News

Identity and access management products

• November 11, 2024 11 Nov'24

  Fresh concerns over NHS England registries procurement

  Clinicians and technologists behind a number of medical devices registries being brought together by NHS England on a new common platform have accused the health service of flouting public sector procurement regulations

• November 07, 2024 07 Nov'24

  Google Cloud MFA enforcement meets with approval

  Latest Google Cloud policy to enforce multifactor authentication across its user base is welcomed by security professionals

• November 07, 2024 07 Nov'24

  Interview: Petra Molnar, author of ‘The walls have eyes’

  Refugee lawyer and author Petra Molnar speaks to Computer Weekly about the extreme violence people on the move face at borders across the world, and how increasingly hostile anti-immigrant politics is being enabled and reinforced by a ‘lucrative ...

• November 06, 2024 06 Nov'24

  Lords shoplifting inquiry calls for facial recognition laws

  A Lords committee has expressed concern about the use of facial recognition technology by retailers to combat shoplifting, and is calling on the government to introduce new laws to ensure there are minimum standards for their deployments

• November 06, 2024 06 Nov'24

  Starmer announces tech-enabled crackdown on people smuggling

  The UK government has announced a further £75m of funding for its Border Security Command, meaning it will now have £150m over two years to spend on new technologies and staff

• October 25, 2024 25 Oct'24

  Dutch critical infrastructure at risk despite high leadership confidence

  Stark paradox in Dutch cyber security landscape has business leaders expressing high confidence in their IT infrastructure as cyber attacks rise

• October 22, 2024 22 Oct'24

  Danish government reboots cyber security council amid AI expansion

  Denmark’s government relaunches digital security initiative to protect business sectors and society at large

• October 21, 2024 21 Oct'24

  Can AI be secure? Experts discuss emerging threats and AI safety

  International cyber security experts call for global cooperation and proactive strategies to address the security challenges posed by artificial intelligence

• October 10, 2024 10 Oct'24

  UK and US pledge closer working on children’s online safety

  In their first agreement on the subject of children’s online safety, the UK and US governments have said they will create a new working group to boost cooperation

• October 03, 2024 03 Oct'24

  Microsoft files lawsuit to seize domains used by Russian spooks

  Microsoft has been given permission to seize multiple domains used by the Russian state threat actor Star Blizzard as part of a coordinated disruption effort undertaken ahead of the US elections

• October 02, 2024 02 Oct'24

  Amazon Mechanical Turk workers suspended without explanation

  A likely glitch in Amazon Payments resulted in hundreds of Mechanical Turk workers being suspended from the platform without proper explanation or pay

• September 27, 2024 27 Sep'24

  UK on high alert over Iranian spear phishing attacks, says NCSC

  The NCSC and counterpart agencies in the US have issued a warning over enhanced Iranian spear phishing activity targeting politicians, journalists, activists and others with an interest in Middle Eastern affairs

• September 23, 2024 23 Sep'24

  Microsoft shares progress on Secure Future Initiative

  Microsoft has published a progress report on its Secure Future Initiative, launched last year in the wake of multiple security incidents, and made a series of commitments to improve its internal cyber culture

• September 23, 2024 23 Sep'24

  Home Office eVisa scheme is ‘broken’, says Open Rights Group

  Digital rights campaigners say the Home Office’s plan to make its new electronic Visa scheme a real-time online-only process is part and parcel of the 'hostile environment' around immigration status

• September 18, 2024 18 Sep'24

  Europol provides detail on Ghost encrypted comms platform takedown

  Law enforcement bodies from across the world have revealed how they collaborated to bring down encrypted network Ghost and the new ways of working that have been established with Europol at the centre

• September 17, 2024 17 Sep'24

  First CyberBoost Catalyse startup cohort named

  The first group of companies named to a cyber incubator programme run by Plexal and the National University of Singapore includes two growing UK businesses

• September 13, 2024 13 Sep'24

  Cyber workforce must almost double to meet global talent need

  Research from ISC2 finds global cyber workforce needs additional 4.8 million people to fully secure businesses

• September 12, 2024 12 Sep'24

  Data sharing for immigration raids ferments hostility to migrants

  Data sharing between public and private bodies for the purposes of carrying out immigration raids helps to prop up the UK’s hostile environment by instilling an atmosphere of fear and deterring migrants from accessing public services

• September 05, 2024 05 Sep'24

  Tencent Cloud debuts palm scanning tech in global markets

  Tencent Cloud launches palm verification technology for global markets, offering AI-driven identity authentication to support contactless payments and security access management

• September 04, 2024 04 Sep'24

  Retailers question using live facial recognition for shoplifting

  Retailers praise benefits of retrospective over live facial recognition in dealing with shoplifting, but stress there are ongoing concerns around the ethical, legal and safety implications of using the technology in stores

• August 30, 2024 30 Aug'24

  Norwegian Refugee Council leverages Okta for Good cyber scheme

  Pietro Galli, CIO of the Norwegian Refugee Council, reveals how the globally distributed NGO has been taking advantage of the Okta for Good CSR programme to improve its own cyber security and data protection practice, and elevate good practice in ...

• August 29, 2024 29 Aug'24

  Met Police deploy LFR in Lewisham without community input

  The Met’s latest live facial recognition deployment in Catford has raised concerns over the lack of community engagement around the police force’s use of the controversial technology

• August 28, 2024 28 Aug'24

  Iranian APT Peach Sandstorm teases new Tickler malware

  Peach Sandstorm, an Iranian state threat actor, has developed a dangerous new malware strain that forms a key element of a rapidly evolving attack sequence

• August 28, 2024 28 Aug'24

  Global cyber spend to rise 15% in 2025, pushed along by AI

  Security spending will increase at pace in 2025, with artificial intelligence, cloud and consultancy services all pushing outlay to new highs, according to Gartner

• August 22, 2024 22 Aug'24

  New Qilin tactics a ‘bonus multiplier’ for ransomware chaos

  Sophos X-Ops caught the Qilin ransomware gang stealing credentials stored by victims' employees in Google Chrome, heralding further cyber attacks and breaches down the line.

• August 16, 2024 16 Aug'24

  Thousands of NetSuite customers accidentally exposing their data

  Misconfigured permissions across live websites are leaving thousands of NetSuite users open to having their valuable customer data stolen, researchers say

• August 16, 2024 16 Aug'24

  Campaigners criticise Starmer post-riot public surveillance plans

  A UK government programme to expand police facial recognition and information sharing after racist riots is attracting criticism from campaigners for exploiting the far-right unrest to generally crack down on protest and increase surveillance

• August 14, 2024 14 Aug'24

  Automated police tech contributes to UK structural racism problem

  Civil society groups say automated policing technologies are helping to fuel the disparities that people of colour face across the criminal justice sector, as part of wider warning about the UK’s lack of progress in dealing with systemic racism

• August 13, 2024 13 Aug'24

  NIST debuts three quantum-safe encryption algorithms

  NIST has launched the first three quantum-resistant encryption algorithms, and as the threat of quantum-enabled cyber attacks grows greater, organisations are encouraged to adopt them as soon as they can

• August 06, 2024 06 Aug'24

  Advanced faces fine over LockBit attack that crippled NHS 111

  Advanced Software faces a multimillion pound fine for a series of failings which directly led to a 2022 LockBit ransomware attack that disrupted NHS and social care services across the UK

• July 31, 2024 31 Jul'24

  Breach costs soar as record ransomware payment made

  IBM publishes data on the spiralling costs of cyber attacks and data breaches, while researchers identify what appears to be the largest ransomware payment ever made

• July 29, 2024 29 Jul'24

  WTO digital trade agreement aims to modernise global commerce

  A digital trade deal negotiated over five years at the World Trade Organization has been signed by 91 countries, laying the groundwork for a new global digital trade regime

• July 26, 2024 26 Jul'24

  Ban predictive policing and facial recognition, says civil society

  A coalition of civil society groups is calling for an outright ban on predictive policing and biometric surveillance in the UK

• July 24, 2024 24 Jul'24

  Mimecast to buy insider threat specialist Code42

  Mimecast is to buy fellow human-centred risk experts Code42 for an undisclosed sum to take advantage of its insider threat and data loss protection specialisms

• July 17, 2024 17 Jul'24

  How iProov is fending off deepfake fraud

  Facial biometrics and controlled illumination can detect liveness, verify identities and help prevent deepfake attacks

• July 16, 2024 16 Jul'24

  Incubator Plexal heads to Singapore for CyberBoost

  Cyber startup hub Plexal expands its presence to Singapore through a new initiative, and sets its sights on helping new UK businesses break into the booming Asia-Pacific market

• July 12, 2024 12 Jul'24

  AT&T loses ‘nearly all’ phone records in Snowflake breach

  Hackers have stolen records of virtually every call made by AT&T's customers during a six-month period in 2022, after compromising the US telco's Snowflake data environment

• July 12, 2024 12 Jul'24

  Public awareness of ID security grows, but big obstacles remain

  Consumers are improving their awareness of the issues around digital identity security, but there are still some big issues preventing many from doing better, according to an Okta report

• July 11, 2024 11 Jul'24

  Dutch research firm TNO pictures the SOC of the future

  In only a few years, security operations centres will have a different design and layout, and far fewer will remain

• July 09, 2024 09 Jul'24

  Atos jumps on ‘moving train’ for Euro 2024

  Atos provides the IT supporting major recurring sporting events including Uefa’s European Football Championship

• July 08, 2024 08 Jul'24

  Synnovis attack highlights degraded, outdated state of NHS IT

  More cyber attacks against the health service are likely, and will succeed if something isn’t done to address the increasingly elderly NHS IT estate, experts are warning

• June 28, 2024 28 Jun'24

  How Recorded Future is operationalising threat intelligence

  Recorded Future is investing in APIs to enable automated security workflows, among other measures, to help organisations overcome the hurdles of operationalising threat intelligence

• June 26, 2024 26 Jun'24

  Police Scotland did not consult ICO about high-risk cloud system

  Police Scotland chose not to formally consult with the data regulator about the risks identified with a cloud-based digital evidence sharing system, while the regulator itself did not follow up for nearly three months

• June 24, 2024 24 Jun'24

  Sellafield pleads guilty to criminal charges over cyber security

  Nuclear Decommissioning Authority-backed organisation Sellafield Ltd pleads guilty to criminal charges brought over significant cyber security failings that could have compromised sensitive nuclear information

• June 19, 2024 19 Jun'24

  Microsoft admits no guarantee of sovereignty for UK policing data

  Documents show Microsoft’s lawyers admitted to Scottish policing bodies that the company cannot guarantee sensitive law enforcement data will remain in the UK, despite long-standing public claims to the contrary

• June 11, 2024 11 Jun'24

  Pure Storage hit by Snowflake credential hackers

  Pure Storage emerges as the latest victim of a fast-spreading breach of Snowflake customers targeting users with lax credential security measures in place

• June 11, 2024 11 Jun'24

  More than 160 Snowflake customers hit in targeted data theft spree

  Mandiant reports that more than 160 Snowflake customers have been hit in a broad data theft and extortion campaign targeting organisations that have failed to pay proper attention to securing valuable credentials

• June 03, 2024 03 Jun'24

  97 FTSE 100 firms exposed to supply chain breaches

  Between March 2023 and March 2024, 97 out of 100 companies on the UK’s FTSE 100 list were put at risk of compromise following supply chain breaches at third-party suppliers

• June 03, 2024 03 Jun'24

  Major breaches allegedly caused by unsecured Snowflake accounts

  Significant data breaches at Ticketmaster and Santander appear to have been orchestrated through careful targeting of the victims’ Snowflake cloud data management accounts

• May 29, 2024 29 May'24

  Storebrand divests from IBM over supply of biometrics to Israel

  Norwegian asset manager Storebrand’s decision to divest from IBM comes amid growing scrutiny of the role technology companies play in Israel’s human rights abuses