News

Regulatory compliance and standard requirements

• January 24, 2019 24 Jan'19

  Business failing to see strategic value of cyber security

  UK businesses are failing to get value out of cyber security because they fail to see its strategic importance and often have a negative attitude towards security professionals, a study has revealed

• January 24, 2019 24 Jan'19

  AWS now accredited to run protected workloads in Australia

  Accreditation from the Australian Cyber Security Centre will enable organisations to store and process sensitive data in the Amazon Web Services Sydney region

• January 23, 2019 23 Jan'19

  Facebook’s objections to court concerns over privacy more about ‘optics’ than facts

  Facebook’s challenge to a High Court ruling that raises serious concerns about data transfers between Europe and the US is more about appearance than facts, lawyers for the Irish Data Protection Commission told Dublin's Supreme Court

• January 23, 2019 23 Jan'19

  Time to deploy strong authentication, says Fido

  The time has come for organisations to deploy cryptographically backed strong authentication, according to the Fido Alliance, which seeks to eliminate the world’s dependence on password-based security

• January 22, 2019 22 Jan'19

  €50m GDPR fine for Google is a wake-up call for tech giants

  The French data protection authority has fined Google €50m for contravening EU data protection laws, which has been hailed as a warning for tech giants and other data handling firms

• January 21, 2019 21 Jan'19

  Home Office vetoes privacy campaigner from senior post in surveillance watchdog

  The Home Office refuses academic and privacy campaigner, Eric King, security clearance for a senior role at the intelligence services watchdog, despite high-level backing from officials

• January 18, 2019 18 Jan'19

  Five issues for SMEs to consider when adopting encryption

  Encryption is still considered difficult to deploy and use as a data protection method, especially by small businesses, but considering five key factors can make adoption easier, says Becrypt

• January 18, 2019 18 Jan'19

  Prepare for no-deal Brexit, says ICO

  The UK data protection authority is urging businesses to prepare for a no-deal Brexit to ensure there is no interruption in data flows from Europe

• January 16, 2019 16 Jan'19

  New Zealand faces more state-sponsored attacks

  Nearly four in 10 cyber security incidents recorded by the National Cyber Security Centre were the work of state-sponsored threat actors

• January 15, 2019 15 Jan'19

  Less than half of firms able to detect IoT breaches, study shows

  UK firms have one of the lowest internet-of-things device breach detection capabilities in Europe, a study reveals

• January 15, 2019 15 Jan'19

  SingHealth and IT supplier fined S$1m for data breach

  Singapore’s data protection commission considered the fact that both SingHealth and its IT supplier fell prey to sophisticated threat actors, among other factors, when meting out the fine

• January 10, 2019 10 Jan'19

  Right to be forgotten is not global, says EU court adviser

  The right to be forgotten should apply only in the European Union, according to the chief adviser to the European Court of Justice

• January 04, 2019 04 Jan'19

  Data breaches affected more than a billion people in 2018

  The personal information of more than a billion people was compromised in 2018 as companies holding the data failed to keep it safe

• January 03, 2019 03 Jan'19

  IT regulators and practitioners need common language

  There needs to be greater understanding between lawmakers and technologists to ensure regulations do not have unintended consequences, says a US computer security researcher and bug bounty pioneer

• January 03, 2019 03 Jan'19

  Fortinet to lead cyber security discussion at WEF annual summit

  The head of cyber security firm Fortinet has been named as a discussion leader at the upcoming World Economic Forum annual meeting in Davos, Switzerland

• December 20, 2018 20 Dec'18

  Marriott data breach losses could be over half a billion dollars

  Direct losses related to a huge data breach at US hotel group could reach $600m

• December 19, 2018 19 Dec'18

  Lauri Love battles police for return of computers as NCA confirms live investigation

  The National Crime Agency (NCA) confirms there is a live investigation into Lauri Love in the UK, as Love brings legal action against UK police for the return of seized computer equipment

• December 13, 2018 13 Dec'18

  ICO and government help UK businesses prepare for no-deal Brexit

  The Information Commissioner’s Office (ICO) and the government are providing guidance for UK businesses, particularly SMEs, on how to prepare for a possible no-deal Brexit

• December 13, 2018 13 Dec'18

  UK trade sector risks GDPR fines over poor data disposal

  UK businesses in the trade sector are risking GDPR fines for failing to wipe data from old IT equipment, a survey shows

• December 11, 2018 11 Dec'18

  Large disparity in NHS cyber skills and training spend

  Despite government pledges to up cyber security spending across the NHS, there are still huge disparities in cyber security skills and spending on cyber security training, FoI requests reveal

• December 05, 2018 05 Dec'18

  UK consumers threaten data breach backlash

  Most UK and global consumers are willing to walk away from businesses that fail to look after personal data, with retailers most at risk, research shows

• December 03, 2018 03 Dec'18

  Liberty heads for judicial review over Investigatory Powers Act

  The UK's powers to conduct supsicionless bulk surveillance on individuals and organisations face a legal challenge in the high court next year

• December 03, 2018 03 Dec'18

  UK government commits to opening up data in bid to push adoption of AI

  Opening up data is vital to government plans to push adoption of artificial intelligence across all sectors of the UK economy

• November 30, 2018 30 Nov'18

  Marriott data breach highlights basic failings

  A breach of a guest reservation database of the Starwood division of the Marriott International hotel group highlights basic personal data protection failures

• November 29, 2018 29 Nov'18

  UK cyber security strategy making ‘good progress’

  The National Cyber Security Strategy is making good progress, but there is much left to be done, according to a Cabinet Office official

• November 28, 2018 28 Nov'18

  Cyber resilience lacking due to apathy of UK leaders

  An unwillingness to accept that cyber is a real threat to critical national infrastructure by UK political and business leaders has resulted in a lack of resilience, says security industry veteran

• November 28, 2018 28 Nov'18

  CIO interview: Stephen Docherty on NHS data sharing

  The Cambridge Analytica scandal raised awareness about privacy. Stephen Docherty, CIO of South London and Maudsley NHS Trust, explains why

• November 27, 2018 27 Nov'18

  Businesses failing to win consumer trust

  Businesses are still largely failing to win the trust of consumers to keep their personal data safe as data breaches continue to make headlines

• November 27, 2018 27 Nov'18

  ICO fines Uber £385,000 for data protection failings

  Like Facebook, Uber has escaped a potentially much higher fine for data protection failings because the 2016 breach that affected millions of UK customers is not covered by the GDPR

• November 27, 2018 27 Nov'18

  GDPR is encouraging UK IT directors to pay cyber ransoms

  As predicted ahead of the General Data Protection Regulation enforcement deadline, research shows that fear of fines under the new laws is making some firms more likely to pay cyber ransoms

• November 26, 2018 26 Nov'18

  Unprecedented actions by Commons committee augur badly for Facebook

  House of Commons’ serjeant-at-arms effectively arrested the CEO of a US software company and frogmarched him to Parliament, where he was told he would be imprisoned if he failed to hand over papers on Facebook

• November 22, 2018 22 Nov'18

  ICO finds Metropolitan Police's Gangs Matrix seriously breaches data protection laws

  A year-long ICO investigation has highlighted major problems with how the Metropolitan Police handles and shares the personal data of individuals on its Gangs Matrix

• November 20, 2018 20 Nov'18

  Dutch audit finds Microsoft Office leaks confidential data

  The diagnostics Microsoft Office collects from users should be a source of concern for any government CISO, according to a DPIA audit

• November 20, 2018 20 Nov'18

  Police challenged over refusal to disclose files on WikiLeaks staff

  Lawyers will challenge the Metropolitan Police Service today to confirm or deny whether it holds correspondence with US law enforcement about three WikiLeaks staff – including two UK citizens – in a freedom of information tribunal

• November 19, 2018 19 Nov'18

  Government lacks cyber resilience leadership, according to MPs

  The government lacks political leadership and urgency in dealing with cyber threats, according to Joint Committee on National Security Strategy, calling for a minister in charge of delivering cyber resilience

• November 17, 2018 17 Nov'18

  Credit card fraud in ANZ showing no signs of abating

  The value of fraudulent transactions more than doubled that of legitimate purchases during the third quarter this year

• November 16, 2018 16 Nov'18

  Three factors marginalising the CISO role

  Chief information security officers are typically marginalised due to three factors, and de-coupling the technical and managerial aspects of the job will enable empowerment, says consultant

• November 16, 2018 16 Nov'18

  Many firms still stuck in GDPR prep phase six months after its initiation

  Six months after the GDPR compliance deadline, many companies are struggling to make data protection principles part of everyday business, says PwC’s GDPR and data protection lead

• November 16, 2018 16 Nov'18

  Why is hiring a government chief security officer such a tricky business?

  Security bosses and CIOs weigh in on why they think the government is struggling to recruit a chief security officer

• November 15, 2018 15 Nov'18

  DeepMind won’t share patient data with Google ‘at this stage’, says company’s health boss

  Amid concerns and questions around Google’s takeover of the DeepMind’s Streams app, Dominic King, the company’s health lead, promises that ‘at this stage’, nothing will change, and it won’t share any patient data with the internet giant

• November 15, 2018 15 Nov'18

  Members of Parliament should back EU Withdrawal Agreement, says industry

  Industry experts say the government’s EU Withdrawal Agreement is far from perfect and still requires more clarity, but call on MPs to back it, as it’s better than a No-Deal Brexit

• November 13, 2018 13 Nov'18

  Thailand’s Democrat Party holds election with blockchain

  The Zcoin blockchain was used to store file hashes of voting data and identities of voting members of Thailand’s main opposition party

• November 12, 2018 12 Nov'18

  EU regulation set to advance single market for non-personal data

  The European Union Council and Parliament have approved a regulation, to take effect in six months’ time, to ensure the free movement of non-personal data, such as IoT data, across the bloc

• November 08, 2018 08 Nov'18

  GDPR a challenge to AI black boxes

  Most artificial intelligence “black boxes” do not comply with EU data protection laws and will have to be re-engineered, warns security researcher and consultant

• November 08, 2018 08 Nov'18

  Increasing value of personal data a 21st century challenge

  The increasing value of personal data presents the challenge of managing a personal data economy, says identity and security expert

• November 07, 2018 07 Nov'18

  Cyber security high on European Commission agenda

  The European Commission is recognising the growing importance of cyber security to the digital economy and is increasing funding to support research, resilience and cooperation

• November 05, 2018 05 Nov'18

  Banking sector leading CIAM innovation, say Big Four

  Maturity in consumer identity and access management (CIAM) differs from sector to sector, with the banking sector taking the lead in terms of innovation, according to the Big Four accounting firms

• November 02, 2018 02 Nov'18

  DevSecOps not limited to coding, says analyst

  DevSecOps is seen as a way of ensuring application security, but security leaders must understand that embedding a security culture and taking the inter-dependencies of new development frameworks into account is key, says KuppingerCole

• November 02, 2018 02 Nov'18

  Facebook to appeal EU-US data transfer ruling in Irish Supreme Court

  Facebook will appeal a decision by the Irish High Court to refer questions over the legality of EU-US data transfers to the European Court of Justice in January, as the Dublin court rejects attempt by a UK IT expert to join the case

• November 02, 2018 02 Nov'18

  Radisson hotel group could be GDPR test case

  Privacy watchers say the breach of personal data of members of the Radisson Hotel Group’s loyalty scheme could be an interesting test case for how the GDPR will be applied