IT governance
IT governance provides the core workflows and processes that help IT managers to oversee the successful functioning of the IT department, and to prove the value of IT to the business. Regulations and compliance are just as important as technological and management skills, and we highlight the best practice in IT governance and the example of successful IT leaders.
-
News
21 May 2025
M&S cyber attack disruption likely to last until July
M&S says it has moved into recovery mode after a ransomware attack, but expects some disruption to persist throughout the coming weeks. Continue Reading
-
News
21 May 2025
NCSC: Russia’s Fancy Bear targeting logistics, tech organisations
The NCSC and its partner agencies have blown the whistle on an extensive campaign of malicious cyber attacks orchestrated by the Russian state Fancy Bear operation. Continue Reading
-
News
01 Nov 2024
CISA looks to global collaboration as fraught US election begins
The US' CISA cyber agency has unveiled a two-year International Strategic Plan to advance collaboration and improve resilience against shared risks and threats Continue Reading
-
News
01 Nov 2024
Outside IR35: What the Autumn Budget’s Employers’ NI changes mean for IT contractors
The UK government used the Autumn Budget to announce an increase to the amount of Employers’ National Insurance Contributions companies will have to pay, which could have big implications for IT contractors Continue Reading
-
News
31 Oct 2024
Post Office scandal affected relationships of two-thirds of victims
The Post Office scandal, regarded as the UK’s widest miscarriage of justice, destroyed the financial wellbeing of former subpostmasters, took away their liberty and inflicted grief on their relationships Continue Reading
-
Opinion
30 Oct 2024
IAM best practices for cloud environments to combat cyber attacks
The Security Think Tank considers best practices in identity and access management and how can they be deployed to enable IT departments to combat cyber-attacks, phishing attacks and ransomware Continue Reading
-
News
30 Oct 2024
Why geopolitics risks global open source collaborations
Linux Foundation’s decision to ban Russian maintainers has the potential to destroy open source’s global collaboration model Continue Reading
-
News
30 Oct 2024
No simple replacement for digital evidence rules, says Post Office Horizon trial judge
Judge in Post Office Horizon trial says a more flexible approach to how digital evidence is used in court cases may be required as IT complexity increases Continue Reading
-
News
29 Oct 2024
EMEA businesses siphoning budgets to hit NIS2 goals
With NIS2 now in effect, European business leaders are having to divert budget from elsewhere to achieve compliance Continue Reading
-
News
29 Oct 2024
AI core to Nordic net-zero economy
Artificial intelligence will be core to attempts by Nordic countries to become net-zero economies Continue Reading
-
Definition
29 Oct 2024
What is responsible AI?
Responsible AI is an approach to developing and deploying artificial intelligence (AI) from both an ethical and legal point of view. The goal of responsible AI is to use AI in a safe, trustworthy and ethical fashion. Continue Reading
-
Feature
29 Oct 2024
Rewiring Whitehall: The next steps in digital government
There’s a new government in place with fresh impetus to accelerate the digital transformation of public services – but what’s going to be different, better and more successful this time around? Continue Reading
-
News
28 Oct 2024
Russian Linux kernel maintainers blocked
To ensure compliance, the Linux kernel will no longer allow Russian software developers to work on maintaining the codebase Continue Reading
-
News
28 Oct 2024
UK launches cyber guidance package for tech startups
The NCSC and NPSA, alongside agencies from the Five Eyes alliance, have issued guidance for startups on how to secure themselves against common cyber threats and targeted industrial espionage Continue Reading
-
News
25 Oct 2024
Lords committee warns about risks of the UK losing its EU data adequacy
The UK government must work with the European Commission (EC) to secure a renewal of UK’s two data adequacy statuses, says cross-party Lords committee, in stark warning about impacts of losing the ability to seamlessly exchange citizens’ personal data Continue Reading
-
News
25 Oct 2024
Dutch critical infrastructure at risk despite high leadership confidence
Stark paradox in Dutch cyber security landscape has business leaders expressing high confidence in their IT infrastructure as cyber attacks rise Continue Reading
-
News
24 Oct 2024
Government ‘urged’ to overturn all convictions based on Post Office Capture
Influential group has written to the government calling for legislation to overturn the criminal convictions of former subpostmasters that were based on Capture system data Continue Reading
-
Feature
24 Oct 2024
Kenyan workers win High Court appeal to take Meta to trial
Despite the company arguing that Kenyan courts have no jurisdiction over an American company, the Nairobi High Court has ruled that Meta must face more than 180 content moderators and data labellers in court over allegedly poor working conditions, negative mental health impacts, and loss of pay Continue Reading
-
News
23 Oct 2024
Government hails Cyber Essentials success
Scheme to help keep organisations’ IT safe and secure has given businesses more confidence they won’t fall victim to a cyber attack Continue Reading
-
Feature
23 Oct 2024
Detect ransomware in storage to act before it spreads
Anomaly detection and immutable copies can be frontline tools against ransomware – we look at the role storage can play against the latest techniques employed by ransomware gangs Continue Reading
-
News
22 Oct 2024
Change to rules on computer evidence will be an ‘outcome’ of Post Office scandal
The executive currently heading up the Post Office’s investigations department has told public inquiry that rules on computer evidence have to change Continue Reading
-
News
22 Oct 2024
Dell CTO: Enterprise AI poised to take off in 2025
After a period of experimentation, the building blocks are in place for wider enterprise adoption of AI, says Dell Technologies’ global CTO, John Roese Continue Reading
-
News
22 Oct 2024
Labour’s 10-year health service plan will open up data sharing
To save the health service, Labour is focusing on bolstering the NHS app and enabling greater sharing of patient records in England Continue Reading
-
News
22 Oct 2024
Former Post Office IT boss alleged to have misrepresented alternative to in-house build
Internal Post Office document reveals allegations that former transformation boss misrepresented off-the-shelf option to replace Horizon Continue Reading
-
News
21 Oct 2024
Can AI be secure? Experts discuss emerging threats and AI safety
International cyber security experts call for global cooperation and proactive strategies to address the security challenges posed by artificial intelligence Continue Reading
-
News
21 Oct 2024
Review of late evidence doesn’t change Post Office Capture system report
Conclusions reached in government-commissioned report into pre-Horizon software are unchanged after late evidence reviewed Continue Reading
-
News
17 Oct 2024
Met Police investigating senior Post Office worker over evidence destruction allegation
Public inquiry evidence confirms that the Metropolitan Police are investigating a senior Post Office staff member regarding instructions to destroy evidence Continue Reading
-
News
17 Oct 2024
NCSC chief warns of gap in cyber threats and defence capabilities
The UK and its allies must take collective action to improve their cyber resilience and repel the increasing volume of severe cyber attacks, says NCSC chief Continue Reading
-
News
17 Oct 2024
EU cyber security bill NIS2 hits compliance deadline
The EU’s NIS2 bill will harmonise how companies and member states approach cyber security, but its success will depend on how well it is implemented and enforced Continue Reading
-
News
16 Oct 2024
Former police officer heading Post Office operations did nothing to help innocent subpostmasters
Former chief operating officer did nothing when action could have put a stop to the Post Office wrongful prosecutions Continue Reading
-
News
15 Oct 2024
Tech and digital skills key to improving police productivity
The Policing Productivity Review sees data and technology as a way of improving productivity and outcomes, as well as a potential means of restoring diminishing legitimacy, but warns there needs to be a revamp in digital skills, investment and coordination to harness the full range of benefits Continue Reading
-
News
15 Oct 2024
UK government unveils AI safety research funding details
Through its AI Safety Institute, the UK government has committed an initial pot of £4m to fund research into various risks associated with AI technologies, which will increase to £8.5m as the scheme progresses Continue Reading
-
News
15 Oct 2024
Hillingdon Council commits £9m to tech revamp in digital strategy
Hillingdon’s three-year digital strategy will see the council fund attempts to modernise its systems and infrastructure, change how residents interact with the local authority and make better use of data Continue Reading
-
News
15 Oct 2024
NCSC expands school cyber service to academies and private schools
The National Cyber Security Centre is expanding its PDNS for Schools service to encompass a wider variety of institutions up and down the UK Continue Reading
-
News
11 Oct 2024
Post Office believes it took £36m from subpostmasters with unexplained losses
The Post Office wrongly blamed subpostmasters for unexplained account shortfalls and made them cover losses out of their own pockets - then banked the money itself Continue Reading
-
News
11 Oct 2024
Post Office set to axe in-house-developed New Branch IT software
Troubled business may ditch its plan to build a new core branch system in-house and buy an off-the-shelf alternative Continue Reading
-
News
10 Oct 2024
NCSC issues fresh alert over wave of Cozy Bear activity
The NCSC, FBI and NSA publish updated warning about Cozy Bear’s activities, highlighting a range of vulnerabilities the threat actor is using to set up its cyber attacks Continue Reading
-
News
10 Oct 2024
Government launches cyber standard for local authorities
Local government bodies are being invited to take advantage of a new NCSC-derived Cyber Assessment Framework to help enhance their resilience and ward off cyber attacks Continue Reading
-
News
10 Oct 2024
Internet Archive web historians target of hacktivist cyber attack
The Internet Archive nonprofit digital library and Wayback Machine operator has been attacked by pro-Palestinian hacktivists Continue Reading
-
News
10 Oct 2024
How Recorded Future finds ransomware victims before they get hit
Threat intel specialists at Recorded Future have shared details of newly developed techniques they are using to disrupt Rhysida ransomware attacks before the gang even has a chance to execute them Continue Reading
-
News
10 Oct 2024
UK and US pledge closer working on children’s online safety
In their first agreement on the subject of children’s online safety, the UK and US governments have said they will create a new working group to boost cooperation Continue Reading
-
News
10 Oct 2024
Australia bolsters cyber defences with security bill
Legislation tackles IoT security and establishes a Cyber Incident Review Board to bolster Australia’s cyber resilience Continue Reading
-
News
09 Oct 2024
MoneyGram customer data breached in attack
MoneyGram confirms that customer data has been stolen in an incident that appears to have started with a social engineering attack on its IT helpdesk staff Continue Reading
-
News
09 Oct 2024
Five zero-days to be fixed on October Patch Tuesday
Stand-out vulnerabilities in Microsoft’s latest Patch Tuesday drop include problems in Microsoft Management Console and the Windows MSHTML Platform Continue Reading
-
News
08 Oct 2024
Secureworks: Ransomware takedowns didn’t put off cyber criminals
The number of active cyber criminal ransomware gangs has surged by almost a third in the space of 12 months, according to the latest intelligence from Secureworks Continue Reading
-
News
08 Oct 2024
Post Office IT transformation project was ‘set up to fail’, chairman tells inquiry
Post Office interim chairman tells Horizon public inquiry that the Post Office needs to reset New Branch IT project Continue Reading
-
News
08 Oct 2024
UK’s cyber incident reporting law to move forward in 2025
The UK government says that enforced cyber incident and ransomware reporting for critical sectors of the economy will help to build a better picture of the threat landscape and enable more proactive and preventative responses Continue Reading
-
News
08 Oct 2024
Can the Post Office project to replace Horizon be rescued?
Evidence from the Post Office public inquiry shows huge problems with the critical project to replace the troubled Horizon IT system – after two government-mandated reviews, is there any sign it can succeed? Continue Reading
-
News
07 Oct 2024
Labour sets up new office to coordinate tech innovation regulations
The newly formed Regulatory Innovation Office has been set up to ensure existing regulations do not become barriers to emerging tech innovations Continue Reading
-
Feature
07 Oct 2024
Why responsible AI is a business imperative
Tools are emerging for real-world AI systems that focus more on responsible adoption, deployment and governance, rather than academic and philosophical questions about speculative risks Continue Reading
-
News
04 Oct 2024
NCSC celebrates eight years as Horne blows in
Outgoing NCSC interim leader Felicity Oswald shares her thoughts on the body’s work over the past eight years as she hands over the reins to incoming CEO Richard Horne Continue Reading
-
News
04 Oct 2024
Post Office senior executive suspended over allegations of destroying evidence
Statement to public inquiry reveals that investigation is underway over allegations that a senior Post Office executive instructed staff to destroy evidence Continue Reading
-
News
03 Oct 2024
Microsoft files lawsuit to seize domains used by Russian spooks
Microsoft has been given permission to seize multiple domains used by the Russian state threat actor Star Blizzard as part of a coordinated disruption effort undertaken ahead of the US elections Continue Reading
-
News
03 Oct 2024
SOC teams falling out of love with threat detection tools
Security operations centre practitioners are fed up of being flooded with pointless alerts and many no longer have much confidence in their threat detection tools, according to a report Continue Reading
-
News
03 Oct 2024
Local councils need ‘better support’ to buy AI responsibly
The Ada Lovelace Institute says there is lack of adequate support on how councils can safely and responsibly procure artificial intelligence systems in the public interest Continue Reading
-
Opinion
03 Oct 2024
Rise of the cyber clones: When seeing isn’t believing
It is frighteningly easy to clone someone else's identity using readily-available artificial intelligence tools Continue Reading
-
News
03 Oct 2024
Post Office and Fujitsu: from blood brothers to bad blood
Former Post Office chief transformation officer’s evidence to the public inquiry reveals organisation’s strained relationship with main IT supplier Fujitsu Continue Reading
-
News
02 Oct 2024
UK and Singapore to collaborate on supporting ransomware victims
At the fourth Counter Ransomware Initiative Summit in the US, both the UK and Singapore have committed to working on new guidance designed to better support victims and undermine cyber criminal business models Continue Reading
-
News
01 Oct 2024
APAC organisations embrace generative AI
Study reveals a surge in GenAI adoption across APAC, with businesses looking to train their own models, likely to address specific regional needs and market dynamics Continue Reading
-
News
01 Oct 2024
Post Office ditches MoneyGram after cyber attack
The Post Office offered a short extension to enable it to asses the impact of the MoneyGram cyber incident, but the contract has now expired and MoneyGram services are no longer available in Post Office branches Continue Reading
-
Opinion
30 Sep 2024
The cyber industry needs to accept it can't eliminate risk
The Computer Weekly Security Think Tank panel considers incident response in the wake of the July CrowdStrike incident, sharing their views on what CrowdStrike got wrong, what it did right, and next steps Continue Reading
-
News
30 Sep 2024
Investigation finds 'reasonable likelihood' Post Office Capture software caused accounting losses
An independent forensic analysis finds the predecessor to Horizon IT system was also likely to have caused shortfalls for which subpostmasters were blamed, years before the Post Office scandal Continue Reading
-
News
27 Sep 2024
Printing vulnerability affecting Linux distros raises alarm
Security pros need to get in front of a series of vulnerabilities affecting the Cups Linux printing service after an apparently botched disclosure process saw technical details published in advance of a patch Continue Reading
-
Opinion
27 Sep 2024
Defaulting to open: Decoding the (very public) CrowdStrike event
The Computer Weekly Security Think Tank panel considers incident response in the wake of the July CrowdStrike incident, sharing their views on what CrowdStrike got wrong, what it did right, and next steps Continue Reading
-
Opinion
27 Sep 2024
Cyber companies need a best practice approach to major incidents.
The Computer Weekly Security Think Tank panel considers incident response in the wake of the July CrowdStrike incident, sharing their views on what CrowdStrike got wrong, what it did right, and next steps Continue Reading
-
News
26 Sep 2024
Racist Network Rail Wi-Fi hack was work of malicious insider
Police have revealed that this week’s racist cyber attack on public Wi-Fi networks at stations across the UK appears to have been the work of a malicious insider, after arresting an employee of one of the service providers Continue Reading
-
News
26 Sep 2024
Subpostmasters living years with disputed but unresolved debts to the Post Office, inquiry told
Continued errors with the Horizon system mean subpostmasters have unresolved account shortfalls hanging over them for years Continue Reading
-
News
26 Sep 2024
Islamophobic cyber attack downs Wi-Fi at UK transport hubs
An apparent hacktivist attack disrupted public-facing Wi-Fi networks at UK rail stations to display Islamophobic content Continue Reading
-
News
25 Sep 2024
CrowdStrike apologises to US government for global mega-outage
CrowdStrike executive Adam Meyers appears before a US government committee to explain the series of errors that led directly to one of the biggest IT outages in history Continue Reading
-
News
25 Sep 2024
Post Office IT procurement mess saw £35m spent on air conditioner, says board member
Post Office IT procurement mistakes have wasted millions of pounds of taxpayers money, non-executive board member tells public inquiry Continue Reading
-
News
24 Sep 2024
Money transfer firm MoneyGram rushes to contain cyber attack
Money transfer specialist MoneyGram services remain down several days after a network outage developed into a full-blown cyber security incident Continue Reading
-
News
24 Sep 2024
Unique malware sample volumes seen surging
BlackBerry’s latest ‘Global threat intelligence’ report details a surge in unique malware samples as threat actors ramp up the pace of targeted attacks Continue Reading
-
Opinion
24 Sep 2024
How to respond when your cyber company becomes the story
The Computer Weekly Security Think Tank panel considers incident response in the wake of the July CrowdStrike incident, sharing their views on what CrowdStrike got wrong, what it did right, and next steps Continue Reading
-
News
23 Sep 2024
Microsoft shares progress on Secure Future Initiative
Microsoft has published a progress report on its Secure Future Initiative, launched last year in the wake of multiple security incidents, and made a series of commitments to improve its internal cyber culture Continue Reading
-
News
23 Sep 2024
Home Office eVisa scheme is ‘broken’, says Open Rights Group
Digital rights campaigners say the Home Office’s plan to make its new electronic Visa scheme a real-time online-only process is part and parcel of the 'hostile environment' around immigration status Continue Reading
-
Opinion
23 Sep 2024
Gartner: Mitigating security threats in AI agents
Agents represent a step-change in the use of artificial intelligence in the enterprise - as attendees at Salesforce's annual conference saw first hand this month - but do not come without their risks Continue Reading
-
Feature
23 Sep 2024
Driving IT sustainability in datacentres
Europe’s datacentre operators need to get their power report cards to comply with the European Commission’s drive to greener EU datacentres Continue Reading
-
News
20 Sep 2024
UN body urges ‘globally inclusive and distributed’ AI governance
A United Nations body set up to investigate the international governance of AI says the nature of how the technology currently operates requires a global approach to regulation that prioritises equity and inclusion Continue Reading
-
Opinion
20 Sep 2024
CrowdStrike incident shows we need to rethink cyber
The Computer Weekly Security Think Tank panel considers incident response in the wake of the July CrowdStrike incident, sharing their views on what CrowdStrike got wrong, what it did right, and next steps Continue Reading
-
News
19 Sep 2024
CIOs urged to pace AI adoption
At the recent Gartner IT Symposium 2024 in Gold Coast, experts call for CIOs to pace their adoption of AI, manage costs and embrace ‘augmented leadership’ Continue Reading
-
News
18 Sep 2024
NCSC exposes Chinese company running malicious Mirai botnet
The NCSC and its Five Eyes allies have published details of the activities of a China-based cyber security company that is operating a Mirai IoT botnet in the service of government-backed intrusions Continue Reading
-
Opinion
18 Sep 2024
Global AI regulation is heating up: can the UK afford to remain silent?
Why UK lawmakers should be pro-active about introducing AI regulation Continue Reading
-
News
18 Sep 2024
Public digital transformation will be challenged by austerity
Public sector and IT industry figures gathered at TechUK’s 10th annual Building the Smarter State event discussed how Labour’s ‘mission-driven’ policy approach can drive digital transformation efforts in the context of fresh austerity measures Continue Reading
-
News
17 Sep 2024
Salesforce’s agentic AI platform to transform business automation
CRM giant’s Agentforce lets organisations build and deploy autonomous agents to automate business processes through advanced learning and data integration Continue Reading
-
News
17 Sep 2024
Fujitsu loses £50m in sales after Post Office scandal furore
Supplier of the controversial Horizon IT system has been hit by public outrage after the Post Office scandal became mainstream news Continue Reading
-
Feature
16 Sep 2024
Will autonomous weapons make humans passive participants in war?
Experts warn the emergence and adoption of AI-powered military systems may eventually push battlefield decision-making beyond the limits of human cognition Continue Reading
-
Opinion
13 Sep 2024
Why digital resilience is critical to success with AI at scale
Many early adopters of AI find implementation realities do not live up to the technology's promise - organisations can avoid such frustrations through a greater focus on digital resilience Continue Reading
-
Feature
12 Sep 2024
Kubernetes disaster recovery: Five key questions
We look at disaster recovery for Kubernetes environments, the key challenges to deployment of K8s DR, the risks we aim to mitigate, how to build a plan and the key infrastructure requirements Continue Reading
-
News
12 Sep 2024
Lord introduces bill to regulate public sector AI and automation
A private members’ bill seeking to regulate the use of artificial intelligence (AI) and other automated technologies throughout the public sector has been brought to Parliament Continue Reading
-
News
12 Sep 2024
Data sharing for immigration raids ferments hostility to migrants
Data sharing between public and private bodies for the purposes of carrying out immigration raids helps to prop up the UK’s hostile environment by instilling an atmosphere of fear and deterring migrants from accessing public services Continue Reading
-
News
12 Sep 2024
UK and others sign first ‘binding’ treaty on AI and human rights
The UK, US and EU have all signed a treaty from the Council of Europe that aims to mitigate the threat AI poses to human rights, democracy and the rule of law, but commentators say it lacks enforcement mechanisms and creates loopholes Continue Reading
-
News
11 Sep 2024
Datacentres granted critical national infrastructure status
The global IT outage caused by CrowdStrike has shown why keeping datacentres secure and safe is critical to the UK Continue Reading
-
News
11 Sep 2024
HMRC could lose millions in unpaid tax as non-compliant umbrella enters pre-pack administration
HMRC looks set to miss out on millions of pounds in unpaid tax it is owed by a non-compliant umbrella company that slipped into administration, prompting renewed calls for the sector to be regulated Continue Reading
-
Opinion
09 Sep 2024
Developing nations need the UN cyber crime treaty to pass
The UN cyber crime treaty is flawed but represents a move in the right direction for developing nations seeking greater digital sovereignty Continue Reading
-
News
05 Sep 2024
NCSC and allies call out Russia's Unit 29155 over cyber warfare
The NCSC and counterpart agencies from the US and other countries have exposed a long-running campaign of Russian cyber espionage and warfare conducted by GRU Unit 29155 Continue Reading
-
News
05 Sep 2024
Fog ransomware crew evolving into wide-ranging threat
The emergent Fog ransomware gang appears to be changing up its victimology in search of more cash-rich victims Continue Reading
-
News
05 Sep 2024
Ongoing TfL cyber attack takes out Dial-a-Ride service
The Dial-a-Ride assisted transit service for disabled people had to temporarily suspend part of its operations as Transport for London deals with an ongoing cyber attack, but the service has now been recovered Continue Reading
-
Opinion
05 Sep 2024
Building the next generation of digital public services
The UK's plans for the digital transformation of public services have lost their way - making it even harder to engage with government digitally. Other countries are showing us there is a better solution Continue Reading
-
News
04 Sep 2024
Retailers question using live facial recognition for shoplifting
Retailers praise benefits of retrospective over live facial recognition in dealing with shoplifting, but stress there are ongoing concerns around the ethical, legal and safety implications of using the technology in stores Continue Reading
-
News
04 Sep 2024
CMA clears Microsoft and Inflection AI transaction
Microsoft’s hiring of Inflection AI teams is regarded as a merger under UK law, but this deal has not curbed competition in the artificial intelligence market Continue Reading
-
News
04 Sep 2024
Fraud and scam complaints hit highest ever level in UK
The Financial Ombudsman Service says it recorded almost 9,000 complaints about fraud and scams from April to June, the most ever recorded Continue Reading
-
Feature
04 Sep 2024
ERP firms target carbon reporting role
As their customers face regulatory challenges ahead, ERP providers have been busy adding functionality to support reporting their green initiatives Continue Reading