IT security

News 30 Apr 2025
Current SaaS delivery model a risk management nightmare, says CISO

JPMorgan Chase security chief Patrick Opet laments the state of SaaS security in an open letter to the industry and calls on software providers to do more to enhance resilience Continue Reading
By
- Alex Scroxton, Security Editor
News 30 Apr 2025
Co-op shuts off IT systems to contain cyber attack

A developing cyber incident at Co-op has forced the retailer to pull the plug on some of its IT systems as it works to contain the attack Continue Reading
By
- Alex Scroxton, Security Editor

Definition 28 Nov 2023
privileged identity management (PIM)

Privileged identity management (PIM) is the monitoring and protection of superuser accounts that hold expanded access to an organization's IT environments. Continue Reading
By
- Rahul Awati
News 28 Nov 2023
Scope of British Library data breach widens

Personal data on British Library users has appeared for sale on the dark web following a Rhysida ransomware attack, as the scope of the still-developing incident widens again Continue Reading
By
- Alex Scroxton, Security Editor
News 28 Nov 2023
Volume of unique malware samples threatens to overwhelm defenders

A massive increase in malware volumes could cause problems for security teams tasked with adapting their defences against them Continue Reading
By
- Alex Scroxton, Security Editor
Feature 27 Nov 2023
How passwordless authentication aids identity security

Enterprise Strategy Group's Jack Poller discusses survey results on user authentication practices and explains the security benefits of passwordless methods. Continue Reading
By
- Craig Stedman, Industry Editor
News 27 Nov 2023
The Security Interviews: Zeki Turedi, field CTO Europe, CrowdStrike

Organisations are racing to keep their security up to date against the latest threats. CrowdStrike’s Zeki Turedi explains how to protect against novel and innovative cyber attacks Continue Reading
By
- Peter Ray Allison
News 27 Nov 2023
NCSC publishes landmark guidelines on AI cyber security

The NCSC and its US counterpart CISA have brought together tech companies and governments to countersign a new set of guidelines aimed at promoting a secure-by-design culture in AI development Continue Reading
By
- Alex Scroxton, Security Editor
Opinion 24 Nov 2023
DORA raises the stakes for cloud use in financial services

The EU's DORA regulations will raise the stakes for cloud in financial services but resilience is more than just a tech issue, says NetApp's Steve Rackham Continue Reading
By
- Steve Rackham
News 24 Nov 2023
UK police plan national roll-out of facial-recognition phone app

UK police chiefs plan to expand use of facial-recognition technology through a nationwide roll-out of mobile-based tools and increases in retrospective facial-recognition, but oversight problems persist Continue Reading
By
- Sebastian Klovig Skelton, Data & ethics editor
Blog Post 24 Nov 2023
Was the devil's greatest trick making you think tech CEOs are just people?

It’s been one of those weeks where tech makes headlines for all the wrong reasons. (Sadly, the wrong reasons are often the only reasons tech makes national headlines, but anyway…) There was much ... Continue Reading
By
- Bryan Glick, Editor in chief
News 24 Nov 2023
APAC organisations warm to microsegmentation

Nearly two-thirds of organisations in the APAC region see microsegmentation as a way to protect their IT assets, but lack the skills to deploy the technology Continue Reading
By
- Aaron Tan, TechTarget
News 23 Nov 2023
MOVEit incident spurred UK decision makers to spend big on cyber

The MOVEit cyber attacks that unfolded in the spring and summer of 2023 seem to have driven an increase in both ransomware awareness and spend, according to a report Continue Reading
By
- Alex Scroxton, Security Editor
News 23 Nov 2023
Expereo on tap for Carlsberg to deliver connectivity in 40 countries

SD-WAN/SASE and internet provider brings brewing giant ‘unrivalled’ connectivity in global network Continue Reading
By
- Joe O’Halloran, Computer Weekly
Opinion 23 Nov 2023
Navigating the DPDI Bill: A transformative shift ahead

The Data Protection and Digital Information (No. 2) Bill, or DPDI, is set to reshape the UK’s data protection framework. Louise Brooks of DQM GRC considers the implications Continue Reading
By
- Louise Brooks, DQM GRC
News 23 Nov 2023
North Korean APTs go all in on supply chain attacks, warns NCSC

Threat actors linked to the North Korean regime are becoming more adept at targeting software supply chains in the service of their cyber attacks Continue Reading
By
- Alex Scroxton, Security Editor
News 23 Nov 2023
Australia ups ante on cyber security

Australia’s new cyber security strategy will focus on building threat-blocking capabilities, protecting critical infrastructure and improving the cyber workforce, among other priorities Continue Reading
By
- Stephen Withers
News 22 Nov 2023
An inside look at a Scattered Spider cyber attack

Threat researchers at ReliaQuest share the inside track on a Scattered Spider cyber attack they investigated Continue Reading
By
- Alex Scroxton, Security Editor
News 22 Nov 2023
Palantir awarded NHS FDP data contract

NHS England has awarded a £330m, seven-year contract to US data specialist Palantir, prompting concerns from data privacy practitioners Continue Reading
By
- Alex Scroxton, Security Editor
News 22 Nov 2023
CISA reveals how LockBit hacked Boeing via Citrix Bleed

As alarm grows around the world about the impact of the so-called Citrix Bleed vulnerability, Boeing has shared details of its experience at the hands of the LockBit ransomware crew Continue Reading
By
- Alex Scroxton, Security Editor
Definition 21 Nov 2023
possession factor

The possession factor, in a security context, is a category of user authentication credentials based on items that the user has with them, typically a hardware device such as a security token or a mobile phone used in conjunction with a software token. Continue Reading
By
- Rahul Awati
News 21 Nov 2023
Over half of SME cyber incidents now ‘malware-free’

The age of malware-driven cyber attacks may have peaked, at least when it comes to incidents affecting small and medium sized enterprises Continue Reading
By
- Alex Scroxton, Security Editor
News 21 Nov 2023
Canada’s Mounties among government employees hit by LockBit

A LockBit attack on a specialist supplier of relocation services has engulfed multiple government agencies in Canada Continue Reading
By
- Alex Scroxton, Security Editor
News 21 Nov 2023
The ‘application generation’ demands more from developers

The latest Cisco AppDynamics poll of consumers has identified a new breed of app user that has emerged post-pandemic Continue Reading
By
- Cliff Saran, Managing Editor
Opinion 21 Nov 2023
Why transparency and accountability are important in cyber security

If we accept that the humans who build technology and systems are naturally fallible and mistakes inevitable, and then deal with that with good grace, we could do much to improve cyber standards, writes Bugcrowd's Casey Ellis Continue Reading
By
- Casey Ellis
News 21 Nov 2023
Internal documents leaked as Rhysida claims responsibility for British Library ransomware attack

Ransomware group Rhysida threatens to sell documents stolen from the British Library to the highest bidder Continue Reading
By
- Bill Goodwin, Computer Weekly
E-Zine 21 Nov 2023

Can AI take education to a new level?

In this week’s Computer Weekly, we examine how large language models are being used to teach, support and assess students, enhancing education rather than impairing it. We look at how the AI revolution is impacting the semiconductor sector as the big tech companies put off server upgrades. And we find out how generative AI is changing the way enterprise software works. Read the issue now. Continue Reading
News 20 Nov 2023
Kingfisher develops AI-agnostic platform to power DIY assistant

The platform provides a framework for security and compliance and enables developers to test different large language models Continue Reading
By
- Cliff Saran, Managing Editor
News 20 Nov 2023
Cubbit DS3 Composer brings DIY cloud to object storage pool

Cubbit customers can now build and configure S3-compatible clouds from unused capacity and offer MSP-grade services with high levels of resilience, security and data sovereignty Continue Reading
By
- Antony Adshead, Storage Editor
News 20 Nov 2023
IT not ready for AI, Pure Storage survey finds

Storage, compute and networking hardware won’t cope without upgrades, and that often means total IT infrastructure overhaul Continue Reading
By
- Antony Adshead, Storage Editor
News 20 Nov 2023
Defence lawyers seek appeal of tribunal ruling on police EncroChat cryptophone hack

Defence lawyers are seeking leave to appeal against a tribunal ruling that found the National Crime Agency had lawfully obtained warrants to access messages from 9,000 cryptophones used in the UK Continue Reading
By
- Bill Goodwin, Computer Weekly
Opinion 20 Nov 2023
Security incident response teams are human, too

What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
By
- Mandy Andress, Elastic
Podcast 17 Nov 2023
Walmart’s enterprise software: A Computer Weekly Downtime Upload podcast

We speak to Walmart’s David Glick about the build/buy debate and how the retailer works with large language models Continue Reading
By
- Cliff Saran, Managing Editor
News 17 Nov 2023
Microsoft and Meta quizzed on AI copyright

Large language models are trained using vast amounts of public data – but do the hyperscalers comply with copyright laws? Continue Reading
By
- Cliff Saran, Managing Editor
Definition 16 Nov 2023
Automated Clearing House fraud (ACH fraud)

ACH fraud is the theft of funds through the U.S. Department of the Treasury's Automated Clearing House financial transaction network. Continue Reading
By
- Rahul Awati
News 16 Nov 2023
Royal Mail spent £10m on cyber measures after LockBit attack

Royal Mail has spent approximately £10m on recovery and improved cyber resilience measures in the wake of the January 2023 LockBit ransomware attack Continue Reading
By
- Alex Scroxton, Security Editor
Blog Post 16 Nov 2023
Custom chatbots and model gardens: putting Private AI to work

Part 2: More to think about It’s essential to decide where to run your Private AI - or who you will get to run it for you, in some cases - but that is just the start. Assuming that you also want ... Continue Reading
By
- Bryan Betts, Freeform Dynamics
News 16 Nov 2023
Outgoing police tech watchdog warns of declining oversight

The outgoing biometrics and surveillance camera commissioner for England and Wales discusses police deployment of powerful new surveillance technologies, and the declining state of oversight in this area Continue Reading
By
- Sebastian Klovig Skelton, Data & ethics editor
News 16 Nov 2023
Ransomware gang grasses up uncooperative victim to US regulator

The ALPHV/BlackCat ransomware gang has added a new tactic to its playbook, going to ever more extreme lengths in search of a pay-off Continue Reading
By
- Alex Scroxton, Security Editor
News 16 Nov 2023
British Library’s Halloween cyber scare was ransomware

The British Library has provided an update on an ongoing cyber incident affecting its systems, confirming it to be the result of a ransomware attack Continue Reading
By
- Alex Scroxton, Security Editor
Blog Post 16 Nov 2023
Understanding the rise and role of Private AI

Part 1: AI hype vs fear and doubt The leakage of proprietary IP and other data has been one of the biggest corporate fears around generative AI since the launch of ChatGPT. Some companies even ... Continue Reading
By
- Bryan Betts, Freeform Dynamics
News 15 Nov 2023
BlackCat affiliate seen using malvertising to spread ransomware

Researchers at eSentire identified a wave activity from an ALPHV/BlackCat ransomware affiliate which has adopted a somewhat unusual approach to delivering its locker Continue Reading
By
- Alex Scroxton, Security Editor
News 15 Nov 2023
Russian cyber criminal pleads guilty to running IPStorm botnet

Sergey Manikin faces years in jail after his illicit proxy botnet service was taken down by US law enforcement Continue Reading
By
- Alex Scroxton, Security Editor
News 15 Nov 2023
November Patch Tuesday heralds five new MS zero-days

Microsoft pushes fixes for five new zero-days in its latest monthly update Continue Reading
By
- Alex Scroxton, Security Editor
News 15 Nov 2023
US government reinforces ICBC hack link to Citrix Bleed

US Treasury adds weight to reports that a ransomware gang gained access to the systems of Chinese bank ICBC by exploiting a critical Citrix flaw Continue Reading
By
- Alex Scroxton, Security Editor
News 15 Nov 2023
How Gigamon is making its mark in deep observability

Gigamon CEO Shane Buckley talks up the company’s ability to inspect encrypted network traffic for malicious activity, how it stands out with its deep observability capabilities and the tailwinds that are fuelling its growth Continue Reading
By
- Aaron Tan, TechTarget
Definition 14 Nov 2023
cardholder data environment (CDE)

A cardholder data environment (CDE) is a computer system or networked group of IT systems that processes, stores or transmits cardholder data or sensitive payment authentication data. Continue Reading
By
- Rahul Awati
- Sharon Shea, Executive Editor
News 14 Nov 2023
Fast-acting cyber gangs increasingly disabling telemetry logs

Sophos guidance for security practitioners and defenders highlights a growing trend for threat actors to disable or wipe telemetry logs to cover their tracks Continue Reading
By
- Alex Scroxton, Security Editor
E-Zine 14 Nov 2023

The UK AI Safety Summit – what did it achieve?

In this week’s Computer Weekly, we look back at the UK government’s AI Safety Summit and assess what it achieved – and what it didn’t. Our latest buyer’s guide examines the future of business software and modernising legacy applications. And we find out how the UK Product Security and Telecommunications Infrastructure Act aims to protect your smart devices. Read the issue now. Continue Reading
News 13 Nov 2023
Rogue state-aligned actors are most critical cyber threat to UK

The prospect of rogue nation-state-aligned attackers bringing down the UK’s critical infrastructure is keeping the NCSC up at night Continue Reading
By
- Alex Scroxton, Security Editor
News 13 Nov 2023
Lloyds Bank warns over rising threat of crypto scams

Report by Lloyds Banking Group finds there has been a 23% increase in cryptocurrency scams in 2023 compared with last year, targeting mostly younger investors Continue Reading
By
- Scarlet Charles
News 13 Nov 2023
Encrypted mail service Tuta says it was wrongly accused of being a front for intelligence services

German encrypted email service Tuta, formerly known as Tutanota, has denied claims by a former Canadian police intelligence officer accused of passing secrets to criminals that it was compromised by intelligence services Continue Reading
By
- Bill Goodwin, Computer Weekly
News 13 Nov 2023
Victims’ legal action over 2015 Carphone Warehouse breach moves forward

A class action against Currys Retail over the 2015 data breach of Carphone Warehouse customers has been granted permission to move forward in the courts Continue Reading
By
- Alex Scroxton, Security Editor
News 13 Nov 2023
ICO alerted after technical ‘issue’ exposed college files to student barristers

A training college for barristers has reported a data breach that left sensitive data on hundreds of current and former students accessible to other trainees Continue Reading
By
- Tommy Greene
Opinion 10 Nov 2023
Breached? Don't panic… if you created a robust IR plan

What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
By
- Paul Lewis, Nominet
News 10 Nov 2023
UN disarmament body calls for global action on autonomous weapons

UN draft resolution highlighting the dangers of autonomous weapons passes with overwhelming majority Continue Reading
By
- Sebastian Klovig Skelton, Data & ethics editor
Opinion 10 Nov 2023
How the Online Safety Act will impact businesses beyond Big Tech

The Online Safety Act will impact an estimated 100,000 online services in the UK and overseas Continue Reading
By
- Ria Moody, Linklaters
News 10 Nov 2023
Ransomware attack on major Chinese lender disrupts financial markets

The financial services arm of one of the world’s largest banks was taken offline by a supposed LockBit ransomware attack, causing problems for US markets Continue Reading
By
- Alex Scroxton, Security Editor
News 10 Nov 2023
APAC cyber security workforce hits record high

The cyber security workforce in Asia-Pacific now stands at just under a million people, but demand for cyber security talent in the region continues to outpace supply Continue Reading
By
- Aaron Tan, TechTarget
Definition 09 Nov 2023
crisis communication

Crisis communication is a strategic approach to corresponding with people and organizations during a disruptive event. Continue Reading
By
- Rahul Awati
- Paul Crocetti, Executive Editor
Definition 09 Nov 2023
emergency communications plan (EC plan)

An emergency communications plan (EC plan) is a document that provides guidelines, contact information and procedures for how information should be shared during all phases of an unexpected occurrence that requires immediate action. Continue Reading
By
- Rahul Awati
- Paul Crocetti, Executive Editor
News 09 Nov 2023
Revealed: How Russia’s Sandworm ramped up attacks on Ukraine’s critical infrastructure

New Mandiant intelligence reveals how the APT known as Sandworm has been evolving its playbook, twisting legitimate executables known as LoLBins into malicious tools as it seeks to disrupt daily life in Ukraine Continue Reading
By
- Alex Scroxton, Security Editor
Definition 09 Nov 2023
mandatory access control (MAC)

Mandatory access control (MAC) is a security strategy that restricts the ability individual resource owners have to grant or deny access to resource objects in a file system. Continue Reading
By
- Rahul Awati
Opinion 09 Nov 2023
The best IR plans are well-revised and deeply familiar

What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
By
- Elliott Wilkes
News 09 Nov 2023
NCSC makes annual Black Friday plea to consumers

Ahead of the annual festival of retail avarice, the NCSC is once again asking consumers to do the bare minimum to avoid falling victim to scams Continue Reading
By
- Alex Scroxton, Security Editor
News 09 Nov 2023
Suspected ransomware attack hits Scottish council

Systems at Comhairle nan Eilean Siar were downed on 7 November in a suspected ransomware attack Continue Reading
By
- Alex Scroxton, Security Editor
News 09 Nov 2023
UK government does not see need for specific AI legislation

The UK government does not currently see the need for new artificial intelligence legislation, as many regulators are already dealing effectively with AI-related harms Continue Reading
By
- Sebastian Klovig Skelton, Data & ethics editor
News 09 Nov 2023
The Security Interviews: Why cyber needs to integrate better

Cyber security is an intensely technical field, but we shouldn’t ignore the soft skills of communication and collaboration. Wipro’s Tony Buffomante explains why a robust security posture is dependent on a security team engaging with the wider organisation Continue Reading
By
- Peter Ray Allison
News 09 Nov 2023
Why IT governance is a coding issue

Two new pieces of research point to benefits of policy as code Continue Reading
By
- Cliff Saran, Managing Editor
E-Zine 09 Nov 2023

Heineken lets the data flow

In this month’s CW EMEA ezine, we find out about Heineken’s mission to make the most out of the data it holds through an enterprise-wide data ecosystem. We also look at how the UK has turned its back on the German government-funded Gaia-X data platform, why cyber experts are urging the EU to rethink vulnerability disclosure plans, and how the IT industry is responding to the software developer skills shortfall. Read the issue now. Continue Reading
News 08 Nov 2023
Data-sharing management gap highlights cyber risk, says report

Organisations are struggling to secure their use of communications tools to share data with third-party partners and suppliers, and in the process are exposing themselves to heightened levels of risk, according to a report Continue Reading
By
- Alex Scroxton, Security Editor
Opinion 08 Nov 2023
The plan for the inevitable cyber attack: Get the gist of NIST

What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
By
- Theodore Wiggins, Airbus Protect
News 08 Nov 2023
Iconic Singapore hotel caught up in major data breach

The Marina Bay Sands resort in Singapore uncovered a data breach of its guest loyalty programme last month Continue Reading
By
- Alex Scroxton, Security Editor
News 08 Nov 2023
King’s Speech misses the mark on cyber law reform, says campaign

A group of activists who want to reform the UK’s computer misuse laws to protect bona fide cyber pros from prosecution have been left disappointed by a lack of legislative progress Continue Reading
By
- Alex Scroxton, Security Editor
News 08 Nov 2023
The Security Interviews: ISC2’s Clar Rosso on cyber diversity and policy

Computer Weekly catches up with ISC2 CEO Clar Rosso to talk about diversifying the cyber workforce and supporting cyber pros as they keep up with growing compliance and security policy demands Continue Reading
By
- Alex Scroxton, Security Editor
Definition 08 Nov 2023
call tree

A call tree is a layered hierarchical communication model used to notify specific individuals of an event and coordinate recovery if necessary. Continue Reading
By
- Rahul Awati
- Paul Crocetti, Executive Editor
Definition 07 Nov 2023
dark web monitoring

Dark web monitoring is the process of searching for and continuously tracking information on the dark web. Continue Reading
By
- Ben Lutkevich, Site Editor
News 07 Nov 2023
Researchers ‘break’ rule designed to guard against Barracuda vulnerability

Vectra AI researchers found that a Suricata rule designed to detect exploitation of a dangerous Barracuda Email Security Gateway flaw was not entirely effective Continue Reading
By
- Alex Scroxton, Security Editor
Opinion 07 Nov 2023
Enhancing security: The crucial role of incident response plans

What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
By
- Chris McGowan
News 07 Nov 2023
Unesco unveils seven-point anti-disinformation plan

United Nations body outlines seven proposals for civil society, governments, regulators and tech platforms to adopt to combat the source of disinformation Continue Reading
By
- Alex Scroxton, Security Editor
News 07 Nov 2023
AI Safety Summit review

Computer Weekly takes stock of the UK government’s AI Safety Summit and the differing perspectives around its success Continue Reading
By
- Sebastian Klovig Skelton, Data & ethics editor
E-Zine 07 Nov 2023

How ExxonMobil is leading with data

In this week’s Computer Weekly, we talk to the leader of ExxonMobil’s data organisation, about the energy giant’s strategy to establish enterprise-wide principles for the use of data. As the UK’s Online Safety Act comes into force, we examine the tech sector’s concerns over the laws around end-to-end encryption. And we look at the software tools available to HR teams to help improve staff retention. Read the issue now. Continue Reading
Opinion 06 Nov 2023
IR plans: The difference between disaster and recovery

What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
By
- Becky Gelder, Turnkey Consulting
News 06 Nov 2023
Shadow IT use at Okta behind series of damaging breaches

Okta now believes the initial access vector in a series of damaging breaches was one of its own employees who used a corporate device to sign into their personal Google account Continue Reading
By
- Alex Scroxton, Security Editor
News 06 Nov 2023
How Trellix’s CISO keeps threat actors at bay

Trellix’s chief information security officer, Harold Rivas, outlines how the company mitigates security threats through containment and by helping security analysts to respond faster to cyber incidents Continue Reading
By
- Aaron Tan, TechTarget
06 Nov 2023

Tech firms flag risk to end-to-end encryption as Online Safety Bill gets royal assent

Technology organisations remain concerned that the newly implemented Online Safety Act could undermine end-to-end encryption, despite government reassurances that it will ensure online safety. Continue Reading
Feature 03 Nov 2023
SolarWinds hack explained: Everything you need to know

Hackers targeted SolarWinds by deploying malicious code into its Orion IT monitoring and management software used by thousands of enterprises and government agencies worldwide. Continue Reading
By
- Saheed Oladimeji, Sean Michael Kerner
Opinion 03 Nov 2023
Incident response planning requires constant testing

What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
By
- Jack Chapman
News 02 Nov 2023
Admins told to take action over F5 Big-IP platform flaws

Two vulnerabilities in the widely used F5 Networks Big-IP platform are now being exploited in the wild Continue Reading
By
- Alex Scroxton, Security Editor
News 02 Nov 2023
UK workers exhibit poor security behaviours, report reveals

Report by KnowBe4 has found that four in five UK workers do not make security-conscious choices, whether in-office, remote or hybrid working Continue Reading
By
- Scarlet Charles
Opinion 02 Nov 2023
Use existing structures to build your incident response plan

What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
By
- Sam Lascelles
News 02 Nov 2023
How the UK crime agency repurposed Amazon cloud platform to analyse EncroChat cryptophone data

UK crime agency repurposed AWS-based analytics platform to triage EncroChat data and identify threats to life in messages sent on encrypted phone network Continue Reading
By
- Bill Goodwin, Computer Weekly
- Sebastian Klovig Skelton, Data & ethics editor
News 02 Nov 2023
EU digital ID reforms should be ‘actively resisted’, say experts

Over 300 cyber security experts have called for the EU to rethink its proposals for eIDAS digital identity reforms, saying some of the provisions risk damaging user privacy and security Continue Reading
By
- Alex Scroxton, Security Editor
Opinion 01 Nov 2023
Incident response planning is vulnerable to legacy thinking

What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
By
- Mike Gillespie
News 01 Nov 2023
Lloyds bank kicks off Hyderabad operation

Lloyds Banking Group has opened its latest tech operation in Hyderabad, with plans to recruit around 600 IT experts Continue Reading
By
- Karl Flinders, Chief reporter and senior editor EMEA
News 01 Nov 2023
Darktrace CEO Poppy Gustafsson on her AI Safety Summit goals

As the AI Safety Summit at Bletchley Park takes place, Computer Weekly caught up with Darktrace CEO Poppy Gustafsson to find out what one of the UK’s most prominent AI advocates wants from proceedings Continue Reading
By
- Alex Scroxton, Security Editor
News 31 Oct 2023
British Library falls victim to cyber attack

The British Library is experiencing a major IT outage following a cyber incident of an undisclosed nature Continue Reading
By
- Alex Scroxton, Security Editor
News 31 Oct 2023
Biden’s AI plans focus on US workers’ protection

The US president has issued an Executive Order that sets out his administration’s strategy for AI safety and security Continue Reading
By
- Cliff Saran, Managing Editor
News 31 Oct 2023
SEC sues SolarWinds, alleging serious security failures

SolarWinds and its CISO have been charged with fraud and internal control failures by the US authorities amid allegations of a series of cyber security failings leading up to the 2020 Sunburst attacks Continue Reading
By
- Alex Scroxton, Security Editor
Definition 30 Oct 2023
ISO 27002 (International Organization for Standardization 27002)

The ISO 27002 standard is a collection of information security management guidelines that are intended to help an organization implement, maintain and improve its information security management. Continue Reading
By
- Paul Kirvan
- Ben Cole, Executive Editor
Opinion 30 Oct 2023
The implications of biased AI models on the financial services industry

The Bank of England has warned of the risk artificial intelligence models present in creating bias that could pose a threat to the UK’s financial services sector. How do those risks emerge and how they might be mitigated? Continue Reading
By
- Jamie Rowlands
Definition 30 Oct 2023
supercookie

A supercookie is a type of tracking cookie inserted into an HTTP header to collect data about a user's internet browsing history and habits. Continue Reading
By
- Rahul Awati
- Madelyn Bacon, TechTarget

3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27

Search CIO

DOGE divides policymakers on federal IT modernization
A former federal deputy CIO testified that reauthorizing the Technology Modernization Fund will help the government continue IT ...
Regulators urge businesses to cooperate on data privacy laws
Providing detailed background information is one way to help data privacy regulators during investigations of potential ...
AI tests limits of data privacy regulation
OpenAI CEO Sam Altman speaks about where data privacy guardrails are needed and where there might be room to rework privacy ...

Search Security

TheWizards APT Casts a Spell on Asian Gamblers With Novel Attack
A SLAAC-spoofing, adversary-in-the-middle campaign is hiding the WizardNet backdoor malware inside updates for legitimate ...
AI-fueled cyber crime at risk of outpacing traditional defenses, Check Point warns
The security firm said in a new report that defenders should begin using AI to counter cyber criminals’ adoption of the ...
NVIDIA's New AI Security Offering Protects Against Software Landmines
NVIDIA's DOCA Argus prevents attacks before they compromise AI architectures.

Search Networking

How to use Cilium Hubble for network observability
Cilium's Hubble tool provides network observability while working in Kubernetes. This guide explains how Hubble works and how to ...
HPE Aruba deepens network security and OpsRamp visibility
A new 'digital circuit breaker' capability for HPE Private Clouds, increased visibility of third-party hardware with OpsRamp and ...
GenAI prompt engineering tactics for network pros
The accuracy and relevance of AI responses are directly influenced by the quality of the prompt. Each tool performs differently ...

Search Data Center

19 Linux performance monitoring utilities
Monitoring Linux server performance is vital for optimal operation. System admins should consider these 19 performance monitoring...
Explore the impact of quantum computing on cryptography
When quantum computers become more widely available, lots of encryption types will be vulnerable. Learn why, plus solutions and ...
Classical vs. quantum computing: What are the differences?
Classical and quantum computers differ in their computing capabilities, how they operate and the resources they need. Know the ...

Search Data Management

StarTree aims to simplify AI development with new features
The database vendor plans to add support for Model Context Protocol and automated vector embedding capabilities to make it faster...
StarTree aims to simplify AI development with new features
The database vendor plans to add support for Model Context Protocol and automated vector embedding capabilities to make it faster...
Acceldata launches agentic AI-powered anomaly detection
The data observability specialist's new feature uses agentic AI to ensure that the data used to inform analytics and AI tools is ...

Close