News

Privacy and data protection

• July 24, 2019 24 Jul'19

  Controversial ‘immigration exemption’ used in 60% of cases

  The UK government has used a controversial GDPR opt-out in response to the majority of its immigration-related data requests since the start of 2019, the High Court has heard

• July 23, 2019 23 Jul'19

  Phishing attack highlights cyber security need at universities

  UK university cyber security is once again under the spotlight after Lancaster University reveals that it has been targeted by a phishing attack used to send fake invoices

• July 23, 2019 23 Jul'19

  Almost a third of European firms still not compliant with GDPR

  Almost a third of European businesses admit they are still not compliant with the EU’s General Data Protection Regulation, but there are encouraging signs of increased maturity in data protection, with the new rules driving better, ...

• July 23, 2019 23 Jul'19

  Norsk Hydro cyber attack could cost up to $75m

  March 2019 ransomware attack could cost Norwegian aluminium giant up to $75m in the first half of the year, according to latest estimates

• July 23, 2019 23 Jul'19

  Data breach costs on the rise, IBM study shows

  Data breach costs have risen in the past decade, and the financial impact can be felt for years. Breaches posing a growing risk for small businesses, a study shows, underlining the importance of incident response

• July 23, 2019 23 Jul'19

  High Court to hear challenge to immigration exemption in DPA

  The High Court is to hear a challenge by two human rights groups of a controversial clause in new UK data protection legislation they say is in conflict with the EU’s Charter of Fundamental Rights and undermines the General Data Protection Regulation

• July 23, 2019 23 Jul'19

  Government delays final decision on Huawei

  Culture secretary says he cannot yet make specific decisions about Huawei’s involvement in the UK’s telecoms and mobile networks due to a lack of clarity from the US, effectively green-lighting its use

• July 22, 2019 22 Jul'19

  US fines Equifax $700m over 2017 breach

  Global settlement with US authorities follows systems breach that saw more than 140 million customer records stolen

• July 22, 2019 22 Jul'19

  Big tech firms back UK cyber security initiative

  Big technology firms have pledged their support for UK investment in an initiative to “design out” of new tech the most damaging cyber security threats

• July 19, 2019 19 Jul'19

  Latest ICO fine highlights privacy due diligence

  A week after issuing the first serious GDPR fines, the ICO has further underlined the importance of data stewardship and due diligence regarding privacy practices

• July 19, 2019 19 Jul'19

  Second CyberThreat Summit announced by NCSC and SANS Institute

  CyberThreat 2019 aims to bring together a more diverse set of technical professionals in cyber security from the private and public sectors in the UK and abroad to encourage collaboration

• July 19, 2019 19 Jul'19

  Warzone bulletproof hosts protecting Magecart group

  Security researchers have discovered a Magecart group operating with impunity using bulletproof hosting services, including one in battle-scarred Ukraine

• July 19, 2019 19 Jul'19

  HID weighs in the glacial move towards digital ID

  There are still concerns over data integrity, security and privacy of digital identities, but the convenience of the technology outweighs the risks, says a HID expert

• July 18, 2019 18 Jul'19

  Free tool reveals the true cost of ‘free’ online services

  New data discovery portal developed by Finnish security firm F-Secure helps to uncover what Facebook, Amazon, Google and other tech giants know about consumers

• July 18, 2019 18 Jul'19

  Digital minister Margot James quits after Brexit vote

  James voted against the government in an attempt to stop the next Prime Minister from suspending Parliament to force through a no-deal Brexit

• July 18, 2019 18 Jul'19

  Parliamentary committee calls for halt to facial recognition trials

  Issues with biometrics and forensics pose a significant risk to effective functioning of the criminal justice system, according to a report by the Science and Technology Committee

• July 18, 2019 18 Jul'19

  UK poor cyber security practice undermining controls

  UK firms investing in the latest cyber security products and services risk this being undermined by poor security practices, a survey reveals

• July 17, 2019 17 Jul'19

  Most security pros still concerned about public cloud security

  Despite accelerated adoption of public cloud services by companies keen to benefit from increased efficiency, scalability and agility, most security professionals have reservations

• July 17, 2019 17 Jul'19

  Facebook accused of ‘breathtaking arrogance’ over Libra cryptocurrency plan

  US senators grill Facebook’s David Marcus over social media giant’s plans to launch cryptocurrency

• July 16, 2019 16 Jul'19

  UN resolution ignores special rapporteur’s call for halt to spyware sales

  UN’s Human Rights Council adopts resolution to explore the impact of new and emerging digital technologies on human rights, but the text ignores a damning report by the council’s own expert on freedom of expression

• July 16, 2019 16 Jul'19

  NCSC reports on second year of cyber defence at scale

  The UK’s National Cyber Security Centre releases a report on the second year of its Active Cyber Defence programme to demonstrate its effects in the public sector and wider UK cyber ecosystem

• July 15, 2019 15 Jul'19

  UK launches 5G security inquiry

  The Joint Committee on the National Security Strategy is to probe the UK government’s approach to telecoms technology as a national security issue

• July 15, 2019 15 Jul'19

  Smartodds bets on Rubrik backup appliance with cloud archive

  Betting intelligence analytics firm Smartodds replaced its old tape backup infrastructure with Rubrik appliances to cut management time and database restores from hours to minutes

• July 15, 2019 15 Jul'19

  Billion-dollar privacy penalties put CEOs on notice

  Facebook’s potential $5bn settlement with the FTC follows notifications of planned GDPR fines for British Airways and Marriott International, underlining the importance of data stewardship

• July 15, 2019 15 Jul'19

  No technical grounds to ban Huawei, DCMS told

  Science and Technology Committee tells Department for Digital, Culture, Media and Sport that there are no technical grounds for it to exclude Huawei

• July 15, 2019 15 Jul'19

  Organisations turn to AI in race against cyber attackers

  Businesses are racing to automate their defences as hackers and nation states launch increasingly sophisticated cyber attacks

• July 15, 2019 15 Jul'19

  UK public sector needs to prioritise mobile device security

  Only 10% of public service stolen and lost mobile are recovered, underlining the need for mobile-centric, zero-trust model to reduce the risk, says MobileIron

• July 12, 2019 12 Jul'19

  New FinSpy versions extend surveillance capabilities

  New versions of the FinSpy malware for iOS and Android smartphones have extended targeted surveillance capabilities, warn security researchers

• July 12, 2019 12 Jul'19

  Windows 10 to enable passwordless sign-in

  Windows 10 users will soon be able to sign in to devices without using a password to encourage the use of two-factor authentication methods to improve security

• July 11, 2019 11 Jul'19

  Attacks against AI systems are a growing concern

  European research group says attacks against AI systems are already occurring, difficult to identify, and could be far more common than currently understood

• July 11, 2019 11 Jul'19

  RiskIQ uncovers new Magecart campaign

  A fresh Magecart campaign is breaching websites on a massive scale using indiscriminate attacks exploiting misconfigured Amazon S3 buckets, say researchers

• July 11, 2019 11 Jul'19

  Dutch privacy watchdog tells banks not to use customer payment data for marketing

  Autoriteit Persoonsgegevens tells banks to respect client privacy and not to market products based on spending data

• July 10, 2019 10 Jul'19

  Max Schrems not calling for SCCs to be invalidated

  The privacy activist at the centre of legal battle against Facebook is not calling for all standard contractual clauses to be invalidated, according to his non-profit privacy organisation

• July 10, 2019 10 Jul'19

  Agent Smith mobile malware hits millions of devices

  New mobile malware that exploits Android vulnerabilities has infected millions of devices, security researchers have discovered

• July 10, 2019 10 Jul'19

  Demand for ICO help escalates in GDPR's first year

  The past year has seen increased demand across all support services offered by the UK’s privacy watchdog as new data protection laws went into force

• July 09, 2019 09 Jul'19

  Marriott International facing £99m GDPR fine

  Hotel group Marriott International is the second major company to be fined by the UK privacy watchdog for infringements of the GDPR

• July 09, 2019 09 Jul'19

  ICO issues warning about using facial recognition technology

  The UK privacy watchdog has ruled that any police force or private organisation using live facial recognition technology is processing personal data and needs to pay attention to data protection laws

• July 09, 2019 09 Jul'19

  European Court hears case on EU-US data transfers

  Facebook could be forced to rethink its legal position regarding transfers of data of EU citizens to the US, as the CJEU considers the validity of standard contractual clauses that many businesses rely on

• July 08, 2019 08 Jul'19

  TfL launches wireless device tracking to gather Tube data

  Transport for London aims to use passenger movement data to make using the London Underground a more pleasant experience

• July 08, 2019 08 Jul'19

  British Airways facing £183m GDPR fine

  British Airways is to appeal against a record fine for infringement of data protection rules for a breach of customer data in 2018

• July 08, 2019 08 Jul'19

  IISP gains Royal Charter status

  The UK finally has its first national professional body for cyber security that will be responsible for setting the standards for skills and knowledge in the industry to reduce the skills gap and increase diversity

• July 05, 2019 05 Jul'19

  St John Ambulance praised for response to ransomware attack

  Charity’s response to ransomware attack demonstrates that it is possible to ensure minimal disruption if properly prepared

• July 04, 2019 04 Jul'19

  Security and privacy key to smart buildings and cities

  Security and privacy capabilities are essential for stakeholders if they are to realise the benefits of smart buildings and cities, says expert whitepaper

• July 04, 2019 04 Jul'19

  Implementing IoT – overcoming barriers to commercial adoption

  Tim Wright from the Institute of Telecoms Professionals reports from a recent seminar exploring questions around the barriers to commercial, at-scale adoption of the internet of things, and how to overcome them

• July 04, 2019 04 Jul'19

  FireEye ties Microsoft Outlook exploit to Iranian hackers

  US Cyber Command has issued a warning that a patched Microsoft Outlook vulnerability is being exploited by unnamed threat actors, and recommended immediate patching

• July 04, 2019 04 Jul'19

  Email still top security vulnerability, survey shows

  Email is still the top security vulnerability, a survey shows, but security researchers caution that switching to instant messaging is not necessarily a solution in the longer term

• July 04, 2019 04 Jul'19

  APAC experts weigh in on cyber security trends

  The onslaught of cyber attacks being reported each day has been a wake-up call, but experts say businesses need to be mindful of the limitations of certain security measures

• July 03, 2019 03 Jul'19

  Sodin ransomware exploiting Windows zero-day, Kaspersky warns

  Security researchers are warning that a recently discovered type of ransomware is now exploiting a zero-day Windows vulnerability, and does not require user interaction to trigger an infection

• July 03, 2019 03 Jul'19

  Top VPNs secretly owned by Chinese firms

  Nearly a third of top VPNs are secretly owned by Chinese companies, while other owners are based in countries with weak or no privacy laws, potentially putting users at risk, security researchers warn

• July 02, 2019 02 Jul'19

  CPS faces legal ruling over refusal to disclose emails with US on WikiLeaks and Assange extradition

  A court will decide whether the Crown Prosecution Service can refuse to neither confirm nor deny the existence of correspondence with US on investigations into Julian Assange and WikiLeaks