News

Regulatory compliance and standard requirements

• December 01, 2016 01 Dec'16

  US and UK government expand surveillance powers

  The US has introduced wide new hacking powers for federal agents a day after the UK's Investigatory Powers Act firmed up bulk surveillance powers for intelligence and polices services

• November 30, 2016 30 Nov'16

  Thousands of National Lottery accounts hacked

  National Lottery operator Camelot says the log-in details of thousands of people who do the lottery online have been stolen

• November 28, 2016 28 Nov'16

  IBM blamed for Australian census website crash

  Computer giant reportedly pays $30m to Australian government as reports are released from two inquiries into DDoS attacks on census website

• November 28, 2016 28 Nov'16

  Petition to force MPs to consider debate on surveillance bill

  Open Rights Group has called on parliament to debate the Investigatory Powers Bill and review it in light of pending court actions, after petition against the bill tops 100,000 signatories

• November 24, 2016 24 Nov'16

  Customer data integration a market opportunity, says CXP Group consultant

  Technology and service providers should focus on customer data integration to help businesses improve customer satisfaction, says CXP Group consultant Nicole Dufft

• November 24, 2016 24 Nov'16

  Gigya is consumer identify leader, finds KuppingerCole

  Gigya, Ping Identity, Salesforce, ForgeRock are the current leaders in the consumer identity and access management market, according to a report by KuppingerCole

• November 22, 2016 22 Nov'16

  Alleged hacker Lauri Love’s ‘life will be destroyed’ under Trump regime

  Supporters fear for activist Lauri Love if his extradition to face hacking charges to the US goes ahead

• November 17, 2016 17 Nov'16

  Investigatory Powers Bill looks set to become law

  Rights groups have vowed to continue to oppose the controversial Investigatory Powers Bill, which is now just two steps away from becoming law

• November 15, 2016 15 Nov'16

  Online identity needs to be fixed, says Microsoft’s Kim Cameron

  Software giant’s identity architect calls on enterprises to professionalise the way they relate to customers to help replace online identity infrastructure that is not fit for purpose

• November 15, 2016 15 Nov'16

  Amber Rudd orders Lauri Love extradition to US to face hacking charges

  Engineering student Lauri Love faces trials in three US states and a possible 99-year jail sentence for allegedly hacking into US government computer systems as part of a political protest, despite concerns over his health

• November 10, 2016 10 Nov'16

  GDPR will require 75,000 DPOs worldwide, study shows

  The General Data Protection Regulation is likely to help boost the data protection profession, with 75,000 data protection officers needed worldwide for organisations to comply with new EU rules

• November 10, 2016 10 Nov'16

  Government must tread carefully on AI ethics

  Science advisor Mark Walport voices concerns around transparency, accountability and personal security with regard to the use of artificial intelligence by the government

• November 10, 2016 10 Nov'16

  US information security lobby group hopeful of reform under Trump

  The Internet Security Alliance is hopeful that the Trump administration will take decisive action on shoring up US cyber security policy

• November 09, 2016 09 Nov'16

  Financial Conduct Authority concerned about cyber security of banks

  The FCA expresses concern about the cyber security of banks after 9,000 Tesco Bank customers lost £2.5m in fraudulent transactions

• November 01, 2016 01 Nov'16

  Philip Hammond goes on the attack to target cyber threat to UK economy

  Speaking at the Microsoft Future Decoded event in London, the Chancellor revealed how Britain would take an offensive stance to protect infrastructure

• October 26, 2016 26 Oct'16

  SAP steps up data privacy in Europe

  SAP guarantees technicians outside of Europe will not be able to access companies’ sensitive personnel and other records

• October 25, 2016 25 Oct'16

  Malaysian insurer partners IT supplier to tailor cyber security policies

  Partnership is in response to requests from AIG customers for a more comprehensive risk management approach to cyber insurance

• October 24, 2016 24 Oct'16

  In the digital era, customer identity is key

  Identity is vital for presenting a consistent customer relationship across digital channels, but not everyone in all organisations understands this shift, according to identity veteran Ian Glazer

• October 24, 2016 24 Oct'16

  More than 100 MPs ask Obama to halt extradition bid against Lauri Love

  UK MPs across all parties call for US president to save activist from extradition to the US on hacking charges on humanitarian grounds

• October 21, 2016 21 Oct'16

  UK first to bring surveillance under rule of law, says former GCHQ director

  Former GCHQ head David Omand says the UK will be the first country in Europe to legislate to regulate digital intelligence and put it under judicial supervision with judicial review

• October 19, 2016 19 Oct'16

  Asean countries deepen joint efforts against global cyber threats

  Asean Cyber Capacity Programme (ACCP) launched in Singapore to fund cyber security efforts across the region.

• October 19, 2016 19 Oct'16

  Snowden: the IT analyst turned whistleblower who exposed mass surveillance

  Oliver Stone's biopic on Edward Snowden reaches the heart of the ethical crisis posed by mass surveillance for the state and ordinary citizens

• October 18, 2016 18 Oct'16

  Saving Lauri Love: activists plan their next move

  An eclectic bunch of activists, charity workers and reformed hackers spent a rainy Sunday afternoon plotting their next move in a campaign to save Lauri Love from extradition to the US on hacking charges

• October 18, 2016 18 Oct'16

  Businesses underprepared for GDPR, study shows

  Lack of consumer and regulatory understanding, combined with low technical and cultural preparedness, represents a major threat to revenue and brand value, according to a Symantec state of privacy report

• October 17, 2016 17 Oct'16

  Business and GDPR to drive consumer identity projects

  Business demand for consumer identity management capability is growing to enable new business models, improve customer engagement and ensure General Data Protection Regulation compliance, says KuppingerCole

• October 17, 2016 17 Oct'16

  UK firms could face £122bn in data breach fines in 2018

  The PCI Security Standards Council is urging firms to act now to avoid exponentially increased penalties under new EU data protection regulations

• October 12, 2016 12 Oct'16

  Thousands of significant cyber incidents hit Australian organisations

  Australian Cyber Security Centre report reveals growing threat, with energy, banking and finance, and communications sectors targeted most often

• October 12, 2016 12 Oct'16

  Government to name and shame departments failing to secure email

  The NCSC is piloting various cyber security intiatives with government departments such as Dmarc and other email security measures, and plans to name and shame those which fail to comply

• October 12, 2016 12 Oct'16

  MPs campaign for Lauri Love to be tried in UK

  Backbench MPs are campaigning against Lauri Love’s extradition to the US so he can face trial in the UK

• October 12, 2016 12 Oct'16

  G7 sets financial sector cyber defence guidelines as attacks grow

  G7 countries have agreed cyber security guidelines in response to concerns about the safety of interconnected global financial systems that are increasingly coming under attack, according to Symantec

• October 10, 2016 10 Oct'16

  Smartwatches banned from UK Cabinet as EC plans IoT security standards

  The EC is planning a security certification scheme for internet of things devices as the UK Cabinet bans smartwatches amid heightened fears of cyber espionage

• October 05, 2016 05 Oct'16

  TalkTalk hit by record £400,000 fine over data breach

  The Information Commissioner’s Office issues its largest ever data protection fine after more than 150,000 customers had their data exposed by TalkTalk breach

• October 05, 2016 05 Oct'16

  SMEs are the Achilles heel for Asean security

  Small to medium-sized enterprises in the Asean region will be gateways to large enterprises for cyber criminals unless they improve their security

• October 04, 2016 04 Oct'16

  Bulk surveillance review is ‘fiction’, claims former NSA technical director

  Former NSA technical director Bill Binney talks about the Investigatory Powers Bill and the UK government's independent review of bulk surveillance powers

• September 30, 2016 30 Sep'16

  Brexit has thrown ICO plans into flux, admits information commissioner

  The ICO is working to ensure that the UK's post-Brexit data protection law is progressive, stands up to scrutiny and provides stability, says information commissioner Elizabeth Denham

• September 28, 2016 28 Sep'16

  NHS Digital aims to put healthcare on firm cyber security footing

  NHS Digital set to work closely with National Cyber Security Centre (NCSC) to boost healthcare sector cyber security capabilities

• September 28, 2016 28 Sep'16

  UK National Cyber Security Centre set to launch

  NCSC is due to launch officially on 1 October 2016 and will help the healthcare sector deliver consistent quality of data security

• September 26, 2016 26 Sep'16

  Yahoo sued over data breach

  Yahoo is facing a class action lawsuit that alleges that the internet firm showed a reckless disregard for the security of its users that resulted in a breach affecting half a billion accounts

• September 21, 2016 21 Sep'16

  Many don’t test disaster recovery plans properly, survey finds

  Nearly 40% of UK organisations do not test disaster recovery plans properly, mainly because of concerns about disruption to production operations

• September 20, 2016 20 Sep'16

  Business warned not to be complacent about cyber security

  Lloyds of London survey reveals just how badly some European firms are failing in terms of cyber security and low levels of awareness about the role of cyber insurance

• September 15, 2016 15 Sep'16

  Cyber security awareness growing within business sector, research shows

  While awareness of cyber security risks is improving, fewer firms know how much an attack is likely to cost them

• September 15, 2016 15 Sep'16

  Cabinet Office role in information security in government not clear

  The UK government has work to do to reduce complexity of security policies, according to the NAO

• September 14, 2016 14 Sep'16

  Crest takes over NSA Cira accreditation

  Crest hopes to grow the accreditation programme into a global initiative to certify cyber response capabilities

• September 14, 2016 14 Sep'16

  NHS trusts and suppliers not ready for end of N3 network

  Network integrator Updata has warned that NHS organisations and network suppliers must mobilise now to get ready for the transition to the Health and Social Care Network next year

• September 13, 2016 13 Sep'16

  UK SMEs have false sense of cyber security

  Many small businesses have the mistaken impression that they are safe from cyber attacks and the huge damage they can cause

• September 13, 2016 13 Sep'16

  Insurance brokers fear regulatory action over SSP Worldwide cloud outage

  Insurance brokers hit out at disaster recovery arrangements, fearing two-week outage could put them at risk of action by Financial Conduct Authority

• September 07, 2016 07 Sep'16

  NSA used Iraq war to develop surveillance capability, documents show

  As the controversial Investigatory Powers Bill inches closer to becoming law, NSA documents reveal that the agency used the Iraq war to develop and expand its surveillance infrastructure

• September 06, 2016 06 Sep'16

  Identity prominent in Australian security debate

  Identity is at the forefront of the cyber security debate in Australia

• September 05, 2016 05 Sep'16

  Microsoft gets wide support in fight against US gagging orders

  Microsoft wins support from a wide range of US organisations in its push back against the secrecy of US government data access requests

• August 30, 2016 30 Aug'16

  Asean ministers discuss Europol equivalent in Singapore

  Governments in Southeast Asia are considering setting up a regional equivalent of Europol to help fight cyber crime

• August 26, 2016 26 Aug'16

  Law firms planning litigation market for GDPR

  Businesses should be preparing for the storm of litigation that is likely to be unleashed when the GDPR goes into force, warns Stewart Room of PwC Legal

• August 22, 2016 22 Aug'16

  Mixed reaction to Anderson review of bulk surveillance powers

  While the Anderson review’s recommendation of a technical advisory panel has been welcomed, human rights groups say the opportunity to move to more targeted surveillance has been missed

• August 19, 2016 19 Aug'16

  No alternative to bulk surveillance powers, says Anderson report

  The government welcomes a review of the controversial Investigatory Powers Bill that found there is no viable alternative to the bulk data collection powers proposed by the bill

• August 15, 2016 15 Aug'16

  Slow response to Privacy Shield EU-US data transfer programme

  Only 40 US firms has been certified under the Privacy Shield transatlantic data transfer programme, but this is expected to gain momentum

• August 10, 2016 10 Aug'16

  UK well equipped to protect data after Brexit, says new ICO head

  The public sector, industry, civil society and the public at large all have a role to play in effective data protection regulation, says new UK information commissioner Elizabeth Denham

• August 10, 2016 10 Aug'16

  IPT fines Police Scotland for communications breach of privacy

  The case comes as the UK government prepares to introduce the Investigatory Powers Bill, which will give sweeping powers for suspicion-less surveillance of telephone, web and email communications

• August 10, 2016 10 Aug'16

  MI5 staff repeatedly overrode data surveillance rules

  Security service MI5 is responsible for 210 “clear contraventions” over five years for the way it accessed private internet and telephone data

• August 08, 2016 08 Aug'16

  Australians vent census privacy concerns

  The Australian census has triggered a privacy debate after it emerged that the citizen data it collects will be held for years

• August 04, 2016 04 Aug'16

  Context warns of VoIP wars at Black Hat USA

  A lack of understanding of modern VoIP and unified communications security opens many service providers and businesses to cyber attack, a Context IS researcher warns at Black Hat USA

• July 29, 2016 29 Jul'16

  Researcher uncovers UK government threat to privacy

  Despite concerns about the draft Investigatory Powers Bill, a legal researcher has highlighted that existing legislation is a much bigger threat to privacy than most UK citizens realise

• July 28, 2016 28 Jul'16

  MI5 accused of compromising security court

  Judges at the UK's most secret court were persuaded not to disclose the existence of secret intrusive data on the population after briefings and lunch with MI5's deputy director general

• July 28, 2016 28 Jul'16

  Most cloud applications not GDPR-ready, report reveals

  Just 2% of more than 15,000 enterprise cloud application analysed are GDPR-ready, according to a cloud risk report

• July 28, 2016 28 Jul'16

  UK’s top security judges struggle to assess privacy threats

  Technological advancements make it difficult for the Investigatory Powers Tribunal to assess privacy threats, say the tribunal’s own judges

• July 27, 2016 27 Jul'16

  Privacy Shield good to go for at least a year, say EU regulators

  Transatlantic data transfer framework approved, but will need more fine-tuning in the first joint review in a year’s time

• July 26, 2016 26 Jul'16

  Date set for landmark hearing into EU-US data transfers

  Irish court hearing triggered by Austrian law student Max Schrems could have huge implications for EU-US trade and the data privacy rights of millions of EU citizens

• July 25, 2016 25 Jul'16

  Australia’s security software spending sees growth spurt

  Australian enterprises are increasingly investing in security software as the threats to data continue to multiply

• July 22, 2016 22 Jul'16

  Jihadists’ digital tools revealed

  A report by dark web intelligence firm Flashpoint reveals how jihadist groups use common security and other tools to hide their digital communications from national security forces

• July 19, 2016 19 Jul'16

  US government joins legal challenge of EU-US data transfers

  Helen Dixon, Ireland’s data protection commissioner, is asking the European Court of Justice to rule on the legality of EU-US data transfers, post-Safe Harbour, in a landmark legal challenge

• July 19, 2016 19 Jul'16

  Private data should only be kept for ‘serious crime’, says European Court

  European Court of Justice lays down the limits of data retention following legal challenge by two UK MPs, and David Davis withdraws his name from legal action after assuming a post in Theresa May’s cabinet

• July 15, 2016 15 Jul'16

  Elizabeth Denham to start as UK information commissioner on 18 July 2016

  Canadian Elizabeth Denham is to begin work as the UK’s information commissioner after a three-week delay

• July 15, 2016 15 Jul'16

  Tech industry welcomes Microsoft victory in data access case

  Tech firms, civil liberties groups and trade bodies welcome what could be a landmark ruling by a US court in protecting the privacy of cloud services

• July 14, 2016 14 Jul'16

  UK business unlikely to dodge EU cyber security rules post-Brexit

  The UK’s Brexit vote has thrown many businesses into uncertainty and doubt about whether they will have comply with the cyber security rules coming out of the EU

• July 13, 2016 13 Jul'16

  Investigatory Powers Bill: rushed through under cover of Brexit

  The government should delay the Investigatory Powers Bill to allow time for proper scrutiny following the political chaos that has engulfed Britain after the Brexit vote

• July 13, 2016 13 Jul'16

  Business lacks certainty despite official adoption of EU-US Privacy Shield

  The European Commission has adopted the EU-US Privacy Shield framework, but businesses still lack clarity and assurance on transatlantic personal data transfers

• July 12, 2016 12 Jul'16

  IBM sets up security centre in Canberra

  IBM leads the charge as large private businesses invest heavily in security resources across Australia in an attempt to close the security gap

• July 12, 2016 12 Jul'16

  Gulf-based Rotana Hotels centralises IT security

  Hotel group implements centralised security management to proactively protect endpoints and achieve accurate security information

• July 08, 2016 08 Jul'16

  EU-US Privacy Shield wins EU backing to proceed

  The US data-transfer agreement wins the backing of the European Union, paving the way for it to come into force

• July 05, 2016 05 Jul'16

  More than 2,000 police data breaches in 4.5 years, report reveals

  Big Brother Watch calls for new policies to ensure police forces keep personal data safe after FOI requests show an average of 10 data breaches a week

• July 01, 2016 01 Jul'16

  First fatality for self-drive cars as Tesla driver killed in crash

  US authorities have launched an investigation after the driver of a Tesla Model S was killed in what is believed to be the first fatality involving an self-drive vehicle

• June 28, 2016 28 Jun'16

  Facebook data case raises US national security issues

  Dublin court case on the legality of Facebook’s data transfers to the US raises issues that affect US national security, claims US Department of Justice

• June 28, 2016 28 Jun'16

  Lauri Love suicide risk if extradited to US over hacking allegations

  Westminster Magistrates’ Court hears evidence from medical experts that alleged hacker Lauri Love is at risk of suicide if extradited to the US

• June 28, 2016 28 Jun'16

  Outgoing information commissioner claims good year for ICO

  The ICO is to discuss with government the implications of the Brexit vote and its effect on data protection reform in the UK, says outgoing information commissioner Christopher Graham

• June 28, 2016 28 Jun'16

  Brexit: Information security professionals not too concerned

  Brexit will present some cyber security challenges – but it will be largely business as usual, say information security professionals

• June 24, 2016 24 Jun'16

  UK IT community rocked but keeping calm in face of Brexit

  The UK IT sector reacts with alarm, tempered by a calm pragmatism, to the British Referendum verdict to leave the European Union. Reporting by the Computer Weekly team

• June 22, 2016 22 Jun'16

  New cyber security law in the offing for Singapore

  Singapore government will table new Cyber Security Bill in 2017 to strengthen its online defences

• June 22, 2016 22 Jun'16

  Act now to save the open internet, says Internet Governance Commission

  The future of the internet is at risk from multiple scenarios, and quick action is needed to protect it, says the Internet Governance Commission

• June 22, 2016 22 Jun'16

  CESG issues challenge to information security professionals

  CESG technical director Jonathan Lawrence tells The Cyber Security Summit that information security professionals need to deliver security controls that help business users achieve their goals securely

• June 21, 2016 21 Jun'16

  US takes on the critics of Prism in Irish court

  The US says social media companies have to do mass surveillance in Europe, while the European Union says they can’t. The Irish court is to decide competing claims

• June 21, 2016 21 Jun'16

  EU workers trust EU countries most with cloud data

  Survey reveals European workers trust EU countries much more than the US with their work data in the cloud

• June 20, 2016 20 Jun'16

  Lower average cost of Australian data breaches is not a sign of comfort

  The average cost of a data breach to Australian organisations dropped in 2015, according to research

• June 20, 2016 20 Jun'16

  Brexit will make UK more vulnerable to cyber attack, say security pros

  A third of security professionals are concerned that a Brexit vote will hamper cyber threat intelligence sharing with EU states

• June 14, 2016 14 Jun'16

  Shadow data and the risks posed by cloud storage and apps

  Cloud storage and apps can open up an organisation to risks of data leakage. Computer Weekly looks at key areas of vulnerability and what you can do to prevent your data going viral

• June 12, 2016 12 Jun'16

  Philippines government data breach is a warning to Asean region

  Security is a rising concern in the Asean region, with fears fuelled by incidents such as the recent hacking incident in Manila

• June 10, 2016 10 Jun'16

  IoT security: Lack of expertise will hurt, says Bruce Schneier

  Government action at national and international levels is essential for addressing IoT security issues, but the relevant expertise is lacking, according to security expert Bruce Schneier

• June 08, 2016 08 Jun'16

  William Hague MP defends Investigatory Powers Bill

  The idea of a 'Snoopers Charter' is ridiculous in the light of current and planned checks and balances around access to communications data, says William Hague

• June 06, 2016 06 Jun'16

  How emails sent to and from Parliament are monitored

  Government officials deny that emails sent by MPs are open to surveillance by GCHQ and NSA - we examine the evidence

• June 02, 2016 02 Jun'16

  More safeguards needed to protect MPs communications, claims parliamentary body

  Joint Committee on Human Rights argues Investigatory Powers Bill protections are ‘inadequate’

• June 01, 2016 01 Jun'16

  MPs’ private emails are routinely accessed by GCHQ

  Computer Weekly investigation reveals the extent of interception of MPs’ and peers’ email communications and data

• May 26, 2016 26 May'16

  Avoiding a security nightmare at South Australia’s Catholic schools

  Taking on the challenge of securing student and organisational data while ensuring easy access to resources

• May 25, 2016 25 May'16

  EC sets out proposals for online platform regulation

  The European Commission has outlined a number of proposals to better regulate the operation of online platforms in the Digital Single Market