News

Regulatory compliance and standard requirements

• December 03, 2025 03 Dec'25

  UK government pledges to rewrite Computer Misuse Act

  Campaigners celebrate as security minister Dan Jarvis commits to amending the outdated Computer Misuse Act to protect security professionals from prosecution

• December 03, 2025 03 Dec'25

  UK national security strategy failing to account for online world

  The UK government’s national security strategy is falling short on online matters, according to the independent reviewer of terrorism

• December 03, 2025 03 Dec'25

  Post Office avoids £1m fine over botched website upgrade data breach

  The Information Commissioner’s Office considered fining the Post Office £1m for a 2024 data breach that let subpostmasters down again

• December 03, 2025 03 Dec'25

  Women in Cybersecurity Middle East marks five years of impact at Black Hat MEA

  As AI reshapes the regional cyber security landscape, diversity and skills development remain at the heart of building a resilient digital workforce

• December 03, 2025 03 Dec'25

  Black Hat MEA: Saudi Vision 2030 fuels surge in cyber security innovation

  Global cyber firms are racing to support the Kingdom’s mega-projects, but building trusted partnerships remains key, says Exabeam CEO Pete Harteveld

• November 26, 2025 26 Nov'25

  US breach reinforces need to plug third-party security weaknesses

  Cyber breach at US financial sector tech provider highlights the risk of third-party vulnerabilities in finance ecosystems

• November 19, 2025 19 Nov'25

  UAE to launch first space-to-ground quantum communication network

  Technology Innovation Institute and Space42 unveil a collaboration at the Dubai Airshow to deliver the UAE’s first space-enabled quantum communication network, strengthening national cyber resilience and advancing sovereign leadership in ...

• November 18, 2025 18 Nov'25

  Fintech leaders call for united front against AI-driven cyber crime

  As AI makes financial scams more personalised and convincing, fintech experts have called for deeper collaboration and the use of behavioural analytics and other technologies to protect consumers

• November 16, 2025 16 Nov'25

  Australia lags regional peers in AI adoption

  Report finds governance gaps, a lack of training and fear of risks as key reasons for the nation’s slow uptake of artificial intelligence compared with regional peers

• November 14, 2025 14 Nov'25

  MI5 made multiple applications for phone data to identify BBC journalist’s sources

  MI5 discloses it made and authorised unlawful ‘sequential applications’ for Vincent Kearney’s phone data during his time at the BBC, but will neither confirm nor deny whether it undertook further ‘lawful’ surveillance of BBC journalists

• November 12, 2025 12 Nov'25

  US cyber intel sharing law set for temporary extension

  The CISA 2015 cyber intelligence sharing law, which lapsed just over a month ago amid a wider shutdown, will receive a temporary lease of life should attempts to reopen the federal government succeed

• November 12, 2025 12 Nov'25

  IT services companies and datacentres face regulation as cyber security bill reaches Parliament

  The Cyber Security and Resilience Bill will require large IT services companies, including datacentres, to report security incidents within 24 hours

• November 09, 2025 09 Nov'25

  Nikkei data breach exposes personal data of over 17,000 staff

  Hackers used stolen login details from an employee's computer to access the Japanese media giant’s Slack messaging platform, with names, email addresses and chat histories potentially exposed

• November 07, 2025 07 Nov'25

  Popular LLMs dangerously vulnerable to iterative attacks, says Cisco

  Cisco researchers probed some of the most widely used public GenAI LLMs and found many of them were dangerously susceptible to so-called multi-turn cyber attacks producing undesirable outputs

• November 07, 2025 07 Nov'25

  Industry calls for clarity on government digital ID plans

  The digital identity industry asks UK government for transparency on its digital identity scheme and proposes a formal collaboration agreement

• November 05, 2025 05 Nov'25

  Dutch boardroom cyber security knowledge gap exposed

  Cyber security governance professor warns that executives lack the capability to assess cyber threats in implementation approaches

• November 04, 2025 04 Nov'25

  Ryt Bank taps agentic AI for conversational banking

  Malaysia’s Ryt Bank is using its own LLM and agentic AI framework to allow customers to perform banking transactions in natural language, replacing traditional menus and buttons

• November 04, 2025 04 Nov'25

  The Security Interviews: Colin Mahony, CEO, Recorded Future

  Recorded Future’s CEO talks threat intelligence, AI in cyber security and the ever-changing cyber threat landscape

• November 04, 2025 04 Nov'25

  Nordic investors drive investment in region’s defence sector

  Slush Startup in Helsinki will feature dual-use, defence and security events that bring suppliers together

• November 04, 2025 04 Nov'25

  UAE Sovereign Launchpad begins nationwide roll-out with support from e& and AWS

  The cloud infrastructure platform aims to strengthen digital resilience and regulatory compliance across government and regulated sectors in the United Arab Emirates

• November 04, 2025 04 Nov'25

  Fewer data breaches in Australia, but human error now a bigger threat

  Australian privacy commissioner warns that the human factor is a growing threat as notifications caused by staff mistakes rose significantly even as total breaches declined 10% from a record high

• October 29, 2025 29 Oct'25

  Rapid7: Cyber defences stuck in the 1980s as threats mount

  The company’s chief product officer notes that many defence tactics are still stuck in the past, urging organisations to adopt AI-driven security platforms to improve threat detection and response

• October 29, 2025 29 Oct'25

  Scope of US state-level privacy laws expands rapidly in 2025

  Nine state-level data protection laws have come into force in the US this year, and three more are slated for January 2026. Navigating this complex landscape is becoming a challenge

• October 28, 2025 28 Oct'25

  Effective cyber sanctions require a joined-up approach, says Rusi

  Calling out and sanctioning cyber threat actors can be an effective tool, but is not a universal panacea, and needs to be considered as part of a wider, strategic approach, say Rusi think tank analysts

• October 27, 2025 27 Oct'25

  Hamas lawyer seeks appeal following police’s seizure of his phone at Welsh port

  Police say that solicitors cannot have a ‘cast iron defence’ to protect their electronic devices from ever being searched

• October 23, 2025 23 Oct'25

  Amid CISA cuts, US state launches first VDP

  Legislators in Annapolis, Maryland, have teamed up with Bugcrowd to launch a statewide vulnerability disclosure programme

• October 23, 2025 23 Oct'25

  Ministry of Justice’s OpenAI deal paves way to sovereign AI

  OpenAI has been busy signing deals with the UK government to bolster UK artificial intelligence. It’s now launching data residency for UK customers

• October 23, 2025 23 Oct'25

  Business leaders raise concerns over public cloud data sovereignty

  The unpredictable geopolitical climate is having an impact on IT strategies, a report from Kyndryl has found

• October 22, 2025 22 Oct'25

  Singapore unveils efforts to govern agentic AI, prepare for post-quantum era

  Guidelines and tools will help organisations in the city-state manage risks from AI agents and prepare for a future where quantum computers could break current encryption

• October 22, 2025 22 Oct'25

  Jaguar Land Rover attack to cost UK £1.9bn, say cyber monitors

  The UK's Cyber Monitoring Centre calculates the overall cost of the Jaguar Land Rover cyber attack will be almost two billion pounds

• October 22, 2025 22 Oct'25

  Building security and trust in AI agents

  AI agents require standardised guidelines, clear human responsibility and a shared language between developers and policymakers to be secure and trusted, experts say

• October 21, 2025 21 Oct'25

  New cyber resilience centre to help SMEs fend off cyber threats

  Spearheaded by the Singapore Business Federation, the cyber resilience centre will equip SMEs in the city-state with cyber security capabilities to mitigate and recover from cyber attacks

• October 20, 2025 20 Oct'25

  France’s Atos eyes UK public sector with investment in secure UK infrastructure

  French IT services supplier invests in highly secure and accredited UK-based infrastructure

• October 16, 2025 16 Oct'25

  Microsoft identifies boardroom cyber awareness as a top priority

  Digital security report urges IT leaders to convince company boards that cyber security is a board-level problem

• October 16, 2025 16 Oct'25

  Securing the AI era: Huawei’s cyber security strategy for the GCC

  At Gitex 2025, Sultan Mahmood, chief security officer for Huawei Gulf North, outlined how the company supports GCC digital sovereignty, AI security, and enterprise cyber resilience

• October 15, 2025 15 Oct'25

  ICO fines Capita £14m after ransomware caused major data breach

  Outsourcing giant hit with £14m fine over 2023 cyber attack, but costs could rise as legal actions continue

• October 15, 2025 15 Oct'25

  Obsession with cyber breach notification fuelling costly mistakes

  The race to meet security breach notification deadlines is leading to staff burnout, destroyed evidence and a culture of blame, warns a Trend Micro risk and security strategist

• October 07, 2025 07 Oct'25

  The Security Interviews: David Bradbury, CSO, Okta

  Okta’s chief security officer talks security by default and explains why he thinks time is running out for the shared responsibility model

• October 06, 2025 06 Oct'25

  Police ordered to give reasons in closed court for seizing phone of UK Hamas lawyer

  London court orders police to disclose reasons for seizing and copying the contents of a phone belonging to a UK lawyer who represented Hamas, but refuses an injunction to prevent police from reviewing the phone until after judicial review

• October 06, 2025 06 Oct'25

  Data sovereignty demand pushes Herabit to get S3 storage

  Italian service provider gets Cubbit DS3 distributed S3 storage to provide up to 2PB of cloud services to customers demanding data sovereignty, while cutting costs by up to 50%

• October 02, 2025 02 Oct'25

  PSNI appoints legal counsel to report on police conduct after McCullough surveillance review

  The Police Service of Northern Ireland has commissioned a senior lawyer to report back on whether there was any misconduct by police officers following the McCullough Review into the surveillance of journalists, lawyers and NGOs

• October 01, 2025 01 Oct'25

  Home Office issues new ‘backdoor’ order over Apple encryption

  A second Home Office technical capability notice requires Apple to provide access to encrypted data and messages of British users stored on its iCloud service

• October 01, 2025 01 Oct'25

  US government shutdown stalls cyber intel sharing

  A key US law covering cyber security intelligence sharing has expired without an extension or replacement amid a total shutdown of the federal government, putting global security collaboration at risk.

• October 01, 2025 01 Oct'25

  EU Chat Control plans pose ‘existential catastrophic risk’ to encryption, says Signal

  As EU member states prepare to vote on plans to mandate tech companies to introduce technology to scan messages before they are encrypted, Signal warns that Chat Control will create new security risks

• September 30, 2025 30 Sep'25

  MPs press outsourcer TCS over Jaguar cyber attack

  The government’s cross-bench Business and Trade Committee has written to Tata Consultancy Services seeking answers over possible links to cyber attacks on Jaguar Land Rover, Marks and Spencer, and Co-op

• September 29, 2025 29 Sep'25

  JLR tentatively restarts production, following £1.5bn government backing

  Jaguar Land Rover is to resume car production after a £1.5bn government loan guarantee amid its cyber attack fallout. Debate is growing over the bailout and insurance

• September 26, 2025 26 Sep'25

  Over half of India-based companies suffer security breaches

  Business supply chains, which include Indian companies, are at risk of attack as more than half of suppliers were breached last year

• September 26, 2025 26 Sep'25

  Microsoft hides key data flow information in plain sight

  Microsoft’s own documentation confirms that data hosted in its hyperscale cloud architecture routinely traverses the globe, but the tech giant is actively obfuscating this vital information from its UK law enforcement customers

• September 26, 2025 26 Sep'25

  Okta CEO: AI security and identity security are one and the same

  At Oktane 2025 in Las Vegas, Okta CEO Todd McKinnon describes AI security and identity security as inseparable as he tees up a series of agentic security innovations

• September 25, 2025 25 Sep'25

  Netherlands establishes cyber resilience network to strengthen public-private digital defence

  Network will connect organisations in a cyber crime defence initiative that goes way beyond information sharing