IT risk management
Risk management is an increasingly important discipline for IT leaders, with regulatory compliance an ever-present consideration and the amount of legislation and regulation concerning data security on the rise. We examine the issues around IT risk management and the best practices that IT managers need to know.
-
Opinion
26 Apr 2024
Security Think Tank: Maybe let's negotiate with terrorists
In the wake of renewed calls for lawmakers to consider enacting legal bans on ransomware payments, the Computer Weekly Security Think Tank weighs in to share their thoughts on how to tackle the scourge for good. Continue Reading
-
News
25 Apr 2024
Zero trust is a strategy, not a technology
Zero-trust security should be seen as a strategy to protect high-value assets and is not tied to a specific technology or product, says the model’s creator John Kindervag Continue Reading
-
News
16 May 2019
Fujitsu sets out to restore trust in technology
Trust in technology, how to recapture it, and how to ensure AI doesn’t overstep its bounds were the big messages on the opening day of Fujitsu Forum in Tokyo Continue Reading
-
Opinion
16 May 2019
Security Think Tank: Proper segregation is more important than ever
What are the security benefits and challenges of segregating IT environments, and how best are these challenges overcome? Continue Reading
-
News
15 May 2019
Microsoft working to support decentralised identity
Microsoft is among the big tech players aiming to help enable personalisation of products and services without putting privacy at risk Continue Reading
-
News
15 May 2019
Implement multifactor authentication, urges expert panel
Multifactor authentication should be a top priority for organisations to defend users from cyber attacks, coupled with zero-trust architecture and artificial intelligence-based technologies, says expert panel Continue Reading
-
Opinion
15 May 2019
Security Think Tank: Understanding tech is key to effective data segregation
What are the security benefits and challenges of segregating IT environments, and how best are these challenges overcome? Continue Reading
-
News
14 May 2019
APAC firms on the back foot in cyber security
Most Asia-Pacific organisations did not consider cyber security until after their digital transformation projects had begun, new survey finds Continue Reading
-
Opinion
14 May 2019
Security Think Tank: How to realise the benefits of security zoning
What are the security benefits and challenges of segregating IT environments, and how best are these challenges overcome? Continue Reading
-
News
13 May 2019
National Crime Agency calls for additional funding to tackle 21st century crime
Organised criminal gangs represent the biggest cyber threat to the UK, and law enforcement has identified rogue servers hosted in the UK Continue Reading
-
Opinion
13 May 2019
Security Think Tank: Benefits and challenges of security segmentation
What are the security benefits and challenges of segregating IT environments, and how best are these challenges overcome? Continue Reading
-
Feature
10 May 2019
Debugging bug bounty programmes
Bug bounty programmes have recently become a popular method of vulnerability management, but poor programme management can lead to development teams becoming overwhelmed and bugs being missed Continue Reading
-
Opinion
10 May 2019
Security Think Tank: Surviving the existential cyber punch, part 3
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
10 May 2019
Key lessons from an ethical hacker
Understanding hacker techniques and processes is the best way to defend against cyber attacks, and focusing on business risks is the best way to get security budget, according to an ethical hacker Continue Reading
-
News
10 May 2019
Dutch businesses not yet implementing NIS Directive
Little urgency to comply with the Network and Information Systems Security Act, which seeks to protect the Netherlands’ vital infrastructure and digital services from cyber attack Continue Reading
-
News
09 May 2019
Northern Ireland generating cyber security knowledge and jobs
Northern Ireland is establishing itself as an international hub of cyber security research and innovation, providing growing employment opportunities Continue Reading
- 08 May 2019
-
News
08 May 2019
Time to start thinking about AI regulation, says KuppingerCole
Organisations and individuals should think about regulating artificial intelligence to avoid sleepwalking into a future regulated by these technologies, says analyst Continue Reading
-
News
08 May 2019
Cyber criminals targeting C-suite, DBIR shows
Executives and cloud-based services are gaining popularity as targets for cyber criminals, according to the latest data breach investigations report Continue Reading
-
News
07 May 2019
Privileged access management moving to cloud
Survey shows nearly half of information security professionals are either planning to move privileged access management to the cloud or are exploring the possibility Continue Reading
-
News
06 May 2019
AWS to power Australia’s 2021 online census
PwC Australia, one of two firms appointed by the government to run the next Census, will build and operate an online form and a website on Amazon Web Services Continue Reading
-
News
03 May 2019
Zero trust: A 21st century security model
Traditional corporate security models date back to a time when there were fewer, lower-level threats, but a zero trust model is better suited to the 21st century, according to the originator of the idea Continue Reading
-
News
03 May 2019
Norsk Hydro urges caution as it counts cost of cyber attack
Norwegian aluminium giant Norsk Hydro is urging partners to be cautious in the wake of a damaging ransomware attack in March as financial impact estimates come in above initial estimates Continue Reading
-
News
02 May 2019
Firms urged to embrace positive security trends to win cyber war
Modern cyber security challenges overshadow the information security successes of the past, but several positive trends are emerging as defenders come to grips with new threats, says Deloitte Continue Reading
-
News
02 May 2019
Microservices introduce hidden security complexity, analyst warns
Microservice architecture – an approach to application development in which applications are built as a suite of modular services – simplifies development but complicates security, says KuppingerCole Continue Reading
-
News
02 May 2019
Businesses unprepared for cyber breaches
Study shows many organisations lack IT security and operations basics, including visibility across their IT operations Continue Reading
-
News
01 May 2019
BSA releases framework for secure software
Software industry advocacy group releases framework to facilitate flexible and comprehensive software security assessments Continue Reading
-
News
01 May 2019
Get more proactive on cyber security, says ex Europol chief
Business needs to get more proactive, collaborative, resilient and analytical to manage cyber risks posed by cyber criminals down to acceptable levels, says former Europol chief Continue Reading
-
Feature
01 May 2019
Protecting your digital assets: Why it pays to invest in cyber insurance
Cyber insurance offers financial protection against the worst happening to a company’s data and digital assets, and is something few businesses can afford to be without Continue Reading
-
News
30 Apr 2019
UK gears up for new laws on IoT security
The UK plans to introduce measures to require that basic cyber security features are built into internet-connected devices Continue Reading
-
News
30 Apr 2019
Cyber criminals increase use of fileless attacks
Fileless attacks are increasingly popular with cyber criminals, while Russia and China top the league of nation state data exfiltrators, threat data shows Continue Reading
-
News
30 Apr 2019
Most businesses vulnerable to supply chain cyber attacks
UK firms trail the leaders US and Germany in knowing the most about their partners’ cyber security practices, but most companies globally are in the dark about this growing source of vulnerabilities Continue Reading
-
News
30 Apr 2019
Nearly half of UK IT pros report serious data breaches
Integration of security systems and employee training recognised as key ways to reduce the growing severity of data breaches Continue Reading
-
News
29 Apr 2019
Fix the basics first, then worry about AI, advise experts
The freedom of the internet is at risk, with the cyber arms race and the industrialisation of hacking are set to continue as attackers move up the value chain to target trust mechanisms, threat experts predict Continue Reading
-
News
29 Apr 2019
Australians lost half a billion dollars to scams in 2018
Most of the losses went to investment scams as tricksters found innovative ways to dupe victims into parting with their money Continue Reading
-
News
26 Apr 2019
Facebook faces fresh privacy actions from regulators
Facebook faces legal action from Canada after it dismissed regulators’ findings that it failed to protect customer privacy. The firm has set aside $5bn to settle a privacy action in the US and faces a new investigation in Ireland Continue Reading
-
Opinion
26 Apr 2019
Security Think Tank: Surviving the existential cyber punch part 2
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
26 Apr 2019
Top lessons from cyber attacks
Cyber security experts weigh in on lessons learned from cyber attack experiences, underlining that recovery capability is as important as defence Continue Reading
-
News
26 Apr 2019
GDPR cases drive bigger budgets for Nordic regulators
High-profile General Data Protection Regulation cases in Finland and Sweden have increased the workload for regulators, which are to receive an increase in funding Continue Reading
-
News
25 Apr 2019
UK up for cyber challenge but work to be done, says minister
Lidington says National Cyber Security Strategy has “revolutionised the UK’s fight against cyber threats” Continue Reading
-
News
25 Apr 2019
Cabinet Office addresses 5G security issue
Cabinet Office uses NCSC conference to lay out government’s approach to the security of 5G networks, as controversy grows around using equipment from Chinese supplier Huawei Continue Reading
-
News
25 Apr 2019
NCSC looks to industry to scale Active Cyber Defence
The national cyber security agency is calling on wider government organisations as well as industry to help scale automated cyber attack blocking systems country-wide Continue Reading
-
News
24 Apr 2019
NCSC to scale up intelligence sharing, says GCHQ director
The GCHQ director has outlined the agency’s cyber security mission in the third decade of the internet age at CyberUK, promising to scale up the sharing of declassified cyber intelligence with industry Continue Reading
-
News
24 Apr 2019
PM May approves Huawei for use in 5G networks despite opposition
The UK’s National Security Council has approved the use of Huawei’s networking equipment in parts of the country’s 5G mobile networks in spite of widespread opposition Continue Reading
-
News
23 Apr 2019
Casual collaboration comms pose security risk, survey shows
UK employees have a worryingly casual attitude to workplace communications, underling the need for employers to take steps to counter related cyber attack vulnerabilities Continue Reading
-
News
23 Apr 2019
APAC set for blockchain boom
Led by China, spending on blockchain technology in Asia-Pacific excluding Japan will surpass $2bn by 2022 Continue Reading
-
News
18 Apr 2019
State-sponsored hackers are hijacking DNS, researchers warn
A DNS-hijacking campaign targeting the Middle East and Africa may lead to actors more broadly attacking the global DNS system Continue Reading
-
News
17 Apr 2019
Nearly a quarter of tech firms do not security check products
Nearly a quarter of organisations polled do not run security checks on products, and nearly a third admitted to shipping products with known security vulnerabilities, a survey shows Continue Reading
-
News
17 Apr 2019
Wipro admits to potential breach to employee accounts by phishing attack
Indian IT services company Wipro is investigating a phishing attack, which hit some staff email accounts and launched attacks on customer environments Continue Reading
-
News
16 Apr 2019
Singtel and NUS claim quantum breakthrough
Researchers from Singtel and the National University of Singapore have succeeded in coordinating the paths of photons across a fibre network to drive wider adoption of quantum key distribution Continue Reading
-
Opinion
16 Apr 2019
Security Think Tank: Surviving the existential cyber punch
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
16 Apr 2019
Huawei cyber security chief John Suffolk: It’s not our culture to be aggressive
John Suffolk, global cyber security and privacy officer at China-based telecoms equipment supplier Huawei, tells Huawei Analyst Summit growth is the best answer to US criticism Continue Reading
-
News
16 Apr 2019
Energy industry needs to up cyber defences, warns report
Cyber threat actors are advanced and persistent, but firms in the energy industry are using outdated systems and technology to save money, putting them at risk of cyber attacks, warns F-Secure report Continue Reading
-
News
15 Apr 2019
How Palo Alto Networks fends off its cyber adversaries
Palo Alto Networks CIO Naveen Zutshi talks up the company’s approach in keeping threat actors at bay Continue Reading
-
News
15 Apr 2019
Facebook takes extraordinary legal steps to contain document leak
Facebook targets journalists and news organisations for computer searches Continue Reading
-
News
15 Apr 2019
Zero trust is about more than products
The zero trust security model is more than just products and network segmentation, it’s an architectural design principle with identity at its core that needs to be applied enterprise-wide, says KuppingerCole Continue Reading
-
Opinion
15 Apr 2019
Security Think Tank: Seven steps to manage risk of catastrophic cyber attack
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
15 Apr 2019
Automation will bring job security, say most IT security pros
Most security professionals believe that although automation can support humans, it will not result in a reduction in job opportunities, a study shows Continue Reading
-
Feature
12 Apr 2019
How botnets pose a threat to the IoT ecosystem
While connected devices are transforming our personal and working lives in a multitude of ways, they are also a growing security risk – attackers are hijacking these devices and turning them into internet of things botnets Continue Reading
-
Opinion
12 Apr 2019
Security Think Tank: Cyber attack survival not a matter of luck
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
11 Apr 2019
Government breach data highlights cyber skills misconception
Results of a government-sponsored survey highlight a dangerous misconception around cyber skills, according to a former GCHQ trainer Continue Reading
-
Opinion
11 Apr 2019
Security Think Tank: Aim for integrated resilience, continuity and recovery
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
11 Apr 2019
Triton industrial malware group still active, researchers warn
Security researchers have found traces of a Russian-linked cyber attack group in another critical infrastructure facility, prompting calls for increased diligence around industrial cyber security Continue Reading
-
E-Zine
11 Apr 2019
CW Middle East: Visibility and security of networks are top IT priorities
The 2019 Computer Weekly/TechTarget IT Priorities survey shows that enterprise buyers in the Middle East, like those in the UK and Europe, are looking to lock down their networks in the face of an almost constant barrage of threats and malicious actors. Also read how Facebook planned to use its Android app to track the location of its customers and to allow advertisers to send political advertising, and what further details operator O2 has revealed about how it is planning for the advent of 5G. Continue Reading
-
Opinion
10 Apr 2019
Security Think Tank: Incident response vital to guard against catastrophic cyber attack
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
10 Apr 2019
A quarter of phishing emails bypass Office 365 security
Cloud-based email is leaving enterprises vulnerable to phishing attacks capable of giving cyber criminals access to a wide range of critical data, warn security researchers Continue Reading
-
Opinion
10 Apr 2019
Why cyber security needs to be prioritised at board level
Despite the rising number of headline-grabbing security breaches, many company executives are still not prioritising cyber security in the boardroom Continue Reading
-
News
09 Apr 2019
Digital doppelgangers for sale to defeat anti-fraud tech
Security researchers have uncovered an online market selling digital identities to help cyber criminals to defeat anti-fraud technologies, as financial cyber crime becomes a bigger threat than ever before Continue Reading
-
News
09 Apr 2019
UK councils team up to boost cyber security
Three UK councils and data analysis firm Splunk have teamed up to improve cyber defence capabilities and maintain their security systems Continue Reading
-
Opinion
09 Apr 2019
Security Think Tank: BC/DR plan key to cyber attack survival
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
08 Apr 2019
Ransomware getting more targeted, warns Flashpoint
Ransomware attacks are becoming more targeted and designed to infect different sized organisations in specific industries and regions, say security researchers Continue Reading
-
News
08 Apr 2019
How APAC firms can tame the data beast
Companies and data management experts across Asia-Pacific reveal how they are tackling data management challenges that have been compounded by growing cloud usage and compliance requirements Continue Reading
-
Opinion
08 Apr 2019
Security Think Tank: How to reduce the impact of a potential cyber extinction event
How should businesses plan to survive a potential cyber attack extinction event? Continue Reading
-
News
05 Apr 2019
Critical infrastructure under relentless cyber attack
A lack of visibility into the attack surface, inadequate security staffing and reliance on manual processes undermine operational technology security capabilities, a study reveals Continue Reading
-
News
05 Apr 2019
European firms see value in ‘known good’ approach to security
European data protection regulations are driving enterprise interest in an approach to security being championed by virtualisation software maker VMware, says the company’s security lead Continue Reading
-
News
04 Apr 2019
The rise of digital workers and the bot economy
Automation Anywhere’s booming business, particularly in the Asia-Pacific region, is a sign of things to come in the new world of work where digital workers can be hired from a bot store Continue Reading
-
News
04 Apr 2019
Researchers uncover US-based malware distribution centre
More than a dozen US-based web servers are operating as the malware equivalent of an Amazon fulfilment centre to target businesses, security researchers have found Continue Reading
-
News
04 Apr 2019
Document-based malware on the rise, businesses warned
Document-based malware spiked in the first quarter of the year, building on a gradual rise in the past year, warn researchers Continue Reading
-
News
03 Apr 2019
Government urges businesses and charities to up cyber security
The UK government is urging businesses and charities to take action to prevent cyber attacks as the costs go up, despite an overall reduction in breaches, partly driven by new data protection laws Continue Reading
-
News
03 Apr 2019
Employees lack awareness of corporate data-sharing policies
IT leaders believe their organisations are highly likely to lose data in the next 12 months due to accidental data breaches Continue Reading
-
News
02 Apr 2019
Akamai to open second traffic scrubbing centre in Australia
New centre in Melbourne will meet growing demand for scrubbing services to mitigate the impact of distributed denial of service attacks in Australia Continue Reading
-
News
02 Apr 2019
Four in 10 leading banks failing on email fraud protection
Top UK traditional and challenger banks risk exposing customers to email fraud, a study reveals Continue Reading
-
News
02 Apr 2019
Cyber attacks increasingly exploiting supply chain weaknesses
Cyber attacks are increasingly characterised by supply chain attacks, counter incident response and lateral movement, research reveals Continue Reading
-
News
02 Apr 2019
Huawei reports record numbers despite tumultuous year
Huawei has become one of the world’s largest technology companies by revenue, suggesting the accusations over its ties to the Chinese government are failing to have much impact Continue Reading
-
News
01 Apr 2019
Black Hat Asia 2019: Get ready for the cyber arms race
The arms race is now squarely in the cyber realm as defence teams and threat actors arm themselves with AI tools Continue Reading
-
News
01 Apr 2019
Rapidly multiplying IoT cyber attacks use well-known weaknesses
Internet of things threats and attacks are increasing rapidly, but rely on well-known security weaknesses, security researchers discover Continue Reading
-
News
01 Apr 2019
Singapore government to review data security in public sector
A high-level committee comprising ministers and private sector security experts will review data security practices and recommend measures to better protect citizens’ data Continue Reading
-
News
29 Mar 2019
Magento e-commerce sites urged to apply security update
Security experts are urging companies using the Magento e-commerce site to apply security updates without delay to avoid a disastrous hacking campaign Continue Reading
-
News
28 Mar 2019
Infosec pros slam government-mandated backdoors
Government-mandated encryption backdoors increase vulnerability to nation-state attacks, according to the majority of cyber security professionals Continue Reading
-
News
28 Mar 2019
Encryption adoption driven by new tech and compliance
The adoption of encryption is at its highest level yet, driven by the need to protect data generated by new digital initiatives, but still less than half of organisations are applying it consistently across the enterprise Continue Reading
-
News
27 Mar 2019
UK IoT research centre to tackle cyber risk
A government-backed national IoT research centre has been launched as part of UK efforts to become a world leader in tackling cyber threats Continue Reading
-
News
27 Mar 2019
Cyber attacks targeting industrial control systems on the rise
Malicious cyber activity increased to almost half of the industrial infrastructure protected by Kaspersky Lab in 2018, but the UK is among the most secure countries, the security firm reports Continue Reading
-
News
27 Mar 2019
Norsk Hydro cyber attack cost estimates up to $41m
Initial estimates have put the financial impact of last week’s ransomware attack on the Norwegian aluminium producer of up to nearly $41m, raising questions about cyber insurance coverage Continue Reading
-
News
26 Mar 2019
IT complexity raises concerns of certificate-related outages
Company executives are concerned that increased IT complexity will result in more security certificate-related outages, with nearly two-thirds of organisations affected in the past year Continue Reading
-
News
26 Mar 2019
Asus releases fix for supply chain cyber attack
Asus has released a fix for a supply chain attack and downplayed the impact on customers while promising to contact all those affected as incident highlights code signing vulnerabilities Continue Reading
-
News
26 Mar 2019
Nominet urges SMEs to register .uk domains to thwart squatters
The automatic right of .co.uk domain name holders to register the shorter .uk domains ends in June Continue Reading
-
News
26 Mar 2019
Firms urged to gear up for new malware and tactics as threats proliferate
The volume of malware attacks reached a record level in 2018, with UK and India bucking global trend of increased ransomware attacks, a study shows Continue Reading
-
News
25 Mar 2019
Security challenge is to move as fast as the business
Adapting security to the pace at which the business is moving is one of the biggest challenges facing infosec professionals in the cloud era, says Palo Alto Networks Continue Reading
-
News
22 Mar 2019
Digital Darwinism unkind to those who wait, says Palo Alto
As business-driven digital transformation, including the move to cloud, continues apace, companies need to rethink their approach to how they deploy and consume security, or risk being left behind Continue Reading
-
News
22 Mar 2019
Government cyber security strategy is ‘chaotic’
Responding to potential threats at a national level is unfeasible given the time ministers are currently dedicating to Brexit negotiations, says shadow Cabinet Office minister Continue Reading
-
News
20 Mar 2019
Spike in cyber attacks targeting Cisco Webex
Cyber attacks targeting a leading web conference tool have increased dramatically and sextortion is becoming more popular with attackers, according to WatchGuard Technologies Continue Reading
-
News
20 Mar 2019
Police investigate Norsk Hydro ransomware attack
Ransomware attack on one of the world’s largest aluminium producers is under police investigation Continue Reading