News

IT security

• July 20, 2022 20 Jul'22

  How NEC is transforming its business

  While NEC is known for its public safety systems, the company has been expanding into new areas including e-government, financial services and customer experience in Asia-Pacific

• July 20, 2022 20 Jul'22

  Russia’s Cozy Bear abusing Dropbox, Google Drive to target victims

  Russian APT known as Cozy Bear has become adept at quickly incorporating popular cloud storage services into its attack chain to avoid detection

• July 18, 2022 18 Jul'22

  US cyber agency CISA to open London office

  The US Cybersecurity and Infrastructure Security Agency has chosen London to host its first office outside America

• July 15, 2022 15 Jul'22

  NHS trust ‘deliberately’ deleted up to 90,000 emails before tribunal hearing

  A high-profile case brought by NHS whistleblower Chris Day raises questions about the adequacy of information governance practices in NHS hospital trusts

• July 15, 2022 15 Jul'22

  Log4Shell on its way to becoming ‘endemic’

  US government report concludes that, like Covid, Log4Shell will be with us for a long time to come

• July 14, 2022 14 Jul'22

  Videogame maker Bandai Namco confirms cyber attack

  Bandai Namco, developer of videogames including Pac-Man, Tekken and Dark Souls, has broken days of silence to confirm it has been hit by a cyber attack

• July 14, 2022 14 Jul'22

  How hostile government APTs target journalists for cyber intrusions

  Proofpoint shares data on multiple campaigns of cyber intrusions against journalists originating from threat actors aligned to the governments of China, Iran, North Korea and Turkey

• July 14, 2022 14 Jul'22

  Government pauses Online Safety Bill’s progress

  The government has paused the Online Safety Bill’s journey towards becoming law, amid timetable pressure

• July 14, 2022 14 Jul'22

  ICO wants to ‘empower people through information’

  Information Commissioner’s Office sets out commitment to safeguard the information rights of the most vulnerable people in UK society

• July 13, 2022 13 Jul'22

  Slippery phish wriggles around MFA protections, says Microsoft

  Microsoft’s threat researchers share details of a phishing campaign that hit 10,000 organisations, against which standard multifactor authentication provides little defence

• July 13, 2022 13 Jul'22

  Digital break-up kit to help women get out of bad relationships safely

  Domestic abuse charity Refuge teams up with Avast to equip women with the knowledge to effectively and safely end a relationship digitally

• July 13, 2022 13 Jul'22

  July Patch Tuesday brings more than 80 fixes, one zero-day

  While some admins can put their feet up and let Windows Autopatch do the hard work of updating their Microsoft estates, for the rest of us, the Patch Tuesday bandwagon keeps on keeping on

• July 13, 2022 13 Jul'22

  ICO calls for review into government use of private email and WhatsApp messages

  Information Commissioner’s Office reprimands Department of Health and Social Care after ministers and officials conducted government business on their own email accounts and messaging apps

• July 12, 2022 12 Jul'22

  Brits say social media must do more to block harmful content

  UK citizens want social media companies to do more to prevent harmful content appearing on their platforms

• July 12, 2022 12 Jul'22

  MaliBot Android malware spreading fast, says Check Point

  The MaliBot malware is becoming a persistent and widespread problem, and Android users should be on their guard, says Check Point

• July 12, 2022 12 Jul'22

  Microsoft Windows Autopatch now generally available

  Microsoft customers with Windows Enterprise E3 and E5 licences can now take full advantage of its new automated patching service

• July 12, 2022 12 Jul'22

  Singapore doubles down on OT security

  The Cyber Security Agency of Singapore will fund 80 scholarships to groom a talent pool of operational technology security experts, among other efforts to bolster the security of critical infrastructure in the city-state

• July 11, 2022 11 Jul'22

  Microsoft VBA macro block will return

  Microsoft provides more details about its sudden decision to rollback a landmark security policy, and reassures users it is a temporary measure

• July 11, 2022 11 Jul'22

  SMEs lagging on multifactor authentication

  Only 46% of small business owners say they have implemented multifactor authentication, and just 13% mandate its use, according to a report

• July 08, 2022 08 Jul'22

  Stop telling clients to pay ransomware gangs, solicitors told

  The NCSC and the ICO are calling on solicitors to help tackle the rising number of ransomware payments being made, and to stop giving erroneous advice to victims

• July 08, 2022 08 Jul'22

  Sweden and GDPR – four years on

  Swedish data protection coordinator talks to Computer Weekly four years into the General Data Protection Regulation

• July 08, 2022 08 Jul'22

  Microsoft appears to reverse VBA macro-blocking

  Microsoft quietly reverses VBA macro-blocking across its Office portfolio in a move that has left security experts puzzled

• July 07, 2022 07 Jul'22

  UK government does not yet understand threat of technology to foreign policy

  Select committee chair warns government that the threat posed to global security by malign actors influencing tech standards is no ‘dystopian fantasy’

• July 07, 2022 07 Jul'22

  MI5, FBI chiefs warn of Chinese cyber espionage threat

  In a joint appearance in London, MI5 director general Ken McCallum and FBI director Chris Wray warn of the growing threat posed by the Chinese government to UK and US interests

• July 07, 2022 07 Jul'22

  UK signs ‘in principle’ data adequacy agreement with South Korea

  Bilateral adequacy agreement will allow businesses to conduct cross-border data transfers with minimal restrictions

• July 07, 2022 07 Jul'22

  Amid NSO lawsuit, Apple expands spyware protections

  Apple previews a new feature called Lockdown Mode to protect iPhone and iPad users from ‘mercenary spyware’

• July 07, 2022 07 Jul'22

  Latest Marriott data breach not as serious as others

  Questions are again being raised over Marriott’s cyber security practices following yet another incident, but fortunately it seems limited in its scope, and the company is responding appropriately

• July 07, 2022 07 Jul'22

  Tech companies face pressure over end-to-end encryption in Online Safety Bill

  An amendment to the Online Safety Bill, currently going through Parliament, will put pressure on tech companies over end-to-end encrypted messaging services

• July 07, 2022 07 Jul'22

  The Security Interviews: Inside Russia’s Ukraine information operation

  Computer Weekly speaks to Craig Terron of Recorded Future about delving deep inside the Russian disinformation machine, and how the Kremlin’s strategy is set to evolve

• July 06, 2022 06 Jul'22

  Plexal seeks new scaleups for next phase of Cyber Runway

  Established security startups looking to grow and scale their operations are being invited to join the next phase of Plexal’s Cyber Runway programme

• July 06, 2022 06 Jul'22

  ESET: Lazarus APT hit aero, defence sector with fake job ads

  ESET researchers present new findings into a series of cyber attacks on the aerospace and defence sectors by North Korea’s Lazarus crime syndicate

• July 05, 2022 05 Jul'22

  Prepare for long-term cyber threat from Ukraine war, says NCSC

  The NCSC has published refreshed guidance on cyber preparedness as the war on Ukraine continues, urging organisations to pay attention to the state of their security teams

• July 05, 2022 05 Jul'22

  LogRhythm bullish on growth in APAC

  LogRhythm expects its business in the region to grow by over 20% this year thanks to demand from emerging economies where cyber security investments have not kept pace with cyber threats

• July 05, 2022 05 Jul'22

  NCSC CEO: Why we should run towards crises to elevate cyber security

  National Cyber Security Centre CEO Lindy Cameron, the 2022 Computer Weekly UKtech50 Most Influential Person in UK IT, reflects on a career immersed in crisis management, and how she is using this to elevate cyber security standards across the country

• July 04, 2022 04 Jul'22

  MPs call for ban on Chinese surveillance camera technology

  Nearly 70 MPs have called on the government to ban Chinese camera technology that is widely used by UK government agencies despite links to human rights abuses in China

• July 04, 2022 04 Jul'22

  Government rejects Lords police tech inquiry recommendations

  The government has largely rejected the findings and recommendations of a House of Lords inquiry into police tech, which called for an overhaul of how police deploy artificial intelligence and algorithmic technologies

• July 04, 2022 04 Jul'22

  Assange appeals against Priti Patel’s extradition order

  WikiLeaks founder is expected to raise concerns over the political nature of his prosecution, the likelihood of him receiving a fair trial, and the risk of a coercive plea bargain

• June 30, 2022 30 Jun'22

  ICO to cut back on fines for public sector data breaches

  Information commissioner John Edwards sets out a revised approach to how the ICO handles data breaches in the public sector, saying fining victims risks punishing the public twice over

• June 29, 2022 29 Jun'22

  Urgent need for new laws to govern biometrics, legal review finds

  Independent review says new framework is needed to clear up legal and ethical concerns over the use of biometric data and technologies, which can impact privacy, freedom of expression and other human rights

• June 29, 2022 29 Jun'22

  New cyber extortion op appears to have hit AMD

  Semiconductor specialist AMD has confirmed it is investigating reports that a ‘bad actor’ has stolen hundreds of gigabytes of its data

• June 29, 2022 29 Jun'22

  Romance scammers exploit Ukraine war in cynical campaign

  Romance scammers can make easy money exploiting people looking for love, but in this newly observed campaign linked to the Ukraine war they are playing on deeper emotions

• June 29, 2022 29 Jun'22

  Spy agencies need ‘independent authorisation’ to access telecoms data, say judges

  The High Court has ruled that UK intelligence agencies should seek independent authorisation before accessing phone and internet records during criminal investigations

• June 28, 2022 28 Jun'22

  Proposed changes to copyright law open doors for AI data mining

  Update to copyright law will mean researchers who already have access to data will not require extra permission from copyright owner to run data mining algorithms, removing barriers to artificial intelligence research and development

• June 28, 2022 28 Jun'22

  Avast uncovers ‘thieves’ kitchen’ of malware-writing teens

  Researchers stumble across online community of 11 to 18-year-olds constructing, exchanging and spreading malware

• June 28, 2022 28 Jun'22

  Russia-aligned hacktivists behind Lithuania DDoS attack

  Killnet hacktivist collective targeted Lithuania with distributed denial of service attacks after its government angered the Kremlin

• June 28, 2022 28 Jun'22

  Veritas aims at autonomous backup discovery and provisioning

  Veritas bets on a backup platform that can discover all enterprise data – on-premise and in the cloud – and make its own decisions about the optimal place to store copies

• June 27, 2022 27 Jun'22

  Commercial cyber products must be used responsibly, says NCSC CEO

  NCSC’s Lindy Cameron is to speak out on responsible regulation of cyber capabilities at an event in Tel Aviv, Israel

• June 27, 2022 27 Jun'22

  Brexit a net negative for UK cyber, say CISOs

  Six years on from the UK’s Brexit vote, the majority of security professionals say leaving the EU has raised concerns over their ability to keep their organisations safe

• June 27, 2022 27 Jun'22

  LockBit ransomware gang launches bug bounty programme

  A bug bounty programme is among a number of features LockBit’s developers have added to ‘version 3.0’ of the ransomware

• June 24, 2022 24 Jun'22

  Black Basta ransomware crew aiming for ‘big leagues’

  Emergent Black Basta ransomware gang has hit more than 50 countries since bursting onto the scene earlier this year, says Cybereason