News

Security policy and user awareness

• March 13, 2017 13 Mar'17

  NCSC to educate UK politicians on the cyber threat

  The National Cyber Security Centre is to deliver tailored seminars for politicians on how to protect their email communications and voters’ data to defend against cyber threats to the political system

• February 22, 2017 22 Feb'17

  Beware printer helpline scam, warns NTS eCrime Team

  National Trading Standards is warning consumers about a scam targeting those looking for help with printer problems

• January 12, 2017 12 Jan'17

  TechUK launches framework to build public trust in the IoT

  Tech sector association techUK wants to help overcome public distrust in the internet of things

• December 21, 2016 21 Dec'16

  Top 10 IT security stories of 2016

  Here are Computer Weekly’s top 10 IT security stories of 2016:

• December 15, 2016 15 Dec'16

  Typo allowed Russian hackers to access US Democratic Party emails

  Typographical mistake in an email warning of a phishing attack on the US Democrats led to thousands of private emails being accessed and published by Russian-backed hackers

• December 05, 2016 05 Dec'16

  Top 10 ANZ enterprise IT stories of 2016

  Here is a rundown of Computer Weekly’s most popular ANZ enterprise IT articles for 2016

• November 25, 2016 25 Nov'16

  One in four Wi-Fi hotspots vulnerable to attack, study finds

  At least one in four Wi-Fi hotspots are open to attack, a study by Kaspersky Lab reveals

• November 16, 2016 16 Nov'16

  Government data security confusing, finds PAC

  A Public Accounts Committee hearing shows the government’s data and cyber security landscape is chaotic and confusing

• November 15, 2016 15 Nov'16

  Amber Rudd orders Lauri Love extradition to US to face hacking charges

  Engineering student Lauri Love faces trials in three US states and a possible 99-year jail sentence for allegedly hacking into US government computer systems as part of a political protest, despite concerns over his health

• November 14, 2016 14 Nov'16

  412 million user accounts exposed in FriendFinder Networks hack

  Another huge data breach has exposed poor security of user details and continued poor user password practices

• November 11, 2016 11 Nov'16

  Russian banks hit by IoT-enabled DDoS attacks

  DDoS attacks on Russian banks have been linked to IoT botnets, further confirming this worrying trend and highlighting the need for IoT suppliers to improve security capabilties

• October 20, 2016 20 Oct'16

  Armed forces minister wants military recruiters to "think different" to attract cyber security pros

  Armed Forces minister Mike Penning says military must rethink how it recruits trainees to attract people with the cyber security skills the country needs to protect itself

• October 18, 2016 18 Oct'16

  Saving Lauri Love: activists plan their next move

  An eclectic bunch of activists, charity workers and reformed hackers spent a rainy Sunday afternoon plotting their next move in a campaign to save Lauri Love from extradition to the US on hacking charges

• October 18, 2016 18 Oct'16

  Most businesses vulnerable to cyber attacks through firmware, study shows

  Company culture and overall attitude to security is a major contribution to vulnerability to cyber attack through firmware, a study by Isaca has revealed

• October 13, 2016 13 Oct'16

  Almost two-thirds of US office workers unaware of ransomware threat

  Nearly half of ransomware attacks are aimed at office workers, but almost two-thirds of those polled in the US are unaware of the threat

• September 29, 2016 29 Sep'16

  NGOs challenge UK and US mass surveillance in human rights court

  Privacy International, Liberty and the American Civil Liberties Union are among 10 human rights groups backing a landmark challenge to mass surveillance in the European Court of Human Rights

• September 06, 2016 06 Sep'16

  Use ransomware to get security buy-in, says Trend Micro CTO

  Ransomware is one of the top cyber threats to business, but organisations should use that to engage stakeholders and review processes and defences, says Trend Micro CTO Raimund Genes

• August 10, 2016 10 Aug'16

  MI5 staff repeatedly overrode data surveillance rules

  Security service MI5 is responsible for 210 “clear contraventions” over five years for the way it accessed private internet and telephone data

• July 26, 2016 26 Jul'16

  Date set for landmark hearing into EU-US data transfers

  Irish court hearing triggered by Austrian law student Max Schrems could have huge implications for EU-US trade and the data privacy rights of millions of EU citizens

• July 14, 2016 14 Jul'16

  CIO Interview: Elly Resende, CIO, Rio 2016 Olympics

  As Rio de Janeiro gets ready to host the Olympics, Computer Weekly speaks to the man in charge of its IT

• July 12, 2016 12 Jul'16

  IBM sets up security centre in Canberra

  IBM leads the charge as large private businesses invest heavily in security resources across Australia in an attempt to close the security gap

• June 29, 2016 29 Jun'16

  Lauri Love may be faking mental illness claims lawyer for US

  Prosecution lawyer Peter Caldwell questions whether activist Lauri Love is exaggerating mental health problems to avoid extradition to face hacking charges in the US

• June 28, 2016 28 Jun'16

  Lauri Love suicide risk if extradited to US over hacking allegations

  Westminster Magistrates’ Court hears evidence from medical experts that alleged hacker Lauri Love is at risk of suicide if extradited to the US

• June 21, 2016 21 Jun'16

  Cyber security industry mostly welcomes report on TalkTalk breach

  Most of the recommendations of a government committee inquiry into the TalkTalk breach have been welcomed, but pundits have expressed reservations about some, particularly proposed new fines

• June 20, 2016 20 Jun'16

  Lower average cost of Australian data breaches is not a sign of comfort

  The average cost of a data breach to Australian organisations dropped in 2015, according to research

• May 20, 2016 20 May'16

  NHS data security standards to be designed around technology, people and processes

  The Care Quality Commission’s delayed review of NHS data security standards will encourage NHS organisations to have senior information risk owners and Caldicott Guardians at board level

• May 19, 2016 19 May'16

  Lessons from LinkedIn data breach revelations

  There are several important lessons to be learned from revelations about LinkedIn's 2012 data breach, say security experts

• April 26, 2016 26 Apr'16

  Business failing to learn lessons of past cyber attacks, report shows

  Organisations are still failing to address basic security issues and well-known attack methods, Verizon’s latest Data Breach Investigations Report reveals

• April 21, 2016 21 Apr'16

  GCHQ told analysts to assume surveillance 'bulk data' is legal

  Documents obtained by charity Privacy International reveal insights into GCHQ’s collection of sensitive bulk data, as lawyers question the impact of surveillance on legal privilege, fair trials and protection of whistleblowers

• April 19, 2016 19 Apr'16

  Employees’ use of personal devices puts firms at risk of malware infection, says report

  Downloaders care about their own security while grabbing pirated content, not that of their employers

• April 15, 2016 15 Apr'16

  Israeli volunteers ready their cyber defences as Anonymous affiliates attack

  Every April, Israel braces itself for an onslaught from pro-Palestinian hackers, but the occupants of a small conference room in Tel Aviv stand in their way

• April 13, 2016 13 Apr'16

  NCA attempts 'back door' access to obtain activist Lauri Love’s passwords

  Court told that use of civil proceedings to force disclosure of alleged hacker Lauri Love's passwords is disproportionate and would breach human rights law

• April 11, 2016 11 Apr'16

  QA launches cyber attack defence training facility in London

  Training firm QA launches a cyber attack simulation facility in London to enable organisations to test and learn cyber defence skills

• April 11, 2016 11 Apr'16

  Activist Lauri Love faces order to disclose encryption keys

  The UK’s National Crime Agency takes an unusual legal step to force a former university student accused of hacking to disclose encryption keys

• March 31, 2016 31 Mar'16

  DDoS attacks on universities normally performed by “disgruntled” students or employees

  The majority of distributed denial of service attacks on universities are made by students or employees, says the head of infrastructure services at the University of London

• March 18, 2016 18 Mar'16

  Most students say cyber security is a growing threat

  Some 70% of higher education students say they are aware that cyber crime and attacks are a threat, but less than half think security is their responsibility

• February 23, 2016 23 Feb'16

  Social engineering confirmed as top information security threat

  Cyber attackers shifted away from automated exploits in 2015 and instead tricked people into doing the dirty work, Proofpoint researchers found

• February 04, 2016 04 Feb'16

  Google’s Chrome to flag deceptive embedded content

  Browser will warn of any embedded content such as ads that pretend to act like, and look and feel like, a trusted entity

• January 29, 2016 29 Jan'16

  HSBC online services hit by DDoS attack

  HSBC was hit by a distributed denial of service (DDoS) attack, which targeted its online personal banking services.

• January 19, 2016 19 Jan'16

  Most Android devices running outdated versions

  Nearly a third of Android devices in enterprises today are running version 4.0 or older of the operating system, leaving them highly susceptible to vulnerabilities, a study shows

• January 13, 2016 13 Jan'16

  UK not involved in mass surveillance, says Theresa May

  Coffee shops and libraries could be the target of interception warrants, Theresa May tells MPs and peers

• January 06, 2016 06 Jan'16

  UK IoT research hub opens with support from academic world

  A consortium of nine UK universities have come together to work alongside the Engineering and Physical Sciences Research Council on research into the internet of things

• December 17, 2015 17 Dec'15

  National security ‘not affected’ by failed e-Borders programme, says Home Office

  Despite the key Warnings Index system suffering an average of two high-priority incidents a week – such as a system component not being available – Home Office officials deny it causes risk to national security

• December 07, 2015 07 Dec'15

  Cyber attacks an increasing concern for Asean countries

  Organisations in the Association of Southeast Asian Nations are increasingly the targets for cyber criminals, according to a report focused on the region

• December 03, 2015 03 Dec'15

  Workday ringfences support in Europe after Safe Harbour ruled unsafe

  US cloud HR and financial services provider reponds to Safe Harbour failure by ringfencing European data

• November 26, 2015 26 Nov'15

  Dridex banking Trojan regains strength to mount attacks on the UK

  Fresh Dridex banking Trojan campaigns target the US, UK and France – despite a recent law enforcement takedown operation – warn security researchers

• November 04, 2015 04 Nov'15

  UAE recognises importance of cyber security, says official

  Like the UK, the UAE federal government has identified the importance of creating an environment in which it is safe to do business online

• October 13, 2015 13 Oct'15

  Cyber security innovation is crucial, says security evangelist

  Visibility and automation are key areas of cyber security innovation, but firms should concentrate first on the basics and not overlook the human element of security

• September 22, 2015 22 Sep'15

  Is Microsoft Office 2016 reliable enough for business?

  A day after a major Skype outage, Microsoft unveils Office 2016, which, ironically, offers tight integration with Skype

• September 11, 2015 11 Sep'15

  Security industry welcomes GCHQ password guidelines

  GCHQ's guidance on password policy covers some of the most pressing issues facing UK businesses and employees today, according to Skyhigh Networks