News

Regulatory compliance and standard requirements

• June 07, 2017 07 Jun'17

  Infosec17: IoT security regulation coming, warns Bruce Schneier

  A security expert urges the security industry to engage with government to ensure that regulation of IoT security is smart regulation

• June 05, 2017 05 Jun'17

  Mixed reactions to PM's calls to regulate cyber space to prevent terrorism

  Prime minister Theresa May’s call for regulation of the internet to prevent terrorism planning has drawn support from some quarters but criticism from others

• June 05, 2017 05 Jun'17

  Mass collection of data on population ‘illegal’, UK court told

  Investigatory Powers Tribunal hearing challenges GCHQ over legality of mass surveillance, as government plans moves to control encryption

• June 05, 2017 05 Jun'17

  Singapore, Australia forge cyber security ties

  The two countries will conduct joint cyber security exercises, among a raft of measures to secure critical infrastructure and bolster cyber security knowhow

• June 02, 2017 02 Jun'17

  GDPR about change management, says startup DPO

  There are threats and risks associated with the GDPR, but one data protection officer believes organisations should focus on the business opportunities instead

• June 01, 2017 01 Jun'17

  Top UK firms’ websites violate key GDPR principle

  Just over one-third of all the public web pages of leading UK companies that collect personal information violate a key principle of new European data protection regulations

• May 31, 2017 31 May'17

  UK issues record data protection fines in the past year

  The UK was one of the most active regions for regulatory enforcement action in Europe last year in terms of fines and enforcement notices issued over data protection

• May 31, 2017 31 May'17

  WannaCry shows validity of risk-based security, says RSA head

  WannaCry and other recent cyber attacks underline the importance of adopting a risk-based approach to security, says RSA president

• May 25, 2017 25 May'17

  UK businesses urged to prepare for GDPR

  With one year to the compliance deadline, the Information Commissioner’s Office has urged UK firms to seize the business benefits of being GDPR-ready

• May 25, 2017 25 May'17

  Finding customer data is big hurdle to meeting GDPR right to erasure

  Global organisations do not know where customer data is stored and use unreliable data removal methods to erase content, a study shows

• May 24, 2017 24 May'17

  Singapore government to spend S$2.4bn on technology initiatives

  Funding will go towards building a national sensor platform, boosting the government’s cyber security capabilities and driving the use of robots

• May 23, 2017 23 May'17

  Almost a quarter of UK and US firms likely to miss GDPR deadline

  Some 24% of companies polled in the UK and US expect to miss the GDPR compliance deadline of 25 May 2018

• May 22, 2017 22 May'17

  Middle East largely unscathed after WannaCry cyber attack

  The impact of WannaCry on the Middle East was reduced due to the attack falling on a weekend, but it is a stark warning

• May 21, 2017 21 May'17

  Australian government ICT spending under fire

  The opposition Labor party has called for a review of the government’s higher ICT spending and digital transformation programme

• May 19, 2017 19 May'17

  Interview: Claude Moraes, MEP and EU Civil Liberties Committee chair

  Claude Moraes, chair of the European Parliament's Civil Liberties, Justice and Home Affairs Committee shares his views, concerns, reservations about EU-US data transfers, encryption and Brexit

• May 16, 2017 16 May'17

  UK government sees collaboration as key to cyber security success

  The UK government believes collaboration between the public and private sectors is critical to success in cyber security

• May 16, 2017 16 May'17

  Financial services CISOs prioritise GDPR – but their service providers might not have

  Survey shows 52% of CISOs working in the finance sector have made compliance with the EU’s General Data Protection Regulation an investment priority

• May 16, 2017 16 May'17

  Ransomware: Protect yourself with good backup and cloud policies

  More ransomware attacks are likely. The best way to protect against them is to have up-to-date in-house backups and to ensure cloud backups are adequately protected and available

• May 14, 2017 14 May'17

  Penetration testing essential for success in security arms race

  Demand for security testing, which should be conducted from the onset rather than as an afterthought, is growing in Australia

• May 12, 2017 12 May'17

  ICO reports record number of data breaches and fines

  The UK privacy watchdog reports that it has dealt with more data breach reports and issued more fines in the past year than ever before

• May 11, 2017 11 May'17

  Australian government bolsters IT security in budget boost

  The country’s Digital Transformation Agency has been given a shot in the arm to guard public sector IT systems against cyber attacks

• May 08, 2017 08 May'17

  There are Dutch lessons in breach notification as GDPR approaches

  The Netherlands is a pioneer when it comes to legislating around data protection, so GDPR might not be as much of a shock as in other countries.

• May 05, 2017 05 May'17

  Lib Dems decry surveillance plans exposed in leaked documents

  After the election, the UK government plans to introduce extreme mass surveillance capabilities, according to documents leaked to the Open Rights Group

• May 02, 2017 02 May'17

  UBS applies data protection for compliance and competitive advantage

  Swiss bank UBS aims to get greater value out of investments in sensitive data protection systems by using its security capabilities as a differentiator

• April 28, 2017 28 Apr'17

  Many companies lack GDPR plan, PwC data shows

  Many organisations around the world do not have a coherent plan to prepare for compliance with the EU’s new data protection laws

• April 27, 2017 27 Apr'17

  Forge ahead with GDPR, says ICO

  UK organisations cannot afford to lose the public’s trust in their ability to safeguard personal data and should be working to ensure they have that capability, says the Information Commissioner’s Office

• April 26, 2017 26 Apr'17

  Aussie developer Wangle makes foray into VPN market

  Wangle’s proprietary virtual private network application optimises encrypted traffic and complies with Australia’s new mandatory data retention law

• April 26, 2017 26 Apr'17

  Over half of Singapore organisations not prepared for GDPR

  A Veritas study has found that 56% of organisations in the city-state fear they will be unable to comply with the EU’s upcoming data protection regulation

• April 25, 2017 25 Apr'17

  Interpol uncovers nearly 9,000 C2 servers in ASEAN

  Command and control servers were used to launch denial of service attacks and distribute malware and spam emails across the region

• April 24, 2017 24 Apr'17

  One in eight people have suffered a healthcare data breach

  A quarter of victims had their NI number compromised and 18% saw their biometric identifiers compromised, but most people trust healthcare providers with their data

• April 24, 2017 24 Apr'17

  Collaboration is key to fighting cyber crime, say UK police

  Cyber crime will be defeated only through collaboration, according to UK police, the Global Cyber Alliance, Cyber Defence Alliance and Verizon

• April 21, 2017 21 Apr'17

  Information security key to digital era business models

  Security will become increasingly important as industries seek to collaborate and use each other’s capabilities to enable new business models, with the banking sector leading the way

• April 18, 2017 18 Apr'17

  Lloyds Bank tests biometric authentication from Microsoft

  Banking group is trying out enterprise-grade biometric authentication for its online customers

• April 18, 2017 18 Apr'17

  UK businesses need to up cyber security with one in five hit by attacks

  Big UK businesses are targeted by cyber attacks more heavily, but all need to improve cyber security with one in five UK firms falling victim in the past 12 months, a survey reveals

• April 13, 2017 13 Apr'17

  Interview: Chris Young, chief executive of McAfee

  McAfee’s chief shares his views on Brexit, GDPR, encryption and his company’s new independence in an exclusive UK interview with Computer Weekly

• April 12, 2017 12 Apr'17

  Data breaches strip tens of millions off UK firms’ market value, study shows

  Security experts say the fact that data breaches at FTSE 100 firms cost on average £120m in market value should be a wake-up call for boards to ensure they have an adequate cyber security strategy

• April 11, 2017 11 Apr'17

  Security as a service on the rise in the UAE

  Organisations in the United Arab Emirates are increasingly turning to security services

• April 10, 2017 10 Apr'17

  Wonga warns 245,000 UK customers of cyber breach

  Loan firm urges customers to be vigilant after data breach that may have exposed personal details, including some financial information

• April 07, 2017 07 Apr'17

  MEPs call for European Commission to reassess Privacy Shield

  European parliamentarians have called for an immediate review of the Privacy Shield EU-US data transfer framework due to concerns about privacy protections being undermined in the US

• April 06, 2017 06 Apr'17

  Anti-trust complaints target Microsoft in the European Union

  Microsoft comes under pressure as software suppliers raise market abuse complaints with the European Commission over bundling of Defender security software with Windows

• April 06, 2017 06 Apr'17

  Interview: F-Secure’s Mikko Hyppönen on the Nordics, Russia and the internet of insecure things

  Computer Weekly sat down with Finnish cyber security expert Mikko Hyppönen to talk about security in the Nordics, Russia and the trouble with connected devices

• April 04, 2017 04 Apr'17

  Trump signs bill to repeal Obama-era internet privacy protections

  US president Donald Trump approves the repeal of planned privacy protections, opening the way for ISPs to sell customer browsing data

• March 31, 2017 31 Mar'17

  UK leading in using red team cyber security testing

  Red teaming is set to become a key approach to ensuring cyber security controls and processes are fit for purpose and compliant with regulations, and the UK is leading the way

• March 29, 2017 29 Mar'17

  Thorn CEO on using machine learning and tech partnerships to tackle online child sex abuse

  The CEO of US-based no-profit Thorn explains how cross-industry collaboration and machine learning is helping her organisation stay one step ahead of online child sex abusers

• March 29, 2017 29 Mar'17

  Cyber attacks cost financial firms up to £1.6m a time

  The costs associated with cyber attacks on the financial sector are rising as organisations face increasingly sophisticated threats, research shows

• March 29, 2017 29 Mar'17

  US internet users' browsing history may soon be up for sale

  US president Donald Trump is expected to approve a resolution repealing planned privacy protections that will enable ISPs to sell customer browsing data

• March 28, 2017 28 Mar'17

  Threats grow in Saudi Arabia’s cyber sector

  Saudi Arabia's wealth makes it an attractive target for cyber criminals, but what have been the recent trends in cyber crime?

• March 27, 2017 27 Mar'17

  Nearly half of UK businesses lack a cyber security strategy

  Commentators call on security industry to do more to help businesses understand the value of data and how best to protect it

• March 24, 2017 24 Mar'17

  FBI director reiterates call for action on encryption

  The world is wasting time in resolving the conflict between privacy and public safety, and should consider an international framework on encrypted data access, says FBI director James Comey

• March 20, 2017 20 Mar'17

  Many UK local councils still unprepared for GDPR, ICO survey shows

  The ICO fines the Norfolk Council as it publishes GDPR guidelines for local councils after a survey revealed not all were up to speed in preparations to comply with the new data protection law

• March 17, 2017 17 Mar'17

  Singapore startup partners IBM to pilot blockchain technology

  Invictus’ distributed ledger prototype will offer financing options for small and medium-sized enterprises

• March 09, 2017 09 Mar'17

  GDPR to place extra burden on ICO, says commissioner

  The GDPR and global enforcement work will place an extra work burden on the ICO, but government has collaborated on a new funding plan that is awaiting parliamentary approval

• March 09, 2017 09 Mar'17

  Danish consumer council refers Google to Data Protection Agency

  Danish consumer rights protection organisation has referred Google to regulator over its personal data storage policy

• March 08, 2017 08 Mar'17

  UK should pursue EU data protection adequacy post-Brexit, says ICO

  Post-Brexit, the UK should seek EU data protection adequacy as well as special status regarding the EU Data Protection Board, says information commissioner

• March 06, 2017 06 Mar'17

  European data protection law to give consumers more control

  UK information commissioner calls on business to focus on data protection, not only to comply with the new data regulations, but also foster the digital economy and gain a competitive edge

• March 02, 2017 02 Mar'17

  China calls for mutually-beneficial global co-operation in cyber space

  China is calling for greater international collaboration in cyber space, saying it is committed to working with other countries to combat cyber crime and cyber terrorism

• March 01, 2017 01 Mar'17

  GDPR good for UK business and economy, experts tell Lords’ committee

  Adopting GDPR is good business practice and will put the UK on a good footing post Brexit, but getting an EC data protection adequacy ruling could be challenging due to bulk data collection provisions in the Investigatory Powers Act, experts warn

• March 01, 2017 01 Mar'17

  Liberty begins legal proceedings in challenge to Snoopers’ Charter

  Civil rights group Liberty has begun its legal challenge to the bulk surveillance powers in the new Investigatory Powers Act, setting in motion a judicial review

• February 27, 2017 27 Feb'17

  Singapore university taps Verizon’s cyber security knowhow

  Nanyang Technological University will use the Veris Community Database in a research project to enable more accurate cyber risk assessment

• February 27, 2017 27 Feb'17

  Citizen Love: the story of an ordinary family's fight with the US government

  Finnish documentary makers Raimo Uunila and Lauri Danska tell the behind-the-scenes story of activist Lauri Love’s battle with the US government – and the impact of the case on his family

• February 24, 2017 24 Feb'17

  Number of people hit by professional financial cyber attack grows after lull

  Kaspersky Labs reports that the number of people hit by financial cyber attack grew in 2016 after falling in the previous two years

• February 23, 2017 23 Feb'17

  Dutch banks and ISPs behind in domain security

  Dutch banks are falling behind organisations in other sectors when it comes to securing domains.

• February 21, 2017 21 Feb'17

  Why businesses need a more enlightened approach to phishing attacks

  City firms often fire staff for accidently clicking on phishing emails, but there is a better approach, Intel Security’s Raj Samani tells Computer Weekly

• February 21, 2017 21 Feb'17

  Oracle fleshes out APAC cloud strategy

  Enterprise IT giant Oracle is looking to better serve APAC customers with data sovereignty requirements

• February 20, 2017 20 Feb'17

  Singapore companies to be cloud-first in two years

  Large enterprises in Singapore will think cloud-first, though security remains a bugbear

• February 17, 2017 17 Feb'17

  RSAC17: Former MI5 head calls on infosec community to make world safer

  In a digital era, the information security community has a key role in helping to make the world a safer place, according to former MI5 boss Stella Rimington

• February 17, 2017 17 Feb'17

  Apac companies see cyber security as key to business growth

  Cyber security has enabled Asia-Pacific organisations to enter new markets and deliver services in new ways

• February 15, 2017 15 Feb'17

  RSAC17: US politician calls for global collaboration on cyber defence

  Without greater collaboration, information sharing and clear sanctions against attackers, defenders will continue to lose the war in cyber space, says US politician Michael McCaul

• February 15, 2017 15 Feb'17

  Euroclear automates firewall rule management with AlgoSec

  Post-trade back-office process provider has made the management of firewalls more efficient through security management software

• February 15, 2017 15 Feb'17

  RSAC17: Cyber defence involves all levels of society, says Microsoft

  Microsoft calls for a global convention on cyber security and an independent organisation to keep nation state attackers in check

• February 13, 2017 13 Feb'17

  Middle East organisations urged to prioritise cyber defence

  As the Middle East IT industry continues to transform and embrace digitisation, what are the greatest threats it faces today?

• February 10, 2017 10 Feb'17

  Ordinary citizens with no terror links caught by US surveillance, court hears

  US government has “extraordinary access” to private data of non-US citizens around the world, a Dublin court is told

• February 09, 2017 09 Feb'17

  ASD recommends new cyber security measures to secure critical IT systems

  Australia’s intelligence agency has made four more recommendations after reviewing information assets and systems that require greater protection

• February 08, 2017 08 Feb'17

  Interview: How security approaches are evolving in Southeast Asia and beyond

  Bill Smith, senior vice-president of worldwide field operations at LogRhythm, talks to Computer Weekly about the big shift in cyber security from traditional security models to behavioural anomaly detection, continuous data monitoring and analytics

• February 07, 2017 07 Feb'17

  US weighs email and cloud privacy law

  US privacy advocates and tech firms push for updated email and cloud privacy legislation that has been approved by the House of Representatives, but still requires approval by the US Senate

• February 06, 2017 06 Feb'17

  Google to appeal against order to hand over foreign emails

  UK firms urged to consider the risks of non-UK cloud service providers and to encrypt data in the light of another US warrant to access emails held by a US cloud services firm on non-US servers

• February 02, 2017 02 Feb'17

  EU’s General Data Protection Regulation unknown to most UK adults

  The majority of UK workers are unaware of incoming regulation, leaving employers with work to do on GDPR awareness and coming UK data protection laws in 2017, survey shows

• February 01, 2017 01 Feb'17

  Security of industrial systems must be a top priority

  The idea that hackers could switch off a country’s electricity, water, oil and gas supplies is a nightmare scenario – but it could happen

• February 01, 2017 01 Feb'17

  UK legislation will mirror EU’s GDPR, says Matt Hancock

  The UK plans a full implementation of GDPR and is confident of agreements with the US to ensure uninhibited data exchanges with the EU and US post-Brexit, says digital minister

• February 01, 2017 01 Feb'17

  Cyber Security Agency of Singapore and British security company sign agreement

  Agreement between BAE Systems and CSA aims to develop national cyber security capabilities as part of Singapore’s cyber security strategy

• February 01, 2017 01 Feb'17

  Manufacturers collaborate to secure process control systems

  Nearly 100 companies are working together to develop open standards for process control systems that will bring prices down and improve their resilience to cyber attacks

• January 31, 2017 31 Jan'17

  Australian organisations forced to take cyber insurance seriously

  The take-up of cyber security insurance in Australia remains low, but it could increase if data breach notification regulations come into force

• January 30, 2017 30 Jan'17

  Privacy Shield threat overshadowed by US immigration row

  EU citizens’ rights under the Privacy Shield Act are not directly affected by President Trump's executive order on public safety, according to international law firm Hogan Lovells

• January 30, 2017 30 Jan'17

  Consumers do not trust companies with personal data, survey shows

  UK firms still have much work to do in preparing for GDPR compliance, minimising the risk of identity theft and regaining trust, according to law firm Winckworth Sherwood

• January 27, 2017 27 Jan'17

  GDPR highlighted on Data Protection Day

  Businesses dealing with EU citizens' data urged to ensure they are on track to comply with the GDPR in less than 16 months, as the world marks Data Protection Day 2017

• January 26, 2017 26 Jan'17

  Microsoft’s cloud privacy battle may go to US Supreme Court

  The US Department of Justice is considering going to the Supreme Court after an appeals court refused to revisit its July 2016 landmark ruling blocking government access to Microsoft servers in Ireland

• January 20, 2017 20 Jan'17

  ICO sets out plans to issue GDPR guidance

  Information Commissioner’s Office encourages business to review guidance on the General Data Protection Regulation as it is published to identify what areas need to be addressed in 2017

• January 19, 2017 19 Jan'17

  National crime survey figures show growing cyber crime

  Cyber crime is on the up and is now included in official crime figures

• January 19, 2017 19 Jan'17

  UK firms struggling to manage cyber threats, survey shows

  Businesses want security suppliers to offer more complementary products and collaborate more effectively as they struggle to manage data protection in the light of new laws, a survey shows

• January 13, 2017 13 Jan'17

  Facebook under fire for WhatsApp security backdoor

  A security researcher has discovered a vulnerability in the way WhatsApp implements encryption, raising concerns that it will be exploited by governments to spy on users

• January 13, 2017 13 Jan'17

  Obama administration relaxes NSA data-sharing rules

  Civil liberties organisations express concern at US move to disseminate raw NSA communications surveillance to 16 other government agencies

• January 13, 2017 13 Jan'17

  Davos: Technology poses new risks to jobs, economies and society

  Politicians and business leaders will discuss the risks posed by technology to jobs, political stability and cyber security at the World Economic Forum in Davos

• January 11, 2017 11 Jan'17

  Firms should take note of EC privacy proposals, warns KPMG

  Professional services firm KPMG is urging UK firms to ensure they are prepared for proposed EU privacy rules for electronic communications set to become law by May 2018

• January 10, 2017 10 Jan'17

  Liberty launches cash appeal to challenge Snoopers’ Charter

  Civil rights group Liberty is appealing for donations to raise £10,000 by 8 February 2017 to challenge the lawfulness of bulk surveillance powers in the new Investigatory Powers Act

• January 10, 2017 10 Jan'17

  Cyber security scare stories could sharpen focus at banks

  There are continual cyber attacks on banks, and although most are repelled, there is significant room for improvement

• January 05, 2017 05 Jan'17

  UK youngsters unwittingly exposing private data

  The UK children's commissioner has called for better support for child privacy after study shows most are unknowingly agreeing to share private data

• January 04, 2017 04 Jan'17

  California legislates against ransomware

  US state introduces legislation to make it easier to bring ransomware attackers to justice and jail them for up to four years

• December 22, 2016 22 Dec'16

  Top 10 state surveillance, investigatory powers and activism stories of 2016

  This year saw the UK introduce the Snoopers' Charter, legalising some of the most extensive government surveillance powers in the world. Computer Weekly exposed state monitoring of Parliamentary emails, and reported on activist Lauri Love's legal ...

• December 19, 2016 19 Dec'16

  Review of 2016: Top 10 CW Benelux articles

  Here are the 10 most popular Benelux-focused Computer Weekly articles of 2016

• December 15, 2016 15 Dec'16

  Typo allowed Russian hackers to access US Democratic Party emails

  Typographical mistake in an email warning of a phishing attack on the US Democrats led to thousands of private emails being accessed and published by Russian-backed hackers