News

Managing IT and business issues

March 02, 2023 02 Mar'23
WH Smith staff data accessed in cyber attack

The retailer has said that customer data has not been affected by the incident as it is held in different systems, and that investigations into the attack are ongoing
March 02, 2023 02 Mar'23
Salt Labs identifies OAuth security flaw within Booking.com

Security flaw in Booking.com OAuth implementation could be used to launch account takeovers, but researchers discovered and flagged the issue before it could be exploited in the wild
March 01, 2023 01 Mar'23
Post Office ditched plan to replace Fujitsu with IBM in 2015 due to cost and project concerns

Post Office attempted to replace controversial Horizon system 10 years ago, but was put off by project’s scale and cost.
March 01, 2023 01 Mar'23
APAC is proving to be ‘substantial growth engine’ for Rimini Street

Rimini Street CEO Seth Ravin outlines growth opportunities in Asia-Pacific and discusses the company’s move up the support value chain

February 28, 2023 28 Feb'23
Industrial safetytech startups secure £150m funding since 2020

Industrial safetytech investment reached a record high of $100m in 2021, and remains significantly ahead of pre-pandemic funding levels despite a dip in 2022
February 28, 2023 28 Feb'23
LastPass attack saw employee’s home computer hacked

The ongoing investigation into a series of linked security incidents at LastPass has found that the attacker was successfully able to compromise a developer’s home PC using a vulnerability in a media software package
February 28, 2023 28 Feb'23
Korea telecom giant SKT doubles down on AI

SKT plans to broaden the use of AI across its business, from delivering AI-powered services to improving customer experience using generative AI models
February 27, 2023 27 Feb'23
How Dell is future-proofing its business

Dell Technologies is building a more resilient supply chain, investing in growth areas like edge and multicloud, and responding to shifts in consumption models to position itself for long-term growth
February 24, 2023 24 Feb'23
Royal Mail stands firm as LockBit leaks data and renews ransom demand

The LockBit ransomware gang has made good on its threat to leak data exfiltrated from Royal Mail’s systems, but the postal service is not entertaining the possibility of giving in
February 24, 2023 24 Feb'23
HMCTS Common Platform roll-out put ‘avoidable pressure’ on courts

The digital case management system was rolled out without adequate assurance it was robust enough to be deployed, and is having a ‘detrimental impact on courts’, the National Audit Office has found

February 23, 2023 23 Feb'23
WithSecure proposes ‘undo’ button for ransomware

WithSecure’s Activity Monitor technology supposedly overcomes the shortcomings of sandbox test environments, and may be able to stop ransomware attacks from ever happening
February 23, 2023 23 Feb'23
ANZ CIOs flag priorities amid inflation concerns

CIOs in Australia and New Zealand are concerned about inflation and plan to adjust their technology priorities to optimise resources and combat cyber threats
February 23, 2023 23 Feb'23
Santander SME platform harnesses Salesforce

Bank platform that helps UK small and medium-sized enterprises expand export opportunities is built on cloud technology from Salesforce
February 22, 2023 22 Feb'23
UK HSE to launch regulatory sandbox for industrial safety tech

The sandbox will see the regulator work with industry and tech startups to accelerate the development and adoption of a range of safety-related technologies, with a particular emphasis on data and analytics
February 22, 2023 22 Feb'23
UK forces lead live-fire cyber war exercise

The seven-day Defence Cyber Marvel 2 exercise put cyber responders from 11 countries through their paces
February 22, 2023 22 Feb'23
Researchers find new bug ‘class’ in Apple devices

A group of vulnerabilities in Apple products that stem from the ForcedEntry exploit used by spyware firm NSO constitutes a whole new class of bug, say researchers at Trellix
February 22, 2023 22 Feb'23
Half of cyber leaders to switch jobs by 2025, citing stress

A substantial number of cyber security leaders are plotting their great escape, saying the industry is leaving them too stressed to go on, according to a study
February 21, 2023 21 Feb'23
Royal Mail resumes full export service after cyber attack

Royal Mail resumes the last of its international services as it recovers from a ransomware attack, while the Post Office offers postmasters compensation for their lost business
February 21, 2023 21 Feb'23
Average consumer spent more than £3,300 using contactless payments in 2022

The amount of money spent using contactless payment technology continues to rise as consumers take advantage of higher allowable spending limits
February 20, 2023 20 Feb'23
Twitter 2FA changes bring more risks than benefits

Twitter’s approach to nudging users away from insecure SMS-based 2FA is being questioned over its logic
February 17, 2023 17 Feb'23
CIO interview: Hans van der Waal, director of global IT, Travelex

Travelex has weathered a storm that saw it sink into administration, before emerging to solidify its digital foundations for the future
February 16, 2023 16 Feb'23
Virgin Media O2 makes deal for small business broadband customers

Leading UK operator announces faster upload speeds for its small business broadband services, with customers now able to access 10:1 download to upload speed ratio across all Voom packages
February 16, 2023 16 Feb'23
Financial advisory firm Succession Wealth probes cyber attack

Aviva-owned wealth consultancy and financial advisory practice Succession Wealth was hit by an undisclosed security incident on 8 February
February 15, 2023 15 Feb'23
Multi-purpose malwares can use more than 20 MITRE ATT&CK TTPs

Report warns of the development of increasingly sophisticated, multi-purpose malwares, and calls on defenders to play close attention to the MITRE ATT&CK framework to ward them off
February 15, 2023 15 Feb'23
Microsoft fixes three zero-days in February update

February’s Patch Tuesday update contains fixes for three previously unpublicised zero-days in Microsoft Office, Windows Graphics Component and Windows Common Log File System Driver
February 15, 2023 15 Feb'23
Royal Mail refused to pay £66m LockBit ransom demand, logs reveal

Leaked chat logs reveal Royal Mail has supposedly refused to pay a £66m ransom demand from the LockBit ransomware gang
February 15, 2023 15 Feb'23
UK saw fintech investment collapse in 2022, but is still a world leader

Fintech investment in the UK sees steep drop, but the country was still a top destination for capital
February 14, 2023 14 Feb'23
Dell tells suppliers to diversify fab and backend facilities

Dell calls for chip suppliers to diversify their fabrication and backend facilities by the end of 2024 to improve its supply chain resilience
February 14, 2023 14 Feb'23
Vidar, nJRAT re-emerge as prominent malware threats in January

Trojans and infostealers once again dominate the list of most commonly observed threats, according to Check Point’s latest telemetry
February 14, 2023 14 Feb'23
UK authorities clamp down on illegal crypto ATMs

The Financial Conduct Authority and West Yorkshire Police have disrupted a number of illegal crypto ATMs
February 14, 2023 14 Feb'23
‘Buy now, pay later’ crackdown in the making

The finance regulator has proposed bringing ‘buy now, pay later’ providers within its regulatory remit
February 14, 2023 14 Feb'23
OSC&R framework to stop supply chain attacks in the wild

The backers of a new MITRE ATT&CK style framework called OSC&R hope to help organisations get to grips with threats to their software supply chains
February 13, 2023 13 Feb'23
KPMG launches metaverse and digital twin hub in Saudi Arabia

The Saudi Arabian government’s commitment to investing in metaverse technology has attracted a KPMG centre of excellence to its shores
February 13, 2023 13 Feb'23
Security buyers lack insight into threats, attackers, report finds

The majority of cyber security purchasing decisions are made without proper insight into the attackers organisations are facing, according to a Mandiant report
February 13, 2023 13 Feb'23
Killnet DDoS attacks disrupt Nato websites

A series of distributed denial of service attacks on various public websites belonging to the Nato alliance were largely repelled but some resources remain unavailable
February 13, 2023 13 Feb'23
Police tech needs clear legal rules, says biometrics regulator

Police use of artificial intelligence and facial recognition needs to be controlled by strict rules and mechanisms to ensure public trust
February 10, 2023 10 Feb'23
BNPL accounted for 12% of UK online spending in January

Buy now, pay later products from fintech providers accounted for 12% of the £8bn spent online in the UK in January, according to analysis
February 10, 2023 10 Feb'23
Social media platform Reddit breached in phishing attack

An unspecified threat actor obtained access to internal documents, code and business systems at Reddit after stealing employee credentials in a phishing attack
February 09, 2023 09 Feb'23
UK imposes sanctions on Conti ransomware gang leaders

Seven Russian nationals associated with the Conti and Ryuk ransomware operations have been sanctioned by the UK
February 08, 2023 08 Feb'23
Prolific social media fraudster jailed for three years

Ramzan Abubakarov of Hendon will serve three-year prison sentence after using Telegram to coordinate series of frauds which netted almost £2m
February 08, 2023 08 Feb'23
Campaigners lament lack of movement on Computer Misuse Act reform

Westminster has opened a new consultation on proposed reforms to the Computer Misuse Act of 1990, but campaigners who want the law changed to protect cyber professionals have been left disappointed
February 07, 2023 07 Feb'23
LockBit cartel finally claims Royal Mail ransomware attack

The LockBit ransomware gang claims it has stolen sensitive data from Royal Mail and will leak it later this week if its demands go unmet
February 07, 2023 07 Feb'23
Benelux CIO interview: Marijn Grevink, leader of digital transformation, Mars

In an interview with Computer Weekly, the digital head at Mars, Marijn Grevink, takes the wrapper off digital transformation at the company in the Netherlands
February 07, 2023 07 Feb'23
TSB pilots pods as branch replacements

TSB joins Barclays in adopting banking pods to ensure customers have access to physical banking services as the number of high street branches declines
February 06, 2023 06 Feb'23
Online banks still riddled with cyber security flaws, report says

Online bank Virgin Money was found to have the weakest online and application security measures in a Which? study but Nationwide, TSB and The Co-Operative Bank all failed on multiple points, too.
February 06, 2023 06 Feb'23
Post Office branches struggling after Royal Mail cyber attack

Royal Mail has restored almost all of its international services to some extent, but remains unable to accept parcels bought over the counter in a Post Office branch
February 06, 2023 06 Feb'23
The Security Interviews: How to overcome data protection compliance challenges

Complying with the vast swathe of data protection legislation around the world is complex, especially for smaller organisations without the necessary expertise. Could the compliance process be simplified, and if so, how?
February 06, 2023 06 Feb'23
Ransomware operator turns their fire on two-year-old VMware bug

A vulnerability in VMware ESXi servers that users should have patched in 2021 is now being exploited to spread ransomware
February 03, 2023 03 Feb'23
LockBit gang confirms Ion cyber attack as disruption continues

The LockBit ransomware cartel has taken responsibility for this week’s attack on financial software firm Ion, and is threatening to leak stolen data on Saturday 4 February
February 03, 2023 03 Feb'23
FCA cracks down on misleading promos by social media influencers

Social media is becoming a major part of the FCA’s work in clamping down on misleading financial advertising and promotions, with multiple influencers rapped for their behaviour