News

Regulatory compliance and standard requirements

March 09, 2020 09 Mar'20
Bill Gates backs Crest fintech security scheme for Africa and Asia

UK-based cyber security accreditation and certification non-profit Crest has been awarded a $1.4m grant from the Bill and Melinda Gates Foundation to expand cyber security capacity for fintechs in Africa and Asia
March 06, 2020 06 Mar'20
Virgin Media confirms 'misconfigured database' left personal data of 900,000 people exposed

Telco provider Virgin Media confirms 'data incident' that left personal details of 900,000 people exposed, but denies its systems were hacked or that it suffered a data breach
March 05, 2020 05 Mar'20
Cathay Pacific hit with £500,000 data protection fine from ICO over 2018 breach

Airline receives maximum financial penalty under Data Protection Act for data breach that led to nine million customers having their personal data accessed by hackers
March 04, 2020 04 Mar'20
Australian government pulls plug on cloud certification programme

The Australian Signals Directorate is closing its cloud services certification programme to allow for more home-grown suppliers

March 03, 2020 03 Mar'20
Singapore among world’s top sources of online threats

Singapore remained a hotspot for originating cyber attacks in 2019, with 11 million attacks launched from servers in the city-state
March 01, 2020 01 Mar'20
Data breaches in Australia showing no signs of abating

Compromised login credentials and human error were the most common causes of data breaches reported under Australia’s notifiable data breach regime from July to December 2019
February 27, 2020 27 Feb'20
Clearview hack fuels debate over facial recognition

Customers of Clearview AI, a controversial startup that scrapes and sells billions of photos of people from social media to police forces, have found themselves at the centre of a major data breach
February 26, 2020 26 Feb'20
FCA data breach could happen to anybody, but easy to avoid

Minor data breach at the Financial Conduct Authority was the result of simple human error, and highlights the need for organisations to consider a wide range of potential threats
February 26, 2020 26 Feb'20
Met Police chief backs legislative framework for police tech

Met Police commissioner has called for legislative framework to govern police use of new technologies, while defending the decision to use live facial recognition technology operationally without it
February 25, 2020 25 Feb'20
Google warns users not to mess with Huawei devices

Google tells users of Huawei devices to try to avoid bypassing controls preventing them from loading its apps

February 25, 2020 25 Feb'20
Cloud data leaks compounded by lack of automation tools

Data leaks caused by misconfigured clouds are being compounded because security teams lack appropriate automation and integration tools, according to a report
February 24, 2020 24 Feb'20
Thai university to roll out data protection certification

Thailand’s National Institute of Development Administration is offering a certification programme to get organisations ready for the country’s data protection regime
February 24, 2020 24 Feb'20
Assange extradition is a politically motivated ‘abuse of power’, court hears

US government’s attempt to extradite WikiLeaks founder Julian Assange to face espionage charges in the US is politically motivated and an abuse of process, court told
February 19, 2020 19 Feb'20
Blasé directors put business data at risk

The higher up within a business you go, the more likely you are to find people intentionally leaking confidential data, says Egress
February 18, 2020 18 Feb'20
Most CISOs ready to move jobs if something better comes along

The shortage of skilled security pros is creating an active recruitment market, with over 80% of CISOs saying they would consider a new role if approached
February 18, 2020 18 Feb'20
Veeam Availability Suite v10 adds NAS backup and cloud tiering

Availability Suite is mostly about consolidating the company’s data management platform idea, but it has added incremental forever NAS backup, cloud tiering and recovery to vSphere
February 17, 2020 17 Feb'20
Mastercard opens European security resilience unit

Mastercard’s European Cyber Resilience Centre will bring together its partners and other industry bodies to support enterprise resilience
February 14, 2020 14 Feb'20
PM Johnson shuffles technology and digital ministers again

Boris Johnson has changed all the key Cabinet appointments responsible for tech and digital policy for the second time since becoming prime minister last year
February 11, 2020 11 Feb'20
MI5 failed to disclose failings in handling intercepted data, court hears

MI5 failed to disclose serious failures in the way it handled intelligence data to the Investigatory Powers Tribunal, the surveillance regulator and ministers.
February 11, 2020 11 Feb'20
Tencent Cloud gains multi-tier cloud security certification

China's Tencent Cloud joins major cloud suppliers in securing tier three of Singapore’s Multi-Tier Cloud Security standard in a bid to grow its presence in Asia
February 10, 2020 10 Feb'20
Police use of facial recognition ‘unjustifiable’, says Scottish Justice Committee

Members of the Scottish Parliament have said police use of live facial recognition technology is “not fit for purpose”
February 10, 2020 10 Feb'20
What should be in Australia’s next cyber security strategy

The Australian government is reviewing the nation’s cyber security strategy, but is it looking at the right issues?
February 10, 2020 10 Feb'20
Norway braces for possible China backlash over 5G loss

Norway fears trading relationship with China will suffer as a result of Huawei losing 5G contract to Ericsson
February 06, 2020 06 Feb'20
Stressed, overworked CISOs losing £23k a year in unpaid overtime

Nominet’s latest CISO Stress Report has revealed the extent to which organisations are taking advantage of their security staff, and the deleterious effects of overwork and stress on mental health
February 04, 2020 04 Feb'20
Social media targeting algorithms need regulation, says CDEI

The Centre for Data Ethics and Innovation is recommending regulation of social media algorithms as part of a drive to make user targeting safe and ethical
February 04, 2020 04 Feb'20
MI5 faces court ruling over unlawful surveillance warrants

Privacy groups Liberty and Privacy International ask the Investigatory Powers Tribunal to order MI5 to disclose full details of ‘unlawful’ conduct, after classified documents reveal the spy agency failed to comply with surveillance laws
February 03, 2020 03 Feb'20
NHS adds supplier security audits to procurement platform

A new feature in the NHS’s Edge4Health procurement platform will help NHS suppliers improve their cyber security posture and NHS organisations make better buying decisions
January 31, 2020 31 Jan'20
Davos: The clock is ticking on climate change but cyber crime and emerging technologies add to risks

Climate change, natural disasters, extreme weather and loss of biodiversity are the greatest risks we face. With cyber conflicts, state-sponsored hacking and internet fragmentation, doing nothing is not an option, says the World Economic Forum
January 30, 2020 30 Jan'20
NCSC launches study on cyber security diversity

The UK’s National Cyber Security Centre wants to improve the diversity of the cyber security sector
January 30, 2020 30 Jan'20
Avast cans data harvesting subsidiary after outcry

Avast will close its Jumpshot big data unit following repeated allegations of inappropriate handling of customer data
January 29, 2020 29 Jan'20
UK cyber security sector worth more than £8bn

The UK’s cyber security industry employs 43,000 full-time workers, and contributed nearly £4bn to the UK economy in 2019, according to DCMS
January 29, 2020 29 Jan'20
NHS suffers fewer ransomware attacks, but threat persists

Ransomware attacks against the NHS have tapered off dramatically, according to statistics obtained under FoI legislation, but this does not mean the threat has diminished
January 28, 2020 28 Jan'20
Data privacy benefits outweigh spend, says Cisco

Cisco’s 2020 data privacy study shows organisations can generate substantial returns on their data privacy and protection spending
January 27, 2020 27 Jan'20
Interpol uncovers cyber crime operation in Indonesia

An Interpol-coordinated cyber operation leads to the arrest of three people in Indonesia who allegedly used a JavaScript-sniffer malware to steal payment card details of online shoppers
January 27, 2020 27 Jan'20
Met Police to launch facial recognition operationally

Despite the continuing controversy around its use, the Metropolitan Police will be deploying live facial recognition across the capital
January 27, 2020 27 Jan'20
SANS Institute calls on Manchester security pros

Manchester will play host to a week-long cyber security training event during February
January 24, 2020 24 Jan'20
Cyber gangsters publish staff passwords following ‘Sodinokibi’ attack on car parts group Gedia

Sodinokibi hacking group steps up pressure on German automotive manufacturer by publishing information, including the CEO’s computer password and sensitive details of its IT systems, on the internet
January 23, 2020 23 Jan'20
Seven projects funded to explore CAV security

The winners of the Cyber Securities Feasibility Studies contest, exploring cyber security for self-driving cars, have been revealed
January 23, 2020 23 Jan'20
End-user security ignorance laid bare in new report

Proofpoint’s 2020 State of the Phish report highlights an urgent need for better user training and reporting
January 22, 2020 22 Jan'20
Computer Misuse Act ‘crying out for reform’

Group of campaigners says the Computer Misuse Act of 1990 risks criminalising cyber security professionals and needs reforming
January 22, 2020 22 Jan'20
ICO code sets out digital privacy standards for children

The Information Commissioner’s Office has published its Age Appropriate Design Code, a set of 15 standards that online platforms must meet to protect the privacy of younger users
January 21, 2020 21 Jan'20
Singapore updates model AI governance framework

Second edition of Singapore’s artificial intelligence governance framework includes new guidance, use cases and a self-assessment guide
January 21, 2020 21 Jan'20
5G builders test vulnerabilities in Finnish hackathon

University hackathon puts 5G security to the test as new wireless technology’s roll-out nears
January 21, 2020 21 Jan'20
High-street banks face disruption three weeks after Travelex hack

Foreign exchange services still disrupted, three weeks after Travelex received a $6m ransom demand from cyber gangsters
January 20, 2020 20 Jan'20
GDPR nets more than €100m in fines, with more to come

Fines totalling €114m have already been collected under GDPR, and this figure will spike in 2020 if the UK regulator succeeds in imposing record fines on BA and Marriott
January 17, 2020 17 Jan'20
CAA debuts aviation cyber security assurance scheme

Civil Aviation Authority and Crest announce the first companies to be accredited under the CAA’s new cyber security oversight scheme, Assure
January 16, 2020 16 Jan'20
UK’s phone and internet bulk data surveillance unlawful, says EU court opinion

The Advocate General of the European Court of Justice issues legal opinions finding that the UK, French and Belgian bulk surveillance regimes are unlawful
January 16, 2020 16 Jan'20
Thailand gets ready for data protection law

Thailand’s personal data protection law comes into effect in May 2020, subjecting organisations to new rules that safeguard the personal data of individuals
January 15, 2020 15 Jan'20
LGBTQ+ social app Grindr accused of breaching GDPR

Norwegian Consumer Council files complaints about LGBTQ+ social networking app, alleging it is in breach of the General Data Protection Regulation
January 15, 2020 15 Jan'20
Threat landscape grew in complexity in 2019, no respite in sight

Check Point’s annual state of security report shares some 2019 trends and looks ahead to 2020