News

Managing IT and business issues

• March 01, 2024 01 Mar'24

  MPs demand Fujitsu be ‘nailed down’ on financial promise to Post Office scandal victims

  Select committee hears that government is talking to Fujitsu about its contribution towards the costs of the Horizon scandal but it is not yet negotiating

• March 01, 2024 01 Mar'24

  APAC firms bullish on IT spending

  More than half of organisations plan to spend more on key areas such as cyber security, generative AI and cloud in a sign of growing optimism across the region

• February 29, 2024 29 Feb'24

  Okta doubles down on cyber in wake of high-profile breaches

  Okta launches Secure Identity Commitment to shore up its technology in the wake of a damaging breach and elevate best practice around identity

• February 29, 2024 29 Feb'24

  Windows 11: Not as big a priority in EMEA compared with North America

  Survey shows that IT decision-makers are prioritising desktop productivity and PC refreshes this year, with more in the US prioritising spending on PCs and Windows 11 upgrades

• February 29, 2024 29 Feb'24

  Post Office CEO’s claim to be ‘working hard’ on Capture investigation in doubt

  The Post Office hasn’t even contacted Capture Software users brought to its attention, but CEO claimed, under oath, that the organisation has been ‘working hard’ on the cases for five weeks

• February 28, 2024 28 Feb'24

  New version of ALPHV/BlackCat ransomware hits victims

  An updated version of the ALPHV/BlackCat ransomware has been spotted in the wild amid a series of attacks on American healthcare providers, prompting a new alert from the authorities

• February 28, 2024 28 Feb'24

  75% of third-party breaches target software, IT supply chains

  Data drawn from SecurityScorecard’s telemetry reveals how supply chain breaches are becoming a weapon of choice for threat actors

• February 28, 2024 28 Feb'24

  Users love their cyber teams, but find them frustrating

  Despite strong support for security teams, a good number of ordinary workers see them as obstructive to business goals, and would like to see them operate more transparently

• February 28, 2024 28 Feb'24

  IR35 reforms: PAC concerned HMRC’s ‘tough’ enforcement is harming contractors

  The Public Accounts Committee (PAC) has raised red flags over how HMRC is policing the IR35 rules out of concern its actions might be putting public and private sector organisations off hiring contractors

• February 28, 2024 28 Feb'24

  ‘Pathetic’ Post Office spat detracts attention and fuels ‘disdain’ for authority

  Former Post Office chair’s row with the government and Post Office cannot be allowed to deflect attention away from achieving justice and recompense for former subpostmasters

• February 28, 2024 28 Feb'24

  UC finetunes tech strategy to support digital masterplan

  The University of Canberra is scoping a new project to determine data, integration and multicloud strategies to support its long-term digital roadmap

• February 28, 2024 28 Feb'24

  CCS accused of pricing G-Cloud SMEs out of framework with £20m insurance cover hike

  The Crown Commercial Service’s commitment to helping SMEs win more government cloud deals is being called into question again, following news that it is planning to up the insurance cover required by G-Cloud 14 suppliers by £20m

• February 27, 2024 27 Feb'24

  Black Basta and Bl00dy ransomware gangs exploiting ConnectWise vulns

  More ransomware gangs have been observed exploiting two dangerous vulnerabilities in ConnectWise ScreenConnect software, prompting new warnings for users to get patching

• February 27, 2024 27 Feb'24

  VulnCheck bug listing to help track new threats quicker

  Exploit intelligence firm VulnCheck launches a proprietary Known Exploited Vulnerabilities catalogue in hopes of improving end-user access to intel on emerging threats and reaching those that the likes of CISA do not

• February 27, 2024 27 Feb'24

  Majority of UK employees ‘willingly gamble’ with security

  Human-centric threats originating from employees continue to damage organisations both financially and reputationally, according to a report

• February 27, 2024 27 Feb'24

  Cozy Bear and other APTs changing tack as cloud adoption increases

  A change in APT tactics has been observed resulting from greater adoption of cloud-based services, according to the NCSC

• February 26, 2024 26 Feb'24

  LockBit bids to save face after NCA takedown

  The LockBit gang’s ringleader resurfaces with new infrastructure and new victims, claiming to have shrugged off a multinational police sting

• February 23, 2024 23 Feb'24

  King Charles strips disgraced Post Office CEO of her CBE

  Disgraced former Post Office CEO, central to the Horizon scandal, has her CBE formally stripped

• February 23, 2024 23 Feb'24

  ConnectWise users see cyber attacks surge, including ransomware

  ConnectWise ScreenConnect users who have yet to patch against a critical vulnerability are now being targeted by a barrage of cyber attacks, including ransomware

• February 23, 2024 23 Feb'24

  NCA trolls under fire LockBit gang leaders

  The NCA has teased details of the identity of LockBit's main admin via the gang’s compromised dark web site, and hinted that he has been engaging with law enforcement

• February 22, 2024 22 Feb'24

  Cyber experts alarmed by ‘trivial’ ConnectWise vulns

  The disclosure of two dangerous vulnerabilities in the popular ConnectWise ScreenConnect product is drawing comparisons with major cyber incidents, including the 2021 Kaseya attack

• February 22, 2024 22 Feb'24

  Law to clear hundreds of wrongfully convicted subpostmasters expected in July

  Law to overturn Post Office convictions based on computer evidence set to be introduced in July following unprecedented legislation

• February 22, 2024 22 Feb'24

  Inside LockBit: A ransomware gang in decline?

  The LockBit ransomware gang was already on the ropes prior to the NCA-led takedown, according to security researchers

• February 21, 2024 21 Feb'24

  CVE volumes set to increase 25% this year

  The number of reported Common Vulnerabilities and Exposures is likely to grow significantly in 2024, hitting a new high of almost 35,000, according to Coalition, a cyber insurance specialist

• February 21, 2024 21 Feb'24

  Co-op signs TCS deal for cloud-first push

  The Co-operative Group has contracted IT service provider Tata Consultancy Services to support its move to a cloud-first IT environment

• February 21, 2024 21 Feb'24

  Unisys investigating potential involvement in controversial Post Office system

  IT supplier wants to get to the bottom of its role in the distribution of the Post Office’s controversial Capture software, linked to potential wrongful convictions

• February 20, 2024 20 Feb'24

  Uber CEO denies pricing algorithm uses ‘behavioural patterns’

  Uber workers are concerned about what data is being used by the company’s algorithm to set variable pay and pricing levels after CEO Dara Khosrowshahi admits to using drivers’ ‘behavioural patterns’

• February 20, 2024 20 Feb'24

  LockBit locked out: Cyber community reacts

  Reaction to the takedown of the LockBit ransomware gang is enthusiastic, but tempered with the knowledge that cyber criminals are often remarkably resilient

• February 20, 2024 20 Feb'24

  LockBit gang members arrested in Poland and Ukraine

  The UK’s National Crime Agency and its global partners have shared more details on their audacious takedown of the LockBit ransomware operation, including news of two arrests

• February 20, 2024 20 Feb'24

  Government agrees law to protect confidential journalistic material from state hacking

  The government will update Investigatory Powers Act to require secret intelligence agencies to seek independent approval before accessing confidential journalistic material obtained by bulk hacking, but journalists remain vulnerable to other bulk ...

• February 20, 2024 20 Feb'24

  Alibaba Cloud debuts Model Studio

  Alibaba Cloud’s Model Studio provides access to its Qwen family of foundation models and other third-party models and a suite of tools to speed up training and deployment of large language models

• February 19, 2024 19 Feb'24

  Cops take down LockBit ransomware gang

  The notorious LockBit ransomware crew has been disrupted in an international law enforcement sting led by the UK's National Crime Agency

• February 19, 2024 19 Feb'24

  Controversial Post Office Capture system was developed in-house

  Second controversial Post Office system was the work of developers in its own IT operation

• February 16, 2024 16 Feb'24

  Post Office IT insider and the software decision that lit the Horizon scandal

  As the Post Office replaces its controversial Horizon software, a former Post Office IT executive describes disastrous mistakes of the past

• February 15, 2024 15 Feb'24

  Security-by-design push prompts new ISC2 accreditations

  Security-by-design has become a hot-button regulatory issue. ISC2 has decided now is the time to upskill cyber pros around these vital software and hardware development principles

• February 14, 2024 14 Feb'24

  Microsoft: Nation-state hackers are exploiting ChatGPT

  Threat actors from China, Iran, North Korea and Russia have all been probing use cases for generative AI service ChatGPT, but have yet to use such tools in a full-blown cyber attack

• February 14, 2024 14 Feb'24

  Microsoft patches two zero-days for Valentine’s Day

  Two security feature bypasses impacting Microsoft SmartScreen are on the February Patch Tuesday docket, among more than 70 issues

• February 14, 2024 14 Feb'24

  Post Office CEO refused to meet government minister without her lawyer after 2015 Horizon report

  Post Office statements on the Horizon system, whether to journalists or the government, were routinely carefully crafted by lawyers

• February 13, 2024 13 Feb'24

  How DBS is industrialising AI across its business

  Southeast Asia’s biggest lender is building a strong data foundation and upskilling employees on data and artificial intelligence to realise its vision of becoming an AI-fuelled bank

• February 13, 2024 13 Feb'24

  New variants of Qakbot malware under development

  Despite its infrastructure having been taken down by the FBI last year, someone appears to be actively working on a new and improved version of the infamous Qakbot malware

• February 13, 2024 13 Feb'24

  Hunter-killer malware volumes seen surging

  Latest Picus Security report on malware tactics, techniques and procedures reveals an increasing focus on disabling security defences

• February 12, 2024 12 Feb'24

  More than 1,000 subpostmasters could have used second faulty Post Office system

  More than 1,000 subpostmasters could have used a previous faulty computer system in their branches as more people come forward with information following Post Office scandal TV drama

• February 09, 2024 09 Feb'24

  Amazon defends facial-recognition tech sale to FBI despite moratorium

  The FBI has confirmed it is using Amazon’s Rekognition image and video analysis software, but Amazon says it is ‘false’ to suggest this violates the company’s self-imposed moratorium on selling facial-recognition technology to US police

• February 09, 2024 09 Feb'24

  MoD ethical hacking programme expands after initial success

  The Ministry of Defence has expanded the scope of its defensive security partnership with HackerOne

• February 08, 2024 08 Feb'24

  Swedish CIO contributes best practices for ethical use of artificial intelligence

  IT leaders are scrambling to keep up with AI technology, but many are losing sight of its ethical impact – and what CIOs need to do to ensure responsible use

• February 07, 2024 07 Feb'24

  NCSC warns CNI operators over ‘living-off-the-land’ attacks

  Malicious, state-backed actors may well be lurking in the UK’s most critical networks right now, and their operators may not even know until it is too late, warn the NCSC and its partners

• February 07, 2024 07 Feb'24

  Government reaffirms commitment to hold off on AI laws

  The UK government reaffirming its commitment hold off on artificial intelligence legislation has been received positively by industry for balancing innovation and safety

• February 07, 2024 07 Feb'24

  How Iranian cyber ops pivoted to target Israel after 7 October attacks

  Microsoft has shared new intelligence on how Iranian government-aligned threat actors have turned their fire on Israel over the past four months

• February 07, 2024 07 Feb'24

  South Staffs Water faces group action over Clop ransomware attack

  South Staffordshire Plc, the parent company of South Staffordshire and Cambridge Water, is facing legal action from customers whose data was compromised in a 2022 Clop ransomware attack

• February 07, 2024 07 Feb'24

  AI ID specialist Onfido in talks to be bought by Entrust

  UK-based cyber unicorn Onfido agrees to enter talks to be acquired by Entrust