IT for leisure and hospitality industry

Rethink authentication to remove the burden on users

The rise of AI powered threats and non-human identities will push an already strained identity security model over the edge Continue Reading

By

• Patrick Wardrop, IBM

Qualys goes to bat for US cricket side San Francisco Unicorns

Cloud security specialist Qualys partners with US T20 cricket squad San Francisco Unicorns and its Sparkle Army fanclub as the team prepares for its summer 2025 campaign Continue Reading

By

• Alex Scroxton, Security Editor

Beyond baselines - getting real about security and resilience

In an increasingly contested world, the UK government needs a security certification that goes beyond baseline measures. Continue Reading

By

• Neil Ashdown and Tash Buckley

Tariff turmoil is making supply chain security riskier

Many businesses around the world are taking the decision to alter their supplier mix in the face of tariff uncertainty, but in doing so are creating more cyber risks for themselves, according to a report Continue Reading

By

• Alex Scroxton, Security Editor

Saudi Arabia struggling to reach global leadership in deeptech

Petrostate monarchy trying to build surrogate industry made of foreign startups because own ecosystem is too immature Continue Reading

By

• Mark Ballard

Hertz warns UK customers of Cleo-linked data breach

Car hire giant Hertz reveals UK customer data was affected in a cyber incident orchestrated via a series of vulnerabilities in Cleo managed file transfer products Continue Reading

By

• Alex Scroxton, Security Editor

Spoofing vuln threatens security of WhatsApp Windows users

Meta has disclosed and patched a potentially dangerous spoofing flaw in WhatsApp for Windows that could have caused big problems for unwitting users Continue Reading

By

• Alex Scroxton, Security Editor

It’s time to stop the victim-blaming and insist on safer software

Businesses spend too much time and money protecting themselves against flaws and vulnerabilities in modern software products, when they ought to raise their expectations and insist on better solutions from providers Continue Reading

By

• Mandy Andress, Elastic

Taking a ‘good enough’ approach with cloud security isn't enough

In the wake of the January 2025 'Codefinger' attacks against AWS S3 users, Thales Rob Elliss argues that many organisations are dropping the ball when it comes to their understanding of cloud security best practice Continue Reading

By

• Rob Ellis, Thales

UKtech50 2025 – help us find the most influential people in UK IT

Computer Weekly’s annual search for the 50 most influential people in UK IT is on – let us know who you would like to nominate for this year's list Continue Reading

By

• Lis Evenstad

Bridging Borders: The rise of Ukrainian-British tech collaboration

The IT sectors of the UK and Ukraine have built strong relationships since Russia’s invasion of the latter, and there is more to come, writes the IT Ukraine Association’s ambassador in the UK Continue Reading

By

• Alexandra Govorukha

Gmail ‘bubble’ encryption may be an S/MIME killer, says Google

Marking the 21st anniversary of Gmail, Google is preparing to roll out an end-to-end encryption standard for its email service in hopes of democratising encryption and leaving old standards in the dust Continue Reading

By

• Alex Scroxton, Security Editor

Countering nation-state cyber espionage: A CISO field guide

The rise of DeepSeek has prompted the usual well-documented concerns around AI, but also raised worries about its potential links to the Chinese state. The Security Think Tank considers the steps security leaders can take to counter threats posed by nation state industrial espionage? Continue Reading

By

• Andrew Hodges, Quorum Cyber

NCSC, DSIT enlist IBM to spearhead cyber diversity agenda

IBM signs on to a partnership deal in support of the popular NCSC CyberFirst Girls scheme designed to foster gender diversity in the cyber security profession Continue Reading

By

• Alex Scroxton, Security Editor

Dutch workforce faces radical transformation as AI adoption accelerates

While the Netherlands leads Europe in AI adoption, a deeper analysis of the labour market reveals a more nuanced narrative than the apocalyptic predictions of job losses Continue Reading

By

• Kim Loohuis

NCSC proposes three-step plan to move to quantum-safe encryption

The NCSC urges service providers, large organisations and critical sectors to start thinking today about how they will migrate to post-quantum cryptography over the next decade Continue Reading

By

• Alex Scroxton, Security Editor

Cinema is given a new lease of life by Danes and data

Those who think that cinema is dying out are failing to see the full picture and move with the times, according to Danish entertainment company Nordisk Film Continue Reading

By

• Matthew Staff

Clop resurgence drives ransomware attacks in February

The exploitation of two new vulnerabilities in a popular file transfer service saw the Clop ransomware gang soar in February, according to NCC Continue Reading

By

• Alex Scroxton, Security Editor

How CISOs can counter the threat of nation state espionage

The rise of DeepSeek has prompted the usual well-documented concerns around AI, but also raised worries about its potential links to the Chinese state. The Security Think Tank considers the steps security leaders can take to counter threats posed by nation state industrial espionage? Continue Reading

By

• Elisabeth Mackay, PA Consulting

SuperBlack ransomware may have ties to LockBit

Forescout researchers report on a new ransomware gang that appears to be keeping the legacy of the notorious LockBit crew alive Continue Reading

By

• Alex Scroxton, Security Editor

March Patch Tuesday brings 57 fixes, multiple zero-days

The third Patch Tuesday of 2025 brings fixes for 57 flaws and a hefty number of zero-days Continue Reading

By

• Alex Scroxton, Security Editor

Perimeter security appliances source of most ransomware hits

Perimeter security appliances and devices, particularly VPNs, prove to be the most popular entry points into victim networks for financially motivated ransomware gangs, according to reports Continue Reading

By

• Alex Scroxton, Security Editor

Interview: Madoc Batters, head of cloud and IT security, Warner Leisure Hotels

The hotel chain has embarked on a major cloud migration programme to improve innovation and enhance the security of its network and applications Continue Reading

By

• Mark Samuels

Norway says ‘no way’ to global financial crime

Oslo’s startup ecosystem is fighting back against cyber criminals with tech to wipe out attacks rather than just detect them Continue Reading

By

• Matthew Staff

CFIT publishes blueprint for digital company business IDs

Plan to increase the use of digital identities by businesses could add billions of pounds to UK economy through compliance savings and reduced fraud Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Secure software: Third-party suppliers your first-party risk

Outgoing CISA chief Jen Easterly called on buyers to demand better security standards from their software suppliers. The Security Think Tank considers what better means, and what best practice for secure software procurement looks like in 2025 Continue Reading

By

• Ejona Preci, Lindal Group

CVE volumes head towards 50,000 in 2025, analysts claim

Many trends, notably a big shift to open source tools, are behind an expected boom in the number of disclosed vulnerabilities Continue Reading

By

• Alex Scroxton, Security Editor

CISOs spending more on insider risk

Insider risk management budgets have more than doubled in the past 12 months and look set to grow further still in 2025, according to a report Continue Reading

By

• Alex Scroxton, Security Editor

A landscape forever altered? The LockBit takedown one year on

The NCA-led takedown of the LockBit ransomware gang in February 2024 heralded a transformative year in the fight against cyber crime. One year on, we look back at Operation Cronos and its impact Continue Reading

By

• Alex Scroxton, Security Editor

Meta’s planned subsea cable will exceed circumference of Earth and support AI innovation

Meta’s planned 50,000 km subsea cable will be the world’s longest and connect the five major continents Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Gartner: CISOs struggling to balance security, business objectives

Only 14% of security leaders can ‘effectively secure organisational data assets while also enabling the use of data to achieve business objectives’, according to Gartner Continue Reading

By

• Alex Scroxton, Security Editor

Government launches consultation on plan to streamline business through e-invoicing

Government announces 12-week consultation on electronic invoicing as part of its plan for change Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Cisco Live EMEA: Network supplier tightens AI embrace

At its annual EMEA show, Cisco tech leadership unveiled a raft of new products, services and features designed to help customers do more with artificial intelligence Continue Reading

By

• Alex Scroxton, Security Editor

US lawmakers move to ban DeepSeek AI tool

US politicians have introduced a bill seeking to ban the use of the DeepSeek AI tool on government-owned devices, citing national security concerns due to its alleged links to the Chinese state Continue Reading

By

• Alex Scroxton, Security Editor

Ransomware payment value fell over 30% in 2024

Several factors, including the impact of law enforcement operations disrupting cyber criminal gangs and better preparedness among users, may be behind a significant drop in the total value of ransomware payments Continue Reading

By

• Alex Scroxton, Security Editor

Self-healing networks: The next evolution in network management

The age of AI is highlighting the security risks and pitfalls of traditional network management techniques. Self-healing networks may offer a solution that not only bolsters security, but makes IT and network teams more efficient Continue Reading

By

• Isla Sibanda

UK’s Cyber Monitoring Centre begins incident classification work

The Cyber Monitoring Centre will work to categorise major incidents against a newly developed scale to help organisations better understand the nature of systemic cyber attacks and learn from their impact Continue Reading

By

• Alex Scroxton, Security Editor

“Unsafe At Any Speed”. Comparing automobiles to code risk

Outgoing CISA chief Jen Easterly called on buyers to demand better security standards from their software suppliers. The Security Think Tank considers what better means, and what best practice for secure software procurement looks like in 2025. Continue Reading

By

• Tyler Shields

Vigilant buyers are the best recipe for accountable suppliers

In January 2025, outgoing CISA chief Jen Easterly called on IT buyers to demand better security standards from their software suppliers. The Security Think Tank considers what better means, and what does best practice for secure software procurement looks like in 2025. Continue Reading

By

• Aditya K Sood, Aryaka

Vallance rejects latest charge to reform UK hacking laws

Science minister Patrick Vallance rejects proposed amendments to the Computer Misuse Act, arguing that they could create a loophole for cyber criminals to exploit Continue Reading

By

• Alex Scroxton, Security Editor

Your first steps to improve international compliance

The Computer Weekly Security Think Tank considers how security leaders should best navigate the multitude of new national and multinational regulations affecting their work, and ensure their organisations remain compliant and protected Continue Reading

By

• Petra Wenham

Cyber incident that closed British Museum was inside job

An IT incident that disrupted visitor access to the British Museum last week was the work of a disgruntled contractor who had been let go Continue Reading

By

• Alex Scroxton, Security Editor

ICO launches major review of cookies on UK websites

ICO sets out 2025 goals, including a review of cookie compliance across the UK’s top 1,000 websites, as it seeks to achieve its ultimate goal of giving the public meaningful control over how their data is used Continue Reading

By

• Alex Scroxton, Security Editor

Privacy professionals expect budget cuts, lack confidence

Over 50% of privacy professionals in Europe expect to see less money earmarked for data security initiatives in 2025, and many don’t have faith their organisations are taking the issue seriously, according to an ISACA report Continue Reading

By

• Alex Scroxton, Security Editor

Funksec gang turned up ransomware heat in December

The criminal ransomware fraternity was hard at work over the festive period, with attack volumes rising and a new threat actor emerging on the scene Continue Reading

By

• Alex Scroxton, Security Editor

US Supreme Court upholds TikTok ban

The US Supreme Court has upheld a legal ban on TikTok, meaning that the video-sharing application will be shut down from midnight on Sunday 19 January Continue Reading

By

• Alex Scroxton, Security Editor

Cyber innovation to address rising regulatory, threat burden

The Computer Weekly Security Think Tank considers how security leaders should best navigate the multitude of new national and multinational regulations affecting their work, and ensure their organisations remain compliant and protected Continue Reading

By

• Nick New, Optalysys

Users protest, flee TikTok as clock ticks on US ban

As the US Supreme Court prepares to rule on the future of TikTok, rumours of a sale are swirling around Washington DC while panicked users make plans for an exodus Continue Reading

By

• Alex Scroxton, Security Editor

Biggest Patch Tuesday in years sees Microsoft address 159 vulnerabilities

The largest Patch Tuesday of the 2020s so far brings fixes for more than 150 CVEs ranging widely in their scope and severity – including eight zero-day flaws Continue Reading

By

• Alex Scroxton, Security Editor

Why we need better cyber regulation to protect the UK from disruption

The Computer Weekly Security Think Tank considers how security leaders should best navigate the multitude of new national and multinational regulations affecting their work, and ensure their organisations remain compliant and protected. Continue Reading

By

• Adam Stringer, PA Consulting

Mandiant: Latest Ivanti vulns exploited by Chinese cyber spooks

Threat actors are once again lining up to exploit vulnerabilities in the widely used Ivanti product suite, with an apparent link to Chinese espionage activity Continue Reading

By

• Alex Scroxton, Security Editor

Why CISOs should build stronger bonds with the legal function in 2025

The Computer Weekly Security Think Tank considers how security leaders should best navigate the multitude of new national and multinational regulations affecting their work, and ensure their organisations remain compliant and protected. Continue Reading

By

• Mandy Andress, Elastic

US Treasury incident a clear warning on supply chain security in 2025

A cyber incident at the US Department of the Treasury – blamed on a Chinese state actor – raises fresh warnings about supply chain risk after it was found to have originated via vulnerabilities in a remote tech support product Continue Reading

By

• Alex Scroxton, Security Editor

LockBit ransomware gang teases February 2025 return

An individual associated with the LockBit ransomware gang has broken cover to tease details of a new phase of the cyber criminal operation's activity, which they claim is set to begin in February 2025 Continue Reading

By

• Alex Scroxton, Security Editor

Latest attempt to override UK’s outdated hacking law stalls

Amendments to the Data Bill that would have given the UK cyber industry a boost by updating restrictive elements of the Computer Misuse Act have failed to progress beyond a Lords committee Continue Reading

By

• Alex Scroxton, Security Editor

Innovation, insight and influence: the CISO playbook for 2025 and beyond

From Covid-19 to war in Ukraine, SolarWinds Sunburst, Kaseya, Log4j, MOVEit and more, the past five years brought cyber to mainstream attention, but what comes next? The Computer Weekly Security Think Tank looks ahead to the second half of the 2020s Continue Reading

By

• Mandy Andress, Elastic

The Security Interviews: Martin Lee, Cisco Talos

Threat intel expert and author Martin Lee, EMEA technical lead for security research at Cisco Talos, joins Computer Weekly to mark the 35th anniversary of the first ever ransomware attack Continue Reading

By

• Alex Scroxton, Security Editor

Top 10 cyber security stories of 2024

Data breaches, data privacy and protection, and the thorny issue of open source security were all hot topics this year. Meanwhile, security companies frequently found themselves hitting the headlines, and not always for good reasons. Here are Computer Weekly's top 10 cyber security stories of 2024 Continue Reading

By

• Alex Scroxton, Security Editor

Look to the future: How the threat landscape may evolve next

From Covid-19 to war in Ukraine, SolarWinds Sunburst, Kaseya, Log4j, MOVEit and more, the past five years brought cyber to mainstream attention, but what comes next? The Computer Weekly Security Think Tank looks ahead to the second half of the 2020s Continue Reading

By

• Elliott Wilkes, ACDS

Top 10 cyber crime stories of 2024

From ransomware targeting the NHS to nation-state-backed intrusions, 2024 was another big year for cyber criminals and cyber spooks alike, but they didn't have it all their own way as the good guys fought back Continue Reading

By

• Alex Scroxton, Security Editor

2025-30: Geopolitical influence on cyber and the convergence of threat

From Covid-19 to war in Ukraine, SolarWinds Sunburst, Kaseya, Log4j, MOVEit and more, the past five years brought cyber to mainstream attention, but what comes next? The Computer Weekly Security Think Tank looks ahead to the second half of the 2020s Continue Reading

By

• Rob Dartnall, SecAlliance

Using AI to build stronger client relationships in 2025

On the Twelfth Day of AI, we explore the key benefits of Copilot, the potential risks, barriers to adoption, and strategies for ensuring successful implementation. Continue Reading

By

• Josie Rickerd, ANS

Top 10 IT leadership interviews of 2024

The top technology leaders talk to Computer Weekly to discuss the challenges they face and the strategies, solutions and successes they are delivering Continue Reading

By

• Computer Weekly staff

Decoding the end of the decade: What CISOs should watch out for

From Covid-19 to war in Ukraine, SolarWinds Sunburst, Kaseya, Log4j, MOVEit and more, the past five years brought cyber to mainstream attention, but what comes next? The Computer Weekly Security Think Tank looks ahead to the second half of the 2020s Continue Reading

By

• Paul Lewis, Nominet

Decking the halls with AI: the evolution of managed services

On the Tenth Day of AI, we explore the evolving role of AI in managed services and what to expect in 2025. Continue Reading

By

• Ben Clarke, ANS

Computer Misuse Act reform gains traction in Parliament

An amendment to the proposed Data (Access and Use) Bill that will right a 35-year-old wrong and protect security professionals from criminalisation is to be debated at Westminster Continue Reading

By

• Alex Scroxton, Security Editor

Emerging Ymir ransomware heralds more coordinated threats in 2025

A newly observed ransomware strain has the community talking about more collaboration, and blurred lines, between threat groups next year, according to NCC’s monthly cyber barometer Continue Reading

By

• Alex Scroxton, Security Editor

Data: The reindeer pulling AI's sleigh

On the Ninth Day of AI, we explore the critical role data plays in AI implementation and the key steps business leaders must take to prepare their data for a successful AI future. Continue Reading

By

• Martin Brierly, ANS

Happy New Year: Three steps to maximise AI’s ROI in 2025

On the Eighth Day of AI, we explore the key considerations and strategic frameworks essential for extracting maximum value from AI projects. Continue Reading

By

• Robert Cottrill, ANS

Dangerous CLFS and LDAP flaws stand out on Patch Tuesday

Microsoft has fixed over 70 CVEs in its final Patch Tuesday update of the year, and defenders should prioritise a zero-day in the Common Log File System Driver, and another impactful flaw in the Lightweight Directory Access Protocol Continue Reading

By

• Alex Scroxton, Security Editor

iOS vuln leaves user data dangerously exposed

Jamf threat researchers detail an exploit chain for a recently patched iOS vulnerability that enables a threat actor to steal sensitive data, warning that many organisations are still neglecting mobile updates Continue Reading

By

• Alex Scroxton, Security Editor

Defending against cyber grinches: AI for enhanced security

On the Seventh Day of AI, Defending against cyber grinches: AI for enhanced security, we explore the double-edged sword of AI in cybersecurity and how businesses can protect themselves against the cyber grinches. Continue Reading

By

• Justin Young, ANS

In 2025: Identities conquer, and hopefully unite

From Covid-19 to war in Ukraine, SolarWinds Sunburst, Kaseya, Log4j, MOVEit and more, the past five years brought cyber to mainstream attention, but what comes next? The Computer Weekly Security Think Tank looks ahead to the second half of the 2020s Continue Reading

By

• Stephen McDermid, Okta

AI and cloud: The perfect pair to scale your business in 2025

On the Sixth Day of AI, we explore how leveraging AI and cloud can enhance business performance and shares tips for successful implementation. Continue Reading

By

• Matt Gallagher, ANS

Six trends that will define cyber through to 2030

From Covid-19 to war in Ukraine, SolarWinds Sunburst, Kaseya, Log4j, MOVEit and more, the past five years brought cyber to mainstream attention, but what comes next? The Computer Weekly Security Think Tank looks ahead to the second half of the 2020s Continue Reading

By

• Pierre-Martin Tardif, ISACA

How AI can help you attract, engage and retain the best talent in 2025

On the Fifth Day of AI, we explore how AI is reshaping HR – boosting productivity, addressing concerns, and preparing organisations for the future. Continue Reading

By

• Toria Walters, ANS

Are you on the naughty or nice list for responsible AI adoption?

On the Fourth Day of AI, we discuss the value of adopting AI responsibly, and outlines how businesses can build responsible adoption into their plans Continue Reading

By

• Kyle Hill, ANS

The most pressing challenges for CISOs and cyber security teams

From Covid-19 to war in Ukraine, SolarWinds Sunburst, Kaseya, Log4j, MOVEit and more, the past five years brought cyber to mainstream attention, but what comes next? The Computer Weekly Security Think Tank looks ahead to the second half of the 2020s Continue Reading

By

• Elliot Rose, PA Consulting

2025: The year of AI for business - top trends to watch out for

On the Third Day of AI, we explore some of the key trends to keep an eye on, and prepare for, in 2025 Continue Reading

By

• Chris Huntingford, ANS

All businesses want for Christmas is a clear definition of AI

On the second of the 12 Days of AI, we look at the importance of truly understanding what AI is to enable true organisational transformation. Continue Reading

By

• Janet Robb, ANS

NCSC boss calls for ‘sustained vigilance’ in an aggressive world

NCSC CEO Richard Horne is to echo wider warnings about the growing number and severity of cyber threats facing the UK as he launches the security body’s eighth annual report Continue Reading

By

• Alex Scroxton, Security Editor

CISOs will face growing challenges in 2025 and beyond

From Covid-19 to war in Ukraine, SolarWinds Sunburst, Kaseya, Log4j, MOVEit and more, the past five years brought cyber to mainstream attention, but what comes next? The Computer Weekly Security Think Tank looks ahead to the second half of the 2020s Continue Reading

By

• Mike Gillespie and Ellie Hurst, Advent IM

Unwrapping the benefits of AI for marketing

In the first of a new series of articles, the 12 Days of AI, we explore how AI is being used in marketing, the benefits and key use cases, as well as concerns and how marketers can best take advantage of AI Continue Reading

By

• Sophie Rea, ANS

Automated patch management: A proactive way to stay ahead of threats

Timely patch management should be crucial in any organisation, but too often it goes by the wayside. Automating the process may offer a path forward for hard-pressed cyber defenders Continue Reading

By

• Isla Sibanda

In the cloud, effective IAM should align to zero-trust principles

The Security Think Tank considers best practices in identity and access management and how can they be deployed to enable IT departments to combat cyber-attacks, phishing attacks and ransomware Continue Reading

By

• Vladimir Jirasek, Foresight Cyber

Russian threat actors poised to cripple power grid, UK warns

UK government escalates cyber rhetoric in a speech at a Nato event, saying Russian advanced persistent threats stand ready to conduct cyber attacks that could ‘turn off the lights for millions’ Continue Reading

By

• Alex Scroxton, Security Editor

Microsoft calls on Trump to ‘push harder’ on cyber threats

Microsoft’s Brad Smith urges president-elect Donald Trump to keep the faith when it comes to fighting back against hostile cyber actors from China, Iran and Russia Continue Reading

By

• Alex Scroxton, Security Editor

Geopolitical strife drives increased ransomware activity

The lines between financially motivated cyber criminals and nation state APTs are rapidly blurring, as geopolitical influences weigh heavily on the threat landscape, according to data from NCC Continue Reading

By

• Alex Scroxton, Security Editor

BianLian cyber gang drops encryption-based ransomware

The Australian and American cyber authorities have published updated intelligence on the BianLian ransomware gang, which has undergone a rapid evolution in tactics Continue Reading

By

• Alex Scroxton, Security Editor

Microsoft slaps down Egyptian-run rent-a-phish operation

Microsoft’s Digital Crimes Unit has conducted a successful takedown of almost 250 malicious websites used in the cyber criminal ONNX phishing-as-a-service operation Continue Reading

By

• Alex Scroxton, Security Editor

Apple addresses two iPhone, Mac zero-days

Two zero-day vulnerabilities uncovered in Apple’s operating systems could have allowed for arbitrary code execution and cross-site scripting attacks Continue Reading

By

• Alex Scroxton, Security Editor

Underfunded, under pressure: We must act to support cyber teams

With almost half of cyber pros experiencing more incidents this year, security leaders say their teams are coming under increasing strain. Businesses must be more proactive approach about building a resilient, future-ready workforce Continue Reading

By

• Chris Dimitriadis, ISACA

Overcoming the cyber paradox: Shrinking budgets – growing threats

The challenging macro environment has left security budgets stretched thin even while new tech like AI presents a threat multiplier. In the face of these challenges, it becomes vital for security leads to do more to maintain funding Continue Reading

By

• Richard Watson, EY

Interview: Raymond Boyle, vice-president of data and analytics, Hyatt Hotels

Data culture is a key focus for the strategy at the global hotel chain, especially as AI opens up new opportunities to drive personalisation and trust with customers Continue Reading

By

• Mark Samuels

AWS widening scope of MFA programme after early success

AWS reports strong take-up of multi-factor authentication among customers since making it compulsory for root users earlier this year, and plans to expand the scope of its IAM programme in spring 2025 Continue Reading

By

• Alex Scroxton, Security Editor

UK consumers losing more than ever to holiday scams

Last Christmas, UK consumers lost over £11m to cyber criminals. This year, to save them from tears, the NCSC and Action Fraud are teaming up to launch an anti-fraud campaign Continue Reading

By

• Alex Scroxton, Security Editor

Microsoft fixes 89 CVEs on penultimate Patch Tuesday of 2024

High-profile vulns in NTLM, Windows Task Scheduler, Active Directory Certificate Services and Microsoft Exchange Server should be prioritised from November’s Patch Tuesday update Continue Reading

By

• Alex Scroxton, Security Editor

Zero-day exploits increasingly sought out by attackers

Threat actors increasingly favour zero-day exploits to attack their victims before patches become available, according to the NCSC and CISA, which have just published a list of the most widely used vulnerabilities of 2023 Continue Reading

By

• Alex Scroxton, Security Editor

Strengthening cyber: Best IAM practices to combat threats

The Security Think Tank considers best practices in identity and access management and how can they be deployed to enable IT departments to combat cyber-attacks, phishing attacks and ransomware Continue Reading

By

• Andrew Peel, Scott Swalling, PA Consulting

Beyond VPNs: The future of secure remote connectivity

As more companies adopt cloud services and remote work, the limitations of VPNs are becoming obvious. We explore what’s next for secure remote connectivity Continue Reading

By

• Isla Sibanda