News

Regulatory compliance and standard requirements

• March 02, 2018 02 Mar'18

  New privacy fears as IT challenges delay surveillance oversight body by a year

  IT challenges have delayed government plans for an independent body to authorise requests to access the public’s internet and phone records by nearly a year, raising new legal and privacy concerns

• March 01, 2018 01 Mar'18

  Trust underpins innovation, says UK information commissioner

  Underlining the relevance of data protection legislation to business, the UK information commissioner says consumer trust is key to innovation

• March 01, 2018 01 Mar'18

  ICO head tops DataIQ data leader list

  The UK’s information commissioner has been named at the top data leader for 2018 in the DataIQ 100 list of most influential data leaders

• February 28, 2018 28 Feb'18

  Affiliate marketing industry failing on privacy compliance

  The affiliate marketing industry needs to clean up its act in terms of privacy law compliance, a review of more than 900 websites has revealed

• February 28, 2018 28 Feb'18

  Government must rewrite illegal sections of Snoopers’ Charter, court told

  A court has been asked to give ministers until July 2018 to rewrite powers to require phone and internet companies to retain data on the population. The government acknowledges parts of surveillance regime are unlawful

• February 27, 2018 27 Feb'18

  GDPR will have positive ripple effect, says US consumer group

  New EU data protection laws will have a positive ripple effect around the world, according to a US consumer group

• February 26, 2018 26 Feb'18

  Singapore firms unprepared for GDPR

  An EY study reveals that only 10% of organisations in Singapore are ready to comply with Europe’s new data protection regime

• February 26, 2018 26 Feb'18

  London councils set aside more than £1.2m for GDPR

  London councils have spent over £1.2m in preparation for new EU data protection laws, a think tank report has revealed

• February 26, 2018 26 Feb'18

  Surveillance watchdog investigates security risks of GCHQ IT contractors

  The investigatory powers commissioner is reviewing the security arrangements for IT contractors that have access to live computer systems at GCHQ holding highly sensitive records on the UK population

• February 26, 2018 26 Feb'18

  Most UK small firms still not prepared for GDPR, FSB survey shows

  Most small businesses are not prepared for new data regulations, according to research by the Federation of Small Businesses

• February 23, 2018 23 Feb'18

  GDPR is having positive impact on privacy profession, says IAPP

  The EU’s new data protection rules are driving greater interest in the privacy profession, and provide an opportunity to develop new business plans, says privacy association

• February 23, 2018 23 Feb'18

  Public education important in new data protection era, says ICO

  UK information commissioner Elizabeth Denham tells Data Protection 2018 event of the tough requirements ahead in a new age of data regulation

• February 22, 2018 22 Feb'18

  UK plans laws to protect company directors from ID theft

  Legislation will make it easier for directors to remove their personal addresses from the company register

• February 20, 2018 20 Feb'18

  Strategic cyber criminals likely to capitalise on GDPR

  As cyber criminals concentrate on targeted, strategic, money-making attacks, they are likely to use GDPR fines as leverage to extort money from organisations, a report warns

• February 20, 2018 20 Feb'18

  UK local councils under huge cyber attack pressure

  Investigation underlines importance of security automation and employee awareness training

• February 19, 2018 19 Feb'18

  Lauri Love can stay in UK: prosecutors will not appeal extradition ruling

  Crown Prosecution Service gives undertaking to Lauri Love that it will not appeal against a court decision not to extradite him to the US – but prosecutors are seeking leave to appeal over part of the court ruling on extradition procedure

• February 16, 2018 16 Feb'18

  A third of Brits plan to exercise right to be forgotten

  After the General Data Protection Regulation compliance deadline, a third of Britons polled say they plan to exercise their right to be forgotten, but few fully understand the GDPR and how it will affect them

• February 14, 2018 14 Feb'18

  100 days to GDPR compliance deadline

  As the clock ticks down to the deadline to comply with the EU’s new data protection regulations, some surveys indicate there is still some confusion, but the focus has shifted from the sanctions to the benefits

• February 12, 2018 12 Feb'18

  FS-ISAC enables safer financial data sharing with API

  The global financial industry's body for cyber and physical threat intelligence analysis and sharing has published an API to facilitate safer sharing of consumer financial information

• February 09, 2018 09 Feb'18

  Europe in the firing line of evolving DDoS attacks

  The Europe, Middle East and Africa region accounts for more than half the world’s distributed denial of service attacks, a report from F5 Labs reveals

• February 09, 2018 09 Feb'18

  Malaysian regulator and firm sued over data breach

  The Malaysian Communications and Multimedia Commission and a local company have been caught in a civil lawsuit over a massive data breach reported last year

• February 08, 2018 08 Feb'18

  DMA Group working to reduce fear around GDPR

  The DMA Group is focused on the GDPR for customer communications and marketing, but says the key aim is to reduce fear in the market

• February 08, 2018 08 Feb'18

  Swisscom downplays data breach

  Telecommunication provider Swisscom has downplayed a data breach affecting around 800,000 customers, but security experts warn of potential long-term risks

• February 08, 2018 08 Feb'18

  Data breaches set to affect future sales

  The failure to protect customer data is set to create long-term business problems for organisations in Europe and the US, a survey reveals

• February 07, 2018 07 Feb'18

  UK government orders review of online laws

  The UK Law Commission is to review current legislation on offensive online communications to ensure they are up to date with technology

• February 06, 2018 06 Feb'18

  Many UK firms ill-equipped to deal the cloud security risks

  Many UK firms do not have the security tools, processes and skills required to ensure their cloud implementations are secure, a security researcher and advocate warns

• February 05, 2018 05 Feb'18

  Lauri Love plans to use ‘internet as a force for good’

  Engineering student Lauri Love says he plans to help businesses fight cyber crime, after the court of appeal ruled that he can be tried in the UK for allegedly hacking US computer systems, rather than face extradition to the US

• February 05, 2018 05 Feb'18

  Appeals court rules Lauri Love will not be extradited over US hacking charges

  The lord chief justice, Lord Burnett, says 33-year-old engineering student Lauri Love will not be extradited to the US to face hacking charges, in a landmark legal decision, and the Crown Prosecution Service should bring proceedings against Love in ...

• February 05, 2018 05 Feb'18

  NHS WannaCry review highlights need for accountability and skills

  Lessons-learned report on ransomware attack calls for local NHS organisations to put cyber security bosses on their boards and consider suspending IT access to staff who have not completed cyber security training

• February 02, 2018 02 Feb'18

  GDPR: Don’t panic, but seize the chance to build trust, says ICO

  With the compliance deadline for the EU’s GDPR just 112 days away, the UK’s information commissioner has urged organisations not to panic, but to seize the chance to build trust with customers

• February 02, 2018 02 Feb'18

  Dutch Filmworks disrupts piracy fight by imposing download fines

  Netherlands’ privacy watchdog grants film production company permission to collect IP addresses as part of its fight against illegal downloading

• February 01, 2018 01 Feb'18

  Dutch companies not ready for GDPR despite approaching deadline

  Organisations in the Netherlands are racing towards General Data Protection Regulation compliance, but there is still much to be done

• January 31, 2018 31 Jan'18

  GDPR requests to take thousands of hours a month, says survey

  A recent survey predicts organisations will potentially face thousands of customer requests about their personal information every month, with many unprepared for GDPR compliance

• January 31, 2018 31 Jan'18

  Data breach disclosure law will lift Australia’s cyber security game

  New rules underscore Australia’s recent efforts to tackle cyber security challenges on the local and international stage

• January 30, 2018 30 Jan'18

  Government surveillance regime unlawful, court rules in Tom Watson case

  Appeal court ruled in favour of Labour MP Tom Watson in a legal battle with the government over the UK’s surveillance laws, leading to calls to rethink controversial Investigatory Powers Act

• January 30, 2018 30 Jan'18

  IT Priorities 2018: Data protection a top priority ahead of GDPR

  Data protection continues to be a key focus for IT security investment for European firms in 2018, as does the emphasis on cloud and mobile security as companies move to these technology platforms

• January 29, 2018 29 Jan'18

  NGO to fight for GDPR rights set to launch

  A new breed of NGO aimed at helping EU citizens fight for privacy rights under the GDPR is set to launch after achieving the minimum funding required

• January 29, 2018 29 Jan'18

  Hefty fines confirmed for CNI providers with poor cyber security

  The government has confirmed that critical infrastructure providers with poor cyber security face fines of millions of pounds as the National Cyber Security Centre publishes new guidance for the industry

• January 26, 2018 26 Jan'18

  ICO launches data protection excellence award

  UK’s privacy watchdog launches data protection excellence award to mark international Data Protection Day, as security suppliers issue data protection tips and guidelines

• January 26, 2018 26 Jan'18

  UK likely to remain strategic EU data protection partner

  Head of European Union’s independent data protection authority says UK is likely to remain a strategic partner in data protection after Brexit

• January 25, 2018 25 Jan'18

  IoT security risks need immediate action, says report

  The security failings in today’s internet-connected devices will only become more pervasive unless action is taken immediately, according to industry experts

• January 24, 2018 24 Jan'18

  Most UK organisations unaware of new data protection laws

  The UK’s digital and culture secretary is urging businesses and charities to prepare for stronger data protection laws in the light of new information

• January 24, 2018 24 Jan'18

  GDPR worries hit cloud storage investments, says survey

  NetApp-sponsored survey finds lack of customer confidence in cloud service providers’ retention of GDPR-affected data has led organisations to rethink and scale back cloud investments

• January 24, 2018 24 Jan'18

  Sweden puts government IT outsourcing under increased scrutiny

  Government introduces rules to tighten security in IT outsourcing deals following a very public data leak last year

• January 24, 2018 24 Jan'18

  Two-thirds of startups ill-prepared for GDPR

  While most startups collect personal data, a survey reveals that many are not very well prepared for compliance with the EU’s forthcoming data protection regulation

• January 23, 2018 23 Jan'18

  New controversies as Trump passes US Foreign Intelligence Surveillance Act

  The amended Foreign Intelligence Surveillance Act, which seeks to legitimise US surveillance on foreigners, has been signed off by president Trump

• January 23, 2018 23 Jan'18

  Interview: Kaspar Korjus, Estonian e-Residency lead

  As the number of people signing up to become Estonian e-residents exceeds the country’s birth rate, Computer Weekly speaks to the man heading up the programme

• January 22, 2018 22 Jan'18

  Almost a quarter of London businesses unaware of GDPR

  Nearly one in four London businesses unaware of new data protection regulation, a survey has revealed, with just months before the compliance deadline

• January 22, 2018 22 Jan'18

  Norwegian healthcare breach alert failed GDPR requirements

  Norwegian healthcare authorities failed General Data Protection Regulation requirements for notifying those affected by a personal data breach by waiting a week before disclosing a breach discovered on 8 January 2018

• January 22, 2018 22 Jan'18

  Privacy International warns of global risk to citizens if Microsoft loses US data access appeal

  Privacy International warns of widespread privacy violations if Microsoft loses US data access appeal

• January 22, 2018 22 Jan'18

  European Parliament votes to restrict exports of surveillance equipment

  European Parliament votes to tighten export controls to restrict supply of surveillance and encryption technology to states with poor human rights records amid fears British companies may not have to comply after Brexit

• January 17, 2018 17 Jan'18

  Business needs to reduce cyber threat to payment card data

  Cardholder data is a prime target for cyber criminals, and that is only likely to increase in the coming year, according to a cloud-based secure payments firm

• January 17, 2018 17 Jan'18

  Davos: Disintegration of the internet could create economic turmoil

  Politicians and business leaders will discuss the risks posed by fake news, cyber attacks, and artificial intelligence to jobs, political stability and global security, at the World Economic Forum in Davos

• January 16, 2018 16 Jan'18

  Sweden pilots surveillance technology to combat terrorism and crime

  The Swedish police and security agencies are trialling surveillance equipment to help them respond to terrorism and crime more quickly

• January 10, 2018 10 Jan'18

  EC underlines need for data transfer agreement post-Brexit

  The European Commission has emphasised the importance of having a data transfer agreement in place after the UK leaves the European Union

• January 10, 2018 10 Jan'18

  UAE tech growth prompts firms to review internal IT security

  As IT becomes more prominent in the UAE economy, more and more internal connections between people and systems are created, all of which need to be secured

• January 10, 2018 10 Jan'18

  ICO fines Carphone Warehouse £400,000

  Mobile retailer hit with one of the highest fines for putting personal data at risk as UK privacy watchdog warns that more stringent data protection laws will apply from 25 May 2018

• January 09, 2018 09 Jan'18

  Max Schrems champions NGO to fight for GDPR rights

  Privacy activist whose legal challenge of Facebook led to the scrapping of the Safe Harbour Agreement says crowdfunding a new type of non-government organisation is essential to deliver privacy rights

• January 09, 2018 09 Jan'18

  Cyber attacks in 2017 drive Nordic security efforts

  The volume of cyber attacks last year has increased boardroom focus on security in the Nordic region

• January 08, 2018 08 Jan'18

  Sweden steps up cyber defence measures

  Sweden is tightening up its cyber security defences as part of a wider national security strategy

• January 05, 2018 05 Jan'18

  Patch systems against Meltdown and Spectre, urges ICO

  UK’s data protection watchdog is calling for organisations to apply security updates to mitigate against exploits of microprocessor flaws as soon as possible to safeguard personal data

• January 05, 2018 05 Jan'18

  2018 could be year of critical infrastructure attacks, says report

  The coming year is likely to see an increase in the number of cyber attacks on critical national infrastructure (CNI), according to a report based on experts’ forecasts

• January 03, 2018 03 Jan'18

  What the EU’s new data protection regime means for ASEAN

  A large proportion of businesses in the regional economic grouping will be affected by Europe’s General Data Protection Regulation, but awareness of the new rules remains low, even in countries with existing data protection laws

• January 03, 2018 03 Jan'18

  Top IT priorities for Nordic CIOs in 2018

  Nordic CIOs tell Computer Weekly about their intentions for the year ahead

• January 02, 2018 02 Jan'18

  Top UK and US firms still overestimating GDPR readiness

  Less than five months before the compliance deadline for the EU’s General Data Protection Regulation (GDPR), most top UK and US firms are still overestimating their state of readiness, a study suggests

• January 02, 2018 02 Jan'18

  Ransomware to hit cloud computing in 2018, predicts MIT

  Ransomware targeting cloud services is one of the six biggest cyber threats likely to face organisations in 2018, according to the Massachusetts Institute of Technology

• December 28, 2017 28 Dec'17

  Top 10 stories on state surveillance, technology and the law in 2017

  In 2017, the government faced multiple legal challenges over the legality of mass surveillance of the population, most of whom pose no threat, in cases that will set the parameters between individual freedom and state intrusion

• December 27, 2017 27 Dec'17

  The CW500 Club in 2017

  Computer Weekly’s CW500 Club attracts the top IT leaders in the UK to talk to their peers. We present coverage of the 2017 events, including articles and video interviews

• December 21, 2017 21 Dec'17

  Hancock sure UK will obtain and maintain EU data protection adequacy

  Minister for digital tells Lords committee he is confident the UK will obtain and maintain “adequacy” for smooth data transfers with the EU after Brexit

• December 20, 2017 20 Dec'17

  UK government blames North Korea for WannaCry cyber attack

  The UK and US governments say a North Korean group was responsible for the ransomware attacks that hit the NHS and other organisations globally this year

• December 19, 2017 19 Dec'17

  Australia to focus on cyber security and IT outcomes in 2018

  Besides transforming themselves through AI and automation, businesses down under will keep a closer eye on cyber security and the outcomes of their technology investments

• December 19, 2017 19 Dec'17

  Kaspersky Lab appeals US ban

  Russian security software giant appeals US government's decision to ban the use of its products in federal agencies

• December 13, 2017 13 Dec'17

  Banks forced to be open about major security and operational incidents

  New FCA rules aim to give consumers more information about current accounts beyond interest rates and charges

• December 12, 2017 12 Dec'17

  Researchers find trove of 1.4 billion credentials

  Security researchers have discovered what is believed to be the largest aggregate database found in the dark web to date, prompting fresh calls for improved identity management

• December 08, 2017 08 Dec'17

  GDPR prompts businesses to use motivational tactics to drive culture change

  Impending arrival of General Data Protection Regulation pushes organisations to use rewards or penalties to motivate staff to ensure compliance

• December 06, 2017 06 Dec'17

  Australian businesses need to up their game in cyber security

  With threat actors becoming more innovative, businesses must start getting their security fingers into every system they buy or build, experts say

• December 06, 2017 06 Dec'17

  BlackBerry calls for stricter internet of things security standards

  All internet-linked devices should support software updates, though things that are prone to safety risks when hacked, such as connected cars, should adhere to higher security standards, says BlackBerry CSO

• December 04, 2017 04 Dec'17

  The Dutch government defines cyber threat actors

  The Dutch government commissions the creation of a scientific classification of individuals and groups involved in cyber crime

• December 04, 2017 04 Dec'17

  Malicious insiders and DDoS attacks cost UK business the most

  In 2017, the most costly or damaging cyber attacks for UK businesses have been malicious insiders and denial of service, research has revealed

• December 04, 2017 04 Dec'17

  Barclays Bank stops offering Kaspersky software to new users

  Bank is no longer offering customers Kaspersky anti-virus software after UK security agency issues warning

• December 01, 2017 01 Dec'17

  ‘Sound policy’ to prosecute hackers in UK, says former DPP in Love case

  The former director of public prosecutions (DPP), Ken Macdonald, said in written evidence in Lauri Love’s extradition case that it is normal practice to prosecute hackers accused of attacking US servers in the UK – rather than extradite them to the ...

• December 01, 2017 01 Dec'17

  Businesses bracing for GDPR data deletion requests

  Businesses are concerned that data deletion requests under the GDPR will have a significant or even crippling effect, with many unprepared to meet the expected demand

• December 01, 2017 01 Dec'17

  Morrisons found liable for data leak in landmark ruling

  Court finds supermarket chain liable for data leak by a former employee, which has been hailed as a landmark ruling, but Morrisons says it will appeal

• December 01, 2017 01 Dec'17

  Proposed snoopers’ charter changes inadequate, say rights groups

  The government has proposed additional safeguards around the power granted to police by the Investigatory Powers Act, but the Open Rights Group and Liberty say they do not go far enough

• November 30, 2017 30 Nov'17

  Fintechs must curb privacy invasion, says Privacy International

  Privacy International is calling for legislation and regulation to ensure financial technology firms respect consumers’ rights to privacy, equality and non-discrimination

• November 30, 2017 30 Nov'17

  Google faces £2.7bn claim on behalf of 5.4 million iPhone users

  Technology giant is accused of harvesting and selling data from millions of iPhone users from 2011 to 2012 who could each receive compensation of several hundred pounds

• November 29, 2017 29 Nov'17

  TechUK calls for swift action to safeguard data exchange after Brexit

  TechUK and UK Finance raise fear of “cliff edge” if legal basis for data transfers between the EEA and the UK lapses overnight in March 2019

• November 29, 2017 29 Nov'17

  GDPR likely to affect internal processes heavily, warns lawyer

  Businesses should not overlook the fact that the EU’s new data protection laws may require fundamental changes to internal business processes, warns a data protection lawyer

• November 29, 2017 29 Nov'17

  Consumer identity management a growing trend

  Consumer identity and access management is a growing trend, but system choice is still challenging, according to KuppingerCole

• November 28, 2017 28 Nov'17

  Data breach an opportunity to build trust

  In the light of the high number of data breaches, organisations should embrace the inevitable and ensure they can build better trust if they are breached, an information security professional advises

• November 28, 2017 28 Nov'17

  Businesses need to balance user experience, privacy and security

  Balancing user experience, privacy and security for the connected consumer is a key challenge for online businesses, according to KuppingerCole

• November 22, 2017 22 Nov'17

  GDPR could ramp up cyber extortion demands, warns researcher

  The ransom demanded for stolen or encrypted data is likely to rise after the General Data Protection Regulation compliance deadline in May 2018, according to a cyber security researcher

• November 22, 2017 22 Nov'17

  Government urged to improve redress for mass data breaches

  Open letter calls for UK government to make it easier for consumers to get compensation for mass data breaches by implementing an effective system for collective redress

• November 22, 2017 22 Nov'17

  Uber recognises need for consumer trust after breach cover up

  New Uber leadership has recognised the importance of consumer trust and that they never should have attempted to cover up a 2016 data breach that affected millions of customers and drivers

• November 20, 2017 20 Nov'17

  Use GDPR to future-proof business models

  Businesses should look beyond compliance with new data regulations to ensure that their business processes and models are in line with future requirements, advises a privacy innovation expert

• November 17, 2017 17 Nov'17

  Business crucial to cyber crime fight, say UK cyber cops

  Business has a crucial role in fighting cyber crime in terms of intelligence sharing and pursuing cyber criminals, according to the country’s top cyber cops

• November 17, 2017 17 Nov'17

  ICO funds first four privacy tool development projects

  The UK’s privacy watchdog has begun funding innovative research into data privacy tools for children and the medical and financial sectors

• November 16, 2017 16 Nov'17

  ICO pushes for jail terms for personal data snoops

  Information Commissioner’s Office says it backs prison sentences for anyone abusing their position to access personal data unlawfully

• November 16, 2017 16 Nov'17

  Europe not ready for imminent cyber strikes, say infosec professionals

  Information security leaders in Europe believe a major breach of critical infrastructure is coming and that data breaches in their own organisations are imminent – yet most are not ready

• November 16, 2017 16 Nov'17

  Half of UK consumers do not trust firms with personal data

  As the GDPR compliance deadline approaches, a survey reveals half of UK consumers do not believe commercial organisations care about their privacy