News

Managing IT and business issues

November 02, 2022 02 Nov'22
Dropbox code compromised in phishing attack

Cloud storage service says malicious actors successfully accessed some of its code within GitHub, but insists customer data is secure
November 02, 2022 02 Nov'22
UK spent £6.4m on secret cyber package for Ukraine

Westminster has revealed for the first time the existence of a previously top-secret security programme that has been helping Ukraine fend off Russian cyber attacks
November 01, 2022 01 Nov'22
A third of UK cyber leaders want to quit, report says

Nearly a third of UK security leaders are considering leaving their current role, and more than half are struggling to keep on top of their workload
November 01, 2022 01 Nov'22
NCSC looks back on year of ‘profound change’ for cyber

The NCSC ramped up its support for UK plc in the past 12 months, but it was events beyond the UK’s borders that proved the most impactful

October 31, 2022 31 Oct'22
Prepare today for potentially high-impact OpenSSL bug

OpenSSL trailed a critical vulnerability patch last week, which will be only the second such flaw ever found in the open source encryption project. Unfortunately, the first was Heartbleed
October 28, 2022 28 Oct'22
Post Office warned of Horizon software-induced ‘tragedy’ in 1999

Problems experienced during live trials of the Post Office Horizon system predicted the ‘tragedy’ that unfolded
October 27, 2022 27 Oct'22
Government ups cyber support for elderly, vulnerable web users

DCMS announces a funding boost to help the elderly, disabled and other vulnerable groups stay safe online and avoid being misled by disinformation
October 27, 2022 27 Oct'22
NHS to get new national CISO

The Department for Health and Social Care is seeking a new national CISO, who will be tasked with providing strategic cyber leadership, direction and expertise across DHSC and the wider NHS
October 27, 2022 27 Oct'22
LinkedIn adds new features to safeguard user privacy, security

Social media platform is adding a number of features and systems designed to protect legitimate users from inauthentic profiles and activity
October 27, 2022 27 Oct'22
Santander calls for cooperation to tackle APP fraud

New report puts forward key recommendations that the banking sector, government and other industries could take to tackle authorised push payment fraud

October 26, 2022 26 Oct'22
ICO warns against using biometrics for ‘emotional analysis’

ICO warning highlights risk of ‘systemic bias’ and discrimination associated with organisations using biometric data and technologies for emotion analysis
October 26, 2022 26 Oct'22
Reported Horizon errors should have been ‘show-stopper’, public inquiry told

Subpostmasters should have been given the benefit of the doubt over unexplained losses, but were hounded to pay money back, with lives ruined and innocent people prosecuted
October 26, 2022 26 Oct'22
Cuba ransomware cartel spoofs Ukraine armed forces

Ukrainian cyber experts issue a warning over the activities of the Cuba ransomware cartel
October 26, 2022 26 Oct'22
When technology lets you sleep easy

Indian mattress supplier Duroflex has taken a leaf out of mattress design in its technology implementation to double its growth in an industry dominated by unorganised players
October 25, 2022 25 Oct'22
One in five tech workers subject to workplace surveillance

Digital surveillance is now a common feature of the UK’s post-pandemic economy, says Prospect Union, adding to growing calls for workers to be given a greater say over how technologies are deployed in the workplace
October 25, 2022 25 Oct'22
UK needs stronger regional innovation clusters outside South East

Venture capital fund managers speak to Computer Weekly about the importance of innovation clusters to the UK tech ecosystem, and the need to develop further investment opportunities outside the South East
October 25, 2022 25 Oct'22
Digital-first businesses more willing to accept some fraud

Companies founded in the past 20 years appear more willing to accept higher levels of fraudulent activity during the customer onboarding process, according to a report
October 24, 2022 24 Oct'22
Government speeds up NHS Digital and NHS England merger

NHS bodies will now merge in early January 2023, aiming to create a single statutory body for NHS data and technology
October 24, 2022 24 Oct'22
Complacency biggest cyber risk to UK plc, says ICO

Information commissioner John Edwards warns against complacency as his office issues a multimillion-pound fine to a building company that failed to prevent a ransomware attack
October 24, 2022 24 Oct'22
Half of staff might quit after a cyber attack, report says

Findings from a survey of CISOs, IT leaders and staffers reveal how experiencing a cyber incident may take a larger-than-thought toll on employee retention
October 24, 2022 24 Oct'22
Berlingske Media to go all-digital in 2023

Danish publisher moves national daily newspaper fully online as it cuts costs and reacts to changing customer habits
October 21, 2022 21 Oct'22
Ukrainian and UK IT sectors to deepen collaboration, partnerships

BCS, the Chartered Institute for IT, and the IT Ukraine Association have signed an MoU to deepen collaboration between the UK and Ukrainian IT sectors, and champion new partnerships and growth opportunities
October 21, 2022 21 Oct'22
Microsoft slams external researchers over its own data leak

Microsoft inadvertently leaked customer data after misconfiguring an Azure Blob, but has hit out at the organisation that discovered its error, claiming it is exaggerating the scope of the issue
October 20, 2022 20 Oct'22
The Security Interviews: Why now for ZTNA 2.0?

With organisations facing escalating online threats, security teams need to improve their defences using zero-trust network access to preserve the integrity of their systems. Palo Alto Networks’ Simon Crocker shares his views on zero-trust network ...
October 20, 2022 20 Oct'22
Parliamentary committee launches inquiry into AI governance

MPs will examine the impacts of artificial intelligence throughout the UK economy and how governance of the technology can be improved ahead of the government publishing its formal regulatory proposals
October 20, 2022 20 Oct'22
Cyber professional shortfall hits 3.4 million

Shortage of cyber security professionals continues to grow and shows no signs of abating, says report
October 19, 2022 19 Oct'22
Ransomware crews regrouping as LockBit rise continues

Overall ransomware activity dropped off in the third quarter of 2022, but increasing attack volumes in September may herald a difficult few months ahead
October 19, 2022 19 Oct'22
Lloyds Bank launches innovation sandbox

Banking group establishes a sandbox where fintechs can build and test applications for Lloyds
October 19, 2022 19 Oct'22
Treat cyber crime as a ‘strategic threat’, UK businesses told

The government’s new National Cyber Advisory Board aims to help elevate cyber discussion and spur action in the business community
October 18, 2022 18 Oct'22
Apache vulnerability a risk, but not as widespread as Log4Shell

A newly disclosed Apache Commons Text vulnerability may put many at risk, but does not appear to be as impactful or widespread as Log4Shell
October 18, 2022 18 Oct'22
Virtually all vulnerable open source downloads are avoidable

Some 96% of known vulnerable open source downloads could have been avoided altogether, according to a report
October 17, 2022 17 Oct'22
Global IT and business services spending slows amid economic fears

Spending on IT and business services is declining amid economic fears, with the possibility of a further fall on the horizon
October 14, 2022 14 Oct'22
Malicious WhatsApp add-on highlights risks of third-party mods

Kaspersky researchers discovered a malicious version of a widely used WhatsApp messenger mod, highlighting the risks of using so-called mods
October 14, 2022 14 Oct'22
Annual costs of Hackney ransomware attack exceed £12m

Hackney Council reveals new insight into the ongoing cost of a ransomware attack that devastated its systems two years ago
October 14, 2022 14 Oct'22
Office 365 email encryption flaw could pose risk to user privacy

A vulnerability in Microsoft Office 365 Message Encryption could leave the contents of emails dangerously exposed, but with no fix coming it’s up to users to decide how at risk they are
October 14, 2022 14 Oct'22
Fujitsu to finally face blame for its part in Post Office Horizon scandal

Fujitsu’s part in causing the extreme suffering of subpostmasters will be made clear as the IT supplier begins giving evidence at a statutory inquiry
October 14, 2022 14 Oct'22
Advanced: Healthcare data was stolen in LockBit 3.0 attack

Advanced has revealed a total of 16 of its health and social care sector customers had their data exfiltrated in a recent ransomware attack
October 14, 2022 14 Oct'22
Protecting children by scanning encrypted messages is ‘magical thinking’, says Cambridge professor

Ross Anderson argues in a rebuttal to GCHQ experts that using artificial intelligence to scan encrypted messaging services is the wrong approach to protecting children and preventing terrorism
October 13, 2022 13 Oct'22
Cyber training firm KnowBe4 bought by private equity firm

Acquisition of KnowBe4 supposedly reflects the success the company has seen since its spring 2021 IPO
October 13, 2022 13 Oct'22
Unsung Heroes Awards celebrate diversity in cyber community

The seventh annual Security Serious Unsung Heroes Awards recognise those trying to improve diversity and mental health in cyber for the first time
October 13, 2022 13 Oct'22
Gartner: Remote work, zero trust, cloud still driving cyber spend

Security leaders are eager to spend on categories including remote and hybrid cyber offerings, zero-trust network access, and cloud
October 12, 2022 12 Oct'22
NCSC urges organisations to secure supply chains

NCSC’s latest guidance package centres supply chain security, helping medium to large organisations assess and mitigate cyber risks from suppliers
October 12, 2022 12 Oct'22
Microsoft fixes lone zero-day on October Patch Tuesday

Microsoft patched a solitary zero-day vulnerability in its latest monthly drop, but fixes for two others disclosed in the past few weeks are nowhere to be seen
October 12, 2022 12 Oct'22
ICO selectively discloses reprimands for data protection breaches

Data protection experts question ICO’s selective approach to publishing formal reprimands for contravening the law, after FoI request reveals the Cabinet Office was among the organisations reprimanded
October 11, 2022 11 Oct'22
Contractor left Toyota source code exposed for five years

Source code related to Toyota’s T-Connect service was left exposed on GitHub for over five years by a contractor
October 11, 2022 11 Oct'22
Post Office scandal inquiry restarts with call for a pause amid disclosure controversy

The statutory public inquiry into the Post Office Horizon scandal has begun phase two with a request for an adjournment amid allegations that the Post Office is failing to meet its obligation to disclose all relevant documents
October 10, 2022 10 Oct'22
Dutch infrastructure sector seeks closer collaboration with government

Although the Netherlands government is increasingly realising how vital the country’s digital infrastructure is, it lacks sufficient policy-making and vision, say industry associations
October 10, 2022 10 Oct'22
Ukraine and EU explore deeper cyber collaboration

A Ukrainian delegation has met with officials from the EU’s ENISA cyber agency to explore deeper cooperation on cyber security issues
October 06, 2022 06 Oct'22
EU rolling out measures for online safety and AI liability

The European Council has approved the passage of the Digital Services Act to protect people’s rights online, while the European Commission has announced proposals to help those negatively affected by artificial intelligence to claim compensation
October 06, 2022 06 Oct'22
SMEs in Europe ready to invest in real-time payment capabilities

Small and medium-sized enterprises are losing business because of the time it takes to receive payments, with many considering API-based services to address the problem