News

Privacy and data protection

May 23, 2018 23 May'18
Skills shortage a major cyber security risk

Skill shortages remain a major risk to long-term information security capability and business is still struggling to defend against cyber breaches – but it is getting better at dealing with them, an IISP survey shows
May 23, 2018 23 May'18
Facebook is ready for GDPR, says Zuckerberg

Facebook chief Mark Zuckerberg has claimed the social network is ready for GDPR, but failed to give any answers to the most probing questions posed by European MEPs
May 22, 2018 22 May'18
Security researchers find fourth CPU flaw

Security researchers have reported another flaw in common microprocessor chips related to the Meltdown and Spectre vulnerabilities
May 22, 2018 22 May'18
Sweden’s Telenor makes GDPR consent personal

Telenor Sweden says it has seen market-leading results for General Data Protection Regulation consent after enlisting a customer experience firm to manage the process

May 22, 2018 22 May'18
Finland government examines centralised cyber defence

The Finnish government is attempting to centralise its fight against increasing cyber threats to its infrastructure
May 22, 2018 22 May'18
Google sued for £3.2bn for tracking UK iPhone browsing

A lawsuit by a group called Google You Owe Us is seeking compensation from Google for tracking millions of UK iPhone users’ browsing data
May 21, 2018 21 May'18
ICO fines University of Greenwich £120,000

The UK privacy watchdog has issued a monetary penalty against the University of Greenwich for a "serious" security breach
May 21, 2018 21 May'18
UK government promises laws to police 'Wild West Internet'

UK government plans laws to make online activity safer after green paper reveals more needs to be done to protect citizens
May 21, 2018 21 May'18
ICO could use new GDPR powers in Facebook probe

UK privacy watchdog is considering using new powers in its investigation of Facebook, while the government is considering new laws to police social media firms
May 21, 2018 21 May'18
APAC organisations could lose $1.75tn from cyber attacks

A study by Frost and Sullivan has found that losses from cyber security incidents could account for 7% of the region’s GDP in 2017

May 18, 2018 18 May'18
NCSC calls for greater interaction with UK business

The UK’s cyber security agency has called for greater interaction with business, particularly when it comes to cyber security incidents
May 18, 2018 18 May'18
Most UK marketers GDPR ready, but not all firms have a plan

Most UK marketers believe they are ready for GDPR, but a worrying number believe their employers may not be, as businesses are urged to embrace the positives a week before the compliance deadline
May 18, 2018 18 May'18
BYOD in UK SMEs linked to security incidents

Bring your own device practices have been identified as a cyber security risk for six in 10 SMEs in research published a week ahead of the GDPR compliance deadline
May 18, 2018 18 May'18
GDS seeks advice on migration from Public Services Network

The Government Digital Service has started the process of moving public sector organisations away from the Public Services Network
May 18, 2018 18 May'18
Use GDPR to propel business forward, says ICO

GDPR is about a new way of doing things that businesses can use to their advantage, and cyber security is a key element, according to the Information Commissioner’s Office
May 17, 2018 17 May'18
Report highlights security risk of open source code to business

Increased adoption of open source code is introducing vulnerabilities into commercial software, with many audited codebases containing the Apache Struts flaw that enabled the Equifax breach, a report shows
May 16, 2018 16 May'18
Most firms see GDPR as an opportunity

A growing number of organisations consider the GDPR to be an opportunity to improve the way they handle data privacy and security, while leaders are using it as an opportunity for full business transformation, a study shows
May 16, 2018 16 May'18
US considers UK-style cyber defence model

The US is considering adopting a similar cyber defence model to the UK’s in recognition of the growing threat to all levels of society
May 15, 2018 15 May'18
SMEs more worried about GDPR’s threat to reputation than fines

SMEs are more worried about the damage GDPR non compliance will do to their reputations than their wallets
May 15, 2018 15 May'18
Credential theft a top priority, Rapid 7 report shows

Credential theft is still a top priority for organisations to address in terms of making it more difficult for cyber attackers to gain unauthorised access to their networks, report reveals
May 15, 2018 15 May'18
Cross-site scripting a top vulnerability, hackers find

Despite the much-publicised advances in cyber attack techniques, a well-known, well-documented and avoidable vulnerability is still the most popular for attackers to exploit – along with others like it that are often overlooked, white hat hackers ...
May 15, 2018 15 May'18
Cage director Rabbani heads for Supreme Court after appeals court rules password demands lawful

Muhammad Rabbani, director of campaigning group Cage, will appeal to the Supreme Court after Court of Appeal rules that police did not act unlawfully by demanding his computer and mobile phone passwords under Section 7 of the Terrorism Act
May 15, 2018 15 May'18
Enterprise cyber threat remediation ineffective, study shows

Enterprise cyber threat remediation needs to improve in several key areas, according to an analysis of common remediation strategies
May 15, 2018 15 May'18
BSI launches kitemark for internet of things devices

The British Standards Institution has launched a new kitemark for IoT devices, designed to improve consumer trust in the technology
May 15, 2018 15 May'18
No need to panic about Efail attacks

Initial reports about vulnerabilities in email encryption technologies have urged organisations to disable encryption tools, but some security experts are taking a more balanced approach
May 14, 2018 14 May'18
Technology continues to transform crime, warns NCA

The UK’s National Crime Agency warns that developments in technology will continue to transform the future crime landscape, in its latest report on serious and organised crime
May 11, 2018 11 May'18
Police Scotland did not inform public of mobile phone searches

Members of the Scottish Parliament heard that Police Scotland did not conduct impact assessments or give explanations to the public when they were accessing private data on their mobile phones
May 11, 2018 11 May'18
EFF welcomes backdoor-blocking US bill

International digital rights organisation welcomes proposed US legislation that will prevent the government from forcing a company to build backdoors into encrypted products and services
May 10, 2018 10 May'18
Embrace GDPR to remain competitive, says OWI

The EU’s General Data Protection Regulation is set to raise the bar internationally for data protection and should be embraced to remain competitive, says report
May 09, 2018 09 May'18
Equifax breach lessons not learned

Businesses are still downloading vulnerable versions of the software that was at the heart of the Equifax data breach and failing to update to safe versions, a security firm has revealed
May 09, 2018 09 May'18
Breach disclosure time still high, report shows

Companies are getting faster at disclosing breaches, but the average is still too high in the light of the GDPR and other breach disclosure regulations, a report shows
May 08, 2018 08 May'18
Financial sector cyber-related laws are a bellwether, says Deloitte

As the regulatory landscape becomes more complex, organisations should look to the financial sector to see what else is coming, as well as focus on three key areas of GDPR compliance, according to Deloitte
May 08, 2018 08 May'18
Virtual tripwire to keep elephant poachers out of Zambian national park

Cisco and Dimension Data are working to protect Zambia’s at-risk elephant population after a successful pilot project in South Africa
May 08, 2018 08 May'18
Majority of security professionals favour shorter disclosure deadline

Google’s Project Zero unit’s 90-day deadline for software suppliers to disclose vulnerabilities has always been controversial, but a survey reveals that most security professionals feel even that is too long
May 04, 2018 04 May'18
Security pros must avoid hype, demonstrate value, says RBS CISO

Security professionals must avoid over-hyping cyber threats, and penetration testers need to reinvent themselves to demonstrate value to businesses to remain relevant, says RBS CISO
May 04, 2018 04 May'18
Twitter password security bug underlines need for industry change

Twitter has revealed that a bug in its systems resulted in some passwords being stored in a log in clear text, underlining the need for alternative authentication methods, say industry commentators
May 03, 2018 03 May'18
Fibre network breakthrough has implications for data security

Researchers have devised a new protocol that they claim vastly extends the range of quantum key distribution over fibre networks
May 03, 2018 03 May'18
City Police use Lego simulation to teach businesses cyber security

City of London Police are offering to train business leaders and IT security in cyber security using a Lego simulation that is surprisingly close to real life
May 03, 2018 03 May'18
Redscan warns of GDPR phishing scams

Cyber criminals are using fake GDPR-related privacy notices to trick recipients into disclosing personal data and spread malware, a security firm warns
May 03, 2018 03 May'18
Cambridge Analytica closure will not halt probe, says ICO

The London-based data mining firm at the heart of the Facebook data exploitation scandal has announced it is closing, but the ICO says the probe into its actions will still go ahead
May 02, 2018 02 May'18
Fresh blow for Facebook as court refuses stay in Max Schrems legal action

Facebook has lost a legal attempt to delay the Irish High Court from seeking answers from the European Court of Justice over the legality of EU-US data transfers
May 02, 2018 02 May'18
ARM aims to boost physical security of IoT

Chipmaker ARM announces microprocessor aimed at improving the physical security capabilities of devices making up the internet of things
May 02, 2018 02 May'18
Workday to continue investing heavily in APAC

Cloud applications supplier has increased its investments in the region by more than 50% in the past year, and is looking to maintain its double-digit growth in international markets
May 02, 2018 02 May'18
Security industry welcomes City of London Police cyber initiative

The security industry has welcomed plans to fight cyber crime in the heart of London using a community-based approach, but says more investment in cyber security skills is required
May 01, 2018 01 May'18
Password practices still poor despite increased threats

Despite growing cyber threats and heightened global awareness of hacking and data breaches, password behaviours remain poor and UK users are in denial, a study has revealed
April 30, 2018 30 Apr'18
Getting cyber security innovation to market is key, says NCSC

Getting cyber security innovation to market is an important area of focus, according to the National Cyber Security Centre, which runs a cyber accelerator programme and recently stated a Dragons Den style security innovation pitch at the 2018 ...
April 30, 2018 30 Apr'18
Security industry welcomes NHS move to Windows 10

Representatives of the security industry have welcomed the announcement that the NHS will be migrating to Windows 10 as part of a multi-million pound deal with Microsoft, but warn that the move will not be without its challenges
April 27, 2018 27 Apr'18
Only 5% of charities are ready for GDPR, survey shows

A survey shows relatively few charities are prepared for new data protection regulations, highlighting several areas for improvement
April 27, 2018 27 Apr'18
Most organisations unprepared for GDPR, survey finds

Despite the vast majority of businesses agreeing that GDPR affects them, only 5% say they are fully prepared for it, according to a BSI survey
April 27, 2018 27 Apr'18
DWP to spend nearly £15m on GDPR

A single government department plans to spend nearly £15m on preparing for new European data protection legislation, a report reveals