News

IT security

• November 17, 2017 17 Nov'17

  ICO funds first four privacy tool development projects

  The UK’s privacy watchdog has begun funding innovative research into data privacy tools for children and the medical and financial sectors

• November 17, 2017 17 Nov'17

  Computer science student wins 2017 UK Cyber Security Challenge

  Cyber attack simulation challenge sees 22-year-old computer science student crowned UK amateur cyber security champion

• November 16, 2017 16 Nov'17

  ICO pushes for jail terms for personal data snoops

  Information Commissioner’s Office says it backs prison sentences for anyone abusing their position to access personal data unlawfully

• November 16, 2017 16 Nov'17

  Europe not ready for imminent cyber strikes, say infosec professionals

  Information security leaders in Europe believe a major breach of critical infrastructure is coming and that data breaches in their own organisations are imminent – yet most are not ready

• November 16, 2017 16 Nov'17

  Free Quad9 internet threat protection launched

  IBM, Packet Clearing House and the Global Cyber Alliance join forces to protect businesses and consumers from internet threats free of charge

• November 16, 2017 16 Nov'17

  Half of UK consumers do not trust firms with personal data

  As the GDPR compliance deadline approaches, a survey reveals half of UK consumers do not believe commercial organisations care about their privacy

• November 15, 2017 15 Nov'17

  How the biggest cyber security disasters could have been avoided

  The headline-grabbing breaches that hit Accenture and Equifax in 2017 could have been averted had basic cyber hygiene been in place

• November 15, 2017 15 Nov'17

  Data skills could improve employment options as AI accelerates

  House of Lords artificial intelligence select committee hears evidence on societal risks of AI, data, life-long learning and the changing role of white-collar workers

• November 15, 2017 15 Nov'17

  Banks ideally placed to fill identity void, says consultant

  Current approaches to identity are too backward looking and need revision, according to a UK-based business management consultant

• November 15, 2017 15 Nov'17

  GDPR impact complex, expert warns

  The full impact of the EU’s General Data Protection Regulation (GDPR) is complex, warns the head of ICT at T-Systems Belgium

• November 14, 2017 14 Nov'17

  Business in digital world demands considered approach

  Companies need to think carefully about their approach to doing business in a complex, connected, digital world, according to a Belgian risk specialist

• November 14, 2017 14 Nov'17

  £115 constructed mask bypasses iPhone X Face ID verification

  A security company has used a 3D-printed mask to trick the face recognition technology on Apple's new iPhone X

• November 14, 2017 14 Nov'17

  GDPR is a business opportunity, says Belgian minister

  The EU’s General Data Protection Regulation should not be viewed only as a compliance issue, says Belgium’s minister for privacy

• November 14, 2017 14 Nov'17

  CIO interview: Gavin Scruby, SmartDebit

  The CIO of SmartDebit speaks to Computer Weekly about the challenges of balancing innovation with regulatory compliance

• November 13, 2017 13 Nov'17

  Cyber and physical security are inseparable

  Biometrics and pattern recognition, coupled with data from internet of things sensors, will provide the fabric of future smart ecosystems

• November 13, 2017 13 Nov'17

  Only a quarter of UK law firms are ready for GDPR, study shows

  Just 25% of UK law firms are ready for the General Data Protection Regulation and one in five have experienced an attempted cyber attack in the past month

• November 13, 2017 13 Nov'17

  IT leaders failing to prepare for cyber attacks, despite fears

  Organisations are over-confident about their ability to defend against major cyber attacks, despite fears that they will be hit in the coming year, a survey has revealed

• November 13, 2017 13 Nov'17

  Muslim hactivists hack “unhackable” IS news site

  A Muslim hacktivist group has hacked into Islamic State’s news site and published thousands of subscribers’ details just hours after the site claimed it was impenetrable

• November 13, 2017 13 Nov'17

  Nordic states deepen cyber defence collaboration

  Nordic and Baltic government leaders discuss pooling technologies and competences to counter hybrid threats within the cyber security domain

• November 10, 2017 10 Nov'17

  Open standards will ease GDPR risk, says Kantara

  Open standards will help organisations comply with new EU data protection regulations, while ensuring interoperability and a good user experience, according to a global standardisation group

• November 10, 2017 10 Nov'17

  UK calls for more anti-terror tools in social media

  The UK is calling on social media campaigns to do more to detect and remove “militant messaging” automatically, while former MI5 head issues another caution against tampering with encryption

• November 10, 2017 10 Nov'17

  WikiLeaks publishes code and analysis of CIA hacking tool

  Security experts are questioning the wisdom of WikiLeaks releasing more source code for US intelligence agency hacking tools

• November 09, 2017 09 Nov'17

  University of East Anglia investigates another data leak

  University is investigating a second leak in six months, illustrating that data breaches are often caused by non-malicious insiders and that organisations are not getting to grips with the problem

• November 09, 2017 09 Nov'17

  ISPs can play unique role in cyber security, says BT CEO

  Internet service providers are perfectly positioned to make a significant contribution to cyber security for everyone, BT’s Gavin Patterson believes

• November 09, 2017 09 Nov'17

  TSB customers can use their faces to authenticate payments

  Bank’s latest addition to its mobile apps is a facial recognition option for Apple iPhone X users

• November 09, 2017 09 Nov'17

  Cyber attacks not impossible to manage, says ex-GCHQ head

  Ex-GCHQ head says despite the growing number of sophisticated cyber threats, tackling them is not impossible, but business has to find new ways of finding cyber defenders in previously untapped pools of talent

• November 09, 2017 09 Nov'17

  Malaysia partners Huawei in cyber security

  A joint steering committee will meet twice a year to address cyber security issues, among other measures to shore up Malaysia’s cyber security capabilities

• November 08, 2017 08 Nov'17

  Everyone has cyber security responsibility, says Euro commissioner

  Everyone has a role to play in cyber security, including big market players – but if this is not done voluntarily, legislation may be required, says the European commissioner for security union

• November 08, 2017 08 Nov'17

  GDPR fines may affect almost 80% of US firms, poll shows

  Most US companies risk fines for non-compliance with new European data protection laws that apply to all organisations processing any personal data of EU citizens

• November 08, 2017 08 Nov'17

  Estonian e-resident population growth exceeds birth rate

  The number of non-Estonian people who applied for e-residency of the Baltic state exceeds the birth rate so far for this year

• November 07, 2017 07 Nov'17

  CrowdStrike outlines expansion plans in APAC

  Endpoint security expert CrowdStrike plans to double its workforce in the APAC region next year on the back of triple-digit growth in sales and bookings since it opened its Sydney regional headquarters in June 2016

• November 07, 2017 07 Nov'17

  Cyber security skills a priority for UK government

  The UK government is pursuing various short and long-term initiatives aimed at promoting the cyber security profession and growing skills in the sector, including supporting a professional body

• November 07, 2017 07 Nov'17

  UK spies face landmark challenge over mass surveillance in human rights court

  Ten human rights organisations challenge lawfulness of UK surveillance legislation and mass internet surveillance by UK intelligence agencies in Strasbourg court

• November 07, 2017 07 Nov'17

  Most UK small businesses in the dark over GDPR

  There is still much work to be done before UK SMEs are fully prepared for the EU’s General Data Protection Regulation (GDPR), business barometer shows

• November 06, 2017 06 Nov'17

  UK businesses must redress lack of trust around data, says ICO

  Businesses need to redress the lack of trust in their ability to keep personal data safe to enable innovation, according to the Information Commissioner’s Office

• November 06, 2017 06 Nov'17

  Blockchain hype exploited by spammers and phishers

  Hackers are exploiting the popularity of blockchain technologies in spamming and phishing campaigns, warns Kaspersky Lab

• November 06, 2017 06 Nov'17

  One in four UK workers have maliciously leaked business data

  Insider threat research has revealed that 24% of workers purposely shared info with other companies and nearly 50% have received an email by mistake

• November 06, 2017 06 Nov'17

  Any online business a target of DDoS attacks

  Any business that is online is susceptible to denial of service attacks and should ensure it has the capability to mitigate such attacks, says an industry practitioner who explains how

• November 03, 2017 03 Nov'17

  Go beyond GDPR for a competitive edge

  By exceeding the bare minimum requirements set by privacy regulations, businesses can win customers by offering greater assurances, says a business adviser

• November 03, 2017 03 Nov'17

  Third-party cyber security failures cost businesses the most

  Third-party cyber security failures are costing businesses the most – up to £1.5m – as security budgets shrink, a study by Kaspersky Lab and B2B International reveals

• November 02, 2017 02 Nov'17

  Businesses unprepared for cyber attacks, warn cyber professionals

  Businesses are nowhere near prepared enough for a cyber attack, according to a poll of information and security professionals

• November 02, 2017 02 Nov'17

  Society needs to work together to gain control of cyber space

  Cyber space is influencing human development and behaviour, but no one is in control and it will take a collective effort to ensure the cyber effect is more positive than negative, says cyber psychology expert

• November 02, 2017 02 Nov'17

  Silence banking Trojan highlights password weakness

  The Silence banking Trojan that has hit at least 10 financial institutions has once again highlighted the weakness of using username and password combinations to access accounts

• November 01, 2017 01 Nov'17

  Infosec pros urged to demonstrate value to business

  Information security professionals have been urged to help business understand the value of what they do and the importance of security and privacy

• November 01, 2017 01 Nov'17

  Personal data of 46.2 million Malaysia mobile subscribers leaked

  The massive data breach is yet another example of a ‘low and slow’ attack that stays dormant inside networks for years, without anyone noticing

• October 31, 2017 31 Oct'17

  Spoofing of Dutch politicians causes heated debate

  A report about how easy it is to spoof the email addresses of Dutch politicians causes wider security debate in the Netherlands

• October 31, 2017 31 Oct'17

  Researchers uncover strong trade in code-signing certificates

  Illicit certificates are more expensive than counterfeit US passports, stolen credit cards and handguns on the dark web

• October 31, 2017 31 Oct'17

  NotPetya tops list of worst ransomware attacks

  NotPetya, WannaCry and other ransomware have caused unprecedented damage to businesses, infrastructure and users, say threat researchers

• October 31, 2017 31 Oct'17

  Cyber security professionals urged to embrace AI and automation

  IBM security intelligence head says professionals should embrace artificial intelligence and automation to ensure they do not become obsolete

• October 31, 2017 31 Oct'17

  Deloitte sponsorship helps progress of Bletchley cyber school

  Sponsorship will provide hundreds of places on online Qufaro CyberEPQ course

• October 30, 2017 30 Oct'17

  Messaging apps a growing business security risk, study shows

  Businesses should introduce urgent policy changes to catch up with the reality of employees’ use of messaging apps, which is a growing security risk, say security researchers

• October 30, 2017 30 Oct'17

  EU may struggle to prove cyber attack links, warns expert

  EU governments are reportedly planning to respond to cyber attacks as an act of war, but a cyber security expert says links to nation states may be hard to prove

• October 30, 2017 30 Oct'17

  Heathrow to probe leak of security files

  Heathrow is investigating how and why files containing security information were stored without any protection on a USB stick found by a member of the public

• October 27, 2017 27 Oct'17

  Diversify security controls to maximise protection, says McAfee

  Organisations should ensure that in layering various security controls, the degree of alignment is not too great, warns McAfee CTO

• October 27, 2017 27 Oct'17

  Consumer identity management will benefit business

  Businesses should embrace consumer identity management to improve marketing capabilities and help drive regulatory compliance, says KuppingerCole

• October 27, 2017 27 Oct'17

  Rewrite the rules to win cyber arms race, says McAfee

  Enterprises need to change their approach if they are to beat cyber criminals, according McAfee’s enterprise products head

• October 27, 2017 27 Oct'17

  Airbus saves millions after building a digital learning library

  Airbus has created a digital learning library that is helping more than 100,000 staff in 35 countries keep their skills updated

• October 26, 2017 26 Oct'17

  NAO calls on NHS to ‘get its act together’ after WannaCry attack

  The NHS could have prevented the WannaCry cyber attack had it followed basic IT security best practice, according to National Audit Office boss

• October 26, 2017 26 Oct'17

  EU to collect biometrics of all visitors - which could include UK citizens post-Brexit

  European Parliament approves entry/exit system which will cover all non-EU visitors to the European Union

• October 26, 2017 26 Oct'17

  How UCAS uses Splunk to protect students’ sensitive data

  Universities and Colleges Admissions Service’s enterprise security architect describes how the organisation uses Splunk to keep user data secure, and how it copes with its yearly spike in traffic

• October 26, 2017 26 Oct'17

  IOActive warns of security flaws in maritime communication system

  Researcher discovers critical security flaws in an Inmarsat maritime communication system, highlighting the cyber risks facing the shipping industry

• October 26, 2017 26 Oct'17

  Kaspersky ban: The risks to global software

  While Kaspersky defends allegations of collusion with Russian spooks, what are the wider implications to software globalisation?

• October 26, 2017 26 Oct'17

  Kaspersky Lab explains how NSA data was uploaded

  Malware detection triggered an upload of data from a National Security Agency contractor’s home computer, Kaspersky Lab says an internal investigation has revealed

• October 26, 2017 26 Oct'17

  Most businesses misguided on responsibility for cloud data protection

  Survey shows more than 80% of organisations have the mistaken belief that their cloud service provider is accountable for data protection

• October 25, 2017 25 Oct'17

  Embrace risk-based security, McAfee urges business

  Modern cyber threats require a risk-based approach, according to McAfee’s chief technical strategist

• October 25, 2017 25 Oct'17

  Oversight of intelligence agencies’ data sharing has ‘failed’, court hears

  UK’s intelligence services lack adequate oversight and written guidelines when sharing databases of sensitive information, Privacy International argues in secret court

• October 25, 2017 25 Oct'17

  BlackBerry launches cyber security services

  BlackBerry has launched cyber security services to safeguard people, privacy and assets, with vehicle security and GDPR compliance leading the new offering

• October 25, 2017 25 Oct'17

  Samsung study warns startups to up their security stance

  New report finds small businesses must do cyber security better if they want to work with large enterprises

• October 25, 2017 25 Oct'17

  UK website privacy notices inadequate, says ICO

  Privacy notices are too vague and generally inadequate, a global investigation finds, with UK websites in several sectors found wanting by an Information Commissioner’s Office review

• October 25, 2017 25 Oct'17

  Bad Rabbit malware raises fears of third global ransomware attack

  A ransomware attack that has commonalities with WannaCry NotPeya is reportedly hitting organisations in Russia, Ukraine, Turkey, Bulgaria and Germany

• October 24, 2017 24 Oct'17

  UK’s FCA to probe Equifax breach of Britons’ data

  The UK’s financial regulatory body has announced it is to probe the Equifax data breach believed to have affected hundreds of thousands of Britons

• October 24, 2017 24 Oct'17

  McAfee aims to out-innovate adversaries

  Security firm intends to break the cycle of playing cat and mouse with cyber attackers, according to its technology head

• October 24, 2017 24 Oct'17

  Nearly 200 arrested for airline ticketing fraud

  Police have arrested nearly 200 people for airline ticketing fraud in an international operation involving public and private sector organisations

• October 24, 2017 24 Oct'17

  Almost 70% of customers willing to use fingerprint biometrics to shop

  Consumers are becoming more comfortable using biometrics to pay when shopping, with fingerprint payments proving the most popular biometric identification method

• October 24, 2017 24 Oct'17

  Microsoft drops lawsuit after US revises data access policy

  Microsoft has dropped a lawsuit pushing for reforms of state surveillance practices in response to changes in US data access request policy, but says more reform is necessary

• October 24, 2017 24 Oct'17

  Nordic finance watchdogs losing patience over anti-money laundering systems at banks

  The financial services watchdogs have informed banks that they have to do more to improve anti-money laundering systems

• October 23, 2017 23 Oct'17

  Birmingham SMEs to get help from London Digital Security Centre

  SMEs in Birmingham are to get the opportunity to learn how to protect themselves from cyber attacks at a free event on 25 October 2017

• October 23, 2017 23 Oct'17

  Kaspersky Lab announces global transparency initiative

  Faced with a US government ban and media reports alleging co-operation with Russian spies, Kaspersky Lab has announced a global transparency initiative

• October 23, 2017 23 Oct'17

  Understand cyber security, don’t fear it, says NCSC head

  The head of the UK’s National Cyber Security Centre (NCSC) has urged organisations to ensure they understand cyber risks, as a survey reveals mid-sized firms have inadequate cyber protection

• October 23, 2017 23 Oct'17

  US warns of cyber attacks on critical infrastructure

  The US government has issued a warning about ongoing cyber attacks targeting critical national infrastructure, saying some networks and at least one power generator have been compromised

• October 20, 2017 20 Oct'17

  CW500: Rise in cyber attacks means you have to be brave

  As cyber attacks are on the rise, experts share their views, tips and lessons learned in how to handle being hit by one

• October 20, 2017 20 Oct'17

  More than 40% of marketers feel their business is not ready for GDPR, report finds

  With GDPR coming into force next year, research has found that more than 40% of marketers feel their organisation is not ready for the upcoming changes

• October 20, 2017 20 Oct'17

  Ransomware decryption framework now available

  McAfee has released a decryption framework to boost the production of decryption tools to help victims of ranswomware attacks

• October 20, 2017 20 Oct'17

  Cooperation vital to securing internet of things, says Europol

  Europol and EU cyber security agency Enisa have hosted a two-day conference to find ways of addressing the cyber security risks posed by internet-connected devices

• October 19, 2017 19 Oct'17

  IT security hindering productivity and innovation, survey shows

  IT security is hindering productivity and innovation across enterprises, research has revealed

• October 19, 2017 19 Oct'17

  Safeguards permit GCHQ to share huge databases on public, court hears

  Intelligence commissioners did not need technical expertise or support staff to check whether GCHQ and MI5 were lawfully sharing huge databases, court told

• October 19, 2017 19 Oct'17

  Security industry more open, integrated and collaborative

  McAfee says shift in industry’s approach is evidenced by adoption of its Data Exchange Layer and new collaborations through McAfee Security Innovation Alliance

• October 19, 2017 19 Oct'17

  Endpoint, cloud, people key to future cyber security, says McAfee

  Endpoint devices, the cloud and people will be the security control points of the future, according to the chief of security firm McAfee

• October 19, 2017 19 Oct'17

  Infoblox partners with McAfee to combine web and DNS security

  Infoblox is to collaborate with McAfee to combine web and DNS security to deliver unified protection

• October 18, 2017 18 Oct'17

  McAfee forges ahead with analytics, deep learning and AI

  McAfee is forging ahead with its innovation efforts in advanced analytics, deep learning and artificial intelligence

• October 18, 2017 18 Oct'17

  EU-US Privacy Shield data pact is working but needs improvement, says EC

  European Commission’s first annual review of transatlantic data transfer deal highlights strengths and weakness of agreement

• October 18, 2017 18 Oct'17

  Focus needs to shift to breach impact, says McAfee researcher

  Breach investigations commonly focus on the attackers and their motives, but a security researcher believes there needs to be more emphasis on business impact

• October 18, 2017 18 Oct'17

  Shadow Cabinet Office minister slams Gov.uk Verify for being ‘inefficient’

  Labour’s Jon Trickett says the government’s identity assurance platform is a poor use of taxpayers’ money and is “being handled appallingly”

• October 18, 2017 18 Oct'17

  Google debuts additional identity protection services

  Google has rolled out new identity protection features across its account base, including advanced protection for at-risk users

• October 17, 2017 17 Oct'17

  RSA’s Middle East cyber security conference gains its own identity

  RSA Abu Dhabi conference focuses on region’s cyber security needs as digital technology deployments expand

• October 17, 2017 17 Oct'17

  CW500: How the NHS WannaCry cyber attack unfolded

  NHS Digital’s head of security talks about the security landscape in the NHS and why it led to extra challenges when the WannaCry cyber attack hit the NHS in May 2017

• October 17, 2017 17 Oct'17

  NHS lost further 162,000 patient documents, PAC hearing reveals

  NHS England CEO Simon Stevens admits a further 162,000 lost patient documents have been found, following news earlier this year that a probe had discovered more than 700,000 documents went undelivered

• October 17, 2017 17 Oct'17

  UK intelligence agencies ‘unlawfully’ sharing sensitive personal data, court hears

  A secret court will decide whether Intelligence agencies are “unlawfully” sharing huge datasets containing sensitive information about the population with industry, government departments and overseas intelligence services.

• October 17, 2017 17 Oct'17

  How to protect your Wi-Fi network from a Krack attack

  The discovery of a vulnerability affecting the WPA2 Wi-Fi security standard has people in a spin. But how serious is it really, and what basic steps can you take to keep your network safe from a Krack attack?

• October 16, 2017 16 Oct'17

  Law firm speeds search and saves TB with Mimecast email archive

  Cloud email archiving turbo-charges search, while email security is locked down and terabytes of storage use on-premise avoided with email stub on local servers