News

IT security

December 19, 2019 19 Dec'19
EU court opinion finds EU-US data transfers lawful but raises questions over Privacy Shield

The Advocate General of the European Court says standard contractual clauses are lawful, but raises questions over the impact of US surveillance on the legality of Privacy Shield
December 19, 2019 19 Dec'19
Top 10 artificial intelligence stories of 2019

Here are Computer Weekly’s top 10 artificial intelligence stories of 2019
December 18, 2019 18 Dec'19
Facebook: Legality of EU-US data sharing to be decided by Court of Justice

The Advocate General of the European Court of Justice will give an opinion on the legality of EU-US data transfers that could have major implications for big tech companies and US government mass surveillance practices
December 18, 2019 18 Dec'19
Top 10 Australia IT stories of 2019

Here are Computer Weekly’s top 10 Australia IT stories of 2019

December 17, 2019 17 Dec'19
Group-IB CEO talks up global threat landscape

Public attribution of cyber attacks could backfire while a global cyber norms framework won’t emerge until a catastrophic incident occurs, says the head of Singapore-based Group-IB
December 16, 2019 16 Dec'19
Barco fixes ClickShare wireless flaw, but users still at risk

Supplier patches a major vulnerability in its popular ClickShare wireless presentation system with a firmware upgrade, but experts warn that users are not out of the woods yet
December 13, 2019 13 Dec'19
Alarm bells ring, the IoT is listening

With Christmas bearing down on us, a series of vulnerability disclosures has drawn attention to the parlous state of IoT security, and serves as a timely warning to people planning to buy smart devices as gifts
December 10, 2019 10 Dec'19
Rapid evolution of quantum computing a concern for CISOs

With the race to achieve so-called quantum supremacy hotting up, security pros are concerned that it will outpace the development of appropriate safeguards, according to a report
December 10, 2019 10 Dec'19
Scottish Justice Committee wants extra powers for biometrics commissioner

Members of Scottish Parliament in the Justice Committee have welcomed the creation of a biometrics commissioner for Scotland, but want ensure that they have the ‘necessary teeth’ for the job
December 09, 2019 09 Dec'19
Public sector still losing user devices in high numbers

The Ministry of Justice has lost 354 smartphones, PCs, laptops and tablets in the past 12 months, according to a Freedom of Information request, and other government departments are in the same boat

December 09, 2019 09 Dec'19
Jailed hacker ordered to pay back £270k

An Essex man jailed in April over malware offences dating back years has been ordered to pay back the profits of his crime spree, and sell valuable assets
December 09, 2019 09 Dec'19
China bans foreign computing kit from government contracts

All government offices and public institutions must eliminate foreign hardware and software within three years, according to a leaked directive dubbed 3-5-2
December 06, 2019 06 Dec'19
How commodities firm ED&F Man solved its threat detection challenges

After a minor server breach, leading commodities trader turned to Vectra’s Cognito service to expose hidden threats, spot privilege misuse, and conduct conclusive investigations
December 06, 2019 06 Dec'19
Dutch government must facilitate and coordinate a broad eID system

The Dutch government should push for an electronic ID system for its citizens that works across the public and private sectors, according to a report
December 06, 2019 06 Dec'19
Cyber security takes its place alongside UK’s armed services

Head of armed services says cyber security will take its place alongside the army, navy and air force as a key pillar of the UK’s defence strategy
December 06, 2019 06 Dec'19
Great Cannon DDoS operation fires on Hong Kong protesters

AT&T’s security unit has evidence that China is pressing its Great Cannon DDoS tool into service once again, specifically to target pro-democracy protests in Hong Kong
December 05, 2019 05 Dec'19
Two Russians indicted over Dridex and Zeus malware

The US Department of Justice has indicted two Russian citizens over their alleged role in the distribution of the virulent Bugat, or Dridex, and Zeus banking trojans
December 05, 2019 05 Dec'19
Cyber Girls First volunteers encourage girls to think high-tech

More than 80 schoolgirls spent a day learning about computer hackers and rocket science – Cyber Girls First hopes they will become the next generation of technologists
December 05, 2019 05 Dec'19
Black Hat Europe: Mental health websites are leaking user data

At Black Hat Europe in London, researchers reveal the extent to which confidential data is being leaked to third parties by online mental health websites
December 05, 2019 05 Dec'19
Aviatrix VPN vulnerability left user endpoints wide open

Immersive Labs has disclosed a serious vulnerability in VPN supplier Aviatrix’s enterprise client that could have granted hackers elevated user privileges across enterprise targets
December 05, 2019 05 Dec'19
Hackers primed to exploit 5G to Wi-Fi handover flaws

Warning that attackers will find new vulnerabilities to access voice and data on 5G mobile phones as carriers hand off calls and data to Wi-Fi networks to save bandwidth
December 04, 2019 04 Dec'19
RMIT to tackle cyber security challenges

Australia’s Royal Melbourne Institute of Technology has teamed up with Amazon Web Services to launch a Cloud Innovation Centre to solve cyber security challenges
December 04, 2019 04 Dec'19
Black Hat Europe: Red teams and blue teams must evolve in the 2020s

The red team versus blue team dichotomy is somewhat arbitrary and risks pigeonholing skilled security professionals into certain roles, says Facebook’s Amanda Rousseau
December 03, 2019 03 Dec'19
General Election 2019: Which manifesto is best for the UK’s tech sector?

Computer Weekly breaks down each political party’s technology policies ahead of the upcoming General Election to see how they compare
December 03, 2019 03 Dec'19
Survey finds most firms don’t respond to GDPR requests in time

Most organisations do not respond to requests for GDPR data in the one month allowed, while many return incorrect data. The education sector does best, but the public sector lags behind
December 03, 2019 03 Dec'19
Biometrics to enable $2.5tn of mobile payments by 2024

Juniper Research study predicts that biometric technology will be present on 90% of smartphones in five years’ time
December 03, 2019 03 Dec'19
Tenable buys Indegy to integrate IT and OT security

Acquisition of industrial security specialist Indegy will create a unified, risk-based platform spanning both IT and OT security for Tenable
December 03, 2019 03 Dec'19
Chinese web users take more risks than Brits or Americans

A research paper published by the University of Birmingham seems to show that differences in cultural values have an impact both on risky behaviour online and legal regulation
December 02, 2019 02 Dec'19
Top Android apps at risk from StrandHogg vulnerability

Researchers at Promon say all of the 500 most-downloaded Android apps are at risk from a newly discovered vulnerability
November 29, 2019 29 Nov'19
Cyber criminal RAT busted by cops

Police forces around the UK have arrested nine people as part of an international operation targeting users of a remote access trojan
November 29, 2019 29 Nov'19
TfL locks down Oyster accounts to ward off credential stuffing

Mandatory password reset for all travellers who use Oyster and contactless payment systems follows minor breach incident earlier in 2019
November 29, 2019 29 Nov'19
Hack Friday: This Christmas, fight back against cyber criminals

It’s nearly Christmas, and cyber attacks and fraud attempts in the retail sector are ramping up. Is it time to panic? And is there anything we can do beyond hammering home the message around basic cyber security hygiene?
November 28, 2019 28 Nov'19
The Security Interviews: Do cyber weapons need a Geneva Convention?

On a cold afternoon in Finland, F-Secure’s Mikko Hypponen discusses cyber weapons and nation state threats, and explains why arms limitations treaties might one day expand to include malware and other threats
November 28, 2019 28 Nov'19
Australia’s Fenner Dunlop ditches tape backups for cloud

Australian manufacturer of conveyor belts Fenner Dunlop has freed up its IT staff to focus on future projects by moving tape backups to the cloud
November 28, 2019 28 Nov'19
Top APAC security predictions for 2020

More attacks on critical infrastructure, supply chain vulnerabilities and file-less attacks are some of the security threats that enterprises should keep an eye on next year
November 27, 2019 27 Nov'19
Security skills gap will take a decade to fill

The British education systems cannot move fast enough to address the security skills crisis, and in the absence of government action increased reliance on automation may be the least worst solution
November 26, 2019 26 Nov'19
Enterprises muddled over cloud security responsibilities

A McAfee study suggests that 2020 will be a big year for cloud adoption, but confusion still persists over who is responsible for securing it
November 26, 2019 26 Nov'19
Facebook undermined rivals in bid to dominate global messaging

Facebook used buyouts and bullying tactics towards competitors to grow its business empire, documents leaked to Computer Weekly reveal
November 25, 2019 25 Nov'19
General Election 2019: The Conservatives’ technology policies and digital plans

With the UK gearing up for its third general election in four years, Computer Weekly outlines the Conservative and Unionist Party’s main technology policies and digital plans, as laid out in its manifesto
November 25, 2019 25 Nov'19
AI may open dangerous new frontiers in geopolitics

Truly artificial intelligence has the potential to provoke an international geopolitical crisis, warns F-Secure’s Mikko Hypponen
November 25, 2019 25 Nov'19
Uber app exploit posed safety risk to passengers

A flaw in Uber’s system meant thousands of trips in London were taken with unauthorised drivers at the wheel
November 25, 2019 25 Nov'19
Tim Berners-Lee launches nine principles for the web

Inventor of the worldwide web sets out Contract for the Web to protect its freedom, data privacy and access for all
November 25, 2019 25 Nov'19
Conservatives propose national cyber crime force

Manifesto also says Tories would “empower the police to safely use new technologies like biometrics and artificial intelligence, along with the use of DNA, within a strict legal framework”
November 22, 2019 22 Nov'19
Mystery surrounds leak of four billion user records

Threat researchers uncover four billion user records on a wide-open Elasticsearch server but who left them there is a mystery
November 22, 2019 22 Nov'19
IT chiefs recognise the risks of artificial intelligence bias

Artificial intelligence promises to change the way businesses operate. IT leaders are now taking bias in AI algorithms seriously
November 22, 2019 22 Nov'19
Some 29,000 UK web domains suspended for criminal activity

Domain suspensions for criminal activity over the past year has dropped for the first time since 2014
November 22, 2019 22 Nov'19
Druva eyes data protection for IoT workloads

Cloud data protection software supplier Druva is looking at a comprehensive platform that will protect data generated by IoT workloads
November 21, 2019 21 Nov'19
Labour pledges review of NCSC in UK security overhaul

The UK's National Cyber Security Centre may get expanded powers under a Labour government
November 21, 2019 21 Nov'19
British Airways cancels flights due to technical issue

British Airways customers are suffering delays and cancellations as a result as a technical issue
November 21, 2019 21 Nov'19
F-Secure’s Blackfin challenges perceptions of how AIs think

New research project aims to develop adaptive, autonomous and collaborative AI agents, and challenges the notion that machine intelligence should merely mimic human intelligence