News

Regulatory compliance and standard requirements

• February 06, 2024 06 Feb'24

  Inquiry to explore cyber risk to Sunak-Starmer showdown

  The UK’s Joint Committee on National Security Strategy is opening an inquiry into securing the democratic process ahead of the next general election

• February 06, 2024 06 Feb'24

  UK and France push for international agreement on spyware

  The UK and France are hosting diplomats, big tech companies and civil society groups, in a two-day conference in London targeting the proliferation of spyware tools and ‘hackers for hire’

• February 05, 2024 05 Feb'24

  Blackbaud blasted for failing to prevent customer breaches

  A supply chain attack at software supplier Blackbaud in 2020 saw data on multiple UK organisations compromised. The US authorities are now taking steps to ensure it can’t happen again

• February 05, 2024 05 Feb'24

  US sanctions Iranians behind CNI cyber attacks

  US government issues new sanctions against six Iranians suspected of being behind a series of cyber attacks targeting critical national infrastructure, notably water supply systems

• January 30, 2024 30 Jan'24

  We need backup! Pennsylvania police data loss shows why

  Police evidence systems data was lost during ‘routine maintenance’, with human error blamed – the case clearly illustrates why data protection can’t be left to chance

• January 26, 2024 26 Jan'24

  GenAI tools ‘could not exist’ if firms are made to pay copyright

  AI firm Anthropic hits out at copyright lawsuit filed by music publishers, claiming the content ingested into its models falls under ‘fair use’ and that any licensing regime would be too complex and costly

• January 25, 2024 25 Jan'24

  Bugcrowd sees surge in vulnerability submissions, led by public sector

  Crowdsourced vulnerability disclosure and bug bounty platform Bugcrowd says it saw a 151% uptick in submissions related to government and public sector organisations in 2023

• January 24, 2024 24 Jan'24

  AI will heighten global ransomware threat, says NCSC

  The benefits of artificial intelligence to cyber criminals being well-known, the NCSC now assesses it’s likely AI will soon be widely used to enhance ransomware attacks

• January 23, 2024 23 Jan'24

  Treat cyber risk like financial or legal issue, says UK government

  UK government and NCSC launch proposed code of practice on cyber security governance to help directors and business leaders toughen their defences

• January 23, 2024 23 Jan'24

  SEC bitcoin hack was result of SIM-swapping

  A cyber attack on the US financial regulator earlier in January 2024 occurred after hackers took over one of its mobile phone accounts in a so-called SIM-swapping attack

• January 22, 2024 22 Jan'24

  Chat control: Tech companies warn ministers over EU encryption plans

  Tech companies have written to EU ministers to urge them to back the European Parliament, rather than the European Commission, over proposed regulations to police child abuse

• January 19, 2024 19 Jan'24

  ICO prompts confusion over police cloud legality

  The UK data regulator has suggested that, despite major data protection concerns, it is likely to greenlight police cloud deployments because of an information-sharing agreement with the US government

• January 18, 2024 18 Jan'24

  Cyber non-profit enlists ex-NCSC head as technical chair

  Founding NCSC chief exec Ciaran Martin is to join the newly launched Cyber Monitoring Centre non-profit as chair of its technical committee

• January 17, 2024 17 Jan'24

  NCSC invites security pros to join the big leagues

  The NCSC is inviting security pros from across the UK to sign up to work with its experts on an intelligence-sharing initiative

• January 17, 2024 17 Jan'24

  Victims of 2023 Capita data breaches head to High Court

  More than 5,000 people impacted by data breaches arising from two cyber incidents affecting outsourcer Capita have joined a group action lawsuit

• January 17, 2024 17 Jan'24

  Singapore proposes governance framework for generative AI

  AI Verify Foundation and Infocomm Media Development Authority have proposed a governance framework for generative AI to address the risks and concerns about the emerging technology

• January 15, 2024 15 Jan'24

  Russia hacked ex-MI6 chief’s emails – what they reveal is more Dad’s Army than deep state

  A Russian hacking group that published emails of ex-MI6 chief Richard Dearlove claimed to have uncovered a conspiracy, but it was more Dad’s Army than the ‘deep state’, Computer Weekly and Byline Times reveal

• January 15, 2024 15 Jan'24

  How legal disclosure failures disrupted the Post Office Horizon inquiry

  From overly narrow search terms, overzealous deduplication of documents and failed email migrations, poor management of legal discovery has delayed justice for postmasters in the Horizon inquiry  

• January 15, 2024 15 Jan'24

  EU amendment changes open source definition

  The EU Cyber Resilience Act has the potential to cause confusion among open source developers, with questions remaining over open development

• January 15, 2024 15 Jan'24

  NCA director sacked after WhatsApp and email security breaches

  Nikki Holland, former director of investigations at the NCA, was sacked for “misconduct” after sending sensitive NCA information over personal email and WhatsApp

• January 12, 2024 12 Jan'24

  UK government seeks public views on impacts of AI-generated porn

  The government’s Pornography Review will look in part at the use of AI throughout the industry to generate sexually explicit content without people’s consent

• January 10, 2024 10 Jan'24

  Davos 2024: AI-generated disinformation poses threat to elections, says World Economic Forum

  Disinformation and misinformation are the top risks facing businesses, governments and the public over the next two years

• January 10, 2024 10 Jan'24

  Scotland ‘sleepwalking’ to mass surveillance with DPDI Bill

  The independent checks and balances over biometrics and biometric-enabled surveillance must be strengthened to prevent Scotland from sliding into a surveillance state along with the rest of the UK

• January 09, 2024 09 Jan'24

  Study reveals cyber risks to US elections

  With the 2024 US presidential election cycle beginning, a study produced by Arctic Wolf has highlighted big gaps in preparedness and resourcing at government bodies across the US

• January 03, 2024 03 Jan'24

  Dutch working to promote cooperation in Europe to keep internet safe

  A Dutch cooperative approach offers national and international cooperation opportunities for ISPs to guard against DDoS attacks, lawful interception and detect abuse in networks

• January 03, 2024 03 Jan'24

  Fighting money laundering with AI

  Mike Foster, CEO of SymphonyAI Sensa-NetReveal, talks up how AI can be used to fight financial crime and how the company’s technology can augment existing AML investments

• December 29, 2023 29 Dec'23

  Top 10 India IT stories of 2023

  We recap the year’s top 10 stories in India, including the country’s datacentre boom and innovations in space and agriculture technologies

• December 29, 2023 29 Dec'23

  Top 10 AI regulation stories of 2023

  From the UK government’s publication of its long-awaited AI whitepaper to its convening of the world’s first AI Safety Summit, here are Computer Weekly’s top 10 AI regulation stories of 2023

• December 27, 2023 27 Dec'23

  Top 10 police technology stories of 2023

  Here are Computer Weekly’s top 10 police technology stories of 2023

• December 21, 2023 21 Dec'23

  Top 10 cyber crime stories of 2023

  Ransomware gangs dominated the cyber criminal underworld in 2023, a year that will prove notable for significant evolutionary trends in their tactics

• December 21, 2023 21 Dec'23

  Top 10 storage supplier strategy stories of 2023

  In 2023, we looked at the top storage suppliers, their market share and how they set themselves for a future of hybrid cloud, containerisation and consumption models of purchasing

• December 19, 2023 19 Dec'23

  Top 10 cyber security stories of 2023

  The past 12 months have seen the security agenda dominated by the usual round of vulnerabilities, concerns over supply chain security and more besides, but it was the chaotic state of global geopolitics that really made an impact

• December 14, 2023 14 Dec'23

  Government plans to regulate to tackle datacentre threats

  DSIT outlines a range of proposals designed to protect data storage facilities from cyber attacks, as well as physical threats and the effects of climate breakdown

• December 14, 2023 14 Dec'23

  The Security Interviews: Talking identity with Microsoft’s Joy Chik

  Microsoft’s president of identity and network access, Joy Chik, joins Computer Weekly to discuss the evolving threat landscape in identity security, using innovations in artificial intelligence to stay ahead, and advocating for the coming ...

• December 14, 2023 14 Dec'23

  NCSC CEO Lindy Cameron to step down in 2024

  NCSC chief exec Lindy Cameron, who helped lead and elevate the national dialogue on cyber security through major events such as Covid-19, SolarWinds Sunburst and Colonial Pipeline, is to step down in the New Year

• December 14, 2023 14 Dec'23

  ICO complaint seeks answers from prosecutors over deleted Assange emails

  An Italian journalist has complained to the data protection watchdog after the Crown Prosecution Service gave conflicting explanations over its deletion of key emails on WikiLeaks founder Julian Assange

• December 13, 2023 13 Dec'23

  How ransomware gangs use the tech media against their victims

  Ransomware gangs are increasingly media-savvy operators, and this means incident response plans now need to account for communications and PR strategies too

• December 13, 2023 13 Dec'23

  Critical UK infrastructure a ‘hostage of fortune’ to ransomware

  A lack of ransomware planning and preparedness at the highest levels of government is leaving UK operators or critical national infrastructure dangerously exposed, according to a Joint Committee report

• December 13, 2023 13 Dec'23

  Inside the Singapore government’s cloud journey

  The Smart Nation Group’s chief digital technology officer outlines the government’s cloud journey, including its approach to cloud migration and how it came to host mission-critical workloads on AWS

• December 12, 2023 12 Dec'23

  MoD fined after breach of Afghan staffers’ data put lives at risk

  The MoD has been fined £350,000 by the ICO after an email blunder exposed data on Afghan nationals who had worked with British forces and were at risk of Taliban reprisals

• December 12, 2023 12 Dec'23

  Top IT predictions in APAC in 2024

  Generative AI will continue to leave its mark on many areas in business and IT, along with other trends such as sustainability, cyber security and smart factories that are expected to shape the region’s technology landscape in 2024

• December 11, 2023 11 Dec'23

  Nordic governments join forces to protect data transfers

  Nordic countries deepen their cooperation over cyber security amid heightened threat from neighbouring Russia

• December 05, 2023 05 Dec'23

  Operator of Sellafield nuclear facility denies hacking claims

  The operator of the Sellafield nuclear site has denied allegations that senior managers covered up a series of cyber security lapses that enabled Chinese and Russian threat actors to compromise its networks

• December 04, 2023 04 Dec'23

  Rhysida ransomware gang hits hospital holding royal family’s data

  Ransomware gang boasts of having stolen data on the royal family in an attack on a private London hospital

• December 01, 2023 01 Dec'23

  Report reveals sorry state of cyber security at UK football clubs

  Football clubs up and down the country are putting staff, players and fans alike at risk through outdated attitudes to cyber security, according to a report

• December 01, 2023 01 Dec'23

  Lords committee urges caution on UK use of autonomous weapons

  UK government must ensure proper democratic oversight of its development and use of AI-powered weapon systems, says Lords committee

• November 28, 2023 28 Nov'23

  Meta faces GDPR complaint over processing personal data without 'free consent'

  Paid-for service means data protection is only available to those who can afford it, privacy group argues in data protection complaint

• November 28, 2023 28 Nov'23

  Scope of British Library data breach widens

  Personal data on British Library users has appeared for sale on the dark web following a Rhysida ransomware attack, as the scope of the still-developing incident widens again

• November 27, 2023 27 Nov'23

  NCSC publishes landmark guidelines on AI cyber security

  The NCSC and its US counterpart CISA have brought together tech companies and governments to countersign a new set of guidelines aimed at promoting a secure-by-design culture in AI development

• November 23, 2023 23 Nov'23

  North Korean APTs go all in on supply chain attacks, warns NCSC

  Threat actors linked to the North Korean regime are becoming more adept at targeting software supply chains in the service of their cyber attacks