News

IT security

• May 21, 2018 21 May'18

  UK government promises laws to police 'Wild West Internet'

  UK government plans laws to make online activity safer after green paper reveals more needs to be done to protect citizens

• May 21, 2018 21 May'18

  ICO could use new GDPR powers in Facebook probe

  UK privacy watchdog is considering using new powers in its investigation of Facebook, while the government is considering new laws to police social media firms

• May 21, 2018 21 May'18

  APAC organisations could lose $1.75tn from cyber attacks

  A study by Frost and Sullivan has found that losses from cyber security incidents could account for 7% of the region’s GDP in 2017

• May 18, 2018 18 May'18

  NCSC calls for greater interaction with UK business

  The UK’s cyber security agency has called for greater interaction with business, particularly when it comes to cyber security incidents

• May 18, 2018 18 May'18

  Most UK marketers GDPR ready, but not all firms have a plan

  Most UK marketers believe they are ready for GDPR, but a worrying number believe their employers may not be, as businesses are urged to embrace the positives a week before the compliance deadline

• May 18, 2018 18 May'18

  BYOD in UK SMEs linked to security incidents

  Bring your own device practices have been identified as a cyber security risk for six in 10 SMEs in research published a week ahead of the GDPR compliance deadline

• May 18, 2018 18 May'18

  GDS seeks advice on migration from Public Services Network

  The Government Digital Service has started the process of moving public sector organisations away from the Public Services Network

• May 18, 2018 18 May'18

  Use GDPR to propel business forward, says ICO

  GDPR is about a new way of doing things that businesses can use to their advantage, and cyber security is a key element, according to the Information Commissioner’s Office

• May 18, 2018 18 May'18

  Government to get new digital visa service

  The Home Office has signed up to a deal with Sopra Steria for a visa service allowing people to use biometrics and digital files as part of their application

• May 17, 2018 17 May'18

  Report highlights security risk of open source code to business

  Increased adoption of open source code is introducing vulnerabilities into commercial software, with many audited codebases containing the Apache Struts flaw that enabled the Equifax breach, a report shows

• May 17, 2018 17 May'18

  GDPR impact on Whois data raising concern

  The negative impact of the GDPR on internet domain registration information is raising concern in cyber security circles because the data is key to cyber crime fighting operations

• May 17, 2018 17 May'18

  European cyber attacks up nearly a third in first quarter 2018

  The volume of cyber attacks hitting digital transactions in Europe was up by almost a third in the first quarter of 2018 compared with same period a year ago, a report reveals

• May 16, 2018 16 May'18

  Most firms see GDPR as an opportunity

  A growing number of organisations consider the GDPR to be an opportunity to improve the way they handle data privacy and security, while leaders are using it as an opportunity for full business transformation, a study shows

• May 16, 2018 16 May'18

  NHS England on the cusp of launching first citizen identity pilot

  The NHS will begin trialling its identity verification system with a non-clinical service shortly, with 20 other services in the pipeline, according to NHS England chief digital officer Juliet Bauer

• May 16, 2018 16 May'18

  US considers UK-style cyber defence model

  The US is considering adopting a similar cyber defence model to the UK’s in recognition of the growing threat to all levels of society

• May 16, 2018 16 May'18

  Google opens third availability zone in Singapore

  The latest Google Cloud Platform availability zone in Singapore follows recent efforts by rivals to extend their lead in the region

• May 15, 2018 15 May'18

  SMEs more worried about GDPR’s threat to reputation than fines

  SMEs are more worried about the damage GDPR non compliance will do to their reputations than their wallets

• May 15, 2018 15 May'18

  Credential theft a top priority, Rapid 7 report shows

  Credential theft is still a top priority for organisations to address in terms of making it more difficult for cyber attackers to gain unauthorised access to their networks, report reveals

• May 15, 2018 15 May'18

  Cross-site scripting a top vulnerability, hackers find

  Despite the much-publicised advances in cyber attack techniques, a well-known, well-documented and avoidable vulnerability is still the most popular for attackers to exploit – along with others like it that are often overlooked, white hat hackers ...

• May 15, 2018 15 May'18

  Cage director Rabbani heads for Supreme Court after appeals court rules password demands lawful

  Muhammad Rabbani, director of campaigning group Cage, will appeal to the Supreme Court after Court of Appeal rules that police did not act unlawfully by demanding his computer and mobile phone passwords under Section 7 of the Terrorism Act

• May 15, 2018 15 May'18

  Enterprise cyber threat remediation ineffective, study shows

  Enterprise cyber threat remediation needs to improve in several key areas, according to an analysis of common remediation strategies

• May 15, 2018 15 May'18

  BSI launches kitemark for internet of things devices

  The British Standards Institution has launched a new kitemark for IoT devices, designed to improve consumer trust in the technology

• May 15, 2018 15 May'18

  No need to panic about Efail attacks

  Initial reports about vulnerabilities in email encryption technologies have urged organisations to disable encryption tools, but some security experts are taking a more balanced approach

• May 14, 2018 14 May'18

  Technology continues to transform crime, warns NCA

  The UK’s National Crime Agency warns that developments in technology will continue to transform the future crime landscape, in its latest report on serious and organised crime

• May 14, 2018 14 May'18

  IoT and personal devices pose huge security risk to enterprises

  After years of speculation about the risk IoT and personal devices pose to enterprise security, research has revealed the threat is “immense” and probably greater than most firms realise

• May 11, 2018 11 May'18

  Police Scotland did not inform public of mobile phone searches

  Members of the Scottish Parliament heard that Police Scotland did not conduct impact assessments or give explanations to the public when they were accessing private data on their mobile phones

• May 11, 2018 11 May'18

  WannaCry’s EternalBlue exploit still a threat

  A year after the global WannaCry attacks, the EternalBlue exploit that was a key enabler for the malware is still a threat to many organisations, and many UK firms have not taken action, security researchers warn

• May 11, 2018 11 May'18

  EFF welcomes backdoor-blocking US bill

  International digital rights organisation welcomes proposed US legislation that will prevent the government from forcing a company to build backdoors into encrypted products and services

• May 10, 2018 10 May'18

  Citrix touts digital workspace app in services play

  Software supplier Citrix’s cloud-based workspace app is part of its efforts to deliver integrated services that support the modern workplace

• May 10, 2018 10 May'18

  Embrace GDPR to remain competitive, says OWI

  The EU’s General Data Protection Regulation is set to raise the bar internationally for data protection and should be embraced to remain competitive, says report

• May 09, 2018 09 May'18

  CNI providers face hefty fines for cyber security failings

  UK providers of critical national infrastructure face hefty fines for cyber security failings from 10 May 2018

• May 09, 2018 09 May'18

  Equifax breach lessons not learned

  Businesses are still downloading vulnerable versions of the software that was at the heart of the Equifax data breach and failing to update to safe versions, a security firm has revealed

• May 09, 2018 09 May'18

  Nutanix builds hooks to SDN and cloud with Flow, Era and Beam

  Hyper-converged pioneer builds in functionality from acquisitions with Flow software-defined networking, Beam cloud monitoring and Era database provisioning and data protection

• May 09, 2018 09 May'18

  Dutch Tax Authority not fully GDPR-compliant as deadline approaches

  The Netherlands’ Department of Finance warns that not all aspects of the EU privacy law will be implemented by the 25 May deadline

• May 09, 2018 09 May'18

  Breach disclosure time still high, report shows

  Companies are getting faster at disclosing breaches, but the average is still too high in the light of the GDPR and other breach disclosure regulations, a report shows

• May 08, 2018 08 May'18

  Nigerian cyber attackers up their game

  Nigerian cyber attackers have modernised their approach to cyber crime, security researchers warn

• May 08, 2018 08 May'18

  Financial sector cyber-related laws are a bellwether, says Deloitte

  As the regulatory landscape becomes more complex, organisations should look to the financial sector to see what else is coming, as well as focus on three key areas of GDPR compliance, according to Deloitte

• May 08, 2018 08 May'18

  Virtual tripwire to keep elephant poachers out of Zambian national park

  Cisco and Dimension Data are working to protect Zambia’s at-risk elephant population after a successful pilot project in South Africa

• May 08, 2018 08 May'18

  Majority of security professionals favour shorter disclosure deadline

  Google’s Project Zero unit’s 90-day deadline for software suppliers to disclose vulnerabilities has always been controversial, but a survey reveals that most security professionals feel even that is too long

• May 04, 2018 04 May'18

  Security pros must avoid hype, demonstrate value, says RBS CISO

  Security professionals must avoid over-hyping cyber threats, and penetration testers need to reinvent themselves to demonstrate value to businesses to remain relevant, says RBS CISO

• May 04, 2018 04 May'18

  Twitter password security bug underlines need for industry change

  Twitter has revealed that a bug in its systems resulted in some passwords being stored in a log in clear text, underlining the need for alternative authentication methods, say industry commentators

• May 03, 2018 03 May'18

  Fibre network breakthrough has implications for data security

  Researchers have devised a new protocol that they claim vastly extends the range of quantum key distribution over fibre networks

• May 03, 2018 03 May'18

  City Police use Lego simulation to teach businesses cyber security

  City of London Police are offering to train business leaders and IT security in cyber security using a Lego simulation that is surprisingly close to real life

• May 03, 2018 03 May'18

  Redscan warns of GDPR phishing scams

  Cyber criminals are using fake GDPR-related privacy notices to trick recipients into disclosing personal data and spread malware, a security firm warns

• May 03, 2018 03 May'18

  Cambridge Analytica closure will not halt probe, says ICO

  The London-based data mining firm at the heart of the Facebook data exploitation scandal has announced it is closing, but the ICO says the probe into its actions will still go ahead

• May 02, 2018 02 May'18

  Fresh blow for Facebook as court refuses stay in Max Schrems legal action

  Facebook has lost a legal attempt to delay the Irish High Court from seeking answers from the European Court of Justice over the legality of EU-US data transfers

• May 02, 2018 02 May'18

  ARM aims to boost physical security of IoT

  Chipmaker ARM announces microprocessor aimed at improving the physical security capabilities of devices making up the internet of things

• May 02, 2018 02 May'18

  Critical infrastructure firms urged to patch Schneider Electric flaws

  Critical infrastructure suppliers and manufacturing firms are being urged to ensure that their systems are patched up to date, after researchers discover Schneider Electric remote code execution vulnerability

• May 02, 2018 02 May'18

  Ransomware still a threat to business, F-Secure warns

  Ransomware attacks tapered off towards the end of 2017 after an explosion in such attacks earlier in the year, but ransomware remains a threat to big business, a report reveals

• May 02, 2018 02 May'18

  Workday to continue investing heavily in APAC

  Cloud applications supplier has increased its investments in the region by more than 50% in the past year, and is looking to maintain its double-digit growth in international markets

• May 02, 2018 02 May'18

  Security industry welcomes City of London Police cyber initiative

  The security industry has welcomed plans to fight cyber crime in the heart of London using a community-based approach, but says more investment in cyber security skills is required

• May 01, 2018 01 May'18

  Google Chrome helps clean up certificate authority industry

  The security industry has welcomed the introduction of measures by the Google Chrome browser aimed at achieving certificate transparency

• May 01, 2018 01 May'18

  Password practices still poor despite increased threats

  Despite growing cyber threats and heightened global awareness of hacking and data breaches, password behaviours remain poor and UK users are in denial, a study has revealed

• May 01, 2018 01 May'18

  Microsoft’s latest Windows 10 focuses on IT admins

  While it will stop those annoying taskbar InBox and social media messages, at the heart of the April 2018 Windows 10 update is an effort to simplify management

• May 01, 2018 01 May'18

  UK critical services need to up cyber defences to avoid fines

  UK critical infrastructure providers could be liable for fines of millions of pounds if they do not improve their cyber defences and resilience of their IT infrastructure, a study reveals

• April 30, 2018 30 Apr'18

  Getting cyber security innovation to market is key, says NCSC

  Getting cyber security innovation to market is an important area of focus, according to the National Cyber Security Centre, which runs a cyber accelerator programme and recently stated a Dragons Den style security innovation pitch at the 2018 ...

• April 30, 2018 30 Apr'18

  Security industry welcomes NHS move to Windows 10

  Representatives of the security industry have welcomed the announcement that the NHS will be migrating to Windows 10 as part of a multi-million pound deal with Microsoft, but warn that the move will not be without its challenges

• April 27, 2018 27 Apr'18

  Only 5% of charities are ready for GDPR, survey shows

  A survey shows relatively few charities are prepared for new data protection regulations, highlighting several areas for improvement

• April 27, 2018 27 Apr'18

  Microsoft releases Windows 10 security pack

  Microsoft has released a download pack that incorporates NCSC guidance to save UK companies weeks of work to secure Windows 10 and comply with government guidelines

• April 27, 2018 27 Apr'18

  Most organisations unprepared for GDPR, survey finds

  Despite the vast majority of businesses agreeing that GDPR affects them, only 5% say they are fully prepared for it, according to a BSI survey

• April 27, 2018 27 Apr'18

  DWP to spend nearly £15m on GDPR

  A single government department plans to spend nearly £15m on preparing for new European data protection legislation, a report reveals

• April 27, 2018 27 Apr'18

  Government given six months to rewrite snoopers’ charter

  The government has until 1 November 2018 to rewrite a key section of the Investigatory Powers Act 2016, after the high court declared them unlawful in a judicial review brought by human rights group Liberty

• April 27, 2018 27 Apr'18

  GDPR: Put your data in Azure cloud, says Microsoft chief

  Tech giant reports strong growth in its cloud business in third-quarter 2018 fiscal results

• April 26, 2018 26 Apr'18

  British banks target Israeli security technology

  British banks are turning to Israel’s high-tech sector to protect against cyber attacks

• April 26, 2018 26 Apr'18

  Facebook posts strong first quarter despite privacy scandal

  The data exploitation scandal that hit Facebook has not yet had an adverse impact on advertising revenues or user activity, according to first quarter financial results

• April 26, 2018 26 Apr'18

  EC calls on online platforms to develop common code of practice to tackle ‘disinformation’

  The European Commission says online platforms such as social media and video sites, have not done enough to tackle unethical use, and calls on them “to decisively step up their efforts to tackle online disinformation”

• April 26, 2018 26 Apr'18

  Finnish R&D and utilities in line of cyber espionage fire, say security police

  Finnish research and development, as well as critical infrastructure, are being targeted by state-backed cyber espionage attacks, says report

• April 26, 2018 26 Apr'18

  NCSC shows support for common standards for secure communication

  The UK cyber security authority is supporting an industry drive towards common standards for secure communication by joining an industry organisation that aims to achieve this goal

• April 26, 2018 26 Apr'18

  Digital economy research projects to get funding

  Research projects aimed at building trust, privacy and security in the use of personal data and digital technologies are to receive funding

• April 25, 2018 25 Apr'18

  EC sets out plans for sharing health data across borders

  The European Commission wants to introduce EU-wide standards for health records, and allow EU citizens to access and share their patient information securely across member states

• April 25, 2018 25 Apr'18

  Google claims it is GDPR ready

  Alphabet, the parent company of Google, says that since its advertising business relies on keyword searches, the impact of GDPR is limited

• April 25, 2018 25 Apr'18

  Government urges UK businesses to beef up cyber crime defences

  Government is urging UK organisations to defend against cyber crime, as newly released figures show that large numbers of businesses and charities suffered at least one cyber attack in the past year

• April 25, 2018 25 Apr'18

  Major DDoS cyber crime website shut down

  International law enforcement has shut down the Webstresser cyber crime website, which was the world’s biggest marketplace for selling distributed denial of service attack services that were used against seven UK banks

• April 25, 2018 25 Apr'18

  Most firms will not be GDPR-ready by compliance deadline

  Survey of IT decision-makers shows one-fifth of companies lack continuous encryption capabilities and only half have the systems required for the right to erasure and the right to rectification

• April 25, 2018 25 Apr'18

  Stoke-on-Trent websites found to be most leaky ahead of GDPR

  The majority of websites in the UK could be prone to cyber attacks, a security scan across 135,035 sites has revealed

• April 25, 2018 25 Apr'18

  Employees still in the dark about data protection

  With just a month to go before the GDPR compliance deadline, many employees still don’t know how to protect confidential data, a study shows

• April 25, 2018 25 Apr'18

  Cyber fraud costs SMEs more than £1,000 per case

  Just over half of IT and telecoms SMEs are targeted by fraudsters, with each case of cyber fraud costing more than £1,000, study reveals

• April 25, 2018 25 Apr'18

  One month to GDPR compliance deadline

  With one month to go before the deadline for compliance with EU’s General Data Protection Regulation, organisations should ensure they are able to meet minimum requirements to defend against adverse scrutiny

• April 24, 2018 24 Apr'18

  Ransomware attack hit Ukraine energy ministry website

  Cyber attack on Ukraine’s energy ministry shows that websites remain a weak point for many organisations online, say security experts

• April 24, 2018 24 Apr'18

  Orangeworm cyber attack group targets health sector

  A cyber crime group is targeting the health sector and related industries in the US, Europe and Asia in a suspected corporate espionage campaign, researchers warn

• April 23, 2018 23 Apr'18

  Executive interview: Werner Knoblich, Red Hat

  Red Hat is 25 years old. We speak to its European chief about how open source, containers and hybrid cloud computing represent the foundation for IT

• April 23, 2018 23 Apr'18

  Nearly half of UK manufacturers hit by cyber attacks

  Nearly half of UK manufacturers have been hit by a cyber security incident, according to a report by an industry organisation, which calls for greater government focus on the specific security needs of the sector

• April 23, 2018 23 Apr'18

  Next generation of SCADA industrial controls will protect against cyber attack

  Oil, energy and chemical companies are rethinking how to control big manufacturing plants, replacing expensive control technology with cheaper, more secure systems, taking their cue from biology

• April 23, 2018 23 Apr'18

  No business safe from cyber attack, says KPMG

  Businesses that operate online should be working to ensure operational resilience, while the financial sector should focus more on collaboration, says professional services firm KPMG

• April 20, 2018 20 Apr'18

  Global cyber crime worth $1.5tn a year, study reveals

  Cyber criminal operations worldwide are generating revenues that equal the GDP of Russia though a web of profit that involves legitimate businesses, research has revealed

• April 20, 2018 20 Apr'18

  Account takeover up tenfold in past year

  The incidence of online account takeover and the proportion of high-risk account access attempts underlines the need for improved authentication, says fraud detection firm

• April 20, 2018 20 Apr'18

  Data protection is a business issue, says IAPP

  Data privacy is a rapidly maturing profession as organisations around the world increasingly see data protection as a business issue, according to an industry association

• April 19, 2018 19 Apr'18

  UK surveillance laws a potential ‘sticking point’ post-Brexit

  The UK’s controversial Investigatory Powers Act could be an impediment to achieving an adequacy agreement for free data exchanges with the EU post-Brexit, says privacy lawyer

• April 19, 2018 19 Apr'18

  UK Commonwealth cyber security funding welcomed

  The security community has welcomed the UK government announcement of funding to help Commonwealth countries strengthen their cyber security capabilities

• April 19, 2018 19 Apr'18

  CyLon continues to drive cyber security innovation with next accelerator cohort

  CyLon has selected the next group of innovative cyber security startups for its seventh London accelerator programme

• April 19, 2018 19 Apr'18

  Mastercard calls for global online payments standard

  Mastercard and its EMV partners are pushing for online payments standards similar to those for point-of-sale payments

• April 18, 2018 18 Apr'18

  Australian supermarket chain hit by IT outage

  Thirty-minute glitch knocked out checkout systems at half of Woolworths’ stores in Australia

• April 18, 2018 18 Apr'18

  Good time to be in data protection, says information commissioner

  There has never been a better time to be in data protection, Elizabeth Denham has told an IAPP data protection conference in London, addressing some key questions about the changing data protection regulatory landscape

• April 18, 2018 18 Apr'18

  PAC sets June 2018 deadline for Department of Health to count NHS cost of WannaCry

  Government spending watchdog orders Department of Health and Social Care to work out the cost of the WannaCry ransomware attack on the NHS so trusts know where to target their cyber security spending

• April 18, 2018 18 Apr'18

  DDoS attacks cost up to £35,000

  Despite the direct financial impact of DDoS attacks, this is not considered to be the most damaging effect on companies targeted this way, a survey shows

• April 18, 2018 18 Apr'18

  Security budgets up, but talent scarce, says Isaca

  Security budgets are increasing, but qualified cyber talent remains difficult to find with positions taking at least three months to fill, an industry association report on the state of cyber security reveals

• April 18, 2018 18 Apr'18

  APAC is becoming a hotspot for DDoS attacks

  The region’s largest and most-connected economies are most vulnerable to distributed denial-of-service attacks, according to CenturyLink

• April 17, 2018 17 Apr'18

  UK identity fraud reaches record level

  The level of identity fraud has reached its highest level to date, a UK fraud report shows

• April 17, 2018 17 Apr'18

  Top tech firms take cyber security pledge

  Top tech firms have committed to protecting customers worldwide from cyber attacks and prevent the misuse of their technology

• April 17, 2018 17 Apr'18

  Business at risk from unidentified network traffic, report warns

  A lack of network traffic visibility poses significant security challenges to businesses, a report on network firewalls warns