News

IT security

• July 21, 2025 21 Jul'25

  UK may be seeking to pull back from Apple encryption row with US

  UK government officials say that attempts by the Home Office to require Apple to introduce ‘backdoors’ to its secure encrypted storage service will cross US red lines

• July 21, 2025 21 Jul'25

  Darktrace buys network visibility specialist Mira

  AI cyber giant Darktrace buys network security firm Mira for an undisclosed sum, seeking to enhance the tech stack it offers to highly regulated sectors

• July 21, 2025 21 Jul'25

  Patch ToolShell SharePoint zero-day immediately, says Microsoft

  The active exploitation of a dangerous zero-day vulnerability chain in Microsoft SharePoint – which was disclosed over the weekend – is underway. Immediate action is advised

• July 21, 2025 21 Jul'25

  The Security Interviews: Jason Nurse, University of Kent

  Jason Nurse, reader in cyber security at the University of Kent, discusses the psychological side of cyber and online safety, why placing blame on users as ‘the weakest link’ is wrong – and why security pros should think about user needs more

• July 21, 2025 21 Jul'25

  Singapore under ongoing cyber attack from APT group

  Nation-state actor UNC3886 is actively targeting Singapore’s critical national infrastructure in a sophisticated espionage and disruption campaign, with the country mounting a whole-of-government response

• July 21, 2025 21 Jul'25

  Netherlands calls for European shift to post-tracking internet as privacy laws fail

  Dutch research institute argues decade of regulation hasn’t curbed surveillance capitalism, proposes fundamental business model change

• July 18, 2025 18 Jul'25

  NCSC exposes Fancy Bear's Authentic Antics malware attacks

  Amid a new round of UK government sanctions targeting Moscow's intelligence apparatus, the NCSC has formally attributed attacks orchestrated with a cleverly-designed malware to the GRU's Fancy Bear cyber unit

• July 18, 2025 18 Jul'25

  DWP accused of shielding AI deployments from public scrutiny

  Amnesty International and Big Brother Watch say Department for Work and Pensions’ ‘unchecked’ and opaque use of AI in the UK benefits system treats claimants as suspicious and is shielded from public scrutiny

• July 17, 2025 17 Jul'25

  European cyber cops target NoName057(16) DDoS network

  A Europol operation has succeeded in disrupting a pro-Russian hacktivist network accused of conducting DDoS cyber attacks on targets in Ukraine and Europe

• July 17, 2025 17 Jul'25

  Estimated 96% of EMEA financial services sector not ready for DORA

  Research from data backup provider Veeam indicates that vast majority of European financial services firms do not feel ready to meet the resiliency requirements of the EU’s DORA act

• July 17, 2025 17 Jul'25

  Terrorist potential of generative AI ‘purely theoretical’

  UK terror legislation advisor takes stock of the potential for generative artificial intelligence systems to be adopted by terrorists, particularly for propaganda and attack planning purposes, but acknowledges the impact may be limited

• July 16, 2025 16 Jul'25

  Hackbots biggest cloud security risk, slashing attack times to minutes

  With cyber criminals using automated tools to steal data in minutes, organisations must focus on runtime protection and automated responses to combat the rising threat from AI and misconfigured cloud assets

• July 16, 2025 16 Jul'25

  Co-op chief ‘incredibly sorry’ for theft of 6.5m members’ data

  Co-op chief executive Shirine Khoury-Haq has revealed that all the personal data of all 6.5 million of its members was compromised in the April 2025 cyber attack on its systems

• July 16, 2025 16 Jul'25

  Scattered Spider playbook evolving fast, says Microsoft

  Microsoft warns users over notable evolutions in Scattered Spider’s attack playbook, and beefs up some of the defensive capabilities it offers to customers in response

• July 16, 2025 16 Jul'25

  Forrester urges IT leaders to dump technical debt

  IT needs to invest in innovative technologies and outsource legacy IT management to tackle volatile global markets, says Forrester

• July 16, 2025 16 Jul'25

  Securonix tackles security data deluge with AI-driven platform

  As security data volumes grow and security budgets tighten, Securonix is betting on its AI-driven platform to help businesses manage threats cost-effectively, says its CEO

• July 15, 2025 15 Jul'25

  UKtech50 2025: The most influential people in UK technology

  Computer Weekly has announced the 15th annual UKtech50 – our definitive list of the movers and shakers in the UK tech sector

• July 15, 2025 15 Jul'25

  Current approaches to patching unsustainable, report says

  Organisations are struggling to prioritise vulnerability patching appropriately, leading to situations where everything is a crisis, which helps nobody, according to a report

• July 15, 2025 15 Jul'25

  MoD cyber breach put thousands of Afghan lives at risk

  More than 18,000 Afghan citizens eligible to relocate to the UK under a government programme to protect them from the Taliban were put at risk in a heretofore unreportable data breach

• July 15, 2025 15 Jul'25

  NCSC sets up Vulnerability Research Initiative

  The NCSC is expanding its vulnerability research project to draw in external expertise

• July 15, 2025 15 Jul'25

  Ada Lovelace: using market forces to professionalise AI assurance

  The Ada Lovelace Institute examines how ‘market forces’ can be used to drive the professionalisation of artificial intelligence assurance in the context of a wider political shift towards deregulation

• July 15, 2025 15 Jul'25

  Datadog doubles down on APAC, targets faster growth

  The observability tools supplier is executing a multi-year growth plan for Asia-Pacific and Japan, focusing on data residency, localisation and AI-driven observability to grow its market share

• July 14, 2025 14 Jul'25

  Brits clinging to Windows 10 face heightened risk, says NCSC

  Businesses and consumers alike may not feel the need to upgrade to Windows 11 as its predecessor approaches end-of-life, but they are putting their own security at risk, says the NCSC

• July 14, 2025 14 Jul'25

  Luxury retailer LVMH says UK customer data was stolen in cyber attack

  French luxury goods retailer LVMH has disclosed multiple cyber attacks in 2025 so far, and their impact is now spreading to the UK as a new incident affecting Louis Vuitton comes to light

• July 14, 2025 14 Jul'25

  AI adoption grows amid falling trust in AI outputs

  As organisations move from AI hype to reality, a decline in trust for AI outputs is not a sign of failure, but a signal of market maturity, according to Bhavya Kapoor, Avanade's Asia-Pacific president

• July 11, 2025 11 Jul'25

  MoD supply chain cyber scheme gets up and running

  The Ministry of Defence and IASME have launched a certification scheme for organisations working in the UK defence supply chain, with construction firm Morgan Sindall the first business to achieve compliance

• July 11, 2025 11 Jul'25

  Pobl Group builds on managed SD-WAN for housing development

  Three-year contract for managed software-defined wide area network service follows merger creating Wales’s largest housing association

• July 11, 2025 11 Jul'25

  UK to create ‘governance framework’ for police facial recognition

  Home secretary Yvette Cooper has confirmed UK will regulate police facial recognition, citing police reticence to deploy systems without proper governance, but declined to say if any new framework will be statutory

• July 11, 2025 11 Jul'25

  European Commission accused of rigging data watchdog appointment

  The European Commission has been accused of rigging the selection process for the next European Data Protection supervisor

• July 11, 2025 11 Jul'25

  AWS bolsters security tools to help customers manage AI risks

  Amazon Web Services has unveiled new and updated security services, including container-level threat detection and a unified command centre, to help organisations build and secure artificial intelligence applications

• July 10, 2025 10 Jul'25

  Government funding to help SMEs protect their IP

  Scheme will see SMEs and innovative startups working in sensitive sectors receive advice on enhancing cyber and physical security measures to protect their valuable intellectual property

• July 10, 2025 10 Jul'25

  UK and France forge closer cyber, tech research ties

  The navigation and timing systems used by power suppliers and emergency services to run their operations will fall in scope of an Anglo-French research pact that will also foster development in AI and supercomputing

• July 10, 2025 10 Jul'25

  Four arrested in M&S cyber attack investigation

  Police have made four arrests in connection with a trio of cyber attacks on UK retailers Marks & Spencer, Co-op and Harrods

• July 09, 2025 09 Jul'25

  NAO says government should employ data analytics to tackle fraud

  The National Audit Office recommends public bodies share and manage data in a way that prevents fraud and saves taxpayers’ money

• July 09, 2025 09 Jul'25

  Qantas details impact of data breach on 5.7 million customers

  Australian flag carrier begins notifying millions of individuals after a cyber attack on a call centre, confirming that while financial and passport details are safe, a significant volume of other personal information was compromised

• July 08, 2025 08 Jul'25

  July Patch Tuesday brings over 130 new flaws to address

  Microsoft patched well over 100 new common vulnerabilities and exposures on the second Tuesday of the month, but its latest update is mercifully light on zero-days

• July 08, 2025 08 Jul'25

  M&S calls for mandatory ransomware reporting

  The government should extend ransomware reporting mandates to businesses to help gather more intelligence and better support victims, says M&S chairman Archie Norman

• July 08, 2025 08 Jul'25

  AI for Good: Signal president warns of agentic AI security flaw

  Secure by design is a mantra of the tech sector, but not if it’s agentic AI, which wants ‘root’ access to everything

• July 08, 2025 08 Jul'25

  SEC and SolarWinds to settle lawsuit over 2020 breach

  The US SEC and SolarWinds have reached a settlement in principle to resolve litigation over alleged security failings that led to the 2020 compromise of the supplier’s Orion platform by Russian cyber spies

• July 08, 2025 08 Jul'25

  NHS trust accused of ‘at best cavalier, at worst deceitful’ behaviour after deleting emails

  A London hospital trust faces allegations it withheld key evidence from a tribunal hearing after one of its directors attempted to destroy more than 90,000 emails

• July 08, 2025 08 Jul'25

  Proofpoint bets on APAC growth amid spike in AI-driven threats

  With cyber attacks spiking in non-English-speaking markets such as Japan, the security firm is boosting its regional presence to combat a wave of AI-generated threats

• July 07, 2025 07 Jul'25

  Tech firms complicit in ‘economy of genocide’, says UN rapporteur

  A UN special rapporteur has called for technology firms operating in Israel and the Occupied Palestinian Territories to immediately halt their activities, in wider report about the role corporate entities have played in the Israeli state’s ongoing ‘...

• July 07, 2025 07 Jul'25

  Digital warfare is blurring civilian front lines

  Singapore’s defence cyber chief warns that the traditional lines between military conflict and civilian life are blurring, with adversaries now targeting civilian systems and using AI to put the threat landscape on steroids

• July 04, 2025 04 Jul'25

  Medow Health AI debuts AI scribe tool in Singapore

  The Australian health technology company has launched its AI-powered scribe platform in Singapore to help healthcare professionals automatically capture and structure clinical notes, reports and referral letters

• July 03, 2025 03 Jul'25

  Fine-tuning to deliver business AI value

  Foundation AI models offer knowledge that spans the internet, but they generally lack an understanding of proprietary business data and processes

• July 02, 2025 02 Jul'25

  US CISA agency extends Iran cyber alert, warns of CNI threat

  The US Cybersecurity and Infrastructure Security Agency reiterates guidance for operators of critical national infrastructure as it eyes the possibility of cyber attacks from Iran

• July 02, 2025 02 Jul'25

  Google fixes type confusion flaw in Chrome browser

  An actively exploited type confusion vulnerability in the Google Chrome web browser needs immediate attention from users

• July 02, 2025 02 Jul'25

  Scattered Spider link to Qantas hack is likely, say experts

  A developing cyber attack at Australian airline Qantas that started at a third-party call centre is already being tentatively attributed to Scattered Spider. Find out more and learn about the next steps for those affected

• July 02, 2025 02 Jul'25

  Dutch study uncovers cognitive biases undermining cyber security board decisions

  Dutch research reveals how cognitive biases can lead to catastrophic security decisions

• July 02, 2025 02 Jul'25

  Qantas customer data exposed in contact centre breach

  Australian flag carrier is investigating significant data theft of personal information for up to six million customers after a third-party platform used by its call centre was compromised