News

Regulatory compliance and standard requirements

• August 26, 2021 26 Aug'21

  Tech giants commit to Biden's cyber security action plan

  Some of the world’s most prominent tech giants have made a series of commitments to enhance the US’ national cyber security posture following a high-profile meeting with president Biden

• August 26, 2021 26 Aug'21

  Government unveils post-Brexit data flow proposals

  The government will pursue data partnerships with countries including Australia, South Korea and the US as part of a post-Brexit data regime that may also see substantial changes to the UK’s data protection law

• August 26, 2021 26 Aug'21

  NZ privacy lead John Edwards named new information commissioner

  DCMS has named John Edwards, currently New Zealand privacy commissioner, to succeed Elizabeth Denham as UK information commissioner

• August 25, 2021 25 Aug'21

  Calling the cops for ransomware attacks doesn’t help, say cyber pros

  A new study for the #Ransomaware campaign reveals some insight into why so few victims report ransomware attacks

• August 25, 2021 25 Aug'21

  UK loses £1.3bn to fraud and cyber crime so far this year

  New figures from the National Fraud Intelligence Bureau show a threefold spike in reported financial losses to fraud and cyber crime in the first six months of 2021

• August 24, 2021 24 Aug'21

  Over a million opt out of NHS data-sharing

  Failure to communicate benefits of data-sharing proposals and privacy concerns are prompting large numbers of people to opt out of a proposed NHS Digital scheme

• August 24, 2021 24 Aug'21

  Campaign groups claim police have bypassed Parliament with plans for live facial-recognition tech

  Civil society groups call for Parliament to scrutinise the use of live facial-recognition cameras

• August 24, 2021 24 Aug'21

  More data breaches in Australia arising from ransomware

  The number of data breaches in Australia arising out of ransomware attacks grew by 24% during the first half of 2021, according to OAIC’s latest data breach report

• August 17, 2021 17 Aug'21

  Educational publisher Pearson fined for data breach cover-up

  Securities and Exchange Commission says publisher misled its investors over the extent of a 2018 data breach

• August 13, 2021 13 Aug'21

  UN special rapporteurs call for surveillance tech moratorium

  In the wake of revelations about NSO Groups Pegasus spyware, a number of special rapporteurs from the United Nations are re-igniting calls for a global moratorium on the sale and transfer of surveillance technologies

• August 13, 2021 13 Aug'21

  Cyber Runway programme supports new security businesses

  The Cyber Runway programme is a government-backed scheme to support entrepreneurs, startups and scaleups in launching and growing new security businesses

• August 13, 2021 13 Aug'21

  Hospitals see cyber security investment as a low priority

  Almost half of hospitals have experienced an IT shutdown as a result of a cyber attack in the past six months, but just over one in 10 hospital executives see cyber security investment as a high priority

• August 11, 2021 11 Aug'21

  The Netherlands still lacks digital resilience, says report

  Report by National Coordinator for Counterterrorism and Security says the Netherlands’ digital resilience has improved, but is still insufficient

• August 10, 2021 10 Aug'21

  Third of finance firms accelerate use of artificial intelligence to detect money laundering

  Financial services firms are stepping up their use of artificial intelligence and machine learning technology to fight increasing money laundering activity

• August 10, 2021 10 Aug'21

  Researchers uncover database with 126 million unsecured records

  Business-to-business marketing firm OneMoreLead was storing tens of millions of records in an unsecured database, exposing at least 63 million people to fraud, identify theft and phishing campaigns

• August 04, 2021 04 Aug'21

  Leading venture capital firms are failing to protect human rights

  Venture capital firms and high-profile tech accelerators are not conducting human rights due diligence on their investments, which means they cannot be sure the companies they invest in are not causing, or contributing to, human rights abuses

• August 02, 2021 02 Aug'21

  Government publishes second version of digital identity trust framework

  The second iteration of the framework, still in alpha version, sets out how organisations can become certified digital identity service providers

• July 29, 2021 29 Jul'21

  Investigatory Powers Tribunal finds UK spy agencies unlawfully collected personal data

  Campaign groups Privacy International and Liberty are gearing up to bring further legal action after a court found that UK spy agencies unlawfully collected phone and internet records

• July 28, 2021 28 Jul'21

  Almost half unaware of GP data-sharing plans

  Around half of adults in England – approximately 20 million people – remain unaware of the scope of the NHS GPDPR programme, prompting calls for a public education campaign

• July 27, 2021 27 Jul'21

  ICO ends its involvement in dispute between NatWest Bank and data breach whistleblower

  The Information Commissioner’s Office has ended its involvement in a dispute between a data breach whistleblower and NatWest bank

• July 27, 2021 27 Jul'21

  TikTok sets up cyber security hub in Dublin

  Dublin-based cyber centre will oversee the security of TikTok’s users across Europe

• July 27, 2021 27 Jul'21

  How IBM is solving the data privacy problem

  IBM’s fully homomorphic encryption technology lets enterprises apply analytics and machine learning to encrypted data without compromising data privacy

• July 25, 2021 25 Jul'21

  OAIC: Uber failed to protect personal data of Australians

  Uber did not take reasonable steps to protect Australians’ personal information from unauthorised access, says Australia’s national privacy watchdog

• July 22, 2021 22 Jul'21

  Respect in Security challenges abuse and harassment in cyber

  With around a third of cyber pros saying they have personally experienced harassment at work or online, a new initiative is urging organisations to pledge their support to help free the community from the scourge of abuse. We met its founders

• July 21, 2021 21 Jul'21

  France’s Macron among alleged Pegasus targets

  Data relating to devices used by French president Emmanuel Macron and the head of the World Health Organization, among others, has been uncovered in a dataset linked to government use of spyware

• July 20, 2021 20 Jul'21

  NHS Digital tightens rules for GPDPR data scrape

  The proposed collection of patient data held by GPs will now only commence when three key criteria have been fulfilled, says NHS Digital

• July 19, 2021 19 Jul'21

  Privacy Shield: One year on and companies are still grappling for answers

  Activist lawyer Max Schrems and Eduardo Ustaran, partner at Hogan Lovells, look for common ground in a problem with no easy answers

• July 15, 2021 15 Jul'21

  Macquarie Data Centres to build Sydney North facility

  Macquarie Data Centres’ latest 32MW facility will come with a cyber security centre that monitors and manages cyber security events

• July 15, 2021 15 Jul'21

  Lawyers take EncroChat hacking operation to French supreme court

  Lawyers head to French supreme court after appeals court finds EnroChat inception legal under French law

• July 15, 2021 15 Jul'21

  Privacy Shield: US surveillance law reforms essential for EU-US data, says EU parliamentary study

  EU Committee on Civil Liberties, Justice and Home Affairs study calls for major reforms of US spying laws to enable an EU-US data-sharing agreement to replace Privacy Shield

• July 15, 2021 15 Jul'21

  Singapore to invest S$50m in ‘digital trust’ capabilities

  The Singapore government is pumping in S$50m to bolster research in technologies that will foster digital trust in areas such as privacy protection and identity management

• July 13, 2021 13 Jul'21

  Regional cyber clusters score £700k of funding

  DCMS has awarded £700,000 of funding to a network of 20 regional cyber clusters

• July 13, 2021 13 Jul'21

  Secureworks sets up in EU datacentre for XDR services

  New datacentre location helps Secureworks’ customers meet EU data residency requirements

• July 13, 2021 13 Jul'21

  UK Cyber Security Council calls for new push on training

  Too many companies have cut back on security training and development during the pandemic, says UK Cyber Security Council

• July 13, 2021 13 Jul'21

  Met Police seize £180m worth of Bitcoin

  The largest ever seizure of cryptocurrency in the UK comes just weeks after a previous multi-million pound confiscation, as law enforcement clamps down on money laundering

• July 12, 2021 12 Jul'21

  Kaseya VSA services coming online after week-long outage

  Kaseya has successfully deployed a patch to its ransomware-hit VSA product as per a revised schedule, and customers are beginning to come back online

• July 07, 2021 07 Jul'21

  US government given permission to appeal UK’s decision to not extradite Julian Assange

  US offers assurances that Assange could serve time in his home country of Australia if convicted

• July 07, 2021 07 Jul'21

  ICO to probe Hancock over private email use

  Former health secretary faces an investigation by the UK’s data protection watchdog over his use of private email to conduct government business

• July 07, 2021 07 Jul'21

  How the UK Cyber Security Council plans to professionalise security

  As chair of the new UK Cyber Security Council, Claudia Natanson is in a superb position to develop professional standards in IT security and she intends to fundamentally reimagine what a security job actually is

• July 06, 2021 06 Jul'21

  Cyber insurance costs up by a third

  The frequency and severity of ransomware attacks is a leading factor behind a substantial increase in the cost of obtaining cyber security insurance

• July 06, 2021 06 Jul'21

  BA reaches settlement in data breach group action

  A group action against BA following its 2018 data breach has been successfully settled

• July 03, 2021 03 Jul'21

  Berlin court finds EncroChat intercept evidence cannot be used in criminal trials

  In a major setback for police hacking operations, Berlin’s regional court has decided that intercepted data from the EncroChat phone network should not be used in criminal prosecutions

• July 02, 2021 02 Jul'21

  Cyber attackers up the ante on embattled IT teams

  Opportunistic threat actors are pouncing on embattled IT teams that are under pressure to expand remote work arrangements

• July 01, 2021 01 Jul'21

  US Cybersecurity and Infrastructure Security Agency launches ransomware assessment tool

  Newly launched service will help US organisations understand how prepared they are to deal with a ransomware attack

• July 01, 2021 01 Jul'21

  Nominations open for 2021 Security Serious Unsung Heroes Awards

  Nominations are now open for this year’s edition of the Unsung Heroes Awards for cyber professionals and educators

• June 30, 2021 30 Jun'21

  Half of mobile phones sold in the UK at risk of security issues

  Lengthy mobile phone contracts leave buyers at risk of their devices losing support for security updates

• June 30, 2021 30 Jun'21

  LinkedIn denies exposure of 700 million user records is a data breach

  Data relating to 700 million users of the LinkedIn networking platform has appeared for sale, but the firm says it is the victim of data scraping, not a security breach

• June 29, 2021 29 Jun'21

  UK Cyber Security Council launches inaugural initiatives

  Security association seeks to determine terms of reference for committees to oversee standards and ethics, and qualifications and careers in the cyber sector

• June 29, 2021 29 Jun'21

  EU recognises UK data protection adequacy but warns against divergence

  The European Commission has granted the UK data adequacy, allowing data sharing between the EU and the UK, but warns it may yet be revoked

• June 28, 2021 28 Jun'21

  Insurers unprepared for challenges of underwriting ransomware

  RUSI think tank calls for an industry-wide reset amid intense challenges for providers of cyber security insurance