IT governance
IT governance provides the core workflows and processes that help IT managers to oversee the successful functioning of the IT department, and to prove the value of IT to the business. Regulations and compliance are just as important as technological and management skills, and we highlight the best practice in IT governance and the example of successful IT leaders.
-
News
01 May 2025
Harrods becomes latest UK retailer to fall victim to cyber attack
Harrods confirms it has become latest UK retailer to experience a cyber attack, shutting off a number of systems in an attempt to lessen the impact. Continue Reading
-
Opinion
01 May 2025
Signalgate: Learnings for CISOs securing enterprise data
A leak of information on American military operations caused a major political incident in March 2025. The Security Think Tank considers what can CISOs can learn from this potentially fatal error. Continue Reading
-
News
22 Jul 2020
US charges Chinese nationals with Covid-19 research hacking
The two hackers allegedly worked with the Chinese Ministry of State Security, targeting intellectual property and confidential business information Continue Reading
-
News
22 Jul 2020
BNP Paribas joins IBM financial services cloud project
IBM’s financial services cloud is gathering steam as more banks join its public cloud ecosystem of finance firms and developers Continue Reading
-
News
22 Jul 2020
Privacy Shield: Companies face new hurdles to legally transfer data to the US
Businesses will have to conduct legal assessments to ensure they can transfer data from the EU to the US and other countries, following a European Court of Justice ruling Continue Reading
-
News
21 Jul 2020
Coronavirus: Government drags its feet on online misinformation
Online misinformation about Covid-19 continues to spread unchecked, according to a DCMS committee report which has accused the government of dragging its feet over online harms Continue Reading
-
News
21 Jul 2020
Russia Report reveals long-running cyber warfare campaign against UK
Russia has been hacking the UK for years and the British government has also known about it for years, according to the Intelligence and Security Committee’s report Continue Reading
-
News
20 Jul 2020
Businesses underestimate negative impact of bot traffic
Research from Netacea finds that although awareness of malicious bot activity is high, many are underestimating its true impact Continue Reading
-
News
20 Jul 2020
Test and Trace programme unlawful, admits government
The Department of Health and Social Care failed in its legal obligation to complete a mandatory Data Protection Impact Assessment Continue Reading
-
Feature
20 Jul 2020
Automating IT security
IT security’s battle with the hacking community has always been a game of cat and mouse, but it’s becoming increasingly automated Continue Reading
-
News
17 Jul 2020
Twitter hack fallout: Investigators on trail of cyber criminals
Investigators are hunting the cyber criminals who broke into Twitter’s systems to hijack prominent accounts, amid concerns that more attacks may come Continue Reading
-
News
17 Jul 2020
Unesco launches global consultation on AI ethics
The United Nations (UN) body opens up public consultation to help experts draft new global framework on artificial intelligence ethics Continue Reading
-
News
16 Jul 2020
Russian state hackers attacking Covid-19 researchers
Kremlin-linked APT29 group, also known as Cozy Bear, is conducting a campaign against Covid-19 researchers around the world Continue Reading
-
News
16 Jul 2020
Schrems v Facebook: European court strikes down EU-US Privacy Shield agreement
The European Court of Justice has struck down Privacy Shield, the EU-US data-sharing agreement, creating uncertainty for European countries that share data with the US and pressuring the US to reform surveillance laws Continue Reading
-
News
15 Jul 2020
Government proposes IoT security enforcement body
The government is today publishing new proposals concerning planned legislation that will protect users of smart IoT devices from cyber criminals Continue Reading
-
News
14 Jul 2020
Check Point unearths critical SigRed bug in Windows DNS
SigRed vulnerability is highly dangerous, but is being fixed as part of the July 2020 Patch Tuesday update Continue Reading
-
News
14 Jul 2020
European court to decide legality of EU-US data sharing in dispute between Schrems and Facebook
A ruling by the European Court of Justice will have ramifications for hundreds of thousands of companies that share data with the US. The case aims to balance US surveillance laws with the rights of EU citizens to keep their data private Continue Reading
-
News
14 Jul 2020
CISOs undervalued, overworked, burning out, warns CIISec
The vast majority of security professionals say they are under immense pressure, according to a report Continue Reading
-
News
14 Jul 2020
Recon vulnerability puts thousands of SAP customers at risk
Users of multiple SAP products including S4/HANA should apply the security update as soon as possible to protect their systems Continue Reading
-
Opinion
14 Jul 2020
Security Think Tank: AI in cyber needs complex cost/benefit analysis
AI and machine learning techniques are said to hold great promise in security, enabling organisations to operate a IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the importance of automation being gravely overestimated? Continue Reading
-
Opinion
13 Jul 2020
Security Think Tank: Ignore AI overheads at your peril
Artificial intelligence and machine learning techniques are said to hold great promise in security, enabling organisations to operate an IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the importance of automation being gravely overestimated? Continue Reading
-
News
13 Jul 2020
NCSC launches pen testing service for remote workers
An expansion to the successful Exercise in a Box toolkit will enable SMEs to probe the cyber security defences of remote workers Continue Reading
-
News
13 Jul 2020
Zoom zero-day a reminder to stop using Windows 7
Researchers have disclosed a newly discovered zero-day vulnerability to videoconferencing service Zoom, which only affects users of Windows 7 systems Continue Reading
-
Feature
13 Jul 2020
Drive to improve flash reliability
Due to its limited write cycles, flash-based storage can corrupt data. Computer Weekly looks at how flash reliability is being addressed Continue Reading
-
News
09 Jul 2020
Dutch banking’s transaction monitoring utility gets green light
Plans for a shared utility to monitor financial transactions in the Netherlands have been given the go-ahead after six months of proving the concept Continue Reading
-
News
09 Jul 2020
Clearview AI faces ICO investigation over facial recognition
Controversial company that scraped data from the public internet to build its facial recognition algorithm faces a joint UK-Australian investigation into its practices Continue Reading
-
News
09 Jul 2020
Matt Hancock encourages private sector involvement in post-pandemic NHS technology
Health secretary Matt Hancock has outlined how the NHS will continue to leverage digital technologies with the help of the private sector after the Covid-19 pandemic ends Continue Reading
-
News
09 Jul 2020
Pubs and restaurants failing on cyber fraud protection
Virtually all of the UK’s most popular restaurant and pub brands are failing to proactively block fraudulent emails from reaching their targets Continue Reading
-
News
08 Jul 2020
Political awareness needed to ethically handle migration data, panel claims
Understanding the political, social and economic relationships between different groups in society is needed to ensure location data is not used in ways that further endanger already vulnerable people on the move Continue Reading
-
News
08 Jul 2020
Cosmic Lynx cyber crime group takes BEC to new heights
Newly identified Russian threat group targets large organisations with increasingly dangerous business email compromise attacks Continue Reading
-
Opinion
08 Jul 2020
Security Think Tank: The past and future of security automation
Artificial intelligence and machine learning techniques are said to hold great promise in security, enabling organisations to operate an IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the importance of automation being gravely overestimated? Continue Reading
-
Feature
07 Jul 2020
Auditing for algorithmic discrimination
Despite the abundance of decision-making algorithms with social impacts, many companies are not conducting specific audits for bias and discrimination that can help mitigate their potentially negative consequences Continue Reading
-
Opinion
07 Jul 2020
Security Think Tank: Balancing human oversight with AI autonomy
Artificial intelligence and machine learning techniques are said to hold great promise in security, enabling organisations to operate an IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the importance of automation gravely overestimated? Continue Reading
-
News
07 Jul 2020
Australian government foreshadows ‘sovereign data’ classification
The Australian government will examine if certain government datasets should be declared sovereign and only be hosted in the country Continue Reading
-
News
06 Jul 2020
Lorca scale-ups bring diverse security to the fore
London Office for Rapid Cybersecurity Advancement announces the cyber security scale-ups that will make up its fifth cohort Continue Reading
-
News
06 Jul 2020
Need to secure industrial IoT more acute than ever
A report from the Lloyd’s Register Foundation is calling for urgent action to secure industrial infrastructure, as the IoT leaves it increasingly exposed Continue Reading
-
Opinion
06 Jul 2020
Security Think Tank: SIEM and AI – a match made in heaven?
Artificial intelligence and machine learning techniques are said to hold great promise in security, enabling organisations to operate an IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the importance of automation gravely overestimated? Continue Reading
-
News
03 Jul 2020
Green tech needed for post-Covid economic recovery
Green technology investments could help society recover from the coronavirus – and prepare it for the long-term negative social and economic outcomes of climate change Continue Reading
-
Blog Post
03 Jul 2020
GDS 'under duress' - is there a row going on down near Whitechapel?
The Government Digital Service (GDS) has taken its fair share of criticism in recent years – including from Computer Weekly - and much of it justified. But there’s little doubt the team at GDS HQ ... Continue Reading
-
Opinion
03 Jul 2020
Security Think Tank: Artificial intelligence will be no silver bullet for security
AI and machine learning techniques are said to hold great promise in security, enabling organisations to operate an IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the importance of automation gravely overestimated? Continue Reading
-
News
02 Jul 2020
Loan charge MPs denied House of Commons vote on Finance Bill policy amendments
Despite securing the support of 50 named MPs, an amendment to the forthcoming Finance Bill that could have seen thousands of people fall out of scope of the Loan Charge policy has been denied Continue Reading
-
News
02 Jul 2020
Police secrecy over ‘IMSI-catcher’ mass surveillance of mobile phones
Following a tribunal ruling, constabularies in England and Wales can refuse to confirm or deny whether they use mass surveillance devices, known as IMSI-catchers to monitor people’s location, phone calls and text messages Continue Reading
-
Opinion
02 Jul 2020
Security Think Tank: AI cyber attacks will be a step-change for criminals
AI and machine learning techniques are said to hold great promise in security, enabling organisations to operate an IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the importance of automation gravely overestimated? Continue Reading
-
News
01 Jul 2020
Zoom making progress on cyber security and privacy, says CEO
Three months after being hit by a spate of security incidents, Zoom’s CEO, Eric Yuan, has been discussing progress towards a more secure product Continue Reading
-
Opinion
01 Jul 2020
Getting a project out in the open
Open source has become widely accepted and used in corporate IT infrastructures, but IT leaders need to understand the potential pitfalls to make sure this approach brings the desired benefits Continue Reading
-
News
01 Jul 2020
Remote workers more aware of security, but still flout the rules
Almost three-quarters of remote workers reckon they have gained in cyber security awareness during lockdown, but don’t seem to be especially bothered about keeping themselves safe Continue Reading
-
Feature
01 Jul 2020
Black Lives Matter, but do bots know that?
The volume of content generated each day necessitates automated moderation to curate everything as it is published, ensuring offensive and objectionable material is blocked. But this only works if systems are adequately configured and reviewed Continue Reading
-
Opinion
01 Jul 2020
Security Think Tank: Get your house in order before deploying AI
AI and machine learning techniques are said to hold great promise in security, enabling organisations to operate a IT predictive security stance and automate reactive measures when needed. Is this perception accurate, or is the importance of automation being gravely overestimated? Continue Reading
-
Opinion
01 Jul 2020
Time to rethink business continuity and cyber security
Business continuity and cyber security remain largely in separate silos, but changes in the IT and cyber threat landscapes mean there is an urgent need for organisations to alter their approach Continue Reading
-
News
30 Jun 2020
ReversingLabs makes over 100 Yara rules publicly available
Threat intelligence specialist is making its IP available on GitHub to support malware hunters in their work Continue Reading
-
Opinion
30 Jun 2020
Security Think Tank: ‘Shift left’ to secure containers
Adopting containers promises great organisational efficiency advantages, but the fast-evolving technology can be problematic for security teams. What do CISOs need to know to safeguard containers? Continue Reading
-
News
30 Jun 2020
The Security Interviews: What CISOs can learn from Covid-19
Mike Lloyd, CTO at Redseal, holds 21 cyber security patents and a PhD in stochastic epidemic modelling from Heriot-Watt University in Edinburgh, so is probably the man to talk to when it comes to cyber security in the world of Covid-19 Continue Reading
-
Blog Post
30 Jun 2020
Watch out for the mental shocks of ending Covid-19 lockdown
It’s easy to predict many of the pains that are going to hit business as the UK attempts to follow its neighbours in re-opening from lockdown. Businesses face a new and awkward world where social ... Continue Reading
-
News
30 Jun 2020
Complex security estates hinder incident response
The more disparate security tools in use in an organisation, the harder it becomes to mount an effective incident response Continue Reading
-
News
29 Jun 2020
Lords urge government to take immediate action on online harms
Select committee calls for tech giants to be held responsible for the harm done to individuals, wider society and democratic processes through online misinformation Continue Reading
-
News
29 Jun 2020
Out of date security laws leave UK plc at risk during pandemic
The CyberUp coalition has written to Boris Johnson to urge him to reform the UK’s 30 year-old cyber crime laws Continue Reading
-
News
29 Jun 2020
Airports deploy thermal cameras to control Covid-19, science suggests it’s merely ‘safety theatre’
UK airports are rolling out thermal surveillance cameras to identify people who may have coronavirus, but science says the technology is ineffective at detecting and preventing the spread of the disease Continue Reading
-
News
25 Jun 2020
Pub ‘check-in’ apps provoke fresh privacy concerns
With pubs and restaurants required to collect customer data for contact tracing when they reopen, data privacy risks will be heightened Continue Reading
-
News
25 Jun 2020
CBI: Digital economy needs joined-up regulations and gigabit broadband
The coronavirus pandemic has shown the need for fast, reliable networking across the UK. The CBI is urging the government to do more Continue Reading
-
News
24 Jun 2020
EU judges GDPR an overall success, but changes still needed
Two years after its implementation, an EU report says that the GDPR is achieving what it set out to do, with a few reservations Continue Reading
-
News
24 Jun 2020
Brits will sell their personal data for pennies
Surprising findings from an Okta report on digital identity suggest Brits would be willing to part with valuable personal data for a surprisingly low amount Continue Reading
-
Feature
24 Jun 2020
APT groups’ mobile momentum finally faces resistance
State-backed APT groups are increasingly targeting mobile devices as Covid-19 puts the spotlight on remote working infrastructure security. We explore how the industry is fighting back Continue Reading
-
Feature
23 Jun 2020
How to apply zero-trust models to container security
Containers have become a common fixture in software development, but they have resulted in new concerns for security teams. Is zero-trust the answer to tackling them? Continue Reading
-
News
23 Jun 2020
Neurodiversity on the rise among career hackers
More diverse hackers enhance the ability of both traditional and cutting-edge cyber security solutions to find and fix vulnerabilities, according to a new report from Bugcrowd Continue Reading
-
News
23 Jun 2020
ITAM Forum aims to raise the bar on tech management
Knowing what is deployed is the first step in any transformation exercise, and a strong IT asset management practice lowers risk Continue Reading
-
News
22 Jun 2020
Immigrants’ rights campaigners take Home Office to court over visa algorithm
Campaigners claim built-in algorithmic bias makes processing of visa applications ‘discriminatory’ Continue Reading
-
News
22 Jun 2020
Care Quality Commission to discuss concerns over Paula Vennells’ NHS role
Healthcare regulator will be discussing concerns about former NHS boss chairing an NHS trust at an upcoming meeting Continue Reading
-
News
19 Jun 2020
Technology firms come under scrutiny for ties to law enforcement
Three major technology companies have committed to not selling facial-recognition tech to law enforcement, but remain silent on how other technologies can be used to fuel racial injustice and discriminatory policing Continue Reading
-
News
19 Jun 2020
AI bias and privacy issues require more than clever tech
The new AI Barometer report from the Centre for Data Ethics and Innovation has assessed the threats and opportunities of artificial intelligence in the UK Continue Reading
-
News
19 Jun 2020
Facebook allows US users to disable political ads
Users of the social media platform will soon be able to opt out of seeing politically motivated posts Continue Reading
-
News
18 Jun 2020
Zoom U-turns on end-to-end encryption
Embattled video-conferencing provider Zoom backtracks on previous refusals to provide end-to-end encryption to free users Continue Reading
-
News
17 Jun 2020
Cosmetics company Avon offline after cyber attack
Representatives left unable to place orders after company’s back-end systems went offline over a week ago Continue Reading
-
News
17 Jun 2020
Coronavirus: 50% of security pros had no pandemic contingency plan
A survey of security professionals conducted on behalf of Bitdefender reveals the lack of forward planning for events such as the Covid-19 coronavirus pandemic Continue Reading
-
News
16 Jun 2020
UK-US data deal puts Brexit data adequacy pact at risk
European Data Protection Board writes to MEPs saying the UK is at risk of failing to strike a post-Brexit data adequacy accord if its data protection agreements with the US don’t strike the right note Continue Reading
-
News
16 Jun 2020
Activists call on Zoom to implement encryption for all
A coalition of tech organisations and nonprofits have urged Zoom CEO Eric Yuan to make end-to-end encryption available to all users Continue Reading
-
Opinion
15 Jun 2020
Why UK needs independent oversight body for contact-tracing app
The public needs and deserves clarity, and not just assurances, over the UK’s Covid-19 contact-tracing app Continue Reading
-
Feature
15 Jun 2020
Dealing in data
Lessons learned from pandemic data reporting will help forge new analytics techniques to improve data quality Continue Reading
-
News
12 Jun 2020
NHS email service users ensnared in phishing attack
More than 100 accounts on the NHSmail service were affected by attack, but health service says no patient data was accessed Continue Reading
-
Opinion
12 Jun 2020
Too many data sources and too little consistency
One of the biggest concerns that businesses have about their data is its quality, and quality of data is a governance issue Continue Reading
-
News
12 Jun 2020
Subpostmasters will not cooperate with government review into IT scandal
A group of subpostmasters who suffered at the hands of the Post Office’s error-prone IT system refuse to participate in a government review into the scandal, describing it as a sham Continue Reading
-
News
11 Jun 2020
Tech firms respond to Nordic government calls
Nordic firms are working with tech suppliers to help them get back up and running after Covid-19 Continue Reading
-
News
11 Jun 2020
Amazon bans police use of its facial-recognition technology for a year
Tech giant claims it has been an advocate for stronger government regulation on the ethical use of facial recognition Continue Reading
-
Opinion
11 Jun 2020
The importance of data accuracy in the fight against Covid-19
With the right data, individuals and organisations can make the most informed decisions to keep people safer through the coronavirus pandemic and restart the economy at the right time and place Continue Reading
-
Opinion
11 Jun 2020
Security Think Tank: Container security starts with good DevOps practice
Adopting containers promises great organisational efficiency advantages, but the fast-evolving technology can be problematic for security teams. What do CISOs need to know to safeguard containers? Continue Reading
-
News
10 Jun 2020
IBM divests from facial-recognition market
IBM’s CEO writes to US congress about decision to stop using and selling facial-recognition technology, and says we should re-evaluate whether it should be sold to law enforcement agencies Continue Reading
-
News
10 Jun 2020
CogX 2020: Matt Hancock on tech during Covid-19
Health secretary Matt Hancock says technology companies have been vital in dealing with the pandemic, and praises UK for testing more people “than almost anywhere in the world.” Continue Reading
-
News
10 Jun 2020
CogX 2020: Rethinking technological innovation
Innovation processes and relationships must be fundamentally restructured to bring in more stakeholders, and spread the benefits of technological change as far as possible Continue Reading
-
Opinion
10 Jun 2020
Security Think Tank: Container security is evolving, so must CISOs
Adopting containers promises great organisational efficiency advantages, but the fast-evolving technology can be problematic for security teams. What do CISOs need to know to safeguard containers? Continue Reading
-
News
10 Jun 2020
Virtual GP practice accidentally exposes patient video calls
A small number of users of Babylon’s GP at Hand service were briefly able to view other patients’ video GP consultations thanks to a bug in a new software feature Continue Reading
-
News
10 Jun 2020
Nasty surprises lurking in furloughed employees’ inboxes
Research conducted by KnowBe4 points to a looming email security problem as furloughed employees head back to work Continue Reading
-
News
09 Jun 2020
Cyber security needs more women role models, says report
A report compiled by security assurance organisation Crest highlights the progress made on gender diversity in cyber security, and offers pointers for next steps Continue Reading
-
Feature
08 Jun 2020
Accurate data in, better insights out
The coronavirus pandemic has propelled data into the headlines, but it has also shown the challenges of dealing with incomplete datasets Continue Reading
-
News
05 Jun 2020
Police chiefs working with Public Health England on contact-tracing security
Police force representatives are in talks with Public Health England over operational security concerns arising from the NHS Test and Trace coronavirus contact-tracing scheme Continue Reading
-
News
05 Jun 2020
Ministry of Defence forms new cyber security regiment
The 13th Signal Regiment brings together personnel from across the armed forces to provide specialist security services Continue Reading
-
News
04 Jun 2020
Government evades being pinned to a date for online harms legislation
MPs challenge government on online harms bill timetable, but have to settle for “clear assurances” that it will brought to parliament before the end of the session Continue Reading
-
News
04 Jun 2020
The Security Interviews: How the BSI protects the IoT from itself
David Mudd of the BSI reveals how a pragmatic and realistic approach to security vulnerabilities underpins its internet of things kitemark, helping give users the confidence to buy smart devices safely Continue Reading
-
Opinion
04 Jun 2020
Security Think Tank: Four steps to container security best practice
Adopting containers promises great organisational efficiency advantages, but the fast-evolving technology can be problematic for security teams. What do CISOs need to know to safeguard containers? Continue Reading
-
News
04 Jun 2020
Malaysian minister backtracks on spectrum allocation decision
Amid reports of a surreptitious decision to allocate spectrum to five Malaysian operators, the communications minister rescinds his own order, calling for a more transparent review of the allocation process Continue Reading
-
News
03 Jun 2020
Security procurement framework goes live for NHS and public sector
Cyber Security Services Framework, developed by NHS Shared Business Services, has formally launched Continue Reading
-
News
03 Jun 2020
Infosec 2020: Covid-19 an opportunity to change security thinking
The annual Infosecurity Europe is being held virtually this year, and speakers at an online panel session have been considering the impact of the pandemic on security awareness Continue Reading
-
Opinion
02 Jun 2020
A view from the SOC: Maintaining security capabilities during the pandemic
What are the challenges of maintaining security event and incident detection capabilities in these challenging times? Continue Reading
-
News
02 Jun 2020
NIS security regulations proving effective, but more work to do
The UK’s NIS cyber security and risk regulations are proving somewhat effective, according to a government report Continue Reading