News

Regulatory compliance and standard requirements

• September 28, 2016 28 Sep'16

  UK National Cyber Security Centre set to launch

  NCSC is due to launch officially on 1 October 2016 and will help the healthcare sector deliver consistent quality of data security

• September 26, 2016 26 Sep'16

  Yahoo sued over data breach

  Yahoo is facing a class action lawsuit that alleges that the internet firm showed a reckless disregard for the security of its users that resulted in a breach affecting half a billion accounts

• September 21, 2016 21 Sep'16

  Many don’t test disaster recovery plans properly, survey finds

  Nearly 40% of UK organisations do not test disaster recovery plans properly, mainly because of concerns about disruption to production operations

• September 20, 2016 20 Sep'16

  Business warned not to be complacent about cyber security

  Lloyds of London survey reveals just how badly some European firms are failing in terms of cyber security and low levels of awareness about the role of cyber insurance

• September 15, 2016 15 Sep'16

  Cyber security awareness growing within business sector, research shows

  While awareness of cyber security risks is improving, fewer firms know how much an attack is likely to cost them

• September 15, 2016 15 Sep'16

  Cabinet Office role in information security in government not clear

  The UK government has work to do to reduce complexity of security policies, according to the NAO

• September 14, 2016 14 Sep'16

  Crest takes over NSA Cira accreditation

  Crest hopes to grow the accreditation programme into a global initiative to certify cyber response capabilities

• September 14, 2016 14 Sep'16

  NHS trusts and suppliers not ready for end of N3 network

  Network integrator Updata has warned that NHS organisations and network suppliers must mobilise now to get ready for the transition to the Health and Social Care Network next year

• September 13, 2016 13 Sep'16

  UK SMEs have false sense of cyber security

  Many small businesses have the mistaken impression that they are safe from cyber attacks and the huge damage they can cause

• September 13, 2016 13 Sep'16

  Insurance brokers fear regulatory action over SSP Worldwide cloud outage

  Insurance brokers hit out at disaster recovery arrangements, fearing two-week outage could put them at risk of action by Financial Conduct Authority

• September 07, 2016 07 Sep'16

  NSA used Iraq war to develop surveillance capability, documents show

  As the controversial Investigatory Powers Bill inches closer to becoming law, NSA documents reveal that the agency used the Iraq war to develop and expand its surveillance infrastructure

• September 06, 2016 06 Sep'16

  Identity prominent in Australian security debate

  Identity is at the forefront of the cyber security debate in Australia

• September 05, 2016 05 Sep'16

  Microsoft gets wide support in fight against US gagging orders

  Microsoft wins support from a wide range of US organisations in its push back against the secrecy of US government data access requests

• August 30, 2016 30 Aug'16

  Asean ministers discuss Europol equivalent in Singapore

  Governments in Southeast Asia are considering setting up a regional equivalent of Europol to help fight cyber crime

• August 26, 2016 26 Aug'16

  Law firms planning litigation market for GDPR

  Businesses should be preparing for the storm of litigation that is likely to be unleashed when the GDPR goes into force, warns Stewart Room of PwC Legal

• August 22, 2016 22 Aug'16

  Mixed reaction to Anderson review of bulk surveillance powers

  While the Anderson review’s recommendation of a technical advisory panel has been welcomed, human rights groups say the opportunity to move to more targeted surveillance has been missed

• August 19, 2016 19 Aug'16

  No alternative to bulk surveillance powers, says Anderson report

  The government welcomes a review of the controversial Investigatory Powers Bill that found there is no viable alternative to the bulk data collection powers proposed by the bill

• August 15, 2016 15 Aug'16

  Slow response to Privacy Shield EU-US data transfer programme

  Only 40 US firms has been certified under the Privacy Shield transatlantic data transfer programme, but this is expected to gain momentum

• August 10, 2016 10 Aug'16

  UK well equipped to protect data after Brexit, says new ICO head

  The public sector, industry, civil society and the public at large all have a role to play in effective data protection regulation, says new UK information commissioner Elizabeth Denham

• August 10, 2016 10 Aug'16

  IPT fines Police Scotland for communications breach of privacy

  The case comes as the UK government prepares to introduce the Investigatory Powers Bill, which will give sweeping powers for suspicion-less surveillance of telephone, web and email communications

• August 10, 2016 10 Aug'16

  MI5 staff repeatedly overrode data surveillance rules

  Security service MI5 is responsible for 210 “clear contraventions” over five years for the way it accessed private internet and telephone data

• August 08, 2016 08 Aug'16

  Australians vent census privacy concerns

  The Australian census has triggered a privacy debate after it emerged that the citizen data it collects will be held for years

• August 04, 2016 04 Aug'16

  Context warns of VoIP wars at Black Hat USA

  A lack of understanding of modern VoIP and unified communications security opens many service providers and businesses to cyber attack, a Context IS researcher warns at Black Hat USA

• July 29, 2016 29 Jul'16

  Researcher uncovers UK government threat to privacy

  Despite concerns about the draft Investigatory Powers Bill, a legal researcher has highlighted that existing legislation is a much bigger threat to privacy than most UK citizens realise

• July 28, 2016 28 Jul'16

  MI5 accused of compromising security court

  Judges at the UK's most secret court were persuaded not to disclose the existence of secret intrusive data on the population after briefings and lunch with MI5's deputy director general

• July 28, 2016 28 Jul'16

  Most cloud applications not GDPR-ready, report reveals

  Just 2% of more than 15,000 enterprise cloud application analysed are GDPR-ready, according to a cloud risk report

• July 28, 2016 28 Jul'16

  UK’s top security judges struggle to assess privacy threats

  Technological advancements make it difficult for the Investigatory Powers Tribunal to assess privacy threats, say the tribunal’s own judges

• July 27, 2016 27 Jul'16

  Privacy Shield good to go for at least a year, say EU regulators

  Transatlantic data transfer framework approved, but will need more fine-tuning in the first joint review in a year’s time

• July 26, 2016 26 Jul'16

  Date set for landmark hearing into EU-US data transfers

  Irish court hearing triggered by Austrian law student Max Schrems could have huge implications for EU-US trade and the data privacy rights of millions of EU citizens

• July 25, 2016 25 Jul'16

  Australia’s security software spending sees growth spurt

  Australian enterprises are increasingly investing in security software as the threats to data continue to multiply

• July 22, 2016 22 Jul'16

  Jihadists’ digital tools revealed

  A report by dark web intelligence firm Flashpoint reveals how jihadist groups use common security and other tools to hide their digital communications from national security forces

• July 19, 2016 19 Jul'16

  US government joins legal challenge of EU-US data transfers

  Helen Dixon, Ireland’s data protection commissioner, is asking the European Court of Justice to rule on the legality of EU-US data transfers, post-Safe Harbour, in a landmark legal challenge

• July 19, 2016 19 Jul'16

  Private data should only be kept for ‘serious crime’, says European Court

  European Court of Justice lays down the limits of data retention following legal challenge by two UK MPs, and David Davis withdraws his name from legal action after assuming a post in Theresa May’s cabinet

• July 15, 2016 15 Jul'16

  Elizabeth Denham to start as UK information commissioner on 18 July 2016

  Canadian Elizabeth Denham is to begin work as the UK’s information commissioner after a three-week delay

• July 15, 2016 15 Jul'16

  Tech industry welcomes Microsoft victory in data access case

  Tech firms, civil liberties groups and trade bodies welcome what could be a landmark ruling by a US court in protecting the privacy of cloud services

• July 14, 2016 14 Jul'16

  UK business unlikely to dodge EU cyber security rules post-Brexit

  The UK’s Brexit vote has thrown many businesses into uncertainty and doubt about whether they will have comply with the cyber security rules coming out of the EU

• July 13, 2016 13 Jul'16

  Investigatory Powers Bill: rushed through under cover of Brexit

  The government should delay the Investigatory Powers Bill to allow time for proper scrutiny following the political chaos that has engulfed Britain after the Brexit vote

• July 13, 2016 13 Jul'16

  Business lacks certainty despite official adoption of EU-US Privacy Shield

  The European Commission has adopted the EU-US Privacy Shield framework, but businesses still lack clarity and assurance on transatlantic personal data transfers

• July 12, 2016 12 Jul'16

  IBM sets up security centre in Canberra

  IBM leads the charge as large private businesses invest heavily in security resources across Australia in an attempt to close the security gap

• July 12, 2016 12 Jul'16

  Gulf-based Rotana Hotels centralises IT security

  Hotel group implements centralised security management to proactively protect endpoints and achieve accurate security information

• July 08, 2016 08 Jul'16

  EU-US Privacy Shield wins EU backing to proceed

  The US data-transfer agreement wins the backing of the European Union, paving the way for it to come into force

• July 05, 2016 05 Jul'16

  More than 2,000 police data breaches in 4.5 years, report reveals

  Big Brother Watch calls for new policies to ensure police forces keep personal data safe after FOI requests show an average of 10 data breaches a week

• July 01, 2016 01 Jul'16

  First fatality for self-drive cars as Tesla driver killed in crash

  US authorities have launched an investigation after the driver of a Tesla Model S was killed in what is believed to be the first fatality involving an self-drive vehicle

• June 28, 2016 28 Jun'16

  Facebook data case raises US national security issues

  Dublin court case on the legality of Facebook’s data transfers to the US raises issues that affect US national security, claims US Department of Justice

• June 28, 2016 28 Jun'16

  Lauri Love suicide risk if extradited to US over hacking allegations

  Westminster Magistrates’ Court hears evidence from medical experts that alleged hacker Lauri Love is at risk of suicide if extradited to the US

• June 28, 2016 28 Jun'16

  Outgoing information commissioner claims good year for ICO

  The ICO is to discuss with government the implications of the Brexit vote and its effect on data protection reform in the UK, says outgoing information commissioner Christopher Graham

• June 28, 2016 28 Jun'16

  Brexit: Information security professionals not too concerned

  Brexit will present some cyber security challenges – but it will be largely business as usual, say information security professionals

• June 24, 2016 24 Jun'16

  UK IT community rocked but keeping calm in face of Brexit

  The UK IT sector reacts with alarm, tempered by a calm pragmatism, to the British Referendum verdict to leave the European Union. Reporting by the Computer Weekly team

• June 22, 2016 22 Jun'16

  New cyber security law in the offing for Singapore

  Singapore government will table new Cyber Security Bill in 2017 to strengthen its online defences

• June 22, 2016 22 Jun'16

  Act now to save the open internet, says Internet Governance Commission

  The future of the internet is at risk from multiple scenarios, and quick action is needed to protect it, says the Internet Governance Commission

• June 22, 2016 22 Jun'16

  CESG issues challenge to information security professionals

  CESG technical director Jonathan Lawrence tells The Cyber Security Summit that information security professionals need to deliver security controls that help business users achieve their goals securely

• June 21, 2016 21 Jun'16

  US takes on the critics of Prism in Irish court

  The US says social media companies have to do mass surveillance in Europe, while the European Union says they can’t. The Irish court is to decide competing claims

• June 21, 2016 21 Jun'16

  EU workers trust EU countries most with cloud data

  Survey reveals European workers trust EU countries much more than the US with their work data in the cloud

• June 20, 2016 20 Jun'16

  Lower average cost of Australian data breaches is not a sign of comfort

  The average cost of a data breach to Australian organisations dropped in 2015, according to research

• June 20, 2016 20 Jun'16

  Brexit will make UK more vulnerable to cyber attack, say security pros

  A third of security professionals are concerned that a Brexit vote will hamper cyber threat intelligence sharing with EU states

• June 14, 2016 14 Jun'16

  Shadow data and the risks posed by cloud storage and apps

  Cloud storage and apps can open up an organisation to risks of data leakage. Computer Weekly looks at key areas of vulnerability and what you can do to prevent your data going viral

• June 12, 2016 12 Jun'16

  Philippines government data breach is a warning to Asean region

  Security is a rising concern in the Asean region, with fears fuelled by incidents such as the recent hacking incident in Manila

• June 10, 2016 10 Jun'16

  IoT security: Lack of expertise will hurt, says Bruce Schneier

  Government action at national and international levels is essential for addressing IoT security issues, but the relevant expertise is lacking, according to security expert Bruce Schneier

• June 08, 2016 08 Jun'16

  William Hague MP defends Investigatory Powers Bill

  The idea of a 'Snoopers Charter' is ridiculous in the light of current and planned checks and balances around access to communications data, says William Hague

• June 06, 2016 06 Jun'16

  How emails sent to and from Parliament are monitored

  Government officials deny that emails sent by MPs are open to surveillance by GCHQ and NSA - we examine the evidence

• June 02, 2016 02 Jun'16

  More safeguards needed to protect MPs communications, claims parliamentary body

  Joint Committee on Human Rights argues Investigatory Powers Bill protections are ‘inadequate’

• June 01, 2016 01 Jun'16

  MPs’ private emails are routinely accessed by GCHQ

  Computer Weekly investigation reveals the extent of interception of MPs’ and peers’ email communications and data

• May 26, 2016 26 May'16

  Avoiding a security nightmare at South Australia’s Catholic schools

  Taking on the challenge of securing student and organisational data while ensuring easy access to resources

• May 25, 2016 25 May'16

  EC sets out proposals for online platform regulation

  The European Commission has outlined a number of proposals to better regulate the operation of online platforms in the Digital Single Market

• May 25, 2016 25 May'16

  IoT increases cyber and legal risk, say experts

  Organisations embracing the internet of things must be aware of the information security and legal liability risks, experts warn

• May 25, 2016 25 May'16

  Theresa May agrees to review proposed bulk data collection powers

  Labour welcomes the government’s commitment to review bulk data collection powers in the draft Investigatory Powers Bill, but says more change is needed to win the party’s backing

• May 20, 2016 20 May'16

  No trade-off between security and privacy, says Claude Moraes MEP

  Any legislation on encryption should be preceded by an in depth and careful reflection process, says EU Civil Liberties Committee chair Claude Moraes

• May 20, 2016 20 May'16

  NHS data security standards to be designed around technology, people and processes

  The Care Quality Commission’s delayed review of NHS data security standards will encourage NHS organisations to have senior information risk owners and Caldicott Guardians at board level

• May 20, 2016 20 May'16

  Google seeks to limit French right to be forgotten ruling

  Google is to appeal to the top French court to quash a fine and ruling by French privacy watchdog CNIL that requires Google to apply the right to be forgotten to all its websites

• May 13, 2016 13 May'16

  Public cloud uptake rises, but Europe still lags behind the US

  Okta research finds the most popular cloud applications in all regions are mail, sales and marketing, social media and document storage

• May 13, 2016 13 May'16

  10 key facts businesses need to note about the GDPR

  With less than two years before the new EU data protection rules come into force, there are key areas businesses need to focus on to ensure they will be compliant

• May 12, 2016 12 May'16

  ICO probes Google DeepMind patient data-sharing deal with NHS Hospital Trust

  Data protection watchdog the information commissioner's office (ICO) investigates the NHS data-sharing deal with Google DeepMind, after a complaint from the public

• May 10, 2016 10 May'16

  UK court rejects demands for Lauri Love to hand over encryption keys

  Court rules against an attempt by the National Crime Agency to force activist Lauri Love to disclose encryption keys by bypassing the Regulation of Investigatory Powers Act

• May 09, 2016 09 May'16

  Australian health sector an easy target for cyber criminals, says IBM

  A push to encourage greater adoption of electronic health records has raised the spectre of online record theft

• May 09, 2016 09 May'16

  Two-thirds of UK businesses hit by cyber security breaches, but directors remain unaware

  Two-thirds of large UK businesses are hit by cyber security attacks, but directors aren’t told about them, according to a government sponsored report

• May 04, 2016 04 May'16

  D-Day for GDPR is 25 May 2018

  The European Parliament’s official publication of the General Data Protection Regulation means it will become enforceable on 25 May 2018

• April 29, 2016 29 Apr'16

  Cyber security in Belgium will gain prominence after terror attacks

  Belgium’s physical security has been branded inadequate, so how does the country’s cyber security measure up?

• April 29, 2016 29 Apr'16

  International IT trade group urges firms to prepare for GDPR

  Companies that fail to start planning to deal with the EU’s data protection requirements are in for a real shock, warns the International Association of Information Technology Asset Managers

• April 28, 2016 28 Apr'16

  Government approves Elizabeth Denham as next information commissioner

  The Department for Culture, Media and Sport Select Committee approves Elizabeth Denham as the UK’s next information commissioner

• April 28, 2016 28 Apr'16

  Government accepts data ethics council proposal

  The government accepts the House of Commons Science and Technology Committee’s recommendation that a data science ethics council is established at the Alan Turing Institute

• April 25, 2016 25 Apr'16

  Middle East CIOs face numerous data challenges as the regional market matures

  Enterprise IT experts reveal to Computer Weekly the issues local technology leaders face when trying to use, back up and protect their valuable data

• April 25, 2016 25 Apr'16

  Australia pledges A$230m to prevent a ‘lawless’ cyber domain

  Australia's latest cyber security strategy will see the appointment of a cyber ambassador, charged with liaising with other nations

• April 22, 2016 22 Apr'16

  UK information commissioner weighs in on Privacy Shield

  It would be “very sensible” if both the EU and the US answered the questions European data protection authorities are asking about the Privacy Shield pact, according to the UK information commissioner

• April 21, 2016 21 Apr'16

  GCHQ told analysts to assume surveillance 'bulk data' is legal

  Documents obtained by charity Privacy International reveal insights into GCHQ’s collection of sensitive bulk data, as lawyers question the impact of surveillance on legal privilege, fair trials and protection of whistleblowers

• April 21, 2016 21 Apr'16

  Business needs to take GDPR seriously, says UK privacy chief

  The GDPR is about enabling organisations to realise the benefits of the digital era, but it is serious about enforcement for those that do not play within the rules, says UK information commissioner

• April 20, 2016 20 Apr'16

  European Commission ready to splash €50bn on transformational digitisation plan

  A cloud initiative for scientists and technologists among the developments as digital single market moves intensify

• April 20, 2016 20 Apr'16

  GDPR will require 28,000 DPOs in Europe and US, study shows

  The staffing impact of the GDPR will be huge, with 28,000 data protection officers (DPOs) in Europe and the US alone, says the International Association of Privacy Professionals

• April 19, 2016 19 Apr'16

  Three-quarters of Brits unaware of IP Bill, one-third don’t care

  Millions of UK citizens remain in the dark about the reach and scope of the Investigatory Powers Bill, or the so-called Snoopers’ Charter, says Broadband Genie

• April 19, 2016 19 Apr'16

  Research identifies organised cyber threat to Australia

  Researchers have identified the profiles of cyber criminals and identified the one that is the biggest threat to Australian organisations

• April 15, 2016 15 Apr'16

  Microsoft steps up campaign against government surveillance

  Microsoft is the latest technology firm to push back against the secrecy of US government data access requests, which it claims are rapidly increasing in number

• April 14, 2016 14 Apr'16

  Data protection law sails through European Parliament

  The European Union’s new General Data Protection Regulation has successfully passed through the European Parliament

• April 14, 2016 14 Apr'16

  Mixed response to call for more work on Privacy Shield

  The Article 29 Working Group’s call for revisions of the Privacy Shield for trans-Atlantic data transfers is welcomed by those keen for a stronger framework and criticised by those keen to avoid delay

• April 14, 2016 14 Apr'16

  Government surveillance under fire across Europe

  UK and US government surveillance programmes are facing criticism from the courts, MPs and data protection regulators

• April 13, 2016 13 Apr'16

  UK would need its own Privacy Shield deal with EU if it votes for Brexit

  If the UK voted to leave the EU, it could face a difficult negotiation to conform to new data protection regulations, say experts

• April 13, 2016 13 Apr'16

  World’s biggest companies lack maturity in security, says IBM Security

  Many big organisations are still grappling with the challenge of establishing a more cohesive and collective security strategy, says IBM Security

• April 12, 2016 12 Apr'16

  European Court of Justice ruling on Snoopers' Charter delayed until July 2016

  The European Court of Justice (ECJ) will not rule on the legality of the so-called Snoopers’ Charter legislation until after the UK’s June 2016 EU referendum

• April 12, 2016 12 Apr'16

  European Parliament set to approve EU data protection law

  The General Data Protection Regulation (GDPR) is ready for its final rubber stamp this week, with EU countries expected to pass it into law in two years

• April 11, 2016 11 Apr'16

  Activist Lauri Love faces order to disclose encryption keys

  The UK’s National Crime Agency takes an unusual legal step to force a former university student accused of hacking to disclose encryption keys

• April 06, 2016 06 Apr'16

  Panama Papers revealed by graph database visualisation software

  The 11.5 million files leaked from Panama-based law firm Mossack Fonseca are being interrogated by journalists using a combination of Neo4j’s graph database and data visualisation software Linkurious

• April 05, 2016 05 Apr'16

  'Citizens will be stripped naked' by Turkey’s data law

  Turkey's data protection law, introduced in March 2016, will make Turkey a near total surveillance state, yet the EU, apparently more concerned about securing Turkey's help in controlling immigration, is turning a blind eye