News

Regulatory compliance and standard requirements

• November 07, 2025 07 Nov'25

  Popular LLMs dangerously vulnerable to iterative attacks, says Cisco

  Cisco researchers probed some of the most widely used public GenAI LLMs and found many of them were dangerously susceptible to so-called multi-turn cyber attacks producing undesirable outputs

• November 07, 2025 07 Nov'25

  Industry calls for clarity on government digital ID plans

  The digital identity industry asks UK government for transparency on its digital identity scheme and proposes a formal collaboration agreement

• November 05, 2025 05 Nov'25

  Dutch boardroom cyber security knowledge gap exposed

  Cyber security governance professor warns that executives lack the capability to assess cyber threats in implementation approaches

• November 04, 2025 04 Nov'25

  Ryt Bank taps agentic AI for conversational banking

  Malaysia’s Ryt Bank is using its own LLM and agentic AI framework to allow customers to perform banking transactions in natural language, replacing traditional menus and buttons

• November 04, 2025 04 Nov'25

  The Security Interviews: Colin Mahony, CEO, Recorded Future

  Recorded Future’s CEO talks threat intelligence, AI in cyber security and the ever-changing cyber threat landscape

• November 04, 2025 04 Nov'25

  Nordic investors drive investment in region’s defence sector

  Slush Startup in Helsinki will feature dual-use, defence and security events that bring suppliers together

• November 04, 2025 04 Nov'25

  UAE Sovereign Launchpad begins nationwide roll-out with support from e& and AWS

  The cloud infrastructure platform aims to strengthen digital resilience and regulatory compliance across government and regulated sectors in the United Arab Emirates

• November 04, 2025 04 Nov'25

  Fewer data breaches in Australia, but human error now a bigger threat

  Australian privacy commissioner warns that the human factor is a growing threat as notifications caused by staff mistakes rose significantly even as total breaches declined 10% from a record high

• October 29, 2025 29 Oct'25

  Rapid7: Cyber defences stuck in the 1980s as threats mount

  The company’s chief product officer notes that many defence tactics are still stuck in the past, urging organisations to adopt AI-driven security platforms to improve threat detection and response

• October 29, 2025 29 Oct'25

  Scope of US state-level privacy laws expands rapidly in 2025

  Nine state-level data protection laws have come into force in the US this year, and three more are slated for January 2026. Navigating this complex landscape is becoming a challenge

• October 28, 2025 28 Oct'25

  Effective cyber sanctions require a joined-up approach, says Rusi

  Calling out and sanctioning cyber threat actors can be an effective tool, but is not a universal panacea, and needs to be considered as part of a wider, strategic approach, say Rusi think tank analysts

• October 27, 2025 27 Oct'25

  Hamas lawyer seeks appeal following police’s seizure of his phone at Welsh port

  Police say that solicitors cannot have a ‘cast iron defence’ to protect their electronic devices from ever being searched

• October 23, 2025 23 Oct'25

  Amid CISA cuts, US state launches first VDP

  Legislators in Annapolis, Maryland, have teamed up with Bugcrowd to launch a statewide vulnerability disclosure programme

• October 23, 2025 23 Oct'25

  Ministry of Justice’s OpenAI deal paves way to sovereign AI

  OpenAI has been busy signing deals with the UK government to bolster UK artificial intelligence. It’s now launching data residency for UK customers

• October 23, 2025 23 Oct'25

  Business leaders raise concerns over public cloud data sovereignty

  The unpredictable geopolitical climate is having an impact on IT strategies, a report from Kyndryl has found

• October 22, 2025 22 Oct'25

  Singapore unveils efforts to govern agentic AI, prepare for post-quantum era

  Guidelines and tools will help organisations in the city-state manage risks from AI agents and prepare for a future where quantum computers could break current encryption

• October 22, 2025 22 Oct'25

  Jaguar Land Rover attack to cost UK £1.9bn, say cyber monitors

  The UK's Cyber Monitoring Centre calculates the overall cost of the Jaguar Land Rover cyber attack will be almost two billion pounds

• October 22, 2025 22 Oct'25

  Building security and trust in AI agents

  AI agents require standardised guidelines, clear human responsibility and a shared language between developers and policymakers to be secure and trusted, experts say

• October 21, 2025 21 Oct'25

  New cyber resilience centre to help SMEs fend off cyber threats

  Spearheaded by the Singapore Business Federation, the cyber resilience centre will equip SMEs in the city-state with cyber security capabilities to mitigate and recover from cyber attacks

• October 20, 2025 20 Oct'25

  France’s Atos eyes UK public sector with investment in secure UK infrastructure

  French IT services supplier invests in highly secure and accredited UK-based infrastructure

• October 16, 2025 16 Oct'25

  Microsoft identifies boardroom cyber awareness as a top priority

  Digital security report urges IT leaders to convince company boards that cyber security is a board-level problem

• October 16, 2025 16 Oct'25

  Securing the AI era: Huawei’s cyber security strategy for the GCC

  At Gitex 2025, Sultan Mahmood, chief security officer for Huawei Gulf North, outlined how the company supports GCC digital sovereignty, AI security, and enterprise cyber resilience

• October 15, 2025 15 Oct'25

  ICO fines Capita £14m after ransomware caused major data breach

  Outsourcing giant hit with £14m fine over 2023 cyber attack, but costs could rise as legal actions continue

• October 15, 2025 15 Oct'25

  Obsession with cyber breach notification fuelling costly mistakes

  The race to meet security breach notification deadlines is leading to staff burnout, destroyed evidence and a culture of blame, warns a Trend Micro risk and security strategist

• October 07, 2025 07 Oct'25

  The Security Interviews: David Bradbury, CSO, Okta

  Okta’s chief security officer talks security by default and explains why he thinks time is running out for the shared responsibility model

• October 06, 2025 06 Oct'25

  Police ordered to give reasons in closed court for seizing phone of UK Hamas lawyer

  London court orders police to disclose reasons for seizing and copying the contents of a phone belonging to a UK lawyer who represented Hamas, but refuses an injunction to prevent police from reviewing the phone until after judicial review

• October 06, 2025 06 Oct'25

  Data sovereignty demand pushes Herabit to get S3 storage

  Italian service provider gets Cubbit DS3 distributed S3 storage to provide up to 2PB of cloud services to customers demanding data sovereignty, while cutting costs by up to 50%

• October 02, 2025 02 Oct'25

  PSNI appoints legal counsel to report on police conduct after McCullough surveillance review

  The Police Service of Northern Ireland has commissioned a senior lawyer to report back on whether there was any misconduct by police officers following the McCullough Review into the surveillance of journalists, lawyers and NGOs

• October 01, 2025 01 Oct'25

  Home Office issues new ‘backdoor’ order over Apple encryption

  A second Home Office technical capability notice requires Apple to provide access to encrypted data and messages of British users stored on its iCloud service

• October 01, 2025 01 Oct'25

  US government shutdown stalls cyber intel sharing

  A key US law covering cyber security intelligence sharing has expired without an extension or replacement amid a total shutdown of the federal government, putting global security collaboration at risk.

• October 01, 2025 01 Oct'25

  EU Chat Control plans pose ‘existential catastrophic risk’ to encryption, says Signal

  As EU member states prepare to vote on plans to mandate tech companies to introduce technology to scan messages before they are encrypted, Signal warns that Chat Control will create new security risks

• September 30, 2025 30 Sep'25

  MPs press outsourcer TCS over Jaguar cyber attack

  The government’s cross-bench Business and Trade Committee has written to Tata Consultancy Services seeking answers over possible links to cyber attacks on Jaguar Land Rover, Marks and Spencer, and Co-op

• September 29, 2025 29 Sep'25

  JLR tentatively restarts production, following £1.5bn government backing

  Jaguar Land Rover is to resume car production after a £1.5bn government loan guarantee amid its cyber attack fallout. Debate is growing over the bailout and insurance

• September 26, 2025 26 Sep'25

  Over half of India-based companies suffer security breaches

  Business supply chains, which include Indian companies, are at risk of attack as more than half of suppliers were breached last year

• September 26, 2025 26 Sep'25

  Microsoft hides key data flow information in plain sight

  Microsoft’s own documentation confirms that data hosted in its hyperscale cloud architecture routinely traverses the globe, but the tech giant is actively obfuscating this vital information from its UK law enforcement customers

• September 26, 2025 26 Sep'25

  Okta CEO: AI security and identity security are one and the same

  At Oktane 2025 in Las Vegas, Okta CEO Todd McKinnon describes AI security and identity security as inseparable as he tees up a series of agentic security innovations

• September 25, 2025 25 Sep'25

  Netherlands establishes cyber resilience network to strengthen public-private digital defence

  Network will connect organisations in a cyber crime defence initiative that goes way beyond information sharing

• September 24, 2025 24 Sep'25

  McCullough Review finds PSNI failures but no ‘systemic’ surveillance of journalists

  A review by Angus McCullough KC reveals that Northern Ireland police failed to comply with the law but that there was no ‘widespread and systemic’ surveillance of journalists, lawyers and NGOs

• September 23, 2025 23 Sep'25

  ‘Our worst day’: The untold story of the Electoral Commission cyber attack

  As head of digital at The Electoral Commission, Andrew Simpson’s mettle was tested when threat actors gained access to the regulator’s email systems and accessed sensitive voter data. Three years on, he tells his story to Computer Weekly

• September 19, 2025 19 Sep'25

  UK cyber action plan lays out path to resilience

  A report produced for the government by academics at Imperial College London and the University of Bristol sets out nine recommendations to strengthen the UK’s cyber sector

• September 19, 2025 19 Sep'25

  French court ruling may lead to legal challenges over state Sky ECC and EncroChat phone hack

  A decision by the French supreme court may pave the way for defendants to challenge the lawfulness of France’s hacking of the EncroChat and Sky ECC cryptophone networks used by organised crime groups

• September 17, 2025 17 Sep'25

  Firms urged to adopt risk-based data sovereignty strategy

  Geopolitical uncertainty is forcing organisations to rethink where their data is located, but a full retreat from the public cloud is not the answer

• September 17, 2025 17 Sep'25

  Hamas lawyer challenges police after they seized legal files from phone in Schedule 7 stop

  A UK solicitor hired by Hamas to challenge its proscription in the UK as a terrorist organisation argues police acted unlawfully by seizing a phone containing confidential legally privileged material about his clients

• September 15, 2025 15 Sep'25

  Arqit to support NCSC’s post-quantum cryptography pilot

  Quantum specialist Arqit will provide specialised post-quantum migration planning services to organisations preparing to address the imminent risks to traditional cryptography

• September 15, 2025 15 Sep'25

  Forrester Technology & Innovation Summit preview: Digital sovereignty in the public cloud

  We look at how IT leaders need to balance data access, data residency and data sovereignty

• September 11, 2025 11 Sep'25

  Chat Control: EU to decide on requirement for tech firms to scan encrypted messages

  Law enforcement and police experts meet on Friday to decide on proposals to require technology companies to scan encrypted messages for possible child abuse images amid growing opposition from security experts

• September 10, 2025 10 Sep'25

  UK contactless card payment limits could be unlimited

  The UK Financial Conduct Authority says contactless payment technology and fraud protections have advanced enough for firms to adjust the limit

• September 08, 2025 08 Sep'25

  Northern Ireland police kept inspectors in dark over surveillance of journalists

  The Police Service of Northern Ireland failed to inform the Investigatory Powers Commissioner’s Office about surveillance operations against journalists during annual inspections

• September 05, 2025 05 Sep'25

  US politicians ponder Wimwig cyber intel sharing law

  US cyber data sharing legislation is set to replace an Obama-era law, but time is running out to get it over the line, with global ramifications for the security industry, and intelligence and law enforcement communities

• September 04, 2025 04 Sep'25

  UK sets out plans for AI assurance leadership

  Labour wants the UK to become the world leader in artificial intelligence assurance