News

IT security

• February 03, 2025 03 Feb'25

  Australian government doubles down on AWS

  Federal government signs three-year whole-of-government agreement with Amazon Web Services, expanding access to cloud services for all levels of government

• January 31, 2025 31 Jan'25

  Police swoop on Sky ECC cryptophone distributors in Spain and Holland

  Dutch and Spanish police have arrested four people accused of making millions of euros by distributing Sky ECC encrypted phones to criminal organisations

• January 31, 2025 31 Jan'25

  Barclays hit by major IT outage on HMRC deadline day

  Customers of Barclays Bank are left unable to access web app and online banking following a significant IT outage that seems to have come at the worst possible time

• January 31, 2025 31 Jan'25

  AI jailbreaking techniques prove highly effective against DeepSeek

  Researchers at Palo Alto have shown how novel jailbreaking techniques were able to fool breakout GenAI model DeepSeek into helping to create keylogging tools, steal data, and make a Molotov cocktail

• January 31, 2025 31 Jan'25

  DeepSeek API, chat log exposure a ‘rookie’ cyber error

  Security researchers at Wiz find a trove of DeepSeek data including API secrets and chat logs publicly exposed via an open source database management tool, raising questions about the fast-growing service’s approach to security

• January 30, 2025 30 Jan'25

  First international AI safety report published

  A global cohort of nearly 100 artificial intelligence experts publish first international AI safety report ahead of the third AI summit, outlining an array of challenges posed by the technology that will be used to inform upcoming discussions

• January 29, 2025 29 Jan'25

  How government hackers are trying to exploit Google Gemini AI

  Google’s threat intel squad has shared information on how nation state threat actors are attempting to exploit its Gemini AI tool for nefarious ends

• January 29, 2025 29 Jan'25

  Vallance rejects latest charge to reform UK hacking laws

  Science minister Patrick Vallance rejects proposed amendments to the Computer Misuse Act, arguing that they could create a loophole for cyber criminals to exploit

• January 28, 2025 28 Jan'25

  NAO: UK government cyber resilience weak in face of mounting threats

  The National Audit Office has found UK government cyber resilience wanting, weakened by legacy IT and skills shortages, and facing mounting threats

• January 28, 2025 28 Jan'25

  Over 40 journalists and lawyers submit evidence to PSNI surveillance inquiry

  Angus McCullough, who is leading a review into the police surveillance of journalists and lawyers in Northern Ireland, says victims will be informed if they were unlawfully spied on – subject to ‘legal constraints’

• January 27, 2025 27 Jan'25

  Three sentenced over OTP.Agency MFA fraud service

  Three men have been sentenced over their role in a cyber criminal subscription service that offered access to online accounts using illicitly obtained one-time passcodes

• January 27, 2025 27 Jan'25

  Cyber incident that closed British Museum was inside job

  An IT incident that disrupted visitor access to the British Museum last week was the work of a disgruntled contractor who had been let go

• January 27, 2025 27 Jan'25

  Inside CyberArk’s security strategy

  CyberArk CIO Omer Grossman talks up the company’s security-first ethos, the importance of an assumed breach mentality and how the company is addressing threats from the growing use of AI

• January 24, 2025 24 Jan'25

  MPs and peers start inquiry into Russian and Chinese sabotage threats to subsea internet cables

  MPs and Lords on the Joint Committee on the National Security Strategy have begun an inquiry into the resilience of UK internet cables, following heightened threats of Russian and Chinese sabotage

• January 24, 2025 24 Jan'25

  US indicts five in fake North Korean IT contractor scandal

  The US authorities have accused five men, including two American citizens, of involvement in a scheme which saw companies duped into hiring fake North Korean IT contractors

• January 24, 2025 24 Jan'25

  High Court: Sky Betting ‘parasitic’ in targeting problem gambler

  UK High Court rules that Sky Betting acted unlawfully after breaching a customer’s data protection rights when it obtained his personal data through cookies and used it to profile him for the purposes of direct marketing, despite his ‘impaired’ ...

• January 24, 2025 24 Jan'25

  CISOs boost board presence by 77% over two years

  A global research study, from Splunk and Oxford Economics, into how chief information security officers interact with boards finds greater participation but enduring gaps

• January 23, 2025 23 Jan'25

  ICO launches major review of cookies on UK websites

  ICO sets out 2025 goals, including a review of cookie compliance across the UK’s top 1,000 websites, as it seeks to achieve its ultimate goal of giving the public meaningful control over how their data is used

• January 23, 2025 23 Jan'25

  UK eVisa system problems persist despite repeated warnings

  Travellers are already having issues boarding UK-bound flights, while refugees have been left with no way to prove their immigration status in the UK, just two weeks after the Home Office transitioned to electronic visas

• January 22, 2025 22 Jan'25

  Privacy professionals expect budget cuts, lack confidence

  Over 50% of privacy professionals in Europe expect to see less money earmarked for data security initiatives in 2025, and many don’t have faith their organisations are taking the issue seriously, according to an ISACA report

• January 22, 2025 22 Jan'25

  Funksec gang turned up ransomware heat in December

  The criminal ransomware fraternity was hard at work over the festive period, with attack volumes rising and a new threat actor emerging on the scene

• January 22, 2025 22 Jan'25

  Europol seeks evidence of encryption on crime enforcement as it steps-up pressure on Big Tech

  Europol wants examples of police investigations hampered by end-to-end encryption as it pressures tech companies to provide law enforcement access to encrypted messages

• January 22, 2025 22 Jan'25

  APAC businesses face surge in email attacks

  Sophisticated phishing and business email compromise campaigns are increasingly targeting organisations across the Asia-Pacific region, research reveals

• January 20, 2025 20 Jan'25

  Singtel’s 5G network slicing to boost Singapore’s defence and security

  Singapore’s defence and security technology agencies will leverage Singtel’s 5G network slicing technology nationwide to combat evolving security threats and enhance national security

• January 17, 2025 17 Jan'25

  US Supreme Court upholds TikTok ban

  The US Supreme Court has upheld a legal ban on TikTok, meaning that the video-sharing application will be shut down from midnight on Sunday 19 January

• January 16, 2025 16 Jan'25

  Biden signs new cyber order days before Trump inauguration

  With days left in the White House, outgoing US president Joe Biden has signed a wide-ranging cyber security executive order with far-reaching implications

• January 16, 2025 16 Jan'25

  Russia’s Star Blizzard pivots to WhatsApp in spear-phishing campaign

  The Russian cyber spy operation known as Star Blizzard changed tactics after a takedown operation by Microsoft and the US authorities, turning to widely used messaging platform WhatsApp to try to ensnare its targets

• January 16, 2025 16 Jan'25

  Almost half of UK banks set to miss DORA deadline

  A significant minority of financial services organisations in the UK will not be fully compliant with the EU’s DORA cyber and risk management regulation when it comes into force on 17 January

• January 16, 2025 16 Jan'25

  Davos 2025: Digital supply chains at risk as world faces two years of turbulence

  World Economic Forum urges digital business leaders to build the resilience of supply chains, improve cyber defences and develop contingency plans

• January 15, 2025 15 Jan'25

  Cyber security dovetails with AI to lead 2025 corporate IT investment

  Cyber security and GenAI top enterprise IT investment plans for 2025, whether singly or together, according to research from Enterprise Strategy Group

• January 15, 2025 15 Jan'25

  Users protest, flee TikTok as clock ticks on US ban

  As the US Supreme Court prepares to rule on the future of TikTok, rumours of a sale are swirling around Washington DC while panicked users make plans for an exodus

• January 15, 2025 15 Jan'25

  Biggest Patch Tuesday in years sees Microsoft address 159 vulnerabilities

  The largest Patch Tuesday of the 2020s so far brings fixes for more than 150 CVEs ranging widely in their scope and severity – including eight zero-day flaws

• January 15, 2025 15 Jan'25

  Davos 2025: Misinformation and disinformation are most pressing risks, says World Economic Forum

  World leaders, business chiefs and civil society organisations will discuss the risks posed by misinformation, disinformation and artificial intelligence at the World Economic Forum

• January 15, 2025 15 Jan'25

  Cohesity CEO on Veritas integration and IPO plans

  Cohesity CEO Sanjay Poonen shares his vision for integrating Veritas’ enterprise data protection business, uniting 12,000 customers, driving AI-powered innovation and building a public-ready company

• January 14, 2025 14 Jan'25

  Barings Law enleagues 15,000 claimants against Google and Microsoft

  Barings Law has signed up 15,000 claimants in a data breach suit against Microsoft and Google. The firm says the tech giants use personal data without proper consent to train AI models

• January 13, 2025 13 Jan'25

  UK government plans to extend ransomware payment ban

  A ban on ransomware payments by UK government departments will be extended to cover organisations such as local councils, schools and the NHS should new government proposals move forward

• January 13, 2025 13 Jan'25

  CNI operators should ask these 12 questions of their OT suppliers

  The NCSC, CISA and others have set out 12 cyber security considerations CNI organisations and other users of operational technology should incorporate into their buying processes to force their suppliers to do better

• January 13, 2025 13 Jan'25

  Can UK government achieve ambition to become AI powerhouse?

  The artificial intelligence opportunities action plan has been largely well received, but there are plenty of questions about how it will be achieved

• January 13, 2025 13 Jan'25

  UK government unveils AI-fuelled industrial strategy

  Labour plans to implement the 50 recommendations set out by entrepreneur Matt Clifford to boost the use of AI in the UK

• January 10, 2025 10 Jan'25

  US bank FNBO uses Pindrop to tackle voice fraud, deepfakes

  Learn how First National Bank of Omaha in the US is enhancing customer authentication and verification in its contact centres, eliminating friction points and making life easier for its customer service teams, with Pindrop voice security technology

• January 10, 2025 10 Jan'25

  Mandiant: Latest Ivanti vulns exploited by Chinese cyber spooks

  Threat actors are once again lining up to exploit vulnerabilities in the widely used Ivanti product suite, with an apparent link to Chinese espionage activity

• January 08, 2025 08 Jan'25

  German court finds hacked EncroChat phone evidence inadmissible

  The Berlin Regional Court has found that evidence obtained by a joint French and Dutch operation to hack the EncroChat encrypted mobile phone network is legally inadmissible, raising questions about its use in other European countries

• January 07, 2025 07 Jan'25

  Regional skills plan to boost UK cyber defences

  Over 30 projects in England and Northern Ireland will receive a share of a £1.9m fund designed to enhance cyber security skills and protect small businesses

• January 07, 2025 07 Jan'25

  Saudi Arabia calls for humanitarian AI after tightening screws on rights protesters

  Oppressive state wants global digital identity system at the heart of all AI, to make it trustworthy and prevent it being used for ‘unauthorised surveillance’

• January 06, 2025 06 Jan'25

  Government develops quantum tech for military

  A high-tech atomic clock has been developed by a ‘secret lab’ and aims to decrease the reliance on GPS technology

• January 03, 2025 03 Jan'25

  US Treasury incident a clear warning on supply chain security in 2025

  A cyber incident at the US Department of the Treasury – blamed on a Chinese state actor – raises fresh warnings about supply chain risk after it was found to have originated via vulnerabilities in a remote tech support product

• January 03, 2025 03 Jan'25

  Corporate cover-up behind world-beating cyber security record in Middle East

  Report ranking Gulf corporations ahead of US and EU counterparts for cyber security has sparked debate about the region’s tendency for secrecy and state control

• December 31, 2024 31 Dec'24

  Top 10 surveillance, journalism and encryption stories of 2024

  Revelations of covert and unlawful monitoring of journalists and their confidential sources by the Police Service of Northern Ireland and the Metropolitan Police attracted a huge amount of attention this year

• December 27, 2024 27 Dec'24

  Top 10 ANZ stories of 2024

  The 2024 tech landscape in Australia and New Zealand was dotted with developments spanning cloud migrations and AI adoption to heightened data security and real-time data streaming

• December 24, 2024 24 Dec'24

  Top 10 police technology stories of 2024

  Here are Computer Weekly’s top 10 police technology stories of 2024