News

Privacy and data protection

• January 24, 2019 24 Jan'19

  AWS now accredited to run protected workloads in Australia

  Accreditation from the Australian Cyber Security Centre will enable organisations to store and process sensitive data in the Amazon Web Services Sydney region

• January 23, 2019 23 Jan'19

  Facebook’s objections to court concerns over privacy more about ‘optics’ than facts

  Facebook’s challenge to a High Court ruling that raises serious concerns about data transfers between Europe and the US is more about appearance than facts, lawyers for the Irish Data Protection Commission told Dublin's Supreme Court

• January 23, 2019 23 Jan'19

  MPs challenge Huawei over spying allegations

  The chair of the cross-bench Science and Technology Committee has written to Huawei seeking answers over its activities in the UK

• January 23, 2019 23 Jan'19

  Time to deploy strong authentication, says Fido

  The time has come for organisations to deploy cryptographically backed strong authentication, according to the Fido Alliance, which seeks to eliminate the world’s dependence on password-based security

• January 22, 2019 22 Jan'19

  Ransomware in decline, report confirms

  The trend of cryptomining replacing ransomware as the most popular money-generating activity by cyber attackers appears to be confirmed by malware stats for the past year

• January 22, 2019 22 Jan'19

  London cyber innovation centre expands global ties

  London innovation centre Plexal has announced international partnerships aimed at boosting global cyber security cooperation

• January 22, 2019 22 Jan'19

  Davos 2019: Why data sharing is key to AI in Industry 4.0

  Machines can learn from humans, but no one does the same job in the same way, so it makes sense to identify best practices

• January 22, 2019 22 Jan'19

  Facebook: US government does not engage in mass and indiscriminate surveillance

  Social media giant challenges a ruling by Dublin’s High Court over a judgment that it says made ‘extraordinary and incorrect’ findings about the US legal system

• January 22, 2019 22 Jan'19

  €50m GDPR fine for Google is a wake-up call for tech giants

  The French data protection authority has fined Google €50m for contravening EU data protection laws, which has been hailed as a warning for tech giants and other data handling firms

• January 21, 2019 21 Jan'19

  Name and shame firms with poor cyber security, government told

  The government should name and shame companies whose cyber security measures fail to protect consumers’ data and firms should implement Active Cyber Defence, an academic report urges

• January 21, 2019 21 Jan'19

  Public procurement key to cyber security

  Using public procurement as a means of boosting cyber security is the top recommendation for 2019, according to a report based on expert views

• January 21, 2019 21 Jan'19

  Home Office vetoes privacy campaigner from senior post in surveillance watchdog

  The Home Office refuses academic and privacy campaigner, Eric King, security clearance for a senior role at the intelligence services watchdog, despite high-level backing from officials

• January 18, 2019 18 Jan'19

  Five issues for SMEs to consider when adopting encryption

  Encryption is still considered difficult to deploy and use as a data protection method, especially by small businesses, but considering five key factors can make adoption easier, says Becrypt

• January 18, 2019 18 Jan'19

  Prepare for no-deal Brexit, says ICO

  The UK data protection authority is urging businesses to prepare for a no-deal Brexit to ensure there is no interruption in data flows from Europe

• January 17, 2019 17 Jan'19

  Breach of nearly 2.7 billion records underlines password flaws

  Potentially the biggest personal data breach to date from thousands of sources, some possibly breached as far back as 2008, illustrates the deeply flawed nature of password-based authentication, say industry commentators

• January 17, 2019 17 Jan'19

  Threat intelligence boosts security training

  Security professionals in training can now benefit from real-time threat intelligence data, thanks to a partnership between Digital Shadows and Immersive Labs

• January 16, 2019 16 Jan'19

  Researchers discover new Magecart group

  Security researchers have uncovered a sub-group of the Magecart hacking group, highlighting the wider risks of web-based supply chain attacks

• January 15, 2019 15 Jan'19

  Businesses fail to apply encryption technology effectively

  Most businesses are not applying common encryption tools effectively to contain the fallout and costs of data breaches, research shows

• January 15, 2019 15 Jan'19

  Less than half of firms able to detect IoT breaches, study shows

  UK firms have one of the lowest internet-of-things device breach detection capabilities in Europe, a study reveals

• January 15, 2019 15 Jan'19

  SingHealth and IT supplier fined S$1m for data breach

  Singapore’s data protection commission considered the fact that both SingHealth and its IT supplier fell prey to sophisticated threat actors, among other factors, when meting out the fine

• January 11, 2019 11 Jan'19

  AI application overlooked in cyber security research

  Despite the proliferation of cyber security products and services claiming to be driven by artificial intelligence, the application of the technology is being overlooked by research, a study shows

• January 10, 2019 10 Jan'19

  Right to be forgotten is not global, says EU court adviser

  The right to be forgotten should apply only in the European Union, according to the chief adviser to the European Court of Justice

• January 10, 2019 10 Jan'19

  Germany races to boost cyber defences after breach

  Germany is scrambling to improve its cyber defences before the European parliamentary elections after a student leaked politicians’ personal data

• January 09, 2019 09 Jan'19

  2FA bypass tool highlights top business security vulnerabilities

  CEOs are the most likely target of two-factor authentication phishing bypasses, demonstrated by a security researcher’s proof-of-concept attack

• January 09, 2019 09 Jan'19

  FireEye gears up email security for emerging threats

  Email continues to be a top means of initiating cyber attacks with new detection bypass techniques and executive impersonation capabilities continually emerging, research shows

• January 08, 2019 08 Jan'19

  Second Lorca cohort to focus on supply chain security

  The second cohort of companies to benefit from the new London cyber innovation centre will focus on user-centric security and securing supply chains

• January 08, 2019 08 Jan'19

  Protego Labs launches serverless app security tool

  Security professionals and developers now have a way to assess the security of their serverless applications with a new open source testing tool donated to Owasp

• January 07, 2019 07 Jan'19

  Boards need to be active partners in cyber defence

  Board members must be active governance partners in collaborative cyber defence, says US regional information sharing and analysis organisation

• January 07, 2019 07 Jan'19

  BlackBerry licenses security tech to IoT device makers

  BlackBerry is to license its secure software development technology to the makers of internet-connected devices to boost IoT security

• January 06, 2019 06 Jan'19

  Singapore Airlines’ software glitch exposed customer data

  More than 280 members of the Krisflyer frequent flyer programme had their personal information compromised by a one-off software bug

• January 04, 2019 04 Jan'19

  Modern IT underlines need for zero-trust security

  The increasing complexity of supply chains and interconnectivity of IT systems means the attack surface is widening and security has to evolve accordingly, warns British computer scientist

• January 04, 2019 04 Jan'19

  Data breaches affected more than a billion people in 2018

  The personal information of more than a billion people was compromised in 2018 as companies holding the data failed to keep it safe

• January 04, 2019 04 Jan'19

  German politicians’ data leak shows need for global action

  Hacked data includes contacts’ email addresses, private chats, mobile numbers, photographs and credit card details, which were published on Twitter

• January 04, 2019 04 Jan'19

  Phishing attacks hidden by custom fonts

  Security researchers have uncovered a new way in which phishing attacks are evading detection.

• January 03, 2019 03 Jan'19

  Fortinet to lead cyber security discussion at WEF annual summit

  The head of cyber security firm Fortinet has been named as a discussion leader at the upcoming World Economic Forum annual meeting in Davos, Switzerland

• December 31, 2018 31 Dec'18

  New Year’s Honours 2019 lauds women in IT and data specialists

  The New Year’s Honours list 2019 features accolades for leading women in IT and data, as well as other specialists in data

• December 28, 2018 28 Dec'18

  Top 10 stories on national security in 2018

  From Russian disinformation, state surveillance, and police stop and seizure powers, to Facebook and WikiLeaks

• December 24, 2018 24 Dec'18

  Top 10 IT security stories of 2018

  Here are Computer Weekly’s top 10 IT security stories of 2018

• December 23, 2018 23 Dec'18

  'Serious' Twitter flaw allows hackers to post on other people's accounts

  A vulnerability in Twitter allows hackers to send tweets, private messages, post images or videos, and turn off security features, says British security researcher

• December 21, 2018 21 Dec'18

  Top 10 cyber crime stories of 2018

  Here are Computer Weekly’s top 10 cyber crime stories of 2018

• December 20, 2018 20 Dec'18

  Marriott data breach losses could be over half a billion dollars

  Direct losses related to a huge data breach at US hotel group could reach $600m

• December 19, 2018 19 Dec'18

  Lauri Love battles police for return of computers as NCA confirms live investigation

  The National Crime Agency (NCA) confirms there is a live investigation into Lauri Love in the UK, as Love brings legal action against UK police for the return of seized computer equipment

• December 18, 2018 18 Dec'18

  APAC cyber security landscape to be more tumultuous in 2019

  Amid growing cyber threats, the Asia-Pacific cyber security landscape will not get any rosier in 2019 unless organisations start shoring up their cyber hygiene

• December 18, 2018 18 Dec'18

  Mobile security needs a rethink for the 5G era

  A report released through the government’s 5G Testbeds and Trials programme has recommended the UK rethink its mobile security strategy

• December 17, 2018 17 Dec'18

  Top 10 ASEAN stories of 2018

  Organisations across Southeast Asia have been doubling down on efforts to take the lead in digital transformation initiatives

• December 14, 2018 14 Dec'18

  Australia passes controversial encryption law

  Arguments continue over law that requires companies to work with government agencies to ensure that encrypted communications can be read if a crime is suspected

• December 13, 2018 13 Dec'18

  ICO and government help UK businesses prepare for no-deal Brexit

  The Information Commissioner’s Office (ICO) and the government are providing guidance for UK businesses, particularly SMEs, on how to prepare for a possible no-deal Brexit

• December 13, 2018 13 Dec'18

  Social engineering at the heart of critical infrastructure attack

  Social engineering is the core technique used in a series of cyber attacks targeting government, defence, nuclear, energy and financial organisations around the world, which means people are key to defence

• December 13, 2018 13 Dec'18

  UK trade sector risks GDPR fines over poor data disposal

  UK businesses in the trade sector are risking GDPR fines for failing to wipe data from old IT equipment, a survey shows

• December 13, 2018 13 Dec'18

  Most UK retailers plan to up cyber security

  The majority of UK retailers are planning to increase cyber security measures during the Christmas season, a survey reveals