News

Regulatory compliance and standard requirements

• August 30, 2018 30 Aug'18

  Blockchain gains foothold in Australia

  A number of blockchain projects are under way in Australia, but questions remain about whether the technology is wanted

• August 29, 2018 29 Aug'18

  Improving security is top driver for ISO 27001

  Organisations are implementing the ISO 27001 standard in recognition of the fact that cyber attacks are increasingly inevitable and that it is best to be well-prepared to fend off attacks and mitigate their effect

• August 28, 2018 28 Aug'18

  Challenge to anti-GDPR immigration exemption in DPA to go ahead

  Two human rights groups are challenging a controversial clause in new UK data protection legislation that they say is in conflict with the EU’s Charter of Fundamental Rights and undermines the General Data Protection Regulation

• August 23, 2018 23 Aug'18

  Australian government agency trials secure cloud service

  The Digital Transformation Agency has become the first government agency in Australia to test the use of Microsoft Office 365 in a secure cloud environment

• August 22, 2018 22 Aug'18

  Nearly a third of organisations still not GDPR ready

  As the UK and other states implement the EU’s GDPR, many organisations admit they are still not fully compliant, but most claim to be able to respond to data subject access requests

• August 22, 2018 22 Aug'18

  Superdrug denies data breach

  Superdrug has warned online customers it believes may have had personal details exposed, but claims its systems were not compromised, in what could be the first GDPR-related extortion attempt

• August 21, 2018 21 Aug'18

  New Zealand to run national cyber security exercise

  The island-nation will test the resilience of its critical infrastructure in November 2018, bringing together multiple agencies to protect assets of national significance

• August 21, 2018 21 Aug'18

  Malaysia’s financial sector warms up to cloud, but lacks security leadership

  Almost two-thirds of Malaysia’s financial services firms are developing a cloud strategy, but not all have a security plan in place

• August 20, 2018 20 Aug'18

  Planned Australian law raises tech firms’ security concerns

  A digital industry group representing some of the world’s largest tech firms is opposed to proposed Australian laws aimed at compelling them to help security agencies and police

• August 16, 2018 16 Aug'18

  Trump sparks speculation after repealing cyber attack restraints

  The US president has sparked speculation about US policy on launching cyber attacks by repealing Obama-era restraints, underlining the need for international rules on cyber warfare

• August 14, 2018 14 Aug'18

  UK banks under pressure to improve downtime reporting under new FCA rules

  To make it easier for customers to compare and switch between current account providers, UK banks are under pressure to improve their reporting processes for downtime and security incidents

• August 13, 2018 13 Aug'18

  ICO strengthens commitment to technology and innovation

  Information Commissioner’s Office has demonstrated its commitment to technology and innovation by appointing a new executive director to focus on this area

• August 13, 2018 13 Aug'18

  UK firms concerned about cyber arms race

  Continuous investment and activity are key in the cyber arms race, according to Databarracks, as research shows UK firms are worried about keeping up with security challenges

• August 12, 2018 12 Aug'18

  Over 146 billion records to be stolen over next five years

  The US will bear the brunt of data exfiltration efforts by cyber criminals, though Asia-Pacific nations such as Singapore will not be spared

• August 10, 2018 10 Aug'18

  Butlin’s warns of potential personal data breach

  Holiday camp chain blames cyber breach on a phishing attack, implying that attackers were able to steal user credentials to access customer data – and underlining the need for security awareness training

• August 09, 2018 09 Aug'18

  ICO fines Emma’s Diary £140,000

  The UK’s privacy watchdog has fined a marketing company for illegally collecting and selling personal information for political campaigning

• August 08, 2018 08 Aug'18

  Australia calls for interventionist approach in new cyber agenda

  The Australian government is forming a cyber defence network comprising security agencies and private sector partners to support a more interventionist approach towards cyber security

• August 07, 2018 07 Aug'18

  Starbucks to advise on development of bitcoin trading platform

  Coffee giant Starbucks has joined a group of firms advising Intercontinental Exchange on the development of a digital assets platform

• August 06, 2018 06 Aug'18

  Half of UK consumers to exercise GDPR rights within a year

  More than half of UK consumers will exercise their General Data Protection Regulation rights within a year and almost two-thirds will retract or review data use because of the Facebook-Cambridge Analytica scandal, a study shows

• August 03, 2018 03 Aug'18

  UK security centre to launch IoT security standard

  The London-based Centre for Strategic Cyber Space and Security Science is working on an internet of things security standard and has roped in participants from eight markets

• July 31, 2018 31 Jul'18

  UK business overestimating level of consumer trust, study shows

  UK consumer trust is low, with the majority of UK businesses admitting to selling customer data, a report reveals

• July 31, 2018 31 Jul'18

  Australia’s health sector reports most data breaches again

  In the first full quarter since Australia’s mandatory breach disclosure scheme came into effect, healthcare providers reported the most data breaches amid controversy over the national health record system

• July 31, 2018 31 Jul'18

  Dixons Carphone ups data breach figure to 10 million

  Dixons Carphone now believes the number of personal data records affected in 2017’s data breach is nearly 10 times greater than initially thought

• July 30, 2018 30 Jul'18

  Search begins for UK’s cyber security Unsung Heroes

  The Security Serious cyber awareness campaign has opened nominations for the third annual cyber security Unsung Heroes awards

• July 29, 2018 29 Jul'18

  Burden of data protection rests on firms and governments

  A senior executive at Singapore’s Cyber Security Agency stressed the role of corporate data governance and government regulations in raising the bar on cyber security

• July 26, 2018 26 Jul'18

  Facebook stock price falls on slowing growth forecast

  Facebook’s stock price has fallen dramatically in response to a forecast of slower revenue growth in 2018 and lower-than-expected user growth for the second quarter

• July 25, 2018 25 Jul'18

  Australian energy sector caught in security catch-22

  With regulators unwilling to accept security investments that would lead to higher tariffs, there is a chance that Australia’s National Energy Market could face increased cyber risks

• July 20, 2018 20 Jul'18

  Huge Singapore data breach shows need for new approach

  A major data breach in Singapore underlines the need for a new approach to protecting critical data and applications, say security experts

• July 20, 2018 20 Jul'18

  GDPR drives down UK insider threat

  The insider threat in European countries is falling post-General Data Protection Regulation, but continues to rise in the US, a study has revealed

• July 20, 2018 20 Jul'18

  NCSC report underlines cyber threat for legal firms

  Legal firms are a top target for cyber attackers, the latest report from the National Cyber Security Centre shows, emphasising the need for comprehensive cyber defence capabilities

• July 20, 2018 20 Jul'18

  Uptick in UK privacy awareness, says ICO

  The UK’s privacy watchdog, the Information Commissioner’s Office, reports increased public awareness of privacy and information rights issues

• July 19, 2018 19 Jul'18

  Uber appoints first privacy and data protection chiefs

  Uber is getting its privacy and data protection house in order in the wake of damaging data breaches and in anticipation of the company’s planned stock market launch in 2019

• July 17, 2018 17 Jul'18

  A third of organisations do not have a security expert, survey shows

  Around a third of organisations are vulnerable to cyber attacks due to a lack of dedicated in-house cyber security experts, finds Gartner survey

• July 15, 2018 15 Jul'18

  New industry network to bolster data protection in ASEAN

  The Data Protection Excellence network will assist organisations and individuals new to data protection laws by providing hands-on training and professional certification courses

• July 12, 2018 12 Jul'18

  Cyber attackers cashing in on ‘hidden’ attack surface

  Cyber attackers are cashing in on organisations’ lack of visibility into all online interactions that can involve multiple third parties, a report reveals

• July 11, 2018 11 Jul'18

  Cloudian adds Storage Made Easy file-sync-and-share compliance

  Object storage maker adds file-sync-and-share with compliance filters from Storage Made Easy to restrict movement of potentially sensitive data between endpoints and datacentres

• July 11, 2018 11 Jul'18

  Facebook could face ICO fine of up to £500,000

  Facebook could face the maximum fine provided by the UK’s previous data protection laws for lack of transparency and security issues relating to the harvesting of data, the UK’s privacy watchdog has revealed

• July 10, 2018 10 Jul'18

  Lords urge Brexit negotiators to reach agreement on security

  Time is running out for the UK and EU to agree on a future security relationship and if negotiators fail to find common ground, all stakeholders stand to lose, warns a Lords’ committee

• July 09, 2018 09 Jul'18

  As prime minister unveils Brexit plans, TechUK calls for deal on services

  The UK tech industry wants a Brexit deal open to services, mirroring the EU trade agreement with Canada

• July 09, 2018 09 Jul'18

  Collaborative taskforce launches security intelligence network

  BAE Systems, Vodafone, cyber security incubator CyLon and other partners have joined forces in unveiling a manifesto for safeguarding society in the digital age

• July 06, 2018 06 Jul'18

  ICO Grants Programme launches second round of funding

  The ICO is inviting a second round of applications for funding to promote and support independent, innovative research and solutions focused on privacy and data protection

• July 06, 2018 06 Jul'18

  European Parliament calls for suspension of Privacy Shield

  The Privacy Shield framework that replaced the Safe Harbour agreement for personal data transfers between the EU and the US is under increased pressure due to alleged non-compliance by US firms

• July 04, 2018 04 Jul'18

  Singapore company turns to blockchain to improve food security

  SMC Nutrition is using a blockchain distributed ledger developed by a Singapore-based company to gain visibility across its supply chain and ensure food security

• July 03, 2018 03 Jul'18

  Exiting EU committee cattle-prods government on 'data adequacy'

  House of Commons Select Committee for Exiting the European Union urges the government to start the process to secure a “Data Adequacy Decision” from the EU pronto

• July 03, 2018 03 Jul'18

  Feds expand Facebook data sharing probe

  The US federal probe into Facebook’s data sharing practices is expanding and MEPs are considering new measures as the firm reveals it granted extended access to 61 companies and admits to another data sharing software bug

• June 29, 2018 29 Jun'18

  UK government cyber security standard welcomed

  The information security community has welcomed the publication of the government’s minimum cyber security standard, which could be used by any organisation to improve its cyber defences

• June 29, 2018 29 Jun'18

  GDPR exposes breach reporting flaws

  In the month since the GDPR compliance deadline, it has become clear that many organisations are not well prepared for personal data breach notifications, says PwC’s data protection lead

• June 29, 2018 29 Jun'18

  UK biometrics strategy criticised for lack of content

  The long-awaited government biometrics strategy falls short of the mark, say critics, failing to provide a detailed and coherent strategy or governance framework

• June 29, 2018 29 Jun'18

  British Muslim considers appeal after court rules repeated terrorism stops are legal

  Muzaffar Abdullah, a 37-year-old gas engineer who has been stopped and questioned by police at airports at least 10 times, is considering an appeal after being found guilty of wilful obstruction for refusing to answer questions under controversial ...

• June 27, 2018 27 Jun'18

  AI and other tech key to post-Brexit success, says Matt Hancock

  Digital secretary Matt Hancock highlights the importance of emerging technologies to the future of the UK at the opening of London’s cyber security innovation centre

• June 27, 2018 27 Jun'18

  Global IoT security standard remains elusive

  Despite the lack of a global internet of things security standard, existing security frameworks are on the same page in areas such as device upgradability and data stewardship

• June 26, 2018 26 Jun'18

  British Muslim challenges use of intelligence databases for repeated police stops

  Muzaffar Abdullah is challenging police use of intelligence databases to repeatedly stop and question Muslims, after being arrested for refusing to answer questions under Schedule 7 of the Terrorism Act 2000. His lawyers say he had been stopped at ...

• June 25, 2018 25 Jun'18

  UK privacy groups join call on EU to halt comms data collection

  UK-based privacy groups have joined calls for a halt to the collection of communications data by European Union member states

• June 19, 2018 19 Jun'18

  Singapore remains hotbed for cyber threats

  Singapore was a victim of advanced persistent threats, phishing and website defacements in 2017, according to the latest threat landscape report by the Cyber Security Agency

• June 14, 2018 14 Jun'18

  AI is key to keeping IBM compliant with GDPR

  Artificial intelligence is vital for keeping IBM compliant with the principles of the General Data Protection Regulation, which, in turn, provides opportunities for business, says the company’s data protection officer

• June 14, 2018 14 Jun'18

  NCSC urges action after Dixons Carphone breach

  The National Cyber Security Centre (NCSC) is urging UK business to improve data protection capabilities after Dixons Carphone revealed that millions of payment card and personal data records may have been compromised in a cyber breach

• June 13, 2018 13 Jun'18

  Dixons Carphone admits 'falling short' on data protection

  Dixons Carphone has warned that millions of credit card and personal data records may have been compromised in a cyber breach

• June 12, 2018 12 Jun'18

  Privacy Shield under threat by US non-compliance

  The Privacy Shield framework that replaced the Safe Harbour agreement for personal data transfers between the EU and the US is under threat due to non-compliance by US firms

• June 12, 2018 12 Jun'18

  Email-based cyber attacks gathering momentum

  Email-based cyber attacks are gathering momentum and the cost of these attacks are rising, with several hidden costs, a survey of IT professionals in Europe, Middle East and Africa reveals

• June 11, 2018 11 Jun'18

  Singapore career website hit by PageUp malware scare

  A Singapore government career website was among others affected by a malware attack on an Australian recruitment technology supplier

• June 11, 2018 11 Jun'18

  Security Think Tank: Data flow visibility is essential to security

  Why is it important to know where data flows, with whom it is shared and where it lives at rest, and what is the best way of achieving this?

• June 11, 2018 11 Jun'18

  Coinrail cyber heist highlights need for exchange security

  A cyber heist at South Korea’s Coinrail has prompted fresh calls for industry regulations to drive better cyber security at cryptocurrency exchanges

• June 11, 2018 11 Jun'18

  APAC remains a hotbed for software piracy

  The Asia-Pacific region is still seeing the highest use of unlicensed software installations globally, making enterprises more susceptible to cyber attacks from malware

• June 08, 2018 08 Jun'18

  Businesses must report cyber crime, panel urges

  By reporting cyber crimes, private enterprise can help improve national and international cyber defences and bring criminals to justice, according to an expert panel

• June 07, 2018 07 Jun'18

  IT spending reaches 10-year high as CIOs struggle with digital technology strategy

  IT leaders have seen their budgets and headcounts rise for the first time in 10 years, but face challenges implementing their digital strategies

• June 06, 2018 06 Jun'18

  GDPR and backup: A potential minefield easily avoided

  The right to be forgotten will be impossible in backups and snapshots, but systems can be built that automate for compliance, says Andy Barratt of security consultancy Coalfire

• June 06, 2018 06 Jun'18

  We need to design for security and privacy, says Martha Lane Fox

  The digital future is bright, but only if society works through a gear change in its relationship with technology, and demands products and services that are secure and private by design, says internet service pioneer

• June 05, 2018 05 Jun'18

  Nexsan adds Assureon Cloud Transfer for hybrid cloud archiving

  Nexsan archiving appliances add hybrid cloud capability to AWS and Azure cloud for unstructured data, targeting users that want to retain files on-site with cloud access

• June 04, 2018 04 Jun'18

  One-third of firms would pay ransoms rather than invest in security

  Report says businesses are still making the same mistakes, failing to make any progress in crucial areas such as cyber security awareness and preparedness

• May 29, 2018 29 May'18

  Business still not addressing insider threat

  Businesses are still not addressing inside threats when it comes to cyber security, leaving themselves wide open to data breaches as a result, according to a security analyst

• May 29, 2018 29 May'18

  Max Schrems’s NOYB initiates GDPR action

  A privacy NGO led by Austrian lawyer Max Schrems is among the first to file complaints under the GDPR against Google, Instagram, WhatsApp and Facebook

• May 25, 2018 25 May'18

  GDPR puts people first, says ICO

  The day of 25 May 2018 marks the biggest change to UK data protection law in a generation, with benefits for businesses and consumers, according to the UK privacy watchdog

• May 25, 2018 25 May'18

  Commitment is the watchword on GDPR D-Day

  New rules for protecting European citizens’ personal data are now enforceable by law, and organisations are being advised to focus broadly on commitment rather than narrowly on compliance

• May 24, 2018 24 May'18

  Stronger rules on data protection by EU institutions agreed

  On the eve of the GDPR compliance deadline, European politicians agree new rules to strengthen data protection in EU organisations

• May 24, 2018 24 May'18

  Security experts weigh in on GDPR checklists

  Security experts give their views on what final checks businesses should be doing on the eve of the General Data Protection Regulation compliance deadline, while a survey reveals almost half of Brits have not heard of it

• May 24, 2018 24 May'18

  New UK Data Protection Act not welcomed by all

  Legislation makes the UK one of the first countries to implement the GDPR in local law, but some have criticised it as a “lost opportunity”

• May 23, 2018 23 May'18

  UK calls for new data-sharing model with EU

  The UK has proposed a new data-sharing model to ensure ongoing data protection collaboration and free flow of data between the EU and the UK post-Brexit

• May 23, 2018 23 May'18

  Compliance in the cloud: Avoiding the cloud compliance trap

  When you hand over data to a cloud provider, you don’t hand over responsibility for legal and regulatory compliance. Beware of falling into a cloud compliance trap

• May 23, 2018 23 May'18

  Facebook is ready for GDPR, says Zuckerberg

  Facebook chief Mark Zuckerberg has claimed the social network is ready for GDPR, but failed to give any answers to the most probing questions posed by European MEPs

• May 22, 2018 22 May'18

  Finland government examines centralised cyber defence

  The Finnish government is attempting to centralise its fight against increasing cyber threats to its infrastructure

• May 22, 2018 22 May'18

  Google sued for £3.2bn for tracking UK iPhone browsing

  A lawsuit by a group called Google You Owe Us is seeking compensation from Google for tracking millions of UK iPhone users’ browsing data

• May 21, 2018 21 May'18

  ICO fines University of Greenwich £120,000

  The UK privacy watchdog has issued a monetary penalty against the University of Greenwich for a "serious" security breach

• May 21, 2018 21 May'18

  ICO could use new GDPR powers in Facebook probe

  UK privacy watchdog is considering using new powers in its investigation of Facebook, while the government is considering new laws to police social media firms

• May 18, 2018 18 May'18

  Most UK marketers GDPR ready, but not all firms have a plan

  Most UK marketers believe they are ready for GDPR, but a worrying number believe their employers may not be, as businesses are urged to embrace the positives a week before the compliance deadline

• May 18, 2018 18 May'18

  BYOD in UK SMEs linked to security incidents

  Bring your own device practices have been identified as a cyber security risk for six in 10 SMEs in research published a week ahead of the GDPR compliance deadline

• May 18, 2018 18 May'18

  Use GDPR to propel business forward, says ICO

  GDPR is about a new way of doing things that businesses can use to their advantage, and cyber security is a key element, according to the Information Commissioner’s Office

• May 17, 2018 17 May'18

  GDPR impact on Whois data raising concern

  The negative impact of the GDPR on internet domain registration information is raising concern in cyber security circles because the data is key to cyber crime fighting operations

• May 16, 2018 16 May'18

  Most firms see GDPR as an opportunity

  A growing number of organisations consider the GDPR to be an opportunity to improve the way they handle data privacy and security, while leaders are using it as an opportunity for full business transformation, a study shows

• May 15, 2018 15 May'18

  Cage director Rabbani heads for Supreme Court after appeals court rules password demands lawful

  Muhammad Rabbani, director of campaigning group Cage, will appeal to the Supreme Court after Court of Appeal rules that police did not act unlawfully by demanding his computer and mobile phone passwords under Section 7 of the Terrorism Act

• May 15, 2018 15 May'18

  BSI launches kitemark for internet of things devices

  The British Standards Institution has launched a new kitemark for IoT devices, designed to improve consumer trust in the technology

• May 11, 2018 11 May'18

  Police Scotland did not inform public of mobile phone searches

  Members of the Scottish Parliament heard that Police Scotland did not conduct impact assessments or give explanations to the public when they were accessing private data on their mobile phones

• May 10, 2018 10 May'18

  Embrace GDPR to remain competitive, says OWI

  The EU’s General Data Protection Regulation is set to raise the bar internationally for data protection and should be embraced to remain competitive, says report

• May 09, 2018 09 May'18

  CNI providers face hefty fines for cyber security failings

  UK providers of critical national infrastructure face hefty fines for cyber security failings from 10 May 2018

• May 09, 2018 09 May'18

  Breach disclosure time still high, report shows

  Companies are getting faster at disclosing breaches, but the average is still too high in the light of the GDPR and other breach disclosure regulations, a report shows

• May 08, 2018 08 May'18

  Financial sector cyber-related laws are a bellwether, says Deloitte

  As the regulatory landscape becomes more complex, organisations should look to the financial sector to see what else is coming, as well as focus on three key areas of GDPR compliance, according to Deloitte

• May 03, 2018 03 May'18

  City Police use Lego simulation to teach businesses cyber security

  City of London Police are offering to train business leaders and IT security in cyber security using a Lego simulation that is surprisingly close to real life

• May 03, 2018 03 May'18

  Cambridge Analytica closure will not halt probe, says ICO

  The London-based data mining firm at the heart of the Facebook data exploitation scandal has announced it is closing, but the ICO says the probe into its actions will still go ahead

• May 02, 2018 02 May'18

  ARM aims to boost physical security of IoT

  Chipmaker ARM announces microprocessor aimed at improving the physical security capabilities of devices making up the internet of things

• May 02, 2018 02 May'18

  Workday to continue investing heavily in APAC

  Cloud applications supplier has increased its investments in the region by more than 50% in the past year, and is looking to maintain its double-digit growth in international markets

• May 01, 2018 01 May'18

  UK critical services need to up cyber defences to avoid fines

  UK critical infrastructure providers could be liable for fines of millions of pounds if they do not improve their cyber defences and resilience of their IT infrastructure, a study reveals