News

Regulatory compliance and standard requirements

April 07, 2022 07 Apr'22
MPs and editors sound alarm over threat to Freedom of Information

Government secrecy and trend for departments to block Freedom of Information requests pose a long-term risk to accountability
April 05, 2022 05 Apr'22
Secrecy over police EncroChat hacking is unconstitutional, defence lawyers tell top French court

France’s constitutional court, the Conseil Constitutionnel, has heard arguments that the use of ‘defence secrecy’ to withhold information about police surveillance operations breaches the French constitution
April 05, 2022 05 Apr'22
Discount retailer The Works hit by cyber attack

A small number of The Works’ bricks-and-mortar stores were forced to close amid a cyber attack of an undisclosed nature
April 01, 2022 01 Apr'22
TechUK calls on government to seize post-Brexit data opportunities

Ahead of the government’s reply to its late 2021 consultation about proposed post-Brexit reforms to the data protection regime, TechUK has published a paper declaring six data governance principles

March 31, 2022 31 Mar'22
Global upheaval shows cyber security isn’t good enough, says GCHQ director

Generational global upheaval has laid bare significant gaps in national cyber strategies, GCHQ chief Jeremy Fleming has said in a speech
March 30, 2022 30 Mar'22
One-third of UK firms suffer a cyber attack every week

New statistics from the annual DCMS Cyber security breaches survey reveal the extent and frequency with which UK organisations are being attacked by malicious actors
March 29, 2022 29 Mar'22
Overhaul of UK police tech needed to prevent abuse

Lords inquiry finds UK police are deploying artificial intelligence and algorithmic technologies without a thorough examination of their efficacy or outcomes, and are essentially ‘making it up as they go along’
March 29, 2022 29 Mar'22
FCA reports 52% jump in security incidents

The Financial Conduct Authority received 116 cyber incident reports in 2021, a fifth of them involving ransomware
March 29, 2022 29 Mar'22
Singapore rolls out cyber security certification scheme

Two new cyber security marks are expected to provide an edge for Singapore businesses with good cyber security practices
March 28, 2022 28 Mar'22
IT professionals wary of government campaign to limit end-to-end encryption

Members of the Chartered Institute of IT, the professional body for technology professionals in the UK, warn against limiting end-to-end encryption

March 25, 2022 25 Mar'22
US offers concessions on surveillance and privacy as EU and US agree successor to Privacy Shield

EU and US agree data privacy framework allowing trans-Atlantic data transfers after US offers concessions on surveillance and new rights of redress for EU citizens
March 23, 2022 23 Mar'22
NHS urgent care provider uses ID and access management to reduce complexity for clinicians

Provider of care through NHS 111 is using a cloud-based identity and access management system to remove the need for clinicians to remember multiple passwords
March 21, 2022 21 Mar'22
Siloed data holding back coordinated health responses

Digital health experts discuss the role of data in coordinating the NHS’s pandemic response and how managing privacy and governance issues are key to further success
March 17, 2022 17 Mar'22
Kaspersky CEO: Ukraine war must end through diplomacy

Eugene Kaspersky speaks out on the war in Ukraine, and rebuffs Germany’s BSI, branding its warnings over his company’s trustworthiness as insulting
March 17, 2022 17 Mar'22
Online Safety Bill introduced in Parliament

The government has introduced its long-awaited Online Safety Bill in Parliament, alongside new criminal offences and sanctions for tech company execs
March 16, 2022 16 Mar'22
Biden signs ransomware reporting mandate into law

CNI operators in the US must now report cyber attacks within 72 hours, and ransomware payments within 24 hours
March 16, 2022 16 Mar'22
Two men convicted after using EncroChat cryptophones to plot killing

Evidence from the encrypted phone network EncroChat led to the conviction of two men for conspiracy to murder
March 15, 2022 15 Mar'22
Meta fined €17m over EU data breaches

The Irish Data Protection Commissioner has fined Meta after finding it in breach of GDPR rules
March 11, 2022 11 Mar'22
Police EncroChat cryptophone hacking implant did not work properly and frequently failed

Surveillance operation against EncroChat encrypted phone network had repeated technical failures
March 09, 2022 09 Mar'22
Paid-for advertising measures included in Online Safety Bill

New measures to deal with fraudulent paid-for advertising have been included in the government’s draft Online Safety Bill, marking the fourth extension in two months
March 09, 2022 09 Mar'22
Microsoft serves up three zero-days on March Patch Tuesday

Three zero-days pop up in Microsoft’s March update, along with a number of other noteworthy concerns for defenders
March 07, 2022 07 Mar'22
Ukraine joins Nato cyber knowledge hub

Ukraine is to become a contributing participant in Nato’s Cooperative Cyber Defence Centre of Excellence
March 04, 2022 04 Mar'22
Scrapping NHS Digital a backward step for patient data rights

Former NHS Digital chair Kingsley Manning has spoken out over proposals to fold NHS Digital into NHS England, saying that more oversight is needed to safeguard patient data in light of recent events
March 04, 2022 04 Mar'22
Microsoft stops sales of products and services to Russia

Citing sanctions and cyber security concerns, Microsoft has become the latest company to withdraw from the Russian market
March 03, 2022 03 Mar'22
Boardroom does not see ransomware as a priority

Less than a quarter of company directors think ransomware is a top priority for their security teams, according to Egress
March 03, 2022 03 Mar'22
Nato Cyber Security unit tests post-quantum VPN

Nato’s Cyber Security Centre has successfully tested secure communication flows in a post-quantum world using a UK-designed VPN
March 03, 2022 03 Mar'22
Direct action is a risky business for Ukraine's volunteer hackers

Hackers have been responding to Ukraine’s call to create an IT army, but there are many reasons why taking direct action in a kinetic conflict is a bad idea
March 01, 2022 01 Mar'22
DCMS opens consultation on telecoms cyber standards

Proposed rules will set out the specific measures telecoms providers need to take to fulfil their legal duties under the Telecommunications Security Act
February 25, 2022 25 Feb'22
Irish data watchdog calls for ‘objective metrics’ for big tech regulation

Helen Dixon, Ireland’s data protection commissioner, says EU regulators must agree on metrics to measure the effectiveness of data protection regulation
February 23, 2022 23 Feb'22
Attempted burglary exposes risk of NatWest customer data in former worker’s home

Former Royal Bank of Scotland employee offers bank a compromise in her dispute over the return of confidential customer information
February 16, 2022 16 Feb'22
2021 another record year for UK cyber investment

Total revenue generated by the UK’s cyber sector was up 14% last year, and UK-registered security firms raised over £1bn in investment
February 16, 2022 16 Feb'22
Cloud Security Alliance publishes guidelines to bridge compliance and DevOps

The Cloud Security Alliance has published a report detailing practices that organisations can adopt to bridge the gap between compliance and software development and operations
February 11, 2022 11 Feb'22
CMA secures final Privacy Sandbox guarantees from Google

The CMA has secured a final set of Privacy Sandbox commitments from Google relating to the proposed removal of third-party cookies from its Chrome browser
February 11, 2022 11 Feb'22
Lack of knowledge disastrous for effective security strategy within Dutch companies

Most Dutch companies still haven’t realised that security is an integral part of their IT and company strategy
February 11, 2022 11 Feb'22
Hackney Council could be forced to answer questions about IT security training after Psya ransomware

Council is negotiating with the information commissioner after refusing to reply to questions under the Freedom of Information Act about staff IT and security training during the pandemic
February 10, 2022 10 Feb'22
How diplomatic immunity silenced the prosecutor who coordinated Sweden’s EncroChat probe

Defence lawyers claim Swedish court decision not to hear evidence from a Swedish prosecutor leaves important legal questions unanswered over international police operation to hack EncroChat cryptophone network
February 10, 2022 10 Feb'22
UK second in money laundering hall of shame

Banks need to step up their anti-money laundering processes if billions of pounds’ worth of criminal activity is to be prevented
February 09, 2022 09 Feb'22
Minister defends digital economy legislation before Lords

A digital minister has said that the UK’s forthcoming digital markets legislation is ‘superior’ to similar efforts in the EU, but could not commit to a specific time frame for when it will be introduced to Parliament
February 09, 2022 09 Feb'22
Tech companies risk being compelled by law to protect children, says online safety expert

John Carr, a child safety campaigner backing a government-funded campaign on the dangers of end-to-end encryption to children, says tech companies have no choice but to act
February 08, 2022 08 Feb'22
The Security Interviews: Building the UK’s future cyber ecosystem

As the government lays out the next iteration of its Cyber Security Strategy, we speak to Plexal and Lorca’s Saj Huq about his work building a cyber ecosystem to support the UK’s future ambitions
February 08, 2022 08 Feb'22
Parasol data breach: Contractors rage as fallout from umbrella cyber attack continues

Contractors working for the Parasol umbrella company are querying why it has taken so long for news of the firm's data breach, which is linked to a cyber attack on its systems five weeks ago, to come to light
February 08, 2022 08 Feb'22
Porn sites will be legally required to verify users’ ages

Porn sites could be legally obliged to verify that their users are 18 or over under proposed online safety rules, in UK government’s second attempt to prevent children from accessing pornography online
February 03, 2022 03 Feb'22
Brookson and Parasol cyber attacks: Contractor complaints about delayed payments continue

Several weeks on from the suspected ransomware attack that blighted two of the umbrella industry’s biggest players, contractors are still chasing their missing money
February 03, 2022 03 Feb'22
French Supreme Court raises constitutional questions over EncroChat hacking secrecy

Conseil Constitutionnel to decide whether ‘defence secrecy’ over state EncroChat cryptophone hacking breaches French constitution
February 02, 2022 02 Feb'22
Mechanism underlying cookie popups found in breach of GDPR

A fundamental element of the mechanism by which the advertising industry requests tracking consent from web users has been found in breach of the General Data Protection Regulation
February 02, 2022 02 Feb'22
Reforms needed to tackle economic crime, says Treasury Committee

The Treasury Committee is disappointed at progress towards tackling economic crime and fraud in both the online and offline worlds, and is calling for more action
February 01, 2022 01 Feb'22
Met Police faces legal action over Gangs Matrix

Campaign group Liberty is taking legal action against the Met over its use of the Gangs Matrix, claiming it is driven by racial stereotypes and disproportionately affects people from black and minority ethnic backgrounds
January 31, 2022 31 Jan'22
Data on children of armed forces personnel exposed in breach

Data on 4,142 children of serving armed forces personnel was exposed in a data breach at the Ministry of Defence
January 28, 2022 28 Jan'22
Cyber skills gap affecting data privacy practice, finds ISACA

Organisations are struggling to fill both legal and technical privacy roles, with potentially damaging consequences, according to a report
January 26, 2022 26 Jan'22
MPs to debate landmark IoT security law

Proposed bill mandates tighter protections for connected products, and adds new rules for broadband roll-out into the bargain