News

IT suppliers

August 21, 2025 21 Aug'25
Moscow exploiting seven-year-old Cisco flaw, says FBI

US authorities warn of an uptick in state-sponsored exploitation of a seven-year-old vulnerability in Cisco's operating system software.
August 21, 2025 21 Aug'25
Apple iOS update fixes new iPhone zero-day flaw

Latest Apple zero-day found in the ImageIO framework opens the door for targeted zero-click attacks on iPhone users.
August 21, 2025 21 Aug'25
Police investigation into Post Office scandal to cost more than £50m

Metropolitan Police-led investigation into Post Office scandal is expected to run to 2030 and cost taxpayers tens of millions of pounds
August 21, 2025 21 Aug'25
Subpostmaster federation accepted money from Fujitsu in run-up to High Court Post Office trial

The National Federation of Subpostmasters accepted sponsorship money from Fujitsu in the run-up to a High Court case examining the IT firm’s faulty Post Office system

August 21, 2025 21 Aug'25
UK equality watchdog: Met Police facial recognition unlawful

The UK’s equality watchdog has been granted permission to intervene in a judicial review of the Met Police’s live facial-recognition (LFR) technology use, which it claims is being deployed unlawfully
August 21, 2025 21 Aug'25
Interview: Simon Goodyear, chief information and technology officer, Redwood Bank

Redwood Bank’s new IT boss is a problem solver who wants to eradicate every unnecessary Excel spreadsheet
August 20, 2025 20 Aug'25
Microsoft starts including PQC algorithms in cyber foundations

Microsoft updates on its post-quantum cyber strategy as it continues integrating quantum-safe algorithms into some of the core foundations underpinning its products and services
August 20, 2025 20 Aug'25
Commvault users told to patch two RCE exploit chains

Storage firm Commvault fixes four vulnerabilities that, when combined, create a pair of RCE exploit chains that could be used to target on-premise customers with ransomware and other nasties
August 20, 2025 20 Aug'25
Metropolitan Police contract with Fujitsu is ‘potential conflict of interest’ amid Post Office probe

Freedom of information request reveals sub-contract between Fujitsu and the police force leading nationwide investigation of the IT firm’s part in the Post Office scandal
August 19, 2025 19 Aug'25
Google spins up agentic SOC to speed up incident management

Google Cloud elaborates on its vision for securing artificial intelligence unveiling new protections and capabilities across its product suite

August 18, 2025 18 Aug'25
Workday hit in wave of social engineering attacks

A campaign of voice-based social engineering attacks targeting users of Salesforce’s services appears to have struck HR platform Workday
August 15, 2025 15 Aug'25
UK cyber leaders feel impact of Trump cutbacks

The ripple effects of US cyber security cutbacks have reached this side of the Atlantic, according to a report
August 13, 2025 13 Aug'25
Santander will make AI training mandatory for all staff in 2026

Spanish banking giant announces mandatory AI training for staff, and collaborates with OpenAI on a ‘data and AI-first transformation’
August 13, 2025 13 Aug'25
Fujitsu orders staff to retain Post Office-related documentation as it braces for legal action

Japanese supplier tells all UK staff to preserve documents related to its work with the Post Office
August 12, 2025 12 Aug'25
Eight critical RCE flaws make Microsoft’s latest Patch Tuesday list

Microsoft rolls out fixes for over 100 CVEs in its August Patch Tuesday update
August 12, 2025 12 Aug'25
Researchers firm up ShinyHunters, Scattered Spider link

ReliaQuest researchers present new evidence that firms up a potential link, or outright partnership, between the ShinyHunters and Scattered Spider cyber gangs
August 12, 2025 12 Aug'25
UK work visa sponsors are target of phishing campaign

Mimecast identifies a phishing campaign targeting UK organisations that sponsor migrant workers and students, opening the door to account compromise and visa fraud
August 12, 2025 12 Aug'25
UK state-owned bank goes cloud-native

State-owned National Savings and Investments bank used contract renewal as an opportunity to keep pace with changes in the market
August 12, 2025 12 Aug'25
Norway fixing Big Bang e-health botch with fintech security

Experts call for Europe’s health sector to protect medical APIs with security originated from UK open banking as officials take urgent measures against unprecedented attacks
August 06, 2025 06 Aug'25
Black Hat USA: Startup breaks secrets management tools

Researchers at Cyata, an agentic identity specialist that has just emerged from stealth, found 14 CVEs in the widely used CyberArk Conjur and HashiCorp Vault enterprise secrets management platforms
August 06, 2025 06 Aug'25
Cyber criminals would prefer businesses don’t use Okta

Okta details a phishing campaign in which the threat actor demonstrated some unusually strong opinions on what authentication methods they would like their targets to use
August 05, 2025 05 Aug'25
Attacker could defeat Dell firmware flaws with a vegetable

Cisco Talos discloses five vulnerabilities in cyber security firmware used on Dell Latitude and Precision devices, including one that could enable an attacker to log on with a spring onion
August 04, 2025 04 Aug'25
Black Hat USA: Halcyon and Sophos tag-team ransomware fightback

Ransomware experts Halcyon and Sophos are to pool their expertise in ransomware, working together to enhance data- and intelligence-sharing and bringing more comprehensive protection to customers
August 04, 2025 04 Aug'25
Proliferation of on-premise GenAI platforms is widening security risks

Research finds increased adoption of unsanctioned generative artificial intelligence platforms is magnifying risk and causing a headache for security teams
August 01, 2025 01 Aug'25
Met Police to double facial recognition use amid budget cuts

The UK’s largest police force is massively expanding its use of live facial recognition technology as it prepares to lose 1,700 officers and staff
July 30, 2025 30 Jul'25
Scattered Spider tactics continue to evolve, warn cyber cops

CISA, the FBI, NCSC and others have clubbed together to update previous guidance on Scattered Spider's playbook, warning of new social engineering tactics and exploitation of legitimate tools, among other things
July 30, 2025 30 Jul'25
MS Authenticator users face passkey crunch time

The deadline for moving to passkeys in Microsoft Authenticator is rapidly approaching, and users are advised to take action now
July 30, 2025 30 Jul'25
AI-enabled security pushes down breach costs for UK organisations

Organisations that are incorporating AI and automation into their cyber security practice are seeing improved outcomes when incidents occur, according to an IBM study
July 29, 2025 29 Jul'25
European Commission ignores calls to reassess Israel data adequacy

The European Commission is ignoring calls to reassess Israel’s data adequacy status in spite of concerns raised about its data protection framework and use of personal data in ‘repressive practices’
July 29, 2025 29 Jul'25
Global cyber spend will top $200bn this year, says Gartner

Worldwide spending on cyber security will hit another record high in 2025, and will go higher still next year
July 28, 2025 28 Jul'25
Kioxia launches 245TB LC9, the biggest flash drive on the market

Japanese drive maker piles one card on top of another to produce 245.76TB E3.L drive, with lower capacity variants in 2.5in and E3.S formats, and claimed low energy use benefits
July 28, 2025 28 Jul'25
European digital market figurehead pleads to Westminster

Big EU industry joins with Europhile MP to persuade obstinate government officials to join the dataspaces intended to become the bedrock of Europe’s digital single market
July 25, 2025 25 Jul'25
Post Office will not compensate subpostmasters for IT outage

Subpostmasters were unable to trade for nearly two hours last week when a problem at a Fujitsu datacentre put the Horizon system offline, but they will receive no payment for lost business
July 25, 2025 25 Jul'25
Fujitsu to cut at least 100 more UK staff

Some Fujitsu employees feel they are suffering for the actions of the company’s management in the Post Office scandal
July 24, 2025 24 Jul'25
US seeks ‘unquestioned’ AI dominance

US AI action plan sets out aims to expand American dominance in the world of artificial intelligence
July 24, 2025 24 Jul'25
SharePoint users hit by Warlock ransomware, says Microsoft

Microsoft’s security analysts confirm a number of cyber attacks on on-premise SharePoint Server users involve ransomware
July 24, 2025 24 Jul'25
IBM chief confident AI isn’t eroding other parts of the business

Chairman, president and CEO Arvind Krishna talks of growth and margin expansion as Big Blue expects artificial intelligence to deliver internal savings of $4.5bn this year
July 24, 2025 24 Jul'25
UK loses second spot in global fintech to UAE

The UK has been pushed into third spot on global fintech market size data for the first half of this year
July 24, 2025 24 Jul'25
Dutch researchers use heartbeat detection to unmask deepfakes

Dutch method to counter deepfakes analyses blood flow patterns in faces that current deepfake generation tools cannot yet replicate
July 23, 2025 23 Jul'25
Judge questions HP’s ‘exaggerated’ Autonomy loss claim

Did HP pay 10% more than it needed to for Mike Lynch’s company?
July 23, 2025 23 Jul'25
Subpostmasters shoulder costs of Fujitsu’s Post Office IT outage

Fujitsu datacentre outage hit subpostmaster sales for two hours, leaving subpostmasters to seek compensation
July 22, 2025 22 Jul'25
Microsoft confirms China link to SharePoint hacks

Microsoft confirms two known China-nexus threat actors, and one other suspected state-backed hacking group, are exploiting vulnerabilities in SharePoint Server
July 22, 2025 22 Jul'25
Chinese cyber spies among those linked to SharePoint attacks

Exploitation of the ToolShell RCE zero-day in Microsoft SharePoint continues to gather pace, with evidence emerging of exploitation by nation state-backed threat actors
July 22, 2025 22 Jul'25
UK government signs partnership with OpenAI

Deal sees firm behind ChatGPT collaborate with government on AI security research to explore investment opportunities
July 22, 2025 22 Jul'25
AWS adds vector functionality to S3 object storage

S3 Vectors allows customers to store AI vector data in S3 object storage, a move that potentially allows for much cheaper storage of vectorised data usually held in vector databases
July 22, 2025 22 Jul'25
Hitachi Vantara claims Hitachi iQ the most complete AI stack

Hitachi Vantara says its approach to storage and AI offers the most comprehensive solutions, based on its industrial heritage and RAG-like functionality it claims others don’t have
July 22, 2025 22 Jul'25
Fresh allegations of ‘sustained’ police and MI5 surveillance against BBC reporters

The Investigatory Powers Tribunal is investigating claims that police spied on the phone of investigative journalist Chris Moore amid further claims of a sustained monitoring operation against BBC reporters in Northern Ireland between 2006 and 2022
July 21, 2025 21 Jul'25
Patch ToolShell SharePoint zero-day immediately, says Microsoft

The active exploitation of a dangerous zero-day vulnerability chain in Microsoft SharePoint – which was disclosed over the weekend – is underway. Immediate action is advised
July 21, 2025 21 Jul'25
The Security Interviews: Jason Nurse, University of Kent

Jason Nurse, reader in cyber security at the University of Kent, discusses the psychological side of cyber and online safety, why placing blame on users as ‘the weakest link’ is wrong – and why security pros should think about user needs more
July 18, 2025 18 Jul'25
Peer warns IT suppliers against partnering with Fujitsu in government contracts

According to publicly available figures, Fujitsu has won over half a billion pounds in government business as prime contractor since January 2024, but there is more than what has been reported