News

IT security

• December 06, 2017 06 Dec'17

  BlackBerry calls for stricter internet of things security standards

  All internet-linked devices should support software updates, though things that are prone to safety risks when hacked, such as connected cars, should adhere to higher security standards, says BlackBerry CSO

• December 05, 2017 05 Dec'17

  Bitcoin industry enters top 10 DDoS targets

  The bitcoin industry has become one of the top 10 industries most targeted by distributed denial of service attacks, a report has revealed

• December 05, 2017 05 Dec'17

  Researchers warn of new support scam malware

  Security researchers have identified a new strain of support scam malware and a way of clearing up infected machines

• December 04, 2017 04 Dec'17

  The Dutch government defines cyber threat actors

  The Dutch government commissions the creation of a scientific classification of individuals and groups involved in cyber crime

• December 04, 2017 04 Dec'17

  Malicious insiders and DDoS attacks cost UK business the most

  In 2017, the most costly or damaging cyber attacks for UK businesses have been malicious insiders and denial of service, research has revealed

• December 04, 2017 04 Dec'17

  Barclays Bank stops offering Kaspersky software to new users

  Bank is no longer offering customers Kaspersky anti-virus software after UK security agency issues warning

• December 01, 2017 01 Dec'17

  ‘Sound policy’ to prosecute hackers in UK, says former DPP in Love case

  The former director of public prosecutions (DPP), Ken Macdonald, said in written evidence in Lauri Love’s extradition case that it is normal practice to prosecute hackers accused of attacking US servers in the UK – rather than extradite them to the ...

• December 01, 2017 01 Dec'17

  Businesses bracing for GDPR data deletion requests

  Businesses are concerned that data deletion requests under the GDPR will have a significant or even crippling effect, with many unprepared to meet the expected demand

• December 01, 2017 01 Dec'17

  Morrisons found liable for data leak in landmark ruling

  Court finds supermarket chain liable for data leak by a former employee, which has been hailed as a landmark ruling, but Morrisons says it will appeal

• December 01, 2017 01 Dec'17

  Proposed snoopers’ charter changes inadequate, say rights groups

  The government has proposed additional safeguards around the power granted to police by the Investigatory Powers Act, but the Open Rights Group and Liberty say they do not go far enough

• November 30, 2017 30 Nov'17

  Security community urges caution on offensive cyber defence

  Some Nato countries are reportedly considering responding to cyber attacks with offensive cyber strikes, but security industry commentators warn of dangers

• November 30, 2017 30 Nov'17

  Fintechs must curb privacy invasion, says Privacy International

  Privacy International is calling for legislation and regulation to ensure financial technology firms respect consumers’ rights to privacy, equality and non-discrimination

• November 30, 2017 30 Nov'17

  Google faces £2.7bn claim on behalf of 5.4 million iPhone users

  Technology giant is accused of harvesting and selling data from millions of iPhone users from 2011 to 2012 who could each receive compensation of several hundred pounds

• November 30, 2017 30 Nov'17

  Top IT predictions in APAC in 2018

  A “mega cloud” that weaves together multiple private and public clouds, along with the use of AI to perform data-driven “thinking tasks”, could emerge next year

• November 29, 2017 29 Nov'17

  TechUK calls for swift action to safeguard data exchange after Brexit

  TechUK and UK Finance raise fear of “cliff edge” if legal basis for data transfers between the EEA and the UK lapses overnight in March 2019

• November 29, 2017 29 Nov'17

  Uber breach affected 2.7 million Britons

  Last year’s data breach, which saw the details of 57 million accounts compromised, affected about 2.7 million accounts in the UK

• November 29, 2017 29 Nov'17

  Lauri Love would face ‘medieval’ conditions in US prison if extradited over hacking charges

  Engineering student Lauri Love should be tried in the UK, court hears, as new evidence is presented on the “medieval” conditions in US jails for people with medical problems

• November 29, 2017 29 Nov'17

  GDPR likely to affect internal processes heavily, warns lawyer

  Businesses should not overlook the fact that the EU’s new data protection laws may require fundamental changes to internal business processes, warns a data protection lawyer

• November 29, 2017 29 Nov'17

  Consumer identity management a growing trend

  Consumer identity and access management is a growing trend, but system choice is still challenging, according to KuppingerCole

• November 29, 2017 29 Nov'17

  Adversarial machine learning tops McAfee’s 2018 security forecast

  McAfee forecasts developments in adversarial machine learning, ransomware, serverless apps, connected home privacy and privacy of child-generated content in 2018

• November 28, 2017 28 Nov'17

  Data breach an opportunity to build trust

  In the light of the high number of data breaches, organisations should embrace the inevitable and ensure they can build better trust if they are breached, an information security professional advises

• November 28, 2017 28 Nov'17

  Businesses need to balance user experience, privacy and security

  Balancing user experience, privacy and security for the connected consumer is a key challenge for online businesses, according to KuppingerCole

• November 28, 2017 28 Nov'17

  IoT and artificial intelligence dominate APAC tech landscape in 2017

  Businesses across the APAC region have started to dip their toes into AI and the internet of things to improve operations and stay competitive

• November 28, 2017 28 Nov'17

  Fintech is increasing operational risk to banks

  European Banking Association report reveals fear of greater operational risk because of increased take-up of fintech in financial services sector

• November 27, 2017 27 Nov'17

  Australian IT landscape maturing amid budget cuts

  Australia has matured in its use of technology in 2017, but more investment is needed for it to continue its good run and to combat cyber threats

• November 26, 2017 26 Nov'17

  UK only average in terms of digital public services

  UK government has the innovation skills to become a digital public services leader, but needs to improve the ID and authentication that sits underneath it to reach this goal

• November 26, 2017 26 Nov'17

  Blockchain could be used for citizen identity services, says Reform

  Reform think tank argues that government could use blockchain technology to create a secure identity for citizens to use across public services

• November 24, 2017 24 Nov'17

  CIO interview: Adam Warne, AO.com on Black Friday

  It is not often a retail CIO can spare half an hour to have a chat on what is probably the busiest day of the year

• November 23, 2017 23 Nov'17

  Gartner on the Pentagon’s ‘misconfigured’ AWS S3 bucket data leak

  After details of the Pentagon’s online data collection habits came to light in the wake of its recent AWS S3 bucket leak, Gartner said web users should not be surprised to know the intelligence services are keeping tabs on their online activities

• November 23, 2017 23 Nov'17

  NHS data not fit for AI, Lords select committee told

  House of Lords artificial intelligence committee hears evidence from experts about the challenges of sharing NHS patient data

• November 23, 2017 23 Nov'17

  Work needed to ensure positive tech revolutions, says researcher

  The first technology revolution was brought about by all computers going online, but care must be taken that in the second and third tech revolutions, the good outweighs the bad, a cyber security researcher warns

• November 22, 2017 22 Nov'17

  GDPR could ramp up cyber extortion demands, warns researcher

  The ransom demanded for stolen or encrypted data is likely to rise after the General Data Protection Regulation compliance deadline in May 2018, according to a cyber security researcher

• November 22, 2017 22 Nov'17

  Government urged to improve redress for mass data breaches

  Open letter calls for UK government to make it easier for consumers to get compensation for mass data breaches by implementing an effective system for collective redress

• November 22, 2017 22 Nov'17

  US charges Iranian man with HBO hacking

  The US has charged an Iran-based hacker with accessing HBO's computer systems, stealing data and attempting to extort millions of dollars

• November 22, 2017 22 Nov'17

  Uber recognises need for consumer trust after breach cover up

  New Uber leadership has recognised the importance of consumer trust and that they never should have attempted to cover up a 2016 data breach that affected millions of customers and drivers

• November 21, 2017 21 Nov'17

  Cyber security requires man and machine, says F-Secure

  Like other cyber security firms, Finland’s F-Secure is building an artificial intelligence capability into its products and services, but says this is no replacement for cyber security professionals

• November 21, 2017 21 Nov'17

  Ransomware rages on with no signs of abating

  The rampant digital extortion facilitated by ransomware in 2017 will continue next year, with healthcare and industrial systems expected to be new prime targets

• November 21, 2017 21 Nov'17

  UK cyber defenders set to build on existing capability

  UK national cyber attack response and investigation is a well-defined and rehearsed process, but the responsible agencies say they are building more capability and closing the gaps

• November 20, 2017 20 Nov'17

  MPs press Theresa May to explain why alleged hacker Lauri Love is being extradited to US

  MPs question the attorney general and prime minister about why alleged hacker Lauri Love is to be extradited to the US, when at least 13 other hackers have been tried for US hacking offences in the UK

• November 20, 2017 20 Nov'17

  Use GDPR to future-proof business models

  Businesses should look beyond compliance with new data regulations to ensure that their business processes and models are in line with future requirements, advises a privacy innovation expert

• November 20, 2017 20 Nov'17

  Australian broadcaster hit by data breach

  The Australian Broadcasting Corporation is the latest organisation to fall prey to misconfigured Amazon S3 storage buckets, exposing database backups and sensitive data such as login credentials

• November 17, 2017 17 Nov'17

  Business crucial to cyber crime fight, say UK cyber cops

  Business has a crucial role in fighting cyber crime in terms of intelligence sharing and pursuing cyber criminals, according to the country’s top cyber cops

• November 17, 2017 17 Nov'17

  ICO funds first four privacy tool development projects

  The UK’s privacy watchdog has begun funding innovative research into data privacy tools for children and the medical and financial sectors

• November 17, 2017 17 Nov'17

  Computer science student wins 2017 UK Cyber Security Challenge

  Cyber attack simulation challenge sees 22-year-old computer science student crowned UK amateur cyber security champion

• November 16, 2017 16 Nov'17

  ICO pushes for jail terms for personal data snoops

  Information Commissioner’s Office says it backs prison sentences for anyone abusing their position to access personal data unlawfully

• November 16, 2017 16 Nov'17

  Europe not ready for imminent cyber strikes, say infosec professionals

  Information security leaders in Europe believe a major breach of critical infrastructure is coming and that data breaches in their own organisations are imminent – yet most are not ready

• November 16, 2017 16 Nov'17

  Free Quad9 internet threat protection launched

  IBM, Packet Clearing House and the Global Cyber Alliance join forces to protect businesses and consumers from internet threats free of charge

• November 16, 2017 16 Nov'17

  Half of UK consumers do not trust firms with personal data

  As the GDPR compliance deadline approaches, a survey reveals half of UK consumers do not believe commercial organisations care about their privacy

• November 15, 2017 15 Nov'17

  How the biggest cyber security disasters could have been avoided

  The headline-grabbing breaches that hit Accenture and Equifax in 2017 could have been averted had basic cyber hygiene been in place

• November 15, 2017 15 Nov'17

  Data skills could improve employment options as AI accelerates

  House of Lords artificial intelligence select committee hears evidence on societal risks of AI, data, life-long learning and the changing role of white-collar workers

• November 15, 2017 15 Nov'17

  Banks ideally placed to fill identity void, says consultant

  Current approaches to identity are too backward looking and need revision, according to a UK-based business management consultant

• November 15, 2017 15 Nov'17

  GDPR impact complex, expert warns

  The full impact of the EU’s General Data Protection Regulation (GDPR) is complex, warns the head of ICT at T-Systems Belgium

• November 14, 2017 14 Nov'17

  Business in digital world demands considered approach

  Companies need to think carefully about their approach to doing business in a complex, connected, digital world, according to a Belgian risk specialist

• November 14, 2017 14 Nov'17

  £115 constructed mask bypasses iPhone X Face ID verification

  A security company has used a 3D-printed mask to trick the face recognition technology on Apple's new iPhone X

• November 14, 2017 14 Nov'17

  GDPR is a business opportunity, says Belgian minister

  The EU’s General Data Protection Regulation should not be viewed only as a compliance issue, says Belgium’s minister for privacy

• November 14, 2017 14 Nov'17

  CIO interview: Gavin Scruby, SmartDebit

  The CIO of SmartDebit speaks to Computer Weekly about the challenges of balancing innovation with regulatory compliance

• November 13, 2017 13 Nov'17

  Cyber and physical security are inseparable

  Biometrics and pattern recognition, coupled with data from internet of things sensors, will provide the fabric of future smart ecosystems

• November 13, 2017 13 Nov'17

  Only a quarter of UK law firms are ready for GDPR, study shows

  Just 25% of UK law firms are ready for the General Data Protection Regulation and one in five have experienced an attempted cyber attack in the past month

• November 13, 2017 13 Nov'17

  IT leaders failing to prepare for cyber attacks, despite fears

  Organisations are over-confident about their ability to defend against major cyber attacks, despite fears that they will be hit in the coming year, a survey has revealed

• November 13, 2017 13 Nov'17

  Muslim hactivists hack “unhackable” IS news site

  A Muslim hacktivist group has hacked into Islamic State’s news site and published thousands of subscribers’ details just hours after the site claimed it was impenetrable

• November 13, 2017 13 Nov'17

  Nordic states deepen cyber defence collaboration

  Nordic and Baltic government leaders discuss pooling technologies and competences to counter hybrid threats within the cyber security domain

• November 10, 2017 10 Nov'17

  Open standards will ease GDPR risk, says Kantara

  Open standards will help organisations comply with new EU data protection regulations, while ensuring interoperability and a good user experience, according to a global standardisation group

• November 10, 2017 10 Nov'17

  UK calls for more anti-terror tools in social media

  The UK is calling on social media campaigns to do more to detect and remove “militant messaging” automatically, while former MI5 head issues another caution against tampering with encryption

• November 10, 2017 10 Nov'17

  WikiLeaks publishes code and analysis of CIA hacking tool

  Security experts are questioning the wisdom of WikiLeaks releasing more source code for US intelligence agency hacking tools

• November 09, 2017 09 Nov'17

  University of East Anglia investigates another data leak

  University is investigating a second leak in six months, illustrating that data breaches are often caused by non-malicious insiders and that organisations are not getting to grips with the problem

• November 09, 2017 09 Nov'17

  ISPs can play unique role in cyber security, says BT CEO

  Internet service providers are perfectly positioned to make a significant contribution to cyber security for everyone, BT’s Gavin Patterson believes

• November 09, 2017 09 Nov'17

  TSB customers can use their faces to authenticate payments

  Bank’s latest addition to its mobile apps is a facial recognition option for Apple iPhone X users

• November 09, 2017 09 Nov'17

  Cyber attacks not impossible to manage, says ex-GCHQ head

  Ex-GCHQ head says despite the growing number of sophisticated cyber threats, tackling them is not impossible, but business has to find new ways of finding cyber defenders in previously untapped pools of talent

• November 09, 2017 09 Nov'17

  Malaysia partners Huawei in cyber security

  A joint steering committee will meet twice a year to address cyber security issues, among other measures to shore up Malaysia’s cyber security capabilities

• November 08, 2017 08 Nov'17

  Everyone has cyber security responsibility, says Euro commissioner

  Everyone has a role to play in cyber security, including big market players – but if this is not done voluntarily, legislation may be required, says the European commissioner for security union

• November 08, 2017 08 Nov'17

  GDPR fines may affect almost 80% of US firms, poll shows

  Most US companies risk fines for non-compliance with new European data protection laws that apply to all organisations processing any personal data of EU citizens

• November 08, 2017 08 Nov'17

  Estonian e-resident population growth exceeds birth rate

  The number of non-Estonian people who applied for e-residency of the Baltic state exceeds the birth rate so far for this year

• November 07, 2017 07 Nov'17

  CrowdStrike outlines expansion plans in APAC

  Endpoint security expert CrowdStrike plans to double its workforce in the APAC region next year on the back of triple-digit growth in sales and bookings since it opened its Sydney regional headquarters in June 2016

• November 07, 2017 07 Nov'17

  Cyber security skills a priority for UK government

  The UK government is pursuing various short and long-term initiatives aimed at promoting the cyber security profession and growing skills in the sector, including supporting a professional body

• November 07, 2017 07 Nov'17

  UK spies face landmark challenge over mass surveillance in human rights court

  Ten human rights organisations challenge lawfulness of UK surveillance legislation and mass internet surveillance by UK intelligence agencies in Strasbourg court

• November 07, 2017 07 Nov'17

  Most UK small businesses in the dark over GDPR

  There is still much work to be done before UK SMEs are fully prepared for the EU’s General Data Protection Regulation (GDPR), business barometer shows

• November 06, 2017 06 Nov'17

  UK businesses must redress lack of trust around data, says ICO

  Businesses need to redress the lack of trust in their ability to keep personal data safe to enable innovation, according to the Information Commissioner’s Office

• November 06, 2017 06 Nov'17

  Blockchain hype exploited by spammers and phishers

  Hackers are exploiting the popularity of blockchain technologies in spamming and phishing campaigns, warns Kaspersky Lab

• November 06, 2017 06 Nov'17

  One in four UK workers have maliciously leaked business data

  Insider threat research has revealed that 24% of workers purposely shared info with other companies and nearly 50% have received an email by mistake

• November 06, 2017 06 Nov'17

  Any online business a target of DDoS attacks

  Any business that is online is susceptible to denial of service attacks and should ensure it has the capability to mitigate such attacks, says an industry practitioner who explains how

• November 03, 2017 03 Nov'17

  Go beyond GDPR for a competitive edge

  By exceeding the bare minimum requirements set by privacy regulations, businesses can win customers by offering greater assurances, says a business adviser

• November 03, 2017 03 Nov'17

  Third-party cyber security failures cost businesses the most

  Third-party cyber security failures are costing businesses the most – up to £1.5m – as security budgets shrink, a study by Kaspersky Lab and B2B International reveals

• November 02, 2017 02 Nov'17

  Businesses unprepared for cyber attacks, warn cyber professionals

  Businesses are nowhere near prepared enough for a cyber attack, according to a poll of information and security professionals

• November 02, 2017 02 Nov'17

  Society needs to work together to gain control of cyber space

  Cyber space is influencing human development and behaviour, but no one is in control and it will take a collective effort to ensure the cyber effect is more positive than negative, says cyber psychology expert

• November 02, 2017 02 Nov'17

  Silence banking Trojan highlights password weakness

  The Silence banking Trojan that has hit at least 10 financial institutions has once again highlighted the weakness of using username and password combinations to access accounts

• November 01, 2017 01 Nov'17

  Infosec pros urged to demonstrate value to business

  Information security professionals have been urged to help business understand the value of what they do and the importance of security and privacy

• November 01, 2017 01 Nov'17

  Personal data of 46.2 million Malaysia mobile subscribers leaked

  The massive data breach is yet another example of a ‘low and slow’ attack that stays dormant inside networks for years, without anyone noticing

• October 31, 2017 31 Oct'17

  Spoofing of Dutch politicians causes heated debate

  A report about how easy it is to spoof the email addresses of Dutch politicians causes wider security debate in the Netherlands

• October 31, 2017 31 Oct'17

  Researchers uncover strong trade in code-signing certificates

  Illicit certificates are more expensive than counterfeit US passports, stolen credit cards and handguns on the dark web

• October 31, 2017 31 Oct'17

  NotPetya tops list of worst ransomware attacks

  NotPetya, WannaCry and other ransomware have caused unprecedented damage to businesses, infrastructure and users, say threat researchers

• October 31, 2017 31 Oct'17

  Cyber security professionals urged to embrace AI and automation

  IBM security intelligence head says professionals should embrace artificial intelligence and automation to ensure they do not become obsolete

• October 31, 2017 31 Oct'17

  Deloitte sponsorship helps progress of Bletchley cyber school

  Sponsorship will provide hundreds of places on online Qufaro CyberEPQ course

• October 30, 2017 30 Oct'17

  Messaging apps a growing business security risk, study shows

  Businesses should introduce urgent policy changes to catch up with the reality of employees’ use of messaging apps, which is a growing security risk, say security researchers

• October 30, 2017 30 Oct'17

  EU may struggle to prove cyber attack links, warns expert

  EU governments are reportedly planning to respond to cyber attacks as an act of war, but a cyber security expert says links to nation states may be hard to prove

• October 30, 2017 30 Oct'17

  Heathrow to probe leak of security files

  Heathrow is investigating how and why files containing security information were stored without any protection on a USB stick found by a member of the public

• October 27, 2017 27 Oct'17

  Diversify security controls to maximise protection, says McAfee

  Organisations should ensure that in layering various security controls, the degree of alignment is not too great, warns McAfee CTO

• October 27, 2017 27 Oct'17

  Consumer identity management will benefit business

  Businesses should embrace consumer identity management to improve marketing capabilities and help drive regulatory compliance, says KuppingerCole

• October 27, 2017 27 Oct'17

  Rewrite the rules to win cyber arms race, says McAfee

  Enterprises need to change their approach if they are to beat cyber criminals, according McAfee’s enterprise products head

• October 27, 2017 27 Oct'17

  Airbus saves millions after building a digital learning library

  Airbus has created a digital learning library that is helping more than 100,000 staff in 35 countries keep their skills updated

• October 26, 2017 26 Oct'17

  NAO calls on NHS to ‘get its act together’ after WannaCry attack

  The NHS could have prevented the WannaCry cyber attack had it followed basic IT security best practice, according to National Audit Office boss