IT governance
IT governance provides the core workflows and processes that help IT managers to oversee the successful functioning of the IT department, and to prove the value of IT to the business. Regulations and compliance are just as important as technological and management skills, and we highlight the best practice in IT governance and the example of successful IT leaders.
-
News
30 Oct 2025
US senators seek to prohibit minors from using AI chatbots
Two US senators have proposed legislation that would require AI chatbot companies to verify the ages of people using their chatbots, in attempt to limit their harmful effects on children Continue Reading
-
News
30 Oct 2025
Microsoft CEO speaks of global cloud factory as Azure stalls
Alongside Microsoft's posted cloud revenue of $49bn was a configuration error that caused a global outage affecting many customers Continue Reading
-
News
23 Nov 2020
Manchester United praised for swift response to cyber attack
Manchester United’s systems were attacked last week, and the club has been praised for a swift and decisive response Continue Reading
-
News
23 Nov 2020
MPs subjected to over 22 million malicious email attacks in 2020
Members of Parliament are targeted by millions of spam and phishing emails every month, according to a Freedom of Information disclosure Continue Reading
-
News
20 Nov 2020
Pricing questions persist but Openreach overall observes Ofcom independence mandates
UK communications regulator notes real progress made in implementing its requirements, but more is needed to be done to strengthen broadband provision division independence and engagement Continue Reading
-
News
20 Nov 2020
Security pros fear prosecution under outdated UK laws
CyberUp, a group of campaigners who want to reform the Computer Misuse Act, finds 80% of security professionals are concerned that they may be prosecuted just for doing their jobs Continue Reading
-
News
19 Nov 2020
Data silos and IT complexity stifle business potential
A study from 451 Research highlights the problems organisations face in managing data Continue Reading
-
News
19 Nov 2020
Security sector broadly backs Boris Johnson’s Cyber Force
Security community says the presence of a robust cyber defence force alongside a robust physical one will be vital to the UK’s national security Continue Reading
-
News
18 Nov 2020
2021 the year of commodity ransomware, says Sophos
Sophos researchers anticipate a trickle-down effect in the cyber criminal underground Continue Reading
-
News
18 Nov 2020
US cyber security chief fired for contradicting Trump
CISA chief Chris Krebs ousted for doing his job fighting disinformation in an apparent purge of officials deemed disloyal to president Donald Trump Continue Reading
-
News
17 Nov 2020
Kaspersky shuts down data-processing activities in Russia
Cyber security provider’s data storage and processing activities for customers in Europe, the US and Canada, have now been fully relocated to Switzerland Continue Reading
-
News
17 Nov 2020
HMRC warns over uptick in Self Assessment tax scams
HMRC issues updated warnings as 2021 Self Assessment deadlines loom Continue Reading
-
News
17 Nov 2020
Financial services data volumes heighten risk of insider breach
Financial services organisations hold so much data that it is becoming virtually impossible to safeguard properly against data breaches caused by malicious or careless employees Continue Reading
-
Opinion
17 Nov 2020
Brexit and risks to data privacy and governance
EY privacy specialists assess the risks to data privacy, protection and governance on the table for businesses, with less than two months until Brexit Continue Reading
-
Feature
17 Nov 2020
How to build an effective vulnerability management programme
As cyber criminals increasingly look to exploit vulnerabilities in software and hardware, businesses must build and implement an effective vulnerability management programme to counter this growing threat Continue Reading
-
News
16 Nov 2020
Privacy advocates call for European probe into Palantir
Dutch group SOMI is trying to raise awareness of Palantir’s data privacy practices and how it works with European government agencies Continue Reading
-
News
16 Nov 2020
Human error blamed in Welsh Covid-19 patient data leak
Public Health Wales accepts recommendations of independent probe into data breach that saw PII on 18,105 coronavirus patients leaked Continue Reading
-
News
13 Nov 2020
Dutch IT award recognises importance of research in the wild
Promoter of human-centric scientific research techniques claims the prestigious 2020 Netherlands Prize for ICT Research Continue Reading
-
News
13 Nov 2020
Humanitarian data collection practices put migrants at risk
United Nations report on smart borders warns that data collection about migrants and refugees by humanitarian organisations risks excluding them from essential basic services like access to food Continue Reading
-
Feature
12 Nov 2020
DDoS mitigation strategies needed to maintain availability during pandemic
The growing prevalence of DDoS attacks combined with the increased reliance on internet connectivity during the pandemic means enterprises can no longer afford to ignore the threat of DDoS attacks. Computer Weekly explores organisations’ perceptions of the risks and best practice for mitigation Continue Reading
-
News
12 Nov 2020
Financial Stability Board says it’s time to talk about IT outsourcing risks
International organisation that monitors the finance sector asks for the industry to discuss the risks that IT outsourcing brings to the sector Continue Reading
-
News
11 Nov 2020
Tim Berners-Lee startup releases decentralisation tech to enterprises
Roll-out of Inrupt’s decentralised privacy technology to four large organisations is helping the startup to develop explicit use cases, which it hopes will prove the tech and lead to faster adoption Continue Reading
-
News
11 Nov 2020
EU aid funds used to train ‘unaccountable intelligence agencies’ in high-tech surveillance
Hundreds of documents obtained by campaign group Privacy International show how the EU is supporting surveillance programmes in the Balkans, the Middle East and Africa Continue Reading
-
News
10 Nov 2020
Intel and AMD processors affected by another side-channel exploit
Two years after Spectre and Meltdown, the x86 processor faces another side-channel exploit – only this time, it is based on sensing temperature Continue Reading
-
News
10 Nov 2020
Border technologies largely fail to respect human rights
AI-powered border technologies used to ‘manage’ migration frequently make the process more arbitrary, discriminatory and unjust, says human rights group Continue Reading
-
News
10 Nov 2020
Leaky AWS S3 bucket once again at centre of data breach
Prestige Software exposed millions of records after failing to pay attention to the security of its cloud instances Continue Reading
-
News
10 Nov 2020
Zoom rapped over historic security practices
The US Federal Trade Commission rules that Zoom’s practices undermined the security of its users Continue Reading
-
News
10 Nov 2020
Better data sharing needed to help children during pandemic
Closing gaps in data infrastructure will help the education sector respond better to children’s needs during the Covid-19 pandemic, says Open Data Institute Continue Reading
-
News
10 Nov 2020
IT Priorities 2020: After Covid-19, security goes back to basics
This year’s transition to remote working highlighted big gaps in the fundamentals of security, as updated TechTarget/Computer Weekly data reveals Continue Reading
-
News
06 Nov 2020
MPs unconvinced NHS has learned lessons from failed IT programmes
None of the components needed to deliver NHS digital ambitions are in place, says Public Accounts Committee, as MPs call for the Department of Health and Social care to set ‘realistic targets’ Continue Reading
-
Feature
06 Nov 2020
Credential stuffing: When DDoS isn’t DDoS
Ten years ago, credential stuffing attacks posed a comparatively minor threat, but with an escalating number of data breaches, the threat posed has now increased. What are the solutions to this very human problem? Continue Reading
-
News
06 Nov 2020
ICO sued over ‘failure’ to address ad industry practices
Privacy campaigner the Open Rights Group claims the advertising technology industry is systematically breaching the GDPR, and the ICO is doing nothing about it Continue Reading
-
News
06 Nov 2020
Finger pointed at Fujitsu as Post Office Horizon system crashes nationally
Post Office branches offline during busy business hours after suffering an IT error that the Post Office said related to IT from supplier Fujitsu Continue Reading
-
News
04 Nov 2020
EU to introduce data-sharing measures with US in weeks
The European Commission is to issue updated standard contractual clauses (SCCs) that will allow organisations in the EU to exchange data with the US, but they may arrive too late to incorporate into UK law Continue Reading
-
News
02 Nov 2020
NHS weathers cyber crime storm during pandemic, says NCSC
The NCSC dealt with over 700 incidents in the 12 months to August 2020, with over 200 specifically related to Covid-19, and the NHS a critical area of focus Continue Reading
-
News
02 Nov 2020
Maze ransomware shuts down with bizarre announcement
The operators of Maze announce they are shutting down, and claim their crime spree was merely intended to demonstrate lax security at their targets Continue Reading
-
News
30 Oct 2020
Accidental heroes: How one scaleup pivoted to cyber
Simeon Quarrie designed his business using virtual reality and interactivity as a tool to tell stories that effect cultural change in enterprise environments – then a cyber criminal emptied his bank account Continue Reading
-
News
30 Oct 2020
CISOs more confident in identity practice after pandemic shock
Identity practice and management has become a critical element of cyber security strategies to support remote workers Continue Reading
-
News
30 Oct 2020
ICO slashes Marriott breach fine to £18.4m
Reduced fine reflects both improvements made to hotel group’s cyber security and impact of coronavirus on the travel and hospitality sector Continue Reading
-
News
29 Oct 2020
Victims contest technology firms’ attempt to dismiss cobalt mining deaths case
Technology companies say they cannot be held responsible for the deaths of children mining for the cobalt used in their products Continue Reading
-
News
29 Oct 2020
Zero-trust investment seen accelerating through pandemic
New analyst report details some of the main indicators for success in zero-trust implementation Continue Reading
-
News
28 Oct 2020
Trump supporters targeted by cryptocurrency scammers
The successful breach of Donald Trump’s official website shows up lax security on his campaign team and is yet another timely warning that nobody is immune to cyber crime Continue Reading
-
News
28 Oct 2020
Finnish therapy centre accused of covering up cyber attack
Private therapy practice Vastaamo faces questions over its security and business practices in the months leading up to one of the biggest data breaches in Finland’s history Continue Reading
-
Opinion
28 Oct 2020
How to write an executive CV for IT leadership jobs
Knowing how to write an IT executive CV requires a deep knowledge and skillset that not everyone has. Find out how to set yourself apart from the competition Continue Reading
-
News
28 Oct 2020
Privacy and online safety are focus of new UKRI research funding
Online safety research centre of excellence will look into technology to boost privacy and tackle disinformation, fake news, conspiracies and other online harms Continue Reading
-
News
27 Oct 2020
ICO slams Experian over ‘invisible’ data processing
Data processing practices used by Experian broke data protection law, says Information Commissioner’s Office Continue Reading
-
Opinion
27 Oct 2020
Risk and reward: How to succeed in digital transformation
Most organisations are seeking to step up their digital transformation efforts, but history has shown that such efforts can be doomed to failure if they take the wrong approach Continue Reading
-
News
27 Oct 2020
Calls for clarity over Amazon insider breach
Security experts call for more clarity from Amazon over an apparent leak of customer data Continue Reading
-
News
26 Oct 2020
Highly unusual hacking attack directly threatens therapy patients
A hacker has directly contacted therapy patients to say their highly personal therapy notes will be put on the internet unless they pay the ransom Continue Reading
-
News
23 Oct 2020
Digital public services fail UK citizens on multiple fronts
Commission for Smart Government publishes paper on obstacles facing the UK’s digital government, setting out principles for digital government initiatives to follow Continue Reading
-
News
22 Oct 2020
Protecting remote workers an opportunity to do security better
Securing the fully remote workforce has been a challenge for IT teams, but it presents an opportunity to commit to a higher standard of cyber security, according to a Cisco report Continue Reading
-
News
21 Oct 2020
NSA’s top CVE list a timely reminder to patch
Many of the CVEs detailed on the NSA’s top 25 chart are golden oldies Continue Reading
-
News
21 Oct 2020
Charities warned over ‘Robin Hood’ cyber criminals
Accepting donations from cyber criminal groups could be deemed as profiting from crime, money laundering or handling stolen goods – so don’t do it Continue Reading
-
Opinion
21 Oct 2020
Security Think Tank: Essential tools to mitigate double extortion attacks
The threat of identity theft via a data breach is heightened with the rise of attacks where ransomware threat actors both encrypt and ransom, and exfiltrate and leak their victims’ data. How does this evolution in cyber crime heighten risk for the enterprise, and what steps can we take to safeguard the personal data we hold? Continue Reading
-
News
20 Oct 2020
Resilient Trickbot down but not yet knocked out
Global, Microsoft-led effort to disrupt the Trickbot botnet has seen some success, but new command and control servers continue to pop up Continue Reading
-
News
20 Oct 2020
Police given access to self-isolation data
NHS Test and Trace self-isolation data will be made available to police after new guidance changes data-sharing rules Continue Reading
-
News
20 Oct 2020
BA breach penalty sets new GDPR precedents
The 90% reduction in the fine levied on BA over a 2018 data breach has legal experts talking about the ramifications for the future of data protection Continue Reading
-
News
20 Oct 2020
Six Russians charged over NotPetya and other attacks
Six members of the APT group known as Sandworm have been charged in the US over a series of attacks including the destructive NotPetya incident Continue Reading
-
Opinion
16 Oct 2020
Security Think Tank: Safeguarding PII in the current threat landscape
The threat of identity theft via a data breach is heightened with the rise of attacks where ransomware threat actors both encrypt and ransom, and exfiltrate and leak their victims’ data. How does this evolution in cybercrime heighten risk for the enterprise, and what steps can we take to safeguard the personal data we hold? Continue Reading
-
News
16 Oct 2020
BA argues ICO data breach fine down to £20m
Information Commissioner’s Office levies fine of £20m on British Airways for failing to protect the personal data of hundreds of thousands of passengers – a vast reduction on the initial £183m penalty Continue Reading
-
News
15 Oct 2020
Cloud data protection keeps the Crick’s medical research Covid-secure
Cloud data management services from Rubrik gave the Francis Crick Institute a data protection edge and have helped keep its vital work going through the pandemic Continue Reading
-
News
15 Oct 2020
UK regulators lack the skills and expertise to cope with increasing use of algorithms
MPs told that multiple regulators will be needed to govern the ever-growing use of algorithmic systems in all areas of the economy and public sector Continue Reading
-
News
15 Oct 2020
Hackney services still offline in ongoing cyber attack
Services remain disrupted two days after council was hit by a serious incident, as residents are warned to be on their guard Continue Reading
-
News
15 Oct 2020
How Tokopedia is streamlining incident management
Indonesian e-commerce giant Tokopedia has improved incident management and developer productivity using a cloud-based incident management tool Continue Reading
-
News
14 Oct 2020
Public sector security failings leave UK at risk, says think tank
Reform report urges adoption of new policies in the next version of the UK’s National Cyber Security Strategy Continue Reading
-
News
14 Oct 2020
US Elections: Malicious internet domains spike as campaigns heat up
Internet domains related to the US presidential election are 56% more likely to be malicious than regular ones Continue Reading
-
News
14 Oct 2020
Public data should not be held by US tech giants
One-off evidence sessions to follow up on the recommendations of the House of Lords AI Committee revisit the data and ethics debate Continue Reading
-
News
14 Oct 2020
Fintech ‘unicorn’ Klarna probed over data misuse
Online bank blames misuse of user data on human error as Information Commissioner’s Office weighs in Continue Reading
-
News
14 Oct 2020
Microsoft fixes 87 bugs in October 2020 Patch Tuesday
Smaller October Patch Tuesday update includes fixes for critical bugs in Windows 10 and Windows Server 2019 Continue Reading
-
Opinion
14 Oct 2020
Security Think Tank: Adapting defences to evolving ransomware and cyber crime
The threat of identity theft via a data breach is heightened with the rise of attacks where ransomware threat actors both encrypt and ransom, and exfiltrate and leak their victims’ data. How does this evolution in cyber crime heighten risk for the enterprise, and what steps can we take to safeguard the personal data we hold? Continue Reading
-
Opinion
13 Oct 2020
Security Think Tank: What you need to know about addressing the doxing threat
The threat of identity theft via a data breach is heightened with the rise of attacks where ransomware threat actors both encrypt and ransom, and exfiltrate and leak their victims’ data. How does this evolution in cybercrime heighten risk for the enterprise, and what steps can we take to safeguard the personal data we hold? Continue Reading
-
News
12 Oct 2020
Trickbot forced offline in major cyber security victory
Coalition led by Microsoft obtained a court order enabling them to take down the infamous Trickbot botnet’s back-end server infrastructure Continue Reading
-
News
12 Oct 2020
Five Eyes spy group again demands access to private messages
Spooks are once again calling for the tech industry to break end-to-end encryption in messaging platforms Continue Reading
-
News
12 Oct 2020
Software AG caught in double extortion ransomware hit
Data stolen from prominent German software company by Clop ransomware gang appears on the dark web Continue Reading
-
Opinion
12 Oct 2020
Security Think Tank: Tighten data and access controls to stop identity theft
The threat of identity theft via a data breach is heightened with the rise of attacks where ransomware threat actors both encrypt and ransom, and exfiltrate and leak their victims’ data. How does this evolution in cyber crime heighten risk for the enterprise, and what steps can we take to safeguard the personal data we hold? Continue Reading
-
News
09 Oct 2020
Facebook critics’ webpage removed over false phishing allegations
Real Facebook Oversight Board alleges Facebook is trying to censor it for speaking out against the social media company’s behaviour Continue Reading
-
News
09 Oct 2020
Major tech companies respond to lawsuit over mining deaths
Multinational technology companies accused of knowingly benefiting from human rights abuses in the Democratic Republic of Congo have responded to a lawsuit seeking to hold them accountable for the deaths of Congolese children in their cobalt supply chains Continue Reading
-
News
09 Oct 2020
Magecart strikes website of school payments service Wisepay
Magecart credit card skimmer harvested financial data of users of Wisepay’s platform over a two-day period Continue Reading
-
Opinion
09 Oct 2020
Lapsing ISO certifications: Myth versus risk
Allowing ISO certifications to lapse presents businesses with serious risks when workarounds are possible Continue Reading
-
News
08 Oct 2020
NCSC relaunches SME security guide with home working focus
The NCSC is issuing an updated version of its guide to security for SMEs, reflecting the long-lasting changes to the world of work seen in 2020 Continue Reading
-
Opinion
08 Oct 2020
Excel is the hammer for too many businesses’ nails
Excel is a fine piece of software, but as Public Health England found out, its ubiquity and ease of use does not make it the ideal tool for every job that involves data Continue Reading
-
News
08 Oct 2020
Crown Prosecution Service suffers 1,600 data breaches in 12 months
CPS sees a spike in data security incidents, many of them serious enough to be reported to the Information Commissioner’s Office Continue Reading
-
News
08 Oct 2020
Threat of GDPR fines increasingly driving security buying decisions
Scaring the people who hold the purse strings may be the best option for CISOs who need a little extra budget Continue Reading
-
News
07 Oct 2020
US lawmakers release big tech antitrust report
House Democrats have published a report on the monopoly power wielded by big tech companies and how to restore competition in digital markets Continue Reading
-
News
07 Oct 2020
Department for Education failed to protect data on millions of children, says ICO
The Department for Education’s National Pupil Database, which contains millions of items of data on the UK’s schoolchildren, was found to be non-compliant with data protection regulations across the board Continue Reading
-
News
07 Oct 2020
UK accounts for 45% of Europe’s card fraud as criminals target online transactions
Payment card fraudsters steal €1.5bn, with card-not-present attacks accounting for three-quarters of this sum Continue Reading
-
News
07 Oct 2020
ICO wraps up Cambridge Analytica investigation
Information Commissioner’s Office concludes its investigation into Cambridge Analytica, saying no additional evidence has come to light that would change its previous assessments Continue Reading
-
News
06 Oct 2020
EU’s top court questions legality of UK phone and internet data surveillance
European Court of Justice rules that the UK and EU member states must comply with EU privacy laws when harvesting people’s sensitive communications data from telecoms and internet companies Continue Reading
-
News
06 Oct 2020
Government deaf to loud calls for statutory public inquiry into Post Office scandal
MPs are demanding the government holds a full statutory public inquiry into the Post Office IT scandal Continue Reading
-
News
06 Oct 2020
Coronavirus raises the software audit stakes
IT asset managers say they are receiving more requests from software publishers to check for licence discrepancies Continue Reading
-
Opinion
06 Oct 2020
The privacy and compliance challenges organisations face in 2021
Privacy and compliance teams have a lot on their plate as 2021 approaches. What are the key issues to consider? Continue Reading
-
News
06 Oct 2020
Ransomware attacks go through the roof
The volume of ransomware attacks has jumped 50% in the past three months, according to data produced at Check Point Continue Reading
-
News
06 Oct 2020
CISOs struggle to keep up with MITRE ATT&CK framework
Despite its proven benefits for security, the MITRE ATT&CK framework is proving difficult for many, according to a joint study from McAfee and UC Berkeley Continue Reading
-
News
06 Oct 2020
John McAfee arrested over cryptocurrency fraud
Erratic tech baron allegedly promoted initial coin offerings without disclosing he was being paid to do so Continue Reading
-
News
05 Oct 2020
Employees overwhelmingly hostile to workplace monitoring tech
The use of workplace surveillance technologies to monitor and track staff working from home has increased hugely since the start of the pandemic, but most workers say it makes them feel uncomfortable Continue Reading
-
News
05 Oct 2020
FBI seized ‘legally privileged’ material from Ecuador Embassy, claims Julian Assange’s lawyer
The US struck a secret deal with Ecuador to seize WikiLeaks founder Julian Assange’s property from the Ecuadorian Embassy in London days before his arrest. The haul included legally privileged documents, says his solicitor Continue Reading
-
News
02 Oct 2020
Honesty is the best policy: Forging a security culture in the NHS
Clinician and technologist Sam Shah helped set up NHSX in 2019. Now he’s helping advance digital transformation in healthcare from the outside, and a big part of that is addressing security in the sector Continue Reading
-
News
02 Oct 2020
Future UK-EU data sharing put at risk by Brexit legislation
When the Brexit transition period ends, UK ministers will have the power to forge new data-sharing arrangements that risk undermining the viability of future data transfers with the European Union Continue Reading
-
News
02 Oct 2020
Security pros face sanctions if they help ransomware victims pay
New advisory from the US government warns cyber insurance and incident response specialists that they could be skating on thin ice if they help ransomware victims pay their attackers off Continue Reading
-
News
02 Oct 2020
Justice for subpostmasters as wrongful criminal convictions are set to be quashed
The Post Office has chosen not to contest 44 out of 47 appeals, meaning most are likely to have their names cleared, but others still face a Court of Appeal battle for justice Continue Reading
-
News
01 Oct 2020
Trust in government technology is key to adoption
Panellists at GovTech Summit 2020 speak about the need to build trust in government digital services, as the pandemic has created room for increased use of technology in the public sector Continue Reading
-
News
01 Oct 2020
Blackbaud admits hackers stole banking details, passwords
Software firm paid off a ransomware gang, believed its hackers when they said they had destroyed the data, and has now discovered the cyber criminals accessed even more sensitive information than it thought Continue Reading