News

IT strategy

October 17, 2023 17 Oct'23
Alert sounded over dangerous Cisco IOS XE zero-day

Cisco warns customers using its IOS XE software of a newly discovered vulnerability that could enable a threat actor to take over their systems
October 17, 2023 17 Oct'23
What it takes to succeed in DevSecOps

Providing engineering leadership and balancing between speed and security are some areas that organisations will need to focus on in their DevSecOps journey
October 16, 2023 16 Oct'23
How APAC organisations are tapping generative AI

Organisations in the region are deploying and experimenting with generative AI in healthcare, citizen services and other use cases amid cost-related concerns and other challenges
October 13, 2023 13 Oct'23
US SEC launches probe into mass MOVEit breach

Progress Software is facing an investigation from the SEC for the breach of its MOVEit tool, as well as dozens of legal battles resulting from the exfiltration of personal data from the roughly 2,000 organisations affected

October 13, 2023 13 Oct'23
CDO interview: Andrew Curry, manager of the Central Data Office, ExxonMobil

The head of the oil and gas giant’s data organisation is leading a strategy to establish enterprise-wide principles for the use of data as part of a unified corporate ecosystem
October 13, 2023 13 Oct'23
‘Angry’ lawyer warned against Post Office computer investigation in 2010 email

Angered by his exclusion from an important discussion, former Royal Mail lawyer told colleagues of the risks to the Post Office if, as planned, they publicly investigate allegations against its computer system
October 12, 2023 12 Oct'23
How generative AI and cloud complement each other

McKinsey partner explains the symbiotic relationship between generative AI and cloud, enabling organisations to speed up cloud migration and harness the benefits of AI
October 12, 2023 12 Oct'23
Scottish biometrics watchdog outlines police cloud concerns

Police Scotland’s response to the biometrics commissioner’s formal information notice ‘did not ameliorate’ his concerns about the sovereignty and security of the sensitive biometric information being uploaded to cloud infrastructure that is subject ...
October 11, 2023 11 Oct'23
Public sector buyers of AI tech must interrogate its suitability

The Ada Lovelace Institute has published a review on public sector use of artificial intelligence foundation models, looking at the risks and opportunities associated with the technology, and how these can be dealt with from the early stages of ...
October 11, 2023 11 Oct'23
Telstra to acquire Versent for A$267.5m

The move is expected to bolster Telstra’s enterprise IT services business and support international expansion

October 09, 2023 09 Oct'23
VMware reaffirms commitment to Tanzu

VMware CEO Raghu Raghuram emphasises the importance of having an infrastructure stack capable of supporting applications, with VMware Tanzu playing a pivotal role
October 05, 2023 05 Oct'23
Microsoft: Nation-state cyber espionage on rise in 2023

Microsoft’s latest Digital Defence Report outlines how nation-state cyber activity has largely moved from destructive attacks to espionage and intelligence gathering
October 05, 2023 05 Oct'23
Red Cross issues rules of engagement for hackers in conflicts

The digital rules of engagement are the first time cyber activity has been looked at by the conflict watchdog, but a number of hacker groups have already come out and said they will not be following them
October 05, 2023 05 Oct'23
Ransomware dwell times now measured in hours, says Secureworks

Ransomware payloads are now being deployed and executed within 24 hours in more than 50% of cases, according to Secureworks’ annual report
October 04, 2023 04 Oct'23
HPE hones GreenLake strategy with AI moves, hybrid cloud management

HPE has evolved its GreenLake strategy over the past five years, expanding beyond its as-a-service offerings to include a capital purchase model and a strong focus on hybrid cloud management and AI
October 04, 2023 04 Oct'23
ICO issues guidance on workplace surveillance

Guidance on employee monitoring covers how employers can conduct their digital surveillance lawfully, transparently and fairly, and warns against businesses intruding on their workers’ private lives
October 03, 2023 03 Oct'23
How Pure Storage is supporting AI workloads

Pure Storage’s cloud-compatible and energy-efficient modular flash storage architecture is well-poised to address the data storage demands of artificial intelligence workloads
October 03, 2023 03 Oct'23
Cyber experts urge EU to rethink vulnerability disclosure plans

The European Union’s proposed cyber security vulnerability disclosure measures are well-intentioned but ultimately counterproductive, as making unmitigated vulnerabilities public knowledge increases the risk of their exploitation by various actors, ...
October 03, 2023 03 Oct'23
Public sector needs systemic reform of capacity to innovate

Improving the public sector’s capacity to innovate requires a culture of innovation underpinned by people, skills and new ways of working with the private sector
October 03, 2023 03 Oct'23
CIISec scores DSIT funding to expand successful CyberEPQ scheme

DSIT has committed to enhanced funding to expand CIISec’s CyberEPQ education programme after recording excellent results to date
October 02, 2023 02 Oct'23
CDO interview: Lalo Luna, global head of strategy and insights, Heineken

The brewing giant is building a data ecosystem to bring new insights to the business and to make the most of emerging developments in artificial intelligence capabilities
October 02, 2023 02 Oct'23
Versity targets Exabyte volumes in data archiving

Versity builds archiving for Exabyte data volumes on tape and in object storage. It has built its own S3 and transitioned to a GPL licence for supercomputing archives
October 02, 2023 02 Oct'23
How the Australian government is approaching AI

The Australian government is experimenting with AI use cases in a safe environment while it figures out ways to harness the technology to benefit citizens and businesses
September 29, 2023 29 Sep'23
Scottish watchdog urges wider biometric oversight

Scotland’s biometrics watchdog urges Scottish Parliament to extend oversight of biometric information to include the entire criminal justice system, not just police
September 28, 2023 28 Sep'23
Businesses disconnected from realities of API security

Business leaders feel confident they’ve got a handle on API security, but at the same time, incidents are through the roof, according to a report
September 28, 2023 28 Sep'23
How Akamai is driving growth in APAC

Akamai's managing director for the region outlines the company’s growth journey, how it sets itself apart from competitors, and its strategies to drive the next phase of growth
September 28, 2023 28 Sep'23
Security and risk management spending to grow 14% next year

Growth in public cloud services will stand out over the next 12 months, as Gartner projects an overall 14% increase in cyber spending in 2024
September 28, 2023 28 Sep'23
Yahoo picks Intigriti to run crowdsourced bug bounty programme

Digital media brand Yahoo is setting up a crowdsourced bug bounty programme with ethical hacking specialist Intigriti, and is reaching out to the Capture the Flag community to participate
September 27, 2023 27 Sep'23
Researchers offer free threat briefings on Vegas casino hackers

Permiso, a cloud detection and response startup, is making its threat intel team available to speak on Scattered Spider, the group behind recent cyber attacks on MGM Resorts and Caesars Entertainment
September 27, 2023 27 Sep'23
City of Las Vegas masters cyber incident response with Darktrace

The high-rolling city of Las Vegas experiences unique cyber security challenges rarely seen elsewhere. CIO Mike Sherwood reveals how he turned to Darktrace to help address incidents quicker and with confidence
September 26, 2023 26 Sep'23
UK government quietly disbands data ethics advisory board

The government has disbanded its Centre for Data Ethics and Innovation’s advisory board in favour of pulling the relevant artificial intelligence (AI) and data knowledge from a pool of external experts
September 26, 2023 26 Sep'23
Sony alleged victim of new extortion gang

A little-known threat actor claims it has breached IT systems and networks at electronics and entertainment giant Sony, and is threatening to release the organisation’s data unless paid off
September 26, 2023 26 Sep'23
Kubernetes storage: It’s object or nothing for MinIO

SAN and NAS are finished in the age of the cloud when it comes to cloud-native Kubernetes storage, according to container-focused object storage maker MinIO
September 26, 2023 26 Sep'23
Cover-ups still the norm in the wake of a cyber incident

Almost half of organisations that have experienced a cyber incident did not report it to the appropriate authorities, according to a report
September 26, 2023 26 Sep'23
Crest and IASME to deliver upcoming NCSC Cyber Exercise programme

Crest and IASME have been tasked with assuring that security services providers signing up to a soon-to-launch NCSC Cyber Incident Exercising scheme are up to the job
September 25, 2023 25 Sep'23
Apple fixes three vulnerabilities found by spyware researchers

Apple has patched three more vulnerabilities uncovered by spyware and surveillance researchers at The Citizen Lab
September 22, 2023 22 Sep'23
Annual Security Serious Awards nominations announced

Annual Security Serious Awards will recognise the professionals and organisations doing the most to safeguard and advance cyber security, as well as those committed to diversity and mental health in the industry
September 22, 2023 22 Sep'23
UK-US data bridge to open to traffic on 12 October

Government forges ahead with the implementation of the UK-US data bridge, which will come into effect for real just under three weeks from now
September 22, 2023 22 Sep'23
Cyber experts set out plan to secure future US elections

A group of experts are setting out to enhance election cyber security in the United States, and restore public faith in a process tainted by interference and misinformation in the past
September 22, 2023 22 Sep'23
Lords begin inquiry into large language models

Lords will examine the risks and opportunities of large language models and look at how government can effectively manage them in the coming years
September 21, 2023 21 Sep'23
‘Top’ ransomware gangs favour smaller businesses

Despite high-profile attacks on prominent organisations, the world’s most prolific ransomware operations tend to target smaller businesses
September 21, 2023 21 Sep'23
Poor digital experience a blocker for cyber resilience

Organisations that neglect the digital employee experience are not only vulnerable to employee attrition, but putting themselves at increased cyber risk, an Ivanti report finds
September 20, 2023 20 Sep'23
Organisations failing to proactively address insider cyber risk

Organisations are spending less than 10% of their annual security budgets on trying to solve one of the costliest problems in cyber: insider risk
September 19, 2023 19 Sep'23
Okta confirms link to cyber attacks on Las Vegas casinos

Okta CISO David Bradbury confirms widespread speculation about the high-profile cyber attacks on two Las Vegas casino operators, revealing that the threat actors responsible had indeed abused its services as they earlier claimed
September 19, 2023 19 Sep'23
38TB Microsoft data leak highlights risks of oversharing

An accidentally disclosed SAS token with excessive privileges enabled researchers to access nearly 40TB of Microsoft’s data, highlighting the risks of privilege mismanagement and oversharing
September 19, 2023 19 Sep'23
Nominet and European counterparts link up on intelligence sharing

The new European TLD ISAC, a collaborative project between top-level domain providers across Europe, aims to enhance their collective security posture to better protect internet users
September 18, 2023 18 Sep'23
Unregulated DeFi services abused in latest pig butchering twist

Pig butchering scammers are taking advantage of the unregulated nature of DeFi crypto trading apps to siphon off even more money from their victims, according to the latest findings of an ongoing investigation
September 18, 2023 18 Sep'23
Government seeks industry views on cyber threat to UK CNI

The Science, Innovation and Technology Select Committee is seeking evidence from the cyber sector as it launches an inquiry into the resilience of the UK's critical national infrastructure
September 15, 2023 15 Sep'23
Las Vegas mainstay Caesars Palace likely paid off ransomware crew

Caesars Entertainment, owner of the lavish Roman Empire-themed Caesars Palace casino in Las Vegas, has revealed it also suffered a ransomware attack, and appears to have paid off its hackers
September 15, 2023 15 Sep'23
Manchester police data breach a classic supply chain incident

The developing data breach at Greater Manchester Police follows a cyber attack on the systems of a key supplier of ID services to the force