data protection practices still poor, survey shows

  Despite concerns over privacy and data protection and a greater understanding of best security practices, individuals and businesses are still falling short, a survey reveals

• January 28, 2019 28 Jan'19

  Minister urges UK firms to prepare for no-deal Brexit

  On International Data Protection Day, the UK’s digital minister has added her voice to calls by the data protection watchdog for UK firms to prepare for a no-deal Brexit

• January 28, 2019 28 Jan'19

  Government to pump £70m into ‘designing out’ cyber threats

  Industrial Strategy Challenge Fund cash to be used for designing and developing more secure hardware in a bid to eradicate cyber threats

• January 28, 2019 28 Jan'19

  DCMS funding fuels cyber diversity drive

  The Department for Digital, Culture, Media and Sport is investing in four new projects to drive the number of diverse candidates considered for cyber careers

• January 28, 2019 28 Jan'19

  UK cyber security agency investigates DNS hijacking

  NCSC is probing the large-scale DNS hijacking campaign that has reportedly affected government and commercial organisations worldwide, and has issued defence advice

• January 25, 2019 25 Jan'19

  Vodafone suspends use of Huawei hardware

  Vodafone’s UK CEO has said the operator will ‘pause’ its use of Huawei hardware for the foreseeable future

• January 25, 2019 25 Jan'19

  Budding UK cyber strategists gear up for national competition 

  Teams of UK university students are preparing to compete for the second time in analysing the threat of a simulated cyber attack to develop policies and strategies

• January 25, 2019 25 Jan'19

  ICO adds to guidance on ‘no-deal’ Brexit

  The UK’s privacy watchdog has been advising UK firms to prepare for a no-deal Brexit and has added some guidance for SMEs

• January 25, 2019 25 Jan'19

  Former EU data protection tsar joins ICO

  Former EU data protection supervisor joins the UK’s privacy watchdog as non-executive director, strengthening its commitment to international work

• January 25, 2019 25 Jan'19

  Chinese government grants BT new powers

  Enhanced operating licences improve telco’s ability to work with customers in China

• January 24, 2019 24 Jan'19

  Poor practices expose 24 million financial records

  Failure to maintain appropriate security controls has again led to the exposure of millions of sensitive data records, this time from the banking world

• January 24, 2019 24 Jan'19

  IoT application vulnerabilities leave devices open to attack

  Barracuda Networks calls for internet of things devices to be subject to regular security review after researchers detail the application vulnerabilities of an internet-connected security camera

• January 24, 2019 24 Jan'19

  Crime stats show switch in focus by cyber criminals

  The latest crime statistics suggest that cyber criminals are turning their attention to organisations and social engineering attacks as they become more sophisticated

• January 24, 2019 24 Jan'19

  Thales eSecurity spins out nCipher

  After just over a decade, Thales eSecurity has announced that it has spun out HSM specialist nCipher, the UK-based encryption firm it acquired for $100m in 2008

• January 24, 2019 24 Jan'19

  Business failing to see strategic value of cyber security

  UK businesses are failing to get value out of cyber security because they fail to see its strategic importance and often have a negative attitude towards security professionals, a study has revealed

• January 24, 2019 24 Jan'19

  AWS now accredited to run protected workloads in Australia

  Accreditation from the Australian Cyber Security Centre will enable organisations to store and process sensitive data in the Amazon Web Services Sydney region

• January 23, 2019 23 Jan'19

  Facebook’s objections to court concerns over privacy more about ‘optics’ than facts

  Facebook’s challenge to a High Court ruling that raises serious concerns about data transfers between Europe and the US is more about appearance than facts, lawyers for the Irish Data Protection Commission told Dublin's Supreme Court

• January 23, 2019 23 Jan'19

  MPs challenge Huawei over spying allegations

  The chair of the cross-bench Science and Technology Committee has written to Huawei seeking answers over its activities in the UK

• January 23, 2019 23 Jan'19

  Time to deploy strong authentication, says Fido

  The time has come for organisations to deploy cryptographically backed strong authentication, according to the Fido Alliance, which seeks to eliminate the world’s dependence on password-based security

• January 23, 2019 23 Jan'19

  US issues emergency directive to halt DNS hijacking

  US government agencies have been given 10 days to complete a four-step action plan to stop DNS hijacking attacks

• January 22, 2019 22 Jan'19

  IBM mobile cyber range starts European tour in London

  IBM’s mobile cyber range is kicking of a tour in London to raise awareness around the need for tried and tested cyber attack responses among organisations in Europe

• January 22, 2019 22 Jan'19

  Young Dutch cyber criminals get re-education rather than jail time

  Young hackers in the Netherlands are being rehabilitated through punishments that educate rather than incarcerate

• January 22, 2019 22 Jan'19

  Ransomware in decline, report confirms

  The trend of cryptomining replacing ransomware as the most popular money-generating activity by cyber attackers appears to be confirmed by malware stats for the past year

• January 22, 2019 22 Jan'19

  London cyber innovation centre expands global ties

  London innovation centre Plexal has announced international partnerships aimed at boosting global cyber security cooperation

• January 22, 2019 22 Jan'19

  Davos 2019: Why data sharing is key to AI in Industry 4.0

  Machines can learn from humans, but no one does the same job in the same way, so it makes sense to identify best practices

• January 22, 2019 22 Jan'19

  Facebook: US government does not engage in mass and indiscriminate surveillance

  Social media giant challenges a ruling by Dublin’s High Court over a judgment that it says made ‘extraordinary and incorrect’ findings about the US legal system

• January 22, 2019 22 Jan'19

  €50m GDPR fine for Google is a wake-up call for tech giants

  The French data protection authority has fined Google €50m for contravening EU data protection laws, which has been hailed as a warning for tech giants and other data handling firms

• January 21, 2019 21 Jan'19

  Name and shame firms with poor cyber security, government told

  The government should name and shame companies whose cyber security measures fail to protect consumers’ data and firms should implement Active Cyber Defence, an academic report urges

• January 21, 2019 21 Jan'19

  Public procurement key to cyber security

  Using public procurement as a means of boosting cyber security is the top recommendation for 2019, according to a report based on expert views

• January 21, 2019 21 Jan'19

  Home Office vetoes privacy campaigner from senior post in surveillance watchdog

  The Home Office refuses academic and privacy campaigner, Eric King, security clearance for a senior role at the intelligence services watchdog, despite high-level backing from officials

• January 18, 2019 18 Jan'19

  Five issues for SMEs to consider when adopting encryption

  Encryption is still considered difficult to deploy and use as a data protection method, especially by small businesses, but considering five key factors can make adoption easier, says Becrypt

• January 18, 2019 18 Jan'19

  Prepare for no-deal Brexit, says ICO

  The UK data protection authority is urging businesses to prepare for a no-deal Brexit to ensure there is no interruption in data flows from Europe

• January 17, 2019 17 Jan'19

  Breach of nearly 2.7 billion records underlines password flaws

  Potentially the biggest personal data breach to date from thousands of sources, some possibly breached as far back as 2008, illustrates the deeply flawed nature of password-based authentication, say industry commentators

• January 17, 2019 17 Jan'19

  Threat intelligence boosts security training

  Security professionals in training can now benefit from real-time threat intelligence data, thanks to a partnership between Digital Shadows and Immersive Labs

• January 17, 2019 17 Jan'19

  CenturyLink opens Singapore SOC amid security services boom

  US telco’s second Asia-Pacific security operations centre in Singapore is one of eight globally as it bids to carve a slice of the security services market

• January 16, 2019 16 Jan'19

  New Zealand faces more state-sponsored attacks

  Nearly four in 10 cyber security incidents recorded by the National Cyber Security Centre were the work of state-sponsored threat actors

• January 16, 2019 16 Jan'19

  Dutch pharma firm Centrient switches out MPLS for Cato SD-WAN

  Centrient Pharmaceuticals, a Netherlands-based drug company, has switched out its global MPLS service in favour of a high-performance software-defined WAN from Cato Networks

• January 16, 2019 16 Jan'19

  Researchers discover new Magecart group

  Security researchers have uncovered a sub-group of the Magecart hacking group, highlighting the wider risks of web-based supply chain attacks

• January 16, 2019 16 Jan'19

  Davos: World leaders need to grasp future technological risks

  Technological advancement is both a benefit and risk to society, but often the risks are not identified until they are exploited

• January 15, 2019 15 Jan'19

  Millions of industrial remote controllers open to attack

  Millions of industrial remote controllers are open to cyber attack because of vulnerabilities in the radio frequency technology used, a study has revealed

• January 15, 2019 15 Jan'19

  Businesses fail to apply encryption technology effectively

  Most businesses are not applying common encryption tools effectively to contain the fallout and costs of data breaches, research shows

• January 15, 2019 15 Jan'19

  Less than half of firms able to detect IoT breaches, study shows

  UK firms have one of the lowest internet-of-things device breach detection capabilities in Europe, a study reveals

• January 15, 2019 15 Jan'19

  SingHealth and IT supplier fined S$1m for data breach

  Singapore’s data protection commission considered the fact that both SingHealth and its IT supplier fell prey to sophisticated threat actors, among other factors, when meting out the fine

• January 14, 2019 14 Jan'19

  Why CIOs need to reshape desktop IT for Windows 7 end of support

  With a year to go before Windows 7 reaches end of life, IT departments have more than just the operating system upgrade to consider

• January 14, 2019 14 Jan'19

  Top UK hacker-for-hire jailed

  Notorious British hacker-for-hire jailed for cyber attacks on a Liberian telco after an international criminal justice operation

• January 11, 2019 11 Jan'19

  AI application overlooked in cyber security research

  Despite the proliferation of cyber security products and services claiming to be driven by artificial intelligence, the application of the technology is being overlooked by research, a study shows

• January 10, 2019 10 Jan'19

  Right to be forgotten is not global, says EU court adviser

  The right to be forgotten should apply only in the European Union, according to the chief adviser to the European Court of Justice

• January 10, 2019 10 Jan'19

  UK firms say £6.6bn annual security testing cost too high

  Avord launches platform to reduce the multibillion-pound annual cyber security testing cost that most UK firms say is too high

• January 10, 2019 10 Jan'19

  Germany races to boost cyber defences after breach

  Germany is scrambling to improve its cyber defences before the European parliamentary elections after a student leaked politicians’ personal data

• January 09, 2019 09 Jan'19

  2FA bypass tool highlights top business security vulnerabilities

  CEOs are the most likely target of two-factor authentication phishing bypasses, demonstrated by a security researcher’s proof-of-concept attack

• January 09, 2019 09 Jan'19

  FireEye gears up email security for emerging threats

  Email continues to be a top means of initiating cyber attacks with new detection bypass techniques and executive impersonation capabilities continually emerging, research shows

• January 09, 2019 09 Jan'19

  NHS Digital chief information security officer resigns

  Robert Coles, who joined NHS Digital as its chief information and security officer in October 2018, is stepping down from the role for personal reasons

• January 08, 2019 08 Jan'19

  Second Lorca cohort to focus on supply chain security

  The second cohort of companies to benefit from the new London cyber innovation centre will focus on user-centric security and securing supply chains

• January 08, 2019 08 Jan'19

  Protego Labs launches serverless app security tool

  Security professionals and developers now have a way to assess the security of their serverless applications with a new open source testing tool donated to Owasp

• January 07, 2019 07 Jan'19

  Boards need to be active partners in cyber defence

  Board members must be active governance partners in collaborative cyber defence, says US regional information sharing and analysis organisation

• January 07, 2019 07 Jan'19

  BlackBerry licenses security tech to IoT device makers

  BlackBerry is to license its secure software development technology to the makers of internet-connected devices to boost IoT security

• January 07, 2019 07 Jan'19

  UK contactless card fraud surges

  Fraudsters stole £1.18m from contactless users in 2018, with the average theft size also increasing

• January 07, 2019 07 Jan'19

  Almost half of containers in production have vulnerabilities, study finds

  More containers are being deployed in production, but many businesses are unaware if they are secure

• January 06, 2019 06 Jan'19

  Singapore Airlines’ software glitch exposed customer data

  More than 280 members of the Krisflyer frequent flyer programme had their personal information compromised by a one-off software bug

• January 04, 2019 04 Jan'19

  Modern IT underlines need for zero-trust security

  The increasing complexity of supply chains and interconnectivity of IT systems means the attack surface is widening and security has to evolve accordingly, warns British computer scientist

• January 04, 2019 04 Jan'19

  Data breaches affected more than a billion people in 2018

  The personal information of more than a billion people was compromised in 2018 as companies holding the data failed to keep it safe

• January 04, 2019 04 Jan'19

  German politicians’ data leak shows need for global action

  Hacked data includes contacts’ email addresses, private chats, mobile numbers, photographs and credit card details, which were published on Twitter

• January 04, 2019 04 Jan'19

  Phishing attacks hidden by custom fonts

  Security researchers have uncovered a new way in which phishing attacks are evading detection.

• January 03, 2019 03 Jan'19

  IT regulators and practitioners need common language

  There needs to be greater understanding between lawmakers and technologists to ensure regulations do not have unintended consequences, says a US computer security researcher and bug bounty pioneer

• January 03, 2019 03 Jan'19

  Intel admits chip security has a long way to go

  A year ago, the world came to realise how a side-loading attack could compromise a microprocessor. Intel has been working hard to make fixes easier

• January 03, 2019 03 Jan'19

  Fortinet to lead cyber security discussion at WEF annual summit

  The head of cyber security firm Fortinet has been named as a discussion leader at the upcoming World Economic Forum annual meeting in Davos, Switzerland

• January 02, 2019 02 Jan'19

  Kaspersky Lab champions gender equality and digital child safety

  Kaspersky Lab report highlights gender equality in the technology industry and child education about digital security

• January 02, 2019 02 Jan'19

  How e-signatures fix broken digitisation

  A big barrier to the end-to-end digitisation of business processes is that certain steps require paper – but DocuSign plans to fix this

• December 31, 2018 31 Dec'18

  New Year’s Honours 2019 lauds women in IT and data specialists

  The New Year’s Honours list 2019 features accolades for leading women in IT and data, as well as other specialists in data

• December 31, 2018 31 Dec'18

  Top 10 network stories of 2018

  2018 was the year when software-defined networking, and more specifically software-defined WANs, took centre stage. We look back at a transformative year for the world of the network manager

• December 28, 2018 28 Dec'18

  Top 10 stories on national security in 2018

  From Russian disinformation, state surveillance, and police stop and seizure powers, to Facebook and WikiLeaks