News

Managing IT and business issues

• August 15, 2025 15 Aug'25

  Warlock claims ransomware attack on network services firm Colt

  UK network services firm Colt is attempting to recover various customer-facing systems following a cyber attack that has been claimed by the Warlock ransomware gang and may have arisen via a SharePoint flaw.

• August 15, 2025 15 Aug'25

  UK cyber leaders feel impact of Trump cutbacks

  The ripple effects of US cyber security cutbacks have reached this side of the Atlantic, according to a report.

• August 15, 2025 15 Aug'25

  Zendesk CTO on the new era of customer experience

  Zendesk once pushed its AI vision, but now customers are leading the charge. Its CTO, Jason Maynard, explains how this reversal is creating roles like the ‘bot manager’ and shaping the future of customer experience

• August 15, 2025 15 Aug'25

  Whitehall IT projects face complex challenges, Nista report finds

  The annual report from the National Infrastructure and Service Transformation Authority gives major police IT project ‘red’ rating, while several others are rated ‘amber’, including Gov.uk One Login and Making Tax Digital

• August 15, 2025 15 Aug'25

  Autocratic UAE gets democratic artificial intelligence

  US-China rivalry has come to a head in authoritarian Gulf state UAE, where OpenAI is attempting to make a stand for democracy and free speech

• August 15, 2025 15 Aug'25

  India revives national datacentre policy amid AI push

  The government is pushing for single-window clearances and distributed infrastructure to prepare India for AI and cloud workloads in its national datacentre policy

• August 13, 2025 13 Aug'25

  BlackSuit ransomware payment recovered in takedown operation

  US authorities reveal how over a million dollars’ worth of cryptocurrency assets laundered by the BlackSuit ransomware gang were seized ahead of a July takedown operation

• August 13, 2025 13 Aug'25

  Santander will make AI training mandatory for all staff in 2026

  Spanish banking giant announces mandatory AI training for staff, and collaborates with OpenAI on a ‘data and AI-first transformation’

• August 12, 2025 12 Aug'25

  Researchers firm up ShinyHunters, Scattered Spider link

  ReliaQuest researchers present new evidence that firms up a potential link, or outright partnership, between the ShinyHunters and Scattered Spider cyber gangs

• August 12, 2025 12 Aug'25

  UK work visa sponsors are target of phishing campaign

  Mimecast identifies a phishing campaign targeting UK organisations that sponsor migrant workers and students, opening the door to account compromise and visa fraud

• August 12, 2025 12 Aug'25

  Norway fixing Big Bang e-health botch with fintech security

  Experts call for Europe’s health sector to protect medical APIs with security originated from UK open banking as officials take urgent measures against unprecedented attacks

• August 11, 2025 11 Aug'25

  Watching the watchers: Is the Technical Advisory Panel a match for MI5, MI6 and GCHQ?

  Dame Muffy Calder is chair of the Technical Advisory Panel (TAP), a small group of experts that advises the Investigatory Powers Commissioner on surveillance technology. Do they have what it takes to oversee the intelligence community?

• August 06, 2025 06 Aug'25

  Black Hat USA: Startup breaks secrets management tools

  Researchers at Cyata, an agentic identity specialist that has just emerged from stealth, found 14 CVEs in the widely used CyberArk Conjur and HashiCorp Vault enterprise secrets management platforms

• August 06, 2025 06 Aug'25

  Cyber criminals would prefer businesses don’t use Okta

  Okta details a phishing campaign in which the threat actor demonstrated some unusually strong opinions on what authentication methods they would like their targets to use

• August 06, 2025 06 Aug'25

  Companies House ID verification to start in November 2025

  Companies House plans to start vetting director identities from mid-November, but its reliance on the troubled One Login digital identity service may be cause for concern

• August 06, 2025 06 Aug'25

  NCSC updates CNI Cyber Assessment Framework

  Updates to the NCSC’s Cyber Assessment Framework are designed to help providers of critical services better manage their risk profiles

• August 06, 2025 06 Aug'25

  Australian scaleup to bring AI-led data protection to the MoD

  The UK’s Ministry of Defence is embracing AI-led data protection in the wake of a major privacy breach, enlisting Australian cyber firm Castlepoint Systems to oversee sensitive records

• August 05, 2025 05 Aug'25

  Attacker could defeat Dell firmware flaws with a vegetable

  Cisco Talos discloses five vulnerabilities in cyber security firmware used on Dell Latitude and Precision devices, including one that could enable an attacker to log on with a spring onion

• August 04, 2025 04 Aug'25

  Black Hat USA: Halcyon and Sophos tag-team ransomware fightback

  Ransomware experts Halcyon and Sophos are to pool their expertise in ransomware, working together to enhance data- and intelligence-sharing and bringing more comprehensive protection to customers

• August 04, 2025 04 Aug'25

  Proliferation of on-premise GenAI platforms is widening security risks

  Research finds increased adoption of unsanctioned generative artificial intelligence platforms is magnifying risk and causing a headache for security teams

• August 04, 2025 04 Aug'25

  Integrated platforms offer lifeline to Singapore’s F&B sector

  A partnership between payments firm Adyen and restaurant operating system provider Atlas is helping merchants to streamline operations, slashing errors by up to 80% and boosting sales as the sector faces record closures

• August 01, 2025 01 Aug'25

  Met Police to double facial recognition use amid budget cuts

  The UK’s largest police force is massively expanding its use of live facial recognition technology as it prepares to lose 1,700 officers and staff

• August 01, 2025 01 Aug'25

  Securing agentic identities focus of Palo Alto’s CyberArk buy

  Palo Alto Networks is entering the identity security space with a multibillion-dollar acquisition, and plans to address growing concerns around protecting identities associated with AI agents

• July 31, 2025 31 Jul'25

  ServiceNow targets ‘data hell’, eyes BI play

  The workflow giant is building a data foundation for agentic AI and eyeing a slice of the business intelligence and analytics market

• July 30, 2025 30 Jul'25

  UK flights suspended after air traffic control outage

  Flights arriving and departing from the UK were disrupted by an outage affecting technical systems at air traffic control body NATS’ Swanwick facility

• July 30, 2025 30 Jul'25

  Scattered Spider tactics continue to evolve, warn cyber cops

  CISA, the FBI, NCSC and others have clubbed together to update previous guidance on Scattered Spider's playbook, warning of new social engineering tactics and exploitation of legitimate tools, among other things

• July 30, 2025 30 Jul'25

  Apple pushes almost 30 security fixes in mobile update

  Apple pushes what will likely be the last major security update to its current iPhone and iPad operating systems, fixing 29 vulnerabilities in its mobile ecosystem

• July 30, 2025 30 Jul'25

  MS Authenticator users face passkey crunch time

  The deadline for moving to passkeys in Microsoft Authenticator is rapidly approaching, and users are advised to take action now

• July 30, 2025 30 Jul'25

  AI-enabled security pushes down breach costs for UK organisations

  Organisations that are incorporating AI and automation into their cyber security practice are seeing improved outcomes when incidents occur, according to an IBM study

• July 29, 2025 29 Jul'25

  European Commission ignores calls to reassess Israel data adequacy

  The European Commission is ignoring calls to reassess Israel’s data adequacy status in spite of concerns raised about its data protection framework and use of personal data in ‘repressive practices’

• July 29, 2025 29 Jul'25

  Global cyber spend will top $200bn this year, says Gartner

  Worldwide spending on cyber security will hit another record high in 2025, and will go higher still next year

• July 29, 2025 29 Jul'25

  Logicalis targets APAC’s mid-market with ‘GSI quality’ services

  The global technology service provider is banking on its ‘think global, act local’ strategy, a deep focus on application modernisation and security to differentiate itself in the region

• July 28, 2025 28 Jul'25

  Tesco IT problems lead to undelivered groceries and angry customers

  Tesco customers have been left without groceries after IT problems disrupted deliveries from stores and fulfilment centres

• July 25, 2025 25 Jul'25

  Post Office will not compensate subpostmasters for IT outage

  Subpostmasters were unable to trade for nearly two hours last week when a problem at a Fujitsu datacentre put the Horizon system offline, but they will receive no payment for lost business

• July 25, 2025 25 Jul'25

  Fujitsu to cut at least 100 more UK staff

  Some Fujitsu employees feel they are suffering for the actions of the company’s management in the Post Office scandal

• July 24, 2025 24 Jul'25

  US seeks ‘unquestioned’ AI dominance

  US AI action plan sets out aims to expand American dominance in the world of artificial intelligence

• July 24, 2025 24 Jul'25

  SharePoint users hit by Warlock ransomware, says Microsoft

  Microsoft’s security analysts confirm a number of cyber attacks on on-premise SharePoint Server users involve ransomware

• July 24, 2025 24 Jul'25

  Scattered Spider victim Clorox sues helpdesk provider

  Cleaning products manufacturer Clorox fell victim to a Scattered Spider social engineering attack two years ago – it blames its IT helpdesk provider, Cognizant

• July 24, 2025 24 Jul'25

  UK loses second spot in global fintech to UAE

  The UK has been pushed into third spot on global fintech market size data for the first half of this year

• July 24, 2025 24 Jul'25

  Monzo’s £21m fine highlights banks’ cyber security failures

  Monzo’s recent fine over failings in its customer verification processes highlights wider security and privacy shortcomings in the personal finance world

• July 23, 2025 23 Jul'25

  Subpostmasters shoulder costs of Fujitsu’s Post Office IT outage

  Fujitsu datacentre outage hit subpostmaster sales for two hours, leaving subpostmasters to seek compensation

• July 22, 2025 22 Jul'25

  Microsoft confirms China link to SharePoint hacks

  Microsoft confirms two known China-nexus threat actors, and one other suspected state-backed hacking group, are exploiting vulnerabilities in SharePoint Server

• July 22, 2025 22 Jul'25

  Chinese cyber spies among those linked to SharePoint attacks

  Exploitation of the ToolShell RCE zero-day in Microsoft SharePoint continues to gather pace, with evidence emerging of exploitation by nation state-backed threat actors

• July 22, 2025 22 Jul'25

  UK government to bring in ransomware payment ban

  Critical infrastructure operators, hospitals, local councils and schools will be among those banned from giving in to cyber criminal demands as the UK moves forward with proposals to address the scourge of ransomware

• July 22, 2025 22 Jul'25

  The Bank of England’s quiet ‘Big Bang’

  The Bank of England has completed its generational project to replace part of the UK’s critical infrastructure, which went unnoticed beyond the sector it underpins

• July 22, 2025 22 Jul'25

  Fresh allegations of ‘sustained’ police and MI5 surveillance against BBC reporters

  The Investigatory Powers Tribunal is investigating claims that police spied on the phone of investigative journalist Chris Moore amid further claims of a sustained monitoring operation against BBC reporters in Northern Ireland between 2006 and 2022

• July 21, 2025 21 Jul'25

  Darktrace buys network visibility specialist Mira

  AI cyber giant Darktrace buys network security firm Mira for an undisclosed sum, seeking to enhance the tech stack it offers to highly regulated sectors

• July 21, 2025 21 Jul'25

  Patch ToolShell SharePoint zero-day immediately, says Microsoft

  The active exploitation of a dangerous zero-day vulnerability chain in Microsoft SharePoint – which was disclosed over the weekend – is underway. Immediate action is advised

• July 21, 2025 21 Jul'25

  The Security Interviews: Jason Nurse, University of Kent

  Jason Nurse, reader in cyber security at the University of Kent, discusses the psychological side of cyber and online safety, why placing blame on users as ‘the weakest link’ is wrong – and why security pros should think about user needs more

• July 18, 2025 18 Jul'25

  NCSC exposes Fancy Bear's Authentic Antics malware attacks

  Amid a new round of UK government sanctions targeting Moscow's intelligence apparatus, the NCSC has formally attributed attacks orchestrated with a cleverly-designed malware to the GRU's Fancy Bear cyber unit