News

Managing IT and business issues

• October 21, 2022 21 Oct'22

  Microsoft slams external researchers over its own data leak

  Microsoft inadvertently leaked customer data after misconfiguring an Azure Blob, but has hit out at the organisation that discovered its error, claiming it is exaggerating the scope of the issue

• October 20, 2022 20 Oct'22

  The Security Interviews: Why now for ZTNA 2.0?

  With organisations facing escalating online threats, security teams need to improve their defences using zero-trust network access to preserve the integrity of their systems. Palo Alto Networks’ Simon Crocker shares his views on zero-trust network ...

• October 20, 2022 20 Oct'22

  Parliamentary committee launches inquiry into AI governance

  MPs will examine the impacts of artificial intelligence throughout the UK economy and how governance of the technology can be improved ahead of the government publishing its formal regulatory proposals

• October 20, 2022 20 Oct'22

  Cyber professional shortfall hits 3.4 million

  Shortage of cyber security professionals continues to grow and shows no signs of abating, says report

• October 19, 2022 19 Oct'22

  Ransomware crews regrouping as LockBit rise continues

  Overall ransomware activity dropped off in the third quarter of 2022, but increasing attack volumes in September may herald a difficult few months ahead

• October 19, 2022 19 Oct'22

  Lloyds Bank launches innovation sandbox

  Banking group establishes a sandbox where fintechs can build and test applications for Lloyds

• October 19, 2022 19 Oct'22

  Treat cyber crime as a ‘strategic threat’, UK businesses told

  The government’s new National Cyber Advisory Board aims to help elevate cyber discussion and spur action in the business community

• October 18, 2022 18 Oct'22

  Apache vulnerability a risk, but not as widespread as Log4Shell

  A newly disclosed Apache Commons Text vulnerability may put many at risk, but does not appear to be as impactful or widespread as Log4Shell

• October 18, 2022 18 Oct'22

  Virtually all vulnerable open source downloads are avoidable

  Some 96% of known vulnerable open source downloads could have been avoided altogether, according to a report

• October 17, 2022 17 Oct'22

  Global IT and business services spending slows amid economic fears

  Spending on IT and business services is declining amid economic fears, with the possibility of a further fall on the horizon

• October 14, 2022 14 Oct'22

  Malicious WhatsApp add-on highlights risks of third-party mods

  Kaspersky researchers discovered a malicious version of a widely used WhatsApp messenger mod, highlighting the risks of using so-called mods

• October 14, 2022 14 Oct'22

  Annual costs of Hackney ransomware attack exceed £12m

  Hackney Council reveals new insight into the ongoing cost of a ransomware attack that devastated its systems two years ago

• October 14, 2022 14 Oct'22

  Office 365 email encryption flaw could pose risk to user privacy

  A vulnerability in Microsoft Office 365 Message Encryption could leave the contents of emails dangerously exposed, but with no fix coming it’s up to users to decide how at risk they are

• October 14, 2022 14 Oct'22

  Fujitsu to finally face blame for its part in Post Office Horizon scandal

  Fujitsu’s part in causing the extreme suffering of subpostmasters will be made clear as the IT supplier begins giving evidence at a statutory inquiry

• October 14, 2022 14 Oct'22

  Advanced: Healthcare data was stolen in LockBit 3.0 attack

  Advanced has revealed a total of 16 of its health and social care sector customers had their data exfiltrated in a recent ransomware attack

• October 14, 2022 14 Oct'22

  Protecting children by scanning encrypted messages is ‘magical thinking’, says Cambridge professor

  Ross Anderson argues in a rebuttal to GCHQ experts that using artificial intelligence to scan encrypted messaging services is the wrong approach to protecting children and preventing terrorism

• October 13, 2022 13 Oct'22

  Cyber training firm KnowBe4 bought by private equity firm

  Acquisition of KnowBe4 supposedly reflects the success the company has seen since its spring 2021 IPO

• October 13, 2022 13 Oct'22

  Unsung Heroes Awards celebrate diversity in cyber community

  The seventh annual Security Serious Unsung Heroes Awards recognise those trying to improve diversity and mental health in cyber for the first time

• October 13, 2022 13 Oct'22

  Gartner: Remote work, zero trust, cloud still driving cyber spend

  Security leaders are eager to spend on categories including remote and hybrid cyber offerings, zero-trust network access, and cloud

• October 12, 2022 12 Oct'22

  NCSC urges organisations to secure supply chains

  NCSC’s latest guidance package centres supply chain security, helping medium to large organisations assess and mitigate cyber risks from suppliers

• October 12, 2022 12 Oct'22

  Microsoft fixes lone zero-day on October Patch Tuesday

  Microsoft patched a solitary zero-day vulnerability in its latest monthly drop, but fixes for two others disclosed in the past few weeks are nowhere to be seen

• October 12, 2022 12 Oct'22

  ICO selectively discloses reprimands for data protection breaches

  Data protection experts question ICO’s selective approach to publishing formal reprimands for contravening the law, after FoI request reveals the Cabinet Office was among the organisations reprimanded

• October 11, 2022 11 Oct'22

  Contractor left Toyota source code exposed for five years

  Source code related to Toyota’s T-Connect service was left exposed on GitHub for over five years by a contractor

• October 11, 2022 11 Oct'22

  Post Office scandal inquiry restarts with call for a pause amid disclosure controversy

  The statutory public inquiry into the Post Office Horizon scandal has begun phase two with a request for an adjournment amid allegations that the Post Office is failing to meet its obligation to disclose all relevant documents

• October 10, 2022 10 Oct'22

  Dutch infrastructure sector seeks closer collaboration with government

  Although the Netherlands government is increasingly realising how vital the country’s digital infrastructure is, it lacks sufficient policy-making and vision, say industry associations

• October 10, 2022 10 Oct'22

  Ukraine and EU explore deeper cyber collaboration

  A Ukrainian delegation has met with officials from the EU’s ENISA cyber agency to explore deeper cooperation on cyber security issues

• October 06, 2022 06 Oct'22

  EU rolling out measures for online safety and AI liability

  The European Council has approved the passage of the Digital Services Act to protect people’s rights online, while the European Commission has announced proposals to help those negatively affected by artificial intelligence to claim compensation

• October 06, 2022 06 Oct'22

  SMEs in Europe ready to invest in real-time payment capabilities

  Small and medium-sized enterprises are losing business because of the time it takes to receive payments, with many considering API-based services to address the problem

• October 06, 2022 06 Oct'22

  Tech Nation and PwC launch joint climate tech accelerator

  The Net Zero X programme by Tech Nation and PwC will help climate tech companies to overcome common growth challenges and scale faster

• October 06, 2022 06 Oct'22

  JPMorgan’s UK digital bank app outage locks customers out

  App-based Chase Bank suffered tech outage that left customers unable to access its services

• October 06, 2022 06 Oct'22

  India telcos chart revenue growth with cloud and OTT services

  Telcos in India are eyeing new revenue streams from cloud and content services, but whether they can successfully monetise the offerings remains to be seen

• October 05, 2022 05 Oct'22

  Italian Supreme Court calls for prosecutors to disclose information on Sky ECC hacking operation

  Italy’s Supreme Court says Italian prosecutors and police should disclose information on how they obtained intercepted messages from the Sky ECC cryptophone network

• October 04, 2022 04 Oct'22

  Public sector aims to close digital skills gap with private sector

  Digital leaders from the public sector have stressed the need to build up the digital skills and capabilities of civil servants to successfully deliver the government’s digital transformation ambitions, but not at the expense of supplier ecosystems

• October 04, 2022 04 Oct'22

  Tories to replace GDPR

  IT industry reacts to the government’s plan to replace the pan-European data protection regulation

• October 04, 2022 04 Oct'22

  Red Hat CEO on OpenShift roadmap, competitive play

  Red Hat’s newly minted CEO Matt Hicks talks up OpenShift’s roadmap, the competition with VMware and opportunities in the Asia-Pacific region

• October 03, 2022 03 Oct'22

  Digital transformation is brewing at Heineken

  In a presentation at the Digital Transformation Week conference in Amsterdam, Heineken’s data management director revealed some of the ways the company is using information technology to transform

• September 30, 2022 30 Sep'22

  A new take on an old relationship: Nordic startups lure UK investors to their front doors

  When startup worlds collide: investment and entrepreneurship partnerships form across the Nordics and UK

• September 30, 2022 30 Sep'22

  How Endowus is leveraging Kafka and microservices

  The Singapore-based financial technology company built a distributed microservices architecture to ensure its investment platform remains resilient at all times

• September 28, 2022 28 Sep'22

  UK suffers third highest number of ransomware attacks globally

  Based on an analysis of around 5,000 ransomware incidents, NordLocker has found that UK businesses, and small businesses in particular, are a priority target for ransomware gangs

• September 28, 2022 28 Sep'22

  Whistleblower Peter Duffy calls for oversight of NHS records to prevent evidence tampering

  A whistleblower has called for greater oversight in the handling of ‘safety-critical digital information’ across the NHS, in light of a number of cases that raise questions about data governance and record-keeping within the health service

• September 28, 2022 28 Sep'22

  Russia ready for complete switch to domestic IT infrastructure

  In a bid to counter sanctions imposed following its invasion of Ukraine, the Russian government is implementing a policy of import substitution in the country’s domestic IT sector

• September 28, 2022 28 Sep'22

  Online Safety Bill needs complete overhaul, say rights groups

  Civil society groups write to new digital minister to challenge various aspects of the upcoming Online Safety Bill, which they say threatens rights to privacy and freedom of expression

• September 28, 2022 28 Sep'22

  Most hackers exfiltrate data within five hours of gaining access

  Insights from more than 300 sanctioned adversaries, otherwise known as ‘ethical’ hackers, reveal that around two-thirds are able to collect and exfiltrate data within just five hours of gaining access

• September 27, 2022 27 Sep'22

  Fraudsters adapt phishing scams to exploit cost-of-living crisis

  Around 80,000 Brits a month are falling victim to phishing attacks as fraudsters switch up tactics to take advantage of cost-of-living crisis and behavioural changes prompted by pandemic

• September 26, 2022 26 Sep'22

  How Russian intelligence hacked the encrypted emails of former MI6 boss Richard Dearlove

  Hack by Russian-linked ColdRiver group exposed former MI6 chief Richard Dearlove’s contacts and email communications with government, military, intelligence and political officials

• September 26, 2022 26 Sep'22

  Data analysis and artificial intelligence key industrial strategy missions for Labour

  Shadow business secretary announces Labour’s proposed industrial strategy, in which data would take a central role

• September 26, 2022 26 Sep'22

  More than 30 startups to join Plexal’s Cyber Runway accelerator

  Now in its second year, the Cyber Runway accelerator has been designed to support firms at various stages of growth, as well as help the cyber security sector to improve on its diversity, inclusion and regional representation

• September 26, 2022 26 Sep'22

  FCSA calls for government clampdown on cloned umbrella companies

  One year has passed since the Freelancer and Contractor Services Association spoke out about the problem of umbrella company cloning, and it claims the authorities are not moving fast enough to tackle the issue

• September 23, 2022 23 Sep'22

  Threat actors abused lack of MFA, OAuth in spam campaign

  Microsoft threat researchers have reported on a series of cyber attacks in which enterprises with lax IAM policies had their systems hijacked to conduct spam email campaigns

• September 23, 2022 23 Sep'22

  How Great Eastern is transforming its IT organisation

  Singapore-based insurer Great Eastern made painstaking efforts to rid itself of legacy systems and transformed its IT organisation to become nimbler by building up its cloud and DevOps capabilities