News

Regulatory compliance and standard requirements

• February 05, 2018 05 Feb'18

  Lauri Love plans to use ‘internet as a force for good’

  Engineering student Lauri Love says he plans to help businesses fight cyber crime, after the court of appeal ruled that he can be tried in the UK for allegedly hacking US computer systems, rather than face extradition to the US

• February 05, 2018 05 Feb'18

  Appeals court rules Lauri Love will not be extradited over US hacking charges

  The lord chief justice, Lord Burnett, says 33-year-old engineering student Lauri Love will not be extradited to the US to face hacking charges, in a landmark legal decision, and the Crown Prosecution Service should bring proceedings against Love in ...

• February 05, 2018 05 Feb'18

  NHS WannaCry review highlights need for accountability and skills

  Lessons-learned report on ransomware attack calls for local NHS organisations to put cyber security bosses on their boards and consider suspending IT access to staff who have not completed cyber security training

• February 02, 2018 02 Feb'18

  GDPR: Don’t panic, but seize the chance to build trust, says ICO

  With the compliance deadline for the EU’s GDPR just 112 days away, the UK’s information commissioner has urged organisations not to panic, but to seize the chance to build trust with customers

• February 02, 2018 02 Feb'18

  Dutch Filmworks disrupts piracy fight by imposing download fines

  Netherlands’ privacy watchdog grants film production company permission to collect IP addresses as part of its fight against illegal downloading

• February 01, 2018 01 Feb'18

  Dutch companies not ready for GDPR despite approaching deadline

  Organisations in the Netherlands are racing towards General Data Protection Regulation compliance, but there is still much to be done

• January 31, 2018 31 Jan'18

  GDPR requests to take thousands of hours a month, says survey

  A recent survey predicts organisations will potentially face thousands of customer requests about their personal information every month, with many unprepared for GDPR compliance

• January 31, 2018 31 Jan'18

  Data breach disclosure law will lift Australia’s cyber security game

  New rules underscore Australia’s recent efforts to tackle cyber security challenges on the local and international stage

• January 30, 2018 30 Jan'18

  Government surveillance regime unlawful, court rules in Tom Watson case

  Appeal court ruled in favour of Labour MP Tom Watson in a legal battle with the government over the UK’s surveillance laws, leading to calls to rethink controversial Investigatory Powers Act

• January 30, 2018 30 Jan'18

  IT Priorities 2018: Data protection a top priority ahead of GDPR

  Data protection continues to be a key focus for IT security investment for European firms in 2018, as does the emphasis on cloud and mobile security as companies move to these technology platforms

• January 29, 2018 29 Jan'18

  NGO to fight for GDPR rights set to launch

  A new breed of NGO aimed at helping EU citizens fight for privacy rights under the GDPR is set to launch after achieving the minimum funding required

• January 29, 2018 29 Jan'18

  Hefty fines confirmed for CNI providers with poor cyber security

  The government has confirmed that critical infrastructure providers with poor cyber security face fines of millions of pounds as the National Cyber Security Centre publishes new guidance for the industry

• January 26, 2018 26 Jan'18

  ICO launches data protection excellence award

  UK’s privacy watchdog launches data protection excellence award to mark international Data Protection Day, as security suppliers issue data protection tips and guidelines

• January 26, 2018 26 Jan'18

  UK likely to remain strategic EU data protection partner

  Head of European Union’s independent data protection authority says UK is likely to remain a strategic partner in data protection after Brexit

• January 25, 2018 25 Jan'18

  IoT security risks need immediate action, says report

  The security failings in today’s internet-connected devices will only become more pervasive unless action is taken immediately, according to industry experts

• January 24, 2018 24 Jan'18

  Most UK organisations unaware of new data protection laws

  The UK’s digital and culture secretary is urging businesses and charities to prepare for stronger data protection laws in the light of new information

• January 24, 2018 24 Jan'18

  GDPR worries hit cloud storage investments, says survey

  NetApp-sponsored survey finds lack of customer confidence in cloud service providers’ retention of GDPR-affected data has led organisations to rethink and scale back cloud investments

• January 24, 2018 24 Jan'18

  Sweden puts government IT outsourcing under increased scrutiny

  Government introduces rules to tighten security in IT outsourcing deals following a very public data leak last year

• January 24, 2018 24 Jan'18

  Two-thirds of startups ill-prepared for GDPR

  While most startups collect personal data, a survey reveals that many are not very well prepared for compliance with the EU’s forthcoming data protection regulation

• January 23, 2018 23 Jan'18

  New controversies as Trump passes US Foreign Intelligence Surveillance Act

  The amended Foreign Intelligence Surveillance Act, which seeks to legitimise US surveillance on foreigners, has been signed off by president Trump

• January 23, 2018 23 Jan'18

  Interview: Kaspar Korjus, Estonian e-Residency lead

  As the number of people signing up to become Estonian e-residents exceeds the country’s birth rate, Computer Weekly speaks to the man heading up the programme

• January 22, 2018 22 Jan'18

  Almost a quarter of London businesses unaware of GDPR

  Nearly one in four London businesses unaware of new data protection regulation, a survey has revealed, with just months before the compliance deadline

• January 22, 2018 22 Jan'18

  Norwegian healthcare breach alert failed GDPR requirements

  Norwegian healthcare authorities failed General Data Protection Regulation requirements for notifying those affected by a personal data breach by waiting a week before disclosing a breach discovered on 8 January 2018

• January 22, 2018 22 Jan'18

  Privacy International warns of global risk to citizens if Microsoft loses US data access appeal

  Privacy International warns of widespread privacy violations if Microsoft loses US data access appeal

• January 22, 2018 22 Jan'18

  European Parliament votes to restrict exports of surveillance equipment

  European Parliament votes to tighten export controls to restrict supply of surveillance and encryption technology to states with poor human rights records amid fears British companies may not have to comply after Brexit

• January 17, 2018 17 Jan'18

  Business needs to reduce cyber threat to payment card data

  Cardholder data is a prime target for cyber criminals, and that is only likely to increase in the coming year, according to a cloud-based secure payments firm

• January 17, 2018 17 Jan'18

  Davos: Disintegration of the internet could create economic turmoil

  Politicians and business leaders will discuss the risks posed by fake news, cyber attacks, and artificial intelligence to jobs, political stability and global security, at the World Economic Forum in Davos

• January 16, 2018 16 Jan'18

  Sweden pilots surveillance technology to combat terrorism and crime

  The Swedish police and security agencies are trialling surveillance equipment to help them respond to terrorism and crime more quickly

• January 10, 2018 10 Jan'18

  EC underlines need for data transfer agreement post-Brexit

  The European Commission has emphasised the importance of having a data transfer agreement in place after the UK leaves the European Union

• January 10, 2018 10 Jan'18

  UAE tech growth prompts firms to review internal IT security

  As IT becomes more prominent in the UAE economy, more and more internal connections between people and systems are created, all of which need to be secured

• January 10, 2018 10 Jan'18

  ICO fines Carphone Warehouse £400,000

  Mobile retailer hit with one of the highest fines for putting personal data at risk as UK privacy watchdog warns that more stringent data protection laws will apply from 25 May 2018

• January 09, 2018 09 Jan'18

  Max Schrems champions NGO to fight for GDPR rights

  Privacy activist whose legal challenge of Facebook led to the scrapping of the Safe Harbour Agreement says crowdfunding a new type of non-government organisation is essential to deliver privacy rights

• January 09, 2018 09 Jan'18

  Cyber attacks in 2017 drive Nordic security efforts

  The volume of cyber attacks last year has increased boardroom focus on security in the Nordic region

• January 08, 2018 08 Jan'18

  Sweden steps up cyber defence measures

  Sweden is tightening up its cyber security defences as part of a wider national security strategy

• January 05, 2018 05 Jan'18

  Patch systems against Meltdown and Spectre, urges ICO

  UK’s data protection watchdog is calling for organisations to apply security updates to mitigate against exploits of microprocessor flaws as soon as possible to safeguard personal data

• January 05, 2018 05 Jan'18

  2018 could be year of critical infrastructure attacks, says report

  The coming year is likely to see an increase in the number of cyber attacks on critical national infrastructure (CNI), according to a report based on experts’ forecasts

• January 03, 2018 03 Jan'18

  What the EU’s new data protection regime means for ASEAN

  A large proportion of businesses in the regional economic grouping will be affected by Europe’s General Data Protection Regulation, but awareness of the new rules remains low, even in countries with existing data protection laws

• January 03, 2018 03 Jan'18

  Top IT priorities for Nordic CIOs in 2018

  Nordic CIOs tell Computer Weekly about their intentions for the year ahead

• January 02, 2018 02 Jan'18

  Top UK and US firms still overestimating GDPR readiness

  Less than five months before the compliance deadline for the EU’s General Data Protection Regulation (GDPR), most top UK and US firms are still overestimating their state of readiness, a study suggests

• January 02, 2018 02 Jan'18

  Ransomware to hit cloud computing in 2018, predicts MIT

  Ransomware targeting cloud services is one of the six biggest cyber threats likely to face organisations in 2018, according to the Massachusetts Institute of Technology

• December 28, 2017 28 Dec'17

  Top 10 stories on state surveillance, technology and the law in 2017

  In 2017, the government faced multiple legal challenges over the legality of mass surveillance of the population, most of whom pose no threat, in cases that will set the parameters between individual freedom and state intrusion

• December 27, 2017 27 Dec'17

  The CW500 Club in 2017

  Computer Weekly’s CW500 Club attracts the top IT leaders in the UK to talk to their peers. We present coverage of the 2017 events, including articles and video interviews

• December 21, 2017 21 Dec'17

  Hancock sure UK will obtain and maintain EU data protection adequacy

  Minister for digital tells Lords committee he is confident the UK will obtain and maintain “adequacy” for smooth data transfers with the EU after Brexit

• December 20, 2017 20 Dec'17

  UK government blames North Korea for WannaCry cyber attack

  The UK and US governments say a North Korean group was responsible for the ransomware attacks that hit the NHS and other organisations globally this year

• December 19, 2017 19 Dec'17

  Australia to focus on cyber security and IT outcomes in 2018

  Besides transforming themselves through AI and automation, businesses down under will keep a closer eye on cyber security and the outcomes of their technology investments

• December 19, 2017 19 Dec'17

  Kaspersky Lab appeals US ban

  Russian security software giant appeals US government's decision to ban the use of its products in federal agencies

• December 13, 2017 13 Dec'17

  Banks forced to be open about major security and operational incidents

  New FCA rules aim to give consumers more information about current accounts beyond interest rates and charges

• December 12, 2017 12 Dec'17

  Researchers find trove of 1.4 billion credentials

  Security researchers have discovered what is believed to be the largest aggregate database found in the dark web to date, prompting fresh calls for improved identity management

• December 08, 2017 08 Dec'17

  GDPR prompts businesses to use motivational tactics to drive culture change

  Impending arrival of General Data Protection Regulation pushes organisations to use rewards or penalties to motivate staff to ensure compliance

• December 06, 2017 06 Dec'17

  Australian businesses need to up their game in cyber security

  With threat actors becoming more innovative, businesses must start getting their security fingers into every system they buy or build, experts say

• December 06, 2017 06 Dec'17

  BlackBerry calls for stricter internet of things security standards

  All internet-linked devices should support software updates, though things that are prone to safety risks when hacked, such as connected cars, should adhere to higher security standards, says BlackBerry CSO

• December 04, 2017 04 Dec'17

  The Dutch government defines cyber threat actors

  The Dutch government commissions the creation of a scientific classification of individuals and groups involved in cyber crime

• December 04, 2017 04 Dec'17

  Malicious insiders and DDoS attacks cost UK business the most

  In 2017, the most costly or damaging cyber attacks for UK businesses have been malicious insiders and denial of service, research has revealed

• December 04, 2017 04 Dec'17

  Barclays Bank stops offering Kaspersky software to new users

  Bank is no longer offering customers Kaspersky anti-virus software after UK security agency issues warning

• December 01, 2017 01 Dec'17

  ‘Sound policy’ to prosecute hackers in UK, says former DPP in Love case

  The former director of public prosecutions (DPP), Ken Macdonald, said in written evidence in Lauri Love’s extradition case that it is normal practice to prosecute hackers accused of attacking US servers in the UK – rather than extradite them to the ...

• December 01, 2017 01 Dec'17

  Businesses bracing for GDPR data deletion requests

  Businesses are concerned that data deletion requests under the GDPR will have a significant or even crippling effect, with many unprepared to meet the expected demand

• December 01, 2017 01 Dec'17

  Morrisons found liable for data leak in landmark ruling

  Court finds supermarket chain liable for data leak by a former employee, which has been hailed as a landmark ruling, but Morrisons says it will appeal

• December 01, 2017 01 Dec'17

  Proposed snoopers’ charter changes inadequate, say rights groups

  The government has proposed additional safeguards around the power granted to police by the Investigatory Powers Act, but the Open Rights Group and Liberty say they do not go far enough

• November 30, 2017 30 Nov'17

  Fintechs must curb privacy invasion, says Privacy International

  Privacy International is calling for legislation and regulation to ensure financial technology firms respect consumers’ rights to privacy, equality and non-discrimination

• November 30, 2017 30 Nov'17

  Google faces £2.7bn claim on behalf of 5.4 million iPhone users

  Technology giant is accused of harvesting and selling data from millions of iPhone users from 2011 to 2012 who could each receive compensation of several hundred pounds

• November 29, 2017 29 Nov'17

  TechUK calls for swift action to safeguard data exchange after Brexit

  TechUK and UK Finance raise fear of “cliff edge” if legal basis for data transfers between the EEA and the UK lapses overnight in March 2019

• November 29, 2017 29 Nov'17

  GDPR likely to affect internal processes heavily, warns lawyer

  Businesses should not overlook the fact that the EU’s new data protection laws may require fundamental changes to internal business processes, warns a data protection lawyer

• November 29, 2017 29 Nov'17

  Consumer identity management a growing trend

  Consumer identity and access management is a growing trend, but system choice is still challenging, according to KuppingerCole

• November 28, 2017 28 Nov'17

  Data breach an opportunity to build trust

  In the light of the high number of data breaches, organisations should embrace the inevitable and ensure they can build better trust if they are breached, an information security professional advises

• November 28, 2017 28 Nov'17

  Businesses need to balance user experience, privacy and security

  Balancing user experience, privacy and security for the connected consumer is a key challenge for online businesses, according to KuppingerCole

• November 22, 2017 22 Nov'17

  GDPR could ramp up cyber extortion demands, warns researcher

  The ransom demanded for stolen or encrypted data is likely to rise after the General Data Protection Regulation compliance deadline in May 2018, according to a cyber security researcher

• November 22, 2017 22 Nov'17

  Government urged to improve redress for mass data breaches

  Open letter calls for UK government to make it easier for consumers to get compensation for mass data breaches by implementing an effective system for collective redress

• November 22, 2017 22 Nov'17

  Uber recognises need for consumer trust after breach cover up

  New Uber leadership has recognised the importance of consumer trust and that they never should have attempted to cover up a 2016 data breach that affected millions of customers and drivers

• November 20, 2017 20 Nov'17

  Use GDPR to future-proof business models

  Businesses should look beyond compliance with new data regulations to ensure that their business processes and models are in line with future requirements, advises a privacy innovation expert

• November 17, 2017 17 Nov'17

  Business crucial to cyber crime fight, say UK cyber cops

  Business has a crucial role in fighting cyber crime in terms of intelligence sharing and pursuing cyber criminals, according to the country’s top cyber cops

• November 17, 2017 17 Nov'17

  ICO funds first four privacy tool development projects

  The UK’s privacy watchdog has begun funding innovative research into data privacy tools for children and the medical and financial sectors

• November 16, 2017 16 Nov'17

  ICO pushes for jail terms for personal data snoops

  Information Commissioner’s Office says it backs prison sentences for anyone abusing their position to access personal data unlawfully

• November 16, 2017 16 Nov'17

  Europe not ready for imminent cyber strikes, say infosec professionals

  Information security leaders in Europe believe a major breach of critical infrastructure is coming and that data breaches in their own organisations are imminent – yet most are not ready

• November 16, 2017 16 Nov'17

  Half of UK consumers do not trust firms with personal data

  As the GDPR compliance deadline approaches, a survey reveals half of UK consumers do not believe commercial organisations care about their privacy

• November 15, 2017 15 Nov'17

  GDPR impact complex, expert warns

  The full impact of the EU’s General Data Protection Regulation (GDPR) is complex, warns the head of ICT at T-Systems Belgium

• November 14, 2017 14 Nov'17

  GDPR is a business opportunity, says Belgian minister

  The EU’s General Data Protection Regulation should not be viewed only as a compliance issue, says Belgium’s minister for privacy

• November 13, 2017 13 Nov'17

  Cyber and physical security are inseparable

  Biometrics and pattern recognition, coupled with data from internet of things sensors, will provide the fabric of future smart ecosystems

• November 13, 2017 13 Nov'17

  Only a quarter of UK law firms are ready for GDPR, study shows

  Just 25% of UK law firms are ready for the General Data Protection Regulation and one in five have experienced an attempted cyber attack in the past month

• November 10, 2017 10 Nov'17

  Open standards will ease GDPR risk, says Kantara

  Open standards will help organisations comply with new EU data protection regulations, while ensuring interoperability and a good user experience, according to a global standardisation group

• November 10, 2017 10 Nov'17

  UK calls for more anti-terror tools in social media

  The UK is calling on social media campaigns to do more to detect and remove “militant messaging” automatically, while former MI5 head issues another caution against tampering with encryption

• November 09, 2017 09 Nov'17

  University of East Anglia investigates another data leak

  University is investigating a second leak in six months, illustrating that data breaches are often caused by non-malicious insiders and that organisations are not getting to grips with the problem

• November 09, 2017 09 Nov'17

  Malaysia partners Huawei in cyber security

  A joint steering committee will meet twice a year to address cyber security issues, among other measures to shore up Malaysia’s cyber security capabilities

• November 08, 2017 08 Nov'17

  GDPR fines may affect almost 80% of US firms, poll shows

  Most US companies risk fines for non-compliance with new European data protection laws that apply to all organisations processing any personal data of EU citizens

• November 07, 2017 07 Nov'17

  UK spies face landmark challenge over mass surveillance in human rights court

  Ten human rights organisations challenge lawfulness of UK surveillance legislation and mass internet surveillance by UK intelligence agencies in Strasbourg court

• November 07, 2017 07 Nov'17

  Most UK small businesses in the dark over GDPR

  There is still much work to be done before UK SMEs are fully prepared for the EU’s General Data Protection Regulation (GDPR), business barometer shows

• November 06, 2017 06 Nov'17

  UK businesses must redress lack of trust around data, says ICO

  Businesses need to redress the lack of trust in their ability to keep personal data safe to enable innovation, according to the Information Commissioner’s Office

• November 06, 2017 06 Nov'17

  One in four UK workers have maliciously leaked business data

  Insider threat research has revealed that 24% of workers purposely shared info with other companies and nearly 50% have received an email by mistake

• November 03, 2017 03 Nov'17

  Go beyond GDPR for a competitive edge

  By exceeding the bare minimum requirements set by privacy regulations, businesses can win customers by offering greater assurances, says a business adviser

• November 03, 2017 03 Nov'17

  Third-party cyber security failures cost businesses the most

  Third-party cyber security failures are costing businesses the most – up to £1.5m – as security budgets shrink, a study by Kaspersky Lab and B2B International reveals

• November 01, 2017 01 Nov'17

  Personal data of 46.2 million Malaysia mobile subscribers leaked

  The massive data breach is yet another example of a ‘low and slow’ attack that stays dormant inside networks for years, without anyone noticing

• October 31, 2017 31 Oct'17

  Spoofing of Dutch politicians causes heated debate

  A report about how easy it is to spoof the email addresses of Dutch politicians causes wider security debate in the Netherlands

• October 31, 2017 31 Oct'17

  Cyber security professionals urged to embrace AI and automation

  IBM security intelligence head says professionals should embrace artificial intelligence and automation to ensure they do not become obsolete

• October 30, 2017 30 Oct'17

  EU may struggle to prove cyber attack links, warns expert

  EU governments are reportedly planning to respond to cyber attacks as an act of war, but a cyber security expert says links to nation states may be hard to prove

• October 27, 2017 27 Oct'17

  Consumer identity management will benefit business

  Businesses should embrace consumer identity management to improve marketing capabilities and help drive regulatory compliance, says KuppingerCole

• October 25, 2017 25 Oct'17

  Oversight of intelligence agencies’ data sharing has ‘failed’, court hears

  UK’s intelligence services lack adequate oversight and written guidelines when sharing databases of sensitive information, Privacy International argues in secret court

• October 25, 2017 25 Oct'17

  BlackBerry launches cyber security services

  BlackBerry has launched cyber security services to safeguard people, privacy and assets, with vehicle security and GDPR compliance leading the new offering

• October 25, 2017 25 Oct'17

  UK website privacy notices inadequate, says ICO

  Privacy notices are too vague and generally inadequate, a global investigation finds, with UK websites in several sectors found wanting by an Information Commissioner’s Office review

• October 24, 2017 24 Oct'17

  Microsoft drops lawsuit after US revises data access policy

  Microsoft has dropped a lawsuit pushing for reforms of state surveillance practices in response to changes in US data access request policy, but says more reform is necessary

• October 24, 2017 24 Oct'17

  Nordic finance watchdogs losing patience over anti-money laundering systems at banks

  The financial services watchdogs have informed banks that they have to do more to improve anti-money laundering systems

• October 23, 2017 23 Oct'17

  Kaspersky Lab announces global transparency initiative

  Faced with a US government ban and media reports alleging co-operation with Russian spies, Kaspersky Lab has announced a global transparency initiative