News

Privacy and data protection

• May 11, 2022 11 May'22

  EU plans to police child abuse raise fresh fears over encryption and privacy rights

  Draft regulation unveiled today will require internet and messaging firms to use algorithms to identify grooming and child abuse or face heavy fines

• May 10, 2022 10 May'22

  ‘Spy cops’ inquiry delves into police relationship with MI5

  There was ‘no filter’ on the information that undercover police officers were collecting on activists throughout the 1970s, despite senior managers and officials involved in directing the surveillance questioning the appropriateness of the ...

• May 10, 2022 10 May'22

  CyberUK 22: Cyber leaders affirm UK’s whole-of-society strategy

  On the opening day of CyberUK 2022, GCHQ director Jeremy Fleming and NCSC CEO Lindy Cameron have spoken of their commitment to the government’s ambition for a whole-of-society cyber strategy

• May 10, 2022 10 May'22

  CyberUK 22: NCSC refreshes cloud security guidance

  The National Cyber Security Centre is revising its cloud guidance as increasing uptake of potentially vulnerable cloud services puts more organisations at risk of compromise

• May 09, 2022 09 May'22

  CyberUK 22: NCSC’s ACD programme blocks 2.7 million scams

  On the opening day of its annual CyberUK event, the NCSC reveals how organisations around the country have used its Active Cyber Defence programme to their advantage

• May 06, 2022 06 May'22

  UK digital markets regulator to be given statutory powers

  Digital Markets Unit will be put on statutory footing by UK government to ensure technology giants do not abuse market power, but announcement comes with no clear indication of when legislation will be introduced

• May 06, 2022 06 May'22

  IT infrastructure used to launch DDoS attack on Russian targets

  Organisations could unwittingly be participating in hostile activity against the Russian government as compromised IT infrastructure is used without their knowledge to launch denial of service attacks

• May 04, 2022 04 May'22

  NHS email accounts hijacked for phishing campaign

  Microsoft credentials targeted in phishing operation using hijacked NHSMail accounts

• May 04, 2022 04 May'22

  Intellectual property theft operation attributed to Winnti group

  Winnti conducted a prolonged cyber espionage campaign that went undetected for years, allowing it to exfiltrate massive amounts of corporate data and intellectual property

• May 03, 2022 03 May'22

  Five TLS comms vulnerabilities hit Aruba, Avaya switching kit

  Five new vulnerabilities in the implementation of transport layer security communications leave several popular switches vulnerable to remote code execution

• April 28, 2022 28 Apr'22

  Manufacturer sues JPMorgan after cyber criminals stole $272m

  Manufacturer files lawsuit alleging that US bank failed to inform it of suspicious transaction activity

• April 27, 2022 27 Apr'22

  Russia-supporting cyber crime gang claims Coca-Cola as victim

  Stormous cyber crime collective claims to have stolen 161GB of data from Coca-Cola, and says it plans to sell it off

• April 27, 2022 27 Apr'22

  Leeds Beckett’s ethical hacking platform wins Innovate UK backing

  An ethical hacking and cyber education platform developed at Leeds Beckett University has received a major funding boost to help it launch commercially

• April 22, 2022 22 Apr'22

  What’s up with Conti and REvil, and should we be worrying?

  New intelligence on some of the world’s most prolific ransomware gangs suggests recent disruption to their activities was like water off a duck’s back

• April 22, 2022 22 Apr'22

  How Adnovum is leveraging its Swiss roots

  Software company Adnovum is leveraging its strengths in identity and access management and its Swiss heritage as it expands into new markets and areas such as zero-trust security

• April 22, 2022 22 Apr'22

  UAE bolsters cyber security

  The United Arab Emirates has successfully improved its security posture amid mounting cyber threats

• April 20, 2022 20 Apr'22

  One-third of scams that hit TSB are impersonation fraud

  TSB reports an increase in fraudsters impersonating trusted organisations to trick consumers into making payments to them

• April 20, 2022 20 Apr'22

  Home secretary Priti Patel to decide whether to extradite Assange

  Home secretary will decide in four weeks whether to approve Julian Assange’s extradition to the US, where he faces espionage and hacking charges

• April 20, 2022 20 Apr'22

  NSO Group faces court action after Pegasus spyware used against targets in UK

  Three human rights activists whose phones were targeted by spyware traced to Saudi Arabia and the United Arab Emirates have begun legal action against both countries and Israel’s NSO Group Technologies

• April 19, 2022 19 Apr'22

  Hammers sign Acronis as backup and security in one

  West Ham United set to replace separate backup from Veeam and a variety of security products with Acronis Cyber Protect to have backup, data protection and file share on a single platform

• April 14, 2022 14 Apr'22

  Kyndryl kindles cyber incident recovery pact with Dell

  IBM spin-out Kyndryl hops into bed with Dell Technologies in a joint cyber resilience proposition

• April 14, 2022 14 Apr'22

  Government agrees bulk surveillance powers fail to protect journalists and sources

  Campaign group Liberty to launch legal appeal that will call for journalists to receive stronger legal protections from state surveillance

• April 12, 2022 12 Apr'22

  Multiple arrests made in RaidForums takedown

  A Portuguese national and a 21-year-old man from Croydon are among a number of individuals arrested ahead of the closure of RaidForums by police

• April 12, 2022 12 Apr'22

  AI researcher says police tech suppliers are hostile to transparency

  Expert witness in Lords police tech inquiry welcomes committee’s findings but questions whether its recommendations on how to end the ‘Wild West’ of police artificial intelligence and algorithmic technologies in the UK would be implemented

• April 08, 2022 08 Apr'22

  EncroChat: France says ‘defence secrecy’ in police surveillance operations is constitutional

  Constitutional court finds that invoking ‘defence secrecy’ to withhold information about the state hacking of EncroChat cryptophones is constitutional. Defence lawyers now head for the supreme court

• April 08, 2022 08 Apr'22

  Ukrainian cyber criminal gets five years in jail

  A US court has sentenced Denys Iarmak, who worked as a penetration tester for the FIN7 cyber crime group, to a five-year prison sentence

• April 07, 2022 07 Apr'22

  MPs and editors sound alarm over threat to Freedom of Information

  Government secrecy and trend for departments to block Freedom of Information requests pose a long-term risk to accountability

• April 06, 2022 06 Apr'22

  Hydra takedown merely shifts cyber criminal problem elsewhere

  The seizure of the Hydra dark web marketplace is a positive development in the fight against cyber crime, but will only be a temporary setback for determined criminals

• April 05, 2022 05 Apr'22

  Secrecy over police EncroChat hacking is unconstitutional, defence lawyers tell top French court

  France’s constitutional court, the Conseil Constitutionnel, has heard arguments that the use of ‘defence secrecy’ to withhold information about police surveillance operations breaches the French constitution

• April 05, 2022 05 Apr'22

  Discount retailer The Works hit by cyber attack

  A small number of The Works’ bricks-and-mortar stores were forced to close amid a cyber attack of an undisclosed nature

• April 05, 2022 05 Apr'22

  Triple-threat Borat malware no joke for victims

  Unlike its namesake, the newly discovered Borat malware won’t raise a smile for IT security pros

• April 01, 2022 01 Apr'22

  Two teenagers charged with Lapsus$ cyber attacks

  City of London Police have charged two teenagers in connection with the Lapsus$ cyber crime spree

• April 01, 2022 01 Apr'22

  TechUK calls on government to seize post-Brexit data opportunities

  Ahead of the government’s reply to its late 2021 consultation about proposed post-Brexit reforms to the data protection regime, TechUK has published a paper declaring six data governance principles

• March 31, 2022 31 Mar'22

  Bank fraud prevention scheme blocked £60m in fraud last year

  Scheme to catch fraudsters, including online scammers, before they commit their crimes has reported a significant increase in crimes prevented

• March 31, 2022 31 Mar'22

  Lapsus$ cyber crime spree continues despite arrests

  The arrests of seven people in connection with the Lapsus$ cyber crime group has not dented the gang’s enthusiasm for causing chaos

• March 29, 2022 29 Mar'22

  Overhaul of UK police tech needed to prevent abuse

  Lords inquiry finds UK police are deploying artificial intelligence and algorithmic technologies without a thorough examination of their efficacy or outcomes, and are essentially ‘making it up as they go along’

• March 29, 2022 29 Mar'22

  Singapore rolls out cyber security certification scheme

  Two new cyber security marks are expected to provide an edge for Singapore businesses with good cyber security practices

• March 28, 2022 28 Mar'22

  IT professionals wary of government campaign to limit end-to-end encryption

  Members of the Chartered Institute of IT, the professional body for technology professionals in the UK, warn against limiting end-to-end encryption

• March 25, 2022 25 Mar'22

  US offers concessions on surveillance and privacy as EU and US agree successor to Privacy Shield

  EU and US agree data privacy framework allowing trans-Atlantic data transfers after US offers concessions on surveillance and new rights of redress for EU citizens

• March 24, 2022 24 Mar'22

  Ransomware demands and payments increase with use of leak sites

  Ransomware demands and payments continue to climb as gangs increasingly turn to Dark Web leak sites to add pressure on victims

• March 24, 2022 24 Mar'22

  Hiring and retention challenges in cyber security persist

  Latest ISACA report shows that enterprises are struggling to find and retain cyber security talent

• March 23, 2022 23 Mar'22

  Private equity house spins SSE company out of McAfee Enterprise

  The launch of Skyhigh Security completes division of McAfee Enterprise into separate businesses by Symphony Technology Group, which acquired the long-standing cyber security firm for $4bn in March 2021

• March 23, 2022 23 Mar'22

  NHS urgent care provider uses ID and access management to reduce complexity for clinicians

  Provider of care through NHS 111 is using a cloud-based identity and access management system to remove the need for clinicians to remember multiple passwords

• March 22, 2022 22 Mar'22

  Biden issues warning about Russian cyber attacks

  President Biden has said that US companies running critical infrastructure should immediately harden their defences in anticipation of potential cyber attacks from Russia

• March 21, 2022 21 Mar'22

  Siloed data holding back coordinated health responses

  Digital health experts discuss the role of data in coordinating the NHS’s pandemic response and how managing privacy and governance issues are key to further success

• March 18, 2022 18 Mar'22

  Dark web littered with Ukraine crypto scammers

  Cryptocurrency scammers are actively targeting people trying to donate funds to support Ukraine

• March 18, 2022 18 Mar'22

  Ukrainian cyber defences prove resilient

  Thanks to a combination of prior experience and global support, Ukraine’s defences against cyber incidents are holding strong in the face of Russian attacks

• March 17, 2022 17 Mar'22

  NCSC catches 10 million phishes

  Nation Cyber Security Centre’s scam email reporting service enjoys great success as government embarks on new cyber awareness campaign

• March 17, 2022 17 Mar'22

  Kaspersky CEO: Ukraine war must end through diplomacy

  Eugene Kaspersky speaks out on the war in Ukraine, and rebuffs Germany’s BSI, branding its warnings over his company’s trustworthiness as insulting

• March 17, 2022 17 Mar'22

  Online Safety Bill introduced in Parliament

  The government has introduced its long-awaited Online Safety Bill in Parliament, alongside new criminal offences and sanctions for tech company execs