News

Managing IT and business issues

• April 14, 2022 14 Apr'22

  Incontroller ICS malware has ‘rare, dangerous’ capabilities, says Mandiant

  Mandiant joins a growing chorus of warnings over novel nation state threats to ICS systems

• April 13, 2022 13 Apr'22

  Hybrid work catching on in India

  More tech workers in India now enjoy flexi-work arrangements and higher salaries, but talent retention remains an issue in the subcontinent, study finds

• April 13, 2022 13 Apr'22

  WatchGuard firewall users urged to patch Cyclops Blink vulnerability

  The US authorities have seen fit to add the WatchGuard vulnerability used by Sandworm to build the Cyclops Blink botnet to its list of must-patch vulnerabilities

• April 13, 2022 13 Apr'22

  Microsoft patches two zero-days, 10 critical bugs

  Patch Tuesday is here once again. This month, security teams must fix two privilege escalation zero-days in the Windows Common Log File System Driver and the Windows User Profile Service

• April 13, 2022 13 Apr'22

  Criminals researched hacking TTPs post-breach in ‘messy’ cyber attack

  Sophos shares details of a cyber attack that saw attackers hang out in their victim environment for five months while they prepared to sow further mischief

• April 12, 2022 12 Apr'22

  Universal IAM policy failings put cloud environments at risk

  Almost all organisations lack appropriate IAM policy controls to effectively secure their data in the cloud, according to a damning study

• April 12, 2022 12 Apr'22

  Multiple arrests made in RaidForums takedown

  A Portuguese national and a 21-year-old man from Croydon are among a number of individuals arrested ahead of the closure of RaidForums by police

• April 12, 2022 12 Apr'22

  Sandworm rolls out Industroyer2 malware against Ukraine

  A second generation of the Sandworm-linked Industroyer malware has been identified by ESET researchers and Ukraine’s national CERT

• April 11, 2022 11 Apr'22

  Border IT system fixed after 10-day outage

  Post-Brexit border IT system failure fixed after going down at the start of April, allowing traders to once again file customs documents electronically rather than by hand

• April 11, 2022 11 Apr'22

  Open source CMS platform Directus patches XSS bug

  A stored cross-site scripting vulnerability in the Directus platform could have enabled malicious actors to gain access to valuable data

• April 11, 2022 11 Apr'22

  Mastercard opens European tech hub in Dublin

  Mastercard is doubling its technology workforce in Dublin through a new European tech hub in the Irish capital

• April 11, 2022 11 Apr'22

  Raspberry Pi Foundation ditches default username policy

  Raspberry Pi owners will no longer be able to use the default ‘pi’ username, as the Raspberry Pi Foundation clamps down on insecure practices

• April 08, 2022 08 Apr'22

  Ukrainian cyber criminal gets five years in jail

  A US court has sentenced Denys Iarmak, who worked as a penetration tester for the FIN7 cyber crime group, to a five-year prison sentence

• April 08, 2022 08 Apr'22

  Was Spring4Shell a lot of hot air? No, but...

  Find out why Spring4Shell was apparently not as impactful a security problem as many had at first feared, and why it’s on the cyber community as a whole to do better

• April 08, 2022 08 Apr'22

  IT contractors warned as HMRC draws on ‘IR35-adjacent’ legislation in tax avoidance clampdown

  IT contractors are being urged to take action now, as details emerge about how HM Revenue & Customs is drawing on some IR35-adjacent legislation to send out five-figure tax bills to individuals who engage with contractor-focused accountants

• April 07, 2022 07 Apr'22

  US shuts down Russia’s Cyclops Blink botnet operation

  Operation by US authorities has taken the Russia-attributed Cyclops Blink botnet ‘off the board’

• April 07, 2022 07 Apr'22

  Banks should be able to integrate e-krona into existing systems, says Swedish regulator

  Swedish financial services regulator says banks and service providers should be able to integrate a potential digital currency into existing systems

• April 06, 2022 06 Apr'22

  APAC organisations to spend more on AI

  The higher investments in AI will be led by the region’s banking industry which is harnessing AI systems to mitigate risks and detect fraud

• April 06, 2022 06 Apr'22

  Apple criticised over unpatched CVEs in Catalina, Big Sur

  Apple patched two zero-days in macOS Monterey last week, but did not address the same issue in Catalina or Big Sur, raising questions

• April 06, 2022 06 Apr'22

  Denonia malware may be first to target AWS Lambda

  The newly discovered Denonia malware appears to be custom designed to target AWS Lambda environments, and may be the first of its kind

• April 06, 2022 06 Apr'22

  Hydra takedown merely shifts cyber criminal problem elsewhere

  The seizure of the Hydra dark web marketplace is a positive development in the fight against cyber crime, but will only be a temporary setback for determined criminals

• April 05, 2022 05 Apr'22

  Structured decentralisation is the key to unlocking Nordic-level innovation

  Finnish tech entrepreneurs will be taking the stage at the World Economic Forum to tell the world about the role of trust in Finnish startup success

• April 05, 2022 05 Apr'22

  Secrecy over police EncroChat hacking is unconstitutional, defence lawyers tell top French court

  France’s constitutional court, the Conseil Constitutionnel, has heard arguments that the use of ‘defence secrecy’ to withhold information about police surveillance operations breaches the French constitution

• April 05, 2022 05 Apr'22

  Discount retailer The Works hit by cyber attack

  A small number of The Works’ bricks-and-mortar stores were forced to close amid a cyber attack of an undisclosed nature

• April 05, 2022 05 Apr'22

  Triple-threat Borat malware no joke for victims

  Unlike its namesake, the newly discovered Borat malware won’t raise a smile for IT security pros

• April 05, 2022 05 Apr'22

  Zopa bank profitable after just 21 months

  The bank that emerged from peer-to-peer lending pioneer has hit its first profit after 21 months of operation

• April 05, 2022 05 Apr'22

  Saudi Arabian ICT sector hits $32.1bn after strong pandemic response

  The Saudi Arabian IT and communications sector is recovering strongly from the Covid-19 pandemic

• April 04, 2022 04 Apr'22

  Fujitsu bags £430m government contracts despite rising cost of Post Office Horizon scandal

  Fujitsu has won two huge government IT contracts, worth over £400m, while taxpayers face footing the massive bill for the Post Office scandal caused by its software

• April 01, 2022 01 Apr'22

  Two teenagers charged with Lapsus$ cyber attacks

  City of London Police have charged two teenagers in connection with the Lapsus$ cyber crime spree

• April 01, 2022 01 Apr'22

  Apple drops emergency patches for two zero-days

  Apple has fixed two zero-day vulnerabilities that appear to have been actively exploited in the wild

• March 31, 2022 31 Mar'22

  Bank fraud prevention scheme blocked £60m in fraud last year

  Scheme to catch fraudsters, including online scammers, before they commit their crimes has reported a significant increase in crimes prevented

• March 31, 2022 31 Mar'22

  Lapsus$ cyber crime spree continues despite arrests

  The arrests of seven people in connection with the Lapsus$ cyber crime group has not dented the gang’s enthusiasm for causing chaos

• March 31, 2022 31 Mar'22

  Spring4Shell zero-day sprung on security teams

  Some are describing a newly disclosed Spring Java framework vulnerability as the next Log4Shell, but what is Spring4Shell, and what can we do about it?

• March 31, 2022 31 Mar'22

  BCS Pride group calls for end to transphobia in tech

  The BCS has called for an end to transphobic abuse and harassment in the technology industry

• March 30, 2022 30 Mar'22

  Compensation goal finally in sight for 555 Post Office scandal victims

  The subpostmaster campaign group which exposed the Post Office Horizon scandal could be close to achieving the objective it was established for, with fair compensation for its members in sight

• March 30, 2022 30 Mar'22

  One-third of UK firms suffer a cyber attack every week

  New statistics from the annual DCMS Cyber security breaches survey reveal the extent and frequency with which UK organisations are being attacked by malicious actors

• March 30, 2022 30 Mar'22

  Why integration and automation are two sides of the same coin

  Workato’s regional leader explains why integration and automation are intertwined and how the company is addressing the Asia-Pacific market

• March 29, 2022 29 Mar'22

  NCSC: Not necessarily wise to ditch Kaspersky

  UK’s National Cyber Security Centre issues refreshed guidance on organisations’ usage of technology and services of Russian origin, but stops short of advising users to expunge all Russian products from their IT estates

• March 29, 2022 29 Mar'22

  Wave of Log4j-linked attacks targeting VMware Horizon

  Sophos issues a new warning to organisations that have so far failed to patch their VMware Horizon servers against Log4Shell

• March 29, 2022 29 Mar'22

  HSBC chooses IBM support for its quantum leap

  UK bank moves to the next stage of its work with quantum computers through a deal with IBM

• March 29, 2022 29 Mar'22

  FCA reports 52% jump in security incidents

  The Financial Conduct Authority received 116 cyber incident reports in 2021, a fifth of them involving ransomware

• March 25, 2022 25 Mar'22

  NHS health and social care staff offered training on healthcare apps

  Health service staff have free access to training courses to help them understand which digital healthcare apps and websites are best for their patients

• March 24, 2022 24 Mar'22

  Recognising APAC’s trailblazers in digital transformation

  The region’s top industry innovators were recognised for their digital transformation efforts at the Computer Weekly Innovation Awards APAC 2022

• March 24, 2022 24 Mar'22

  CW Innovation Awards: How Telekom Malaysia scaled its RPA initiative

  Telekom Malaysia has been driving automation efforts across the company, not only to serve customers more efficiently, but also to improve a slew of back office functions

• March 24, 2022 24 Mar'22

  CW Innovation Awards: Transforming Australia’s national assessment programme

  Education Services Australia has transformed the country’s national assessment programme through an online platform that has enabled teachers to design adaptive tests and improved student engagement

• March 24, 2022 24 Mar'22

  CW Innovation Awards: Tracking cargo on the road

  Through Geodis APAC’s One Road platform, supply chain companies have received fewer enquiries on cargo locations and improved on-time performance using roads as an alternative way to move cargo

• March 23, 2022 23 Mar'22

  Digital continues to deplete bank branch networks as Lloyds cuts 60 more

  Lloyds Banking Group has stripped UK high streets of a further 60 branches as the take-up of digital banking continues

• March 23, 2022 23 Mar'22

  Japan’s Mizuho partners Google to accelerate tech transformation after a year to forget

  Following a year when it hit the tech headlines for the wrong reasons, Mizuho is on a mission to modernise IT in collaboration with Google

• March 23, 2022 23 Mar'22

  Umbrella company Workwell refutes contractor’s ‘withheld holiday pay’ claim

  A dispute between a contractor and their former umbrella company shines a light once more on the knotty issue of holiday pay

• March 23, 2022 23 Mar'22

  Private equity house spins SSE company out of McAfee Enterprise

  The launch of Skyhigh Security completes division of McAfee Enterprise into separate businesses by Symphony Technology Group, which acquired the long-standing cyber security firm for $4bn in March 2021