IT security
-
Opinion
01 May 2025
Explaining what’s happening in a cyber attack is hard but crucial
The recent attacks on Marks & Spencer, Harrods and the Co-op show why it is essential for organisations to have a strategy to communicate effectively with customers affected. Continue Reading
-
News
01 May 2025
Harrods becomes latest UK retailer to fall victim to cyber attack
Harrods confirms it has become latest UK retailer to experience a cyber attack, shutting off a number of systems in an attempt to lessen the impact. Continue Reading
-
Feature
23 Aug 2021
Considerations when deciding on a new SIEM or SOAR tool
A successful deployment of any security tool very much depends on the maturity of security processes in the organisation Continue Reading
-
News
23 Aug 2021
Flexxon and Lenovo tie up on AI-infused SSDs
Singapore-based Flexxon teams up with Lenovo to make its solid-state drive that uses artificial intelligence to fend off cyber threats available on ThinkPad-based laptops Continue Reading
-
Definition
23 Aug 2021
ILOVEYOU virus
The ILOVEYOU virus comes in an email with 'ILOVEYOU' in the subject line and contains an attachment that, when opened, results in the message being re-sent to everyone in the recipient's Microsoft Outlook address book. Continue Reading
-
News
20 Aug 2021
Swedish IT industry braced for China’s response to Huawei 5G ban
Swedish IT and communications equipment suppliers fear economic backlash from China following Huawei ban Continue Reading
-
News
20 Aug 2021
How the pandemic transformed IAG’s Hangar 51 accelerator
Businesses of all shapes and sizes have had to take a different approach during the pandemic – Dupsy Abiola, head of global innovation at IAG, explains how IAG transformed its Hangar 51 accelerator during the coronavirus outbreak Continue Reading
-
Opinion
20 Aug 2021
Security Think Tank: Data privacy not in isolation, but on a spectrum
The gap between data privacy and data governance is narrowing, and security leaders need to be aware of the implications, says KuppingerCole’s Anne Bailey Continue Reading
-
News
19 Aug 2021
Pub apps harvesting swathes of customer data unnecessarily
Some pub and restaurant chain apps demand data such as gender and marital status, raising eyebrows among privacy campaigners Continue Reading
-
News
19 Aug 2021
IT leaders fear ‘trickle-down’ of nation-state cyber attacks
Three-quarters of IT decision-makers are concerned that the tactics, techniques and procedures used by nation-state attackers could be used against them Continue Reading
-
News
18 Aug 2021
How Australia’s Octopus Deploy is simplifying DevOps
Brisbane-based startup Octopus Deploy recently secured $172.5m in venture funding to advance its goal of simplifying software deployments for DevOps teams Continue Reading
-
News
18 Aug 2021
MoD seeks security tech to harden military systems
The Defence and Security Accelerator has launched a programme to root out technology that will reduce the military’s exposure to cyber attacks Continue Reading
-
News
18 Aug 2021
Global VPN downloads soar in first half of 2021
Song remains the same with VPNs as repressive regimes’ continued regulatory demands and remote working see virtual private network usage rocket over the first six months of the year Continue Reading
-
Opinion
18 Aug 2021
Security Think Tank: Data privacy and ethics in a post-Covid world
The radical change caused by the pandemic requires new approaches to data privacy practice, says PA Consulting’s Daniel Gordon Continue Reading
-
News
17 Aug 2021
Educational publisher Pearson fined for data breach cover-up
Securities and Exchange Commission says publisher misled its investors over the extent of a 2018 data breach Continue Reading
-
News
17 Aug 2021
Security Think Tank: Building privacy-preserving apps and platforms
ISACA’s Gaurav Deep Singh Johar explores how to embed privacy practices into digital platform architecture Continue Reading
-
E-Zine
17 Aug 2021
How to choose between SIEM and SOAR
In this week’s Computer Weekly, our buyer’s guide examines the use of SIEM and SOAR to improve IT security, and asks which you should use, and when? We look at what you need to know about NVMe over Fabrics, the emerging storage networking technology. And we find out how Oracle customers are introducing its Fusion Cloud suite. Read the issue now. Continue Reading
-
16 Aug 2021
When is SIEM the right choice over SOAR?
Better instrumentation leads to better IT security but monitoring can quickly overload IT teams. Automation can help, but it may not always be needed Continue Reading
-
News
16 Aug 2021
ICO consults public on personal data in employment practices
The ICO has launched a public consultation on employers’ use of personal data to help it provide practical guidance for both businesses and workers Continue Reading
-
News
16 Aug 2021
Nearly half of retailers hit by ransomware in 2020
In the face of increasingly prevalent and sophisticated ransomware attacks, retail organisations need to develop alternative ways of restoring lost or encrypted data, as paying the ransom does not guarantee its return in almost a third of cases Continue Reading
-
Feature
16 Aug 2021
When is SIEM the right choice over SOAR?
Better instrumentation leads to better IT security but monitoring can quickly overload IT teams. Automation can help, but it may not always be needed Continue Reading
-
News
13 Aug 2021
UN special rapporteurs call for surveillance tech moratorium
In the wake of revelations about NSO Groups Pegasus spyware, a number of special rapporteurs from the United Nations are re-igniting calls for a global moratorium on the sale and transfer of surveillance technologies Continue Reading
-
News
13 Aug 2021
Cyber Runway programme supports new security businesses
The Cyber Runway programme is a government-backed scheme to support entrepreneurs, startups and scaleups in launching and growing new security businesses Continue Reading
-
Blog Post
13 Aug 2021
The DDoS Battle
In the many years I’ve been testing and analysing the security side of IT, one evident point is that the classic forms of attack: identifying common vulnerabilities and Distributed Denial of ... Continue Reading
-
News
13 Aug 2021
Hospitals see cyber security investment as a low priority
Almost half of hospitals have experienced an IT shutdown as a result of a cyber attack in the past six months, but just over one in 10 hospital executives see cyber security investment as a high priority Continue Reading
-
News
12 Aug 2021
ICO consults on new international data transfer agreement
Information Commissioner’s Office to consult on its draft international data transfer agreement and guidance, which will replace standard contractual clauses to protect personal data during overseas transfers Continue Reading
-
E-Zine
12 Aug 2021
CW Benelux: Netherlands sees increase in the number of women opting for an ICT career
The IT skills gap in the Netherlands could be about to narrow as more women take up jobs in the sector. Figures from last year revealed that the number of female ICT professionals grew by 6.5%, while the number of male ICT professionals increased by only 1.7%. Read more about it in this issue. Also find out why more openness about ransomware attacks in the Dutch business community could be the first step to defeating a growing problem. Continue Reading
-
News
12 Aug 2021
LGA goes live with Digital Pathfinders Programme
Programme offers £20,000 in funding to councils that come up with ‘pioneering solutions’ for cyber security, digital inclusion and connectivity Continue Reading
- 12 Aug 2021
-
News
11 Aug 2021
US wins bid to widen grounds of appeal in Julian Assange extradition case
The US government accused medical expert professor Michael Kopelman of misleading the court by failing to disclose details of Assange’s relationship Continue Reading
-
News
11 Aug 2021
Hacker makes off with $600m in world’s largest crypto-heist
Despite bagging $600m worth of cryptocurrency in what has been described as the biggest decentralised finance hack, the hacker has already started returning the funds Continue Reading
-
News
11 Aug 2021
Microsoft fixes seven critical bugs on light Patch Tuesday
All seven critical vulnerabilities in Microsoft’s August Patch Tuesday were related to remote code execution, and there was one zero-day related to Windows Update Medic Service Continue Reading
-
News
11 Aug 2021
The Netherlands still lacks digital resilience, says report
Report by National Coordinator for Counterterrorism and Security says the Netherlands’ digital resilience has improved, but is still insufficient Continue Reading
-
News
10 Aug 2021
Ransomware demands and payments hit new records
Ransomware groups continue to intensify their operations as ransom demands and payments increase alongside use of “quadruple extortion” tactics during first half of 2021 Continue Reading
-
News
10 Aug 2021
Third of finance firms accelerate use of artificial intelligence to detect money laundering
Financial services firms are stepping up their use of artificial intelligence and machine learning technology to fight increasing money laundering activity Continue Reading
-
News
10 Aug 2021
Dutch lead the way in protecting themselves against internet risks
Dutch citizens come top in a study on awareness of internet risks in Europe, which showed major differences across the continent Continue Reading
-
10 Aug 2021
Privacy Shield: US surveillance law reforms essential for EU-US data
EU Committee on Civil Liberties, Justice and Home Affairs study calls for major reforms of US spying laws to enable an EU-US data-sharing agreement to replace Privacy Shield. Continue Reading
-
E-Zine
10 Aug 2021
Real-time data analytics in action
In this week’s Computer Weekly, we examine the emerging applications of real-time analytics and highlight the challenges for businesses to maximise the benefits. EU experts are calling for reform of US surveillance laws – we look at the issues. And we talk to the co-CEO of HR software giant Workday. Read the issue now. Continue Reading
-
News
10 Aug 2021
Researchers uncover database with 126 million unsecured records
Business-to-business marketing firm OneMoreLead was storing tens of millions of records in an unsecured database, exposing at least 63 million people to fraud, identify theft and phishing campaigns Continue Reading
-
News
10 Aug 2021
How Grab is using Kafka in fraud detection
Grab is using Apache Kafka in its fraud detection and prevention platform to ingest event streams from its mobile software development kits and client backends to pick up fraudulent activities Continue Reading
-
News
09 Aug 2021
Possible ransomware attack hits Italian vaccine booking system
It is still unclear who is behind the attack that caused Covid-19 vaccine bookings in Lazio, Italy, to grind to a halt, as despite masses of files being encrypted no specific ransom demands have been made for the decryptor Continue Reading
-
News
06 Aug 2021
Apple unveils plans to scan US iPhones for child sex abuse images
Apple will introduce child sexual abuse material detection for US users later this year, but some experts are worried that the technology could be repurposed to scan phones for other kinds of content Continue Reading
-
News
05 Aug 2021
11 areas will trial digital identity scheme for residential property sector
MyIdentity scheme will allow estate agents, conveyancers, solicitors and mortgage providers across 11 locations to trial the use of digital identity to speed up and make home buying more secure Continue Reading
-
News
05 Aug 2021
Nine security flaws found in critical hospital infrastructure
The ‘PwnedPiper’ vulnerabilities identified in systems used by 80% of US hospitals could be used to launch ransomware attacks Continue Reading
-
News
05 Aug 2021
BlackMatter goes on the record about DarkSide and REvil links
BlackMatter gives details of its ransomware-as-a-service operation and distinguishes itself from now-defunct ransomware gangs in interview with cyber security analysts from Recorded Future Continue Reading
-
News
05 Aug 2021
SAP customers more alert to internal than external threats
SAP customers are more concerned by insider threats than by external attacks, according to a report. And yet the average SAP customer has around 2,500 vulnerabilities within their customised SAP code Continue Reading
-
News
05 Aug 2021
Cloud misconfiguration a growing cause of security incidents
Rapid cloud adoption during the pandemic has increased the attack surface and heightened the risk of misconfiguring services, leaving organisations more vulnerable to cyber attacks Continue Reading
-
News
04 Aug 2021
Six Isle of Wight schools hit by ransomware attack
Authorities are still working to manage the fallout from the attack, which has already forced at least one school to delay the start of the new term in September Continue Reading
-
News
04 Aug 2021
Leading venture capital firms are failing to protect human rights
Venture capital firms and high-profile tech accelerators are not conducting human rights due diligence on their investments, which means they cannot be sure the companies they invest in are not causing, or contributing to, human rights abuses Continue Reading
-
News
04 Aug 2021
Initial access brokers unaffected by ransomware content bans
Banning ransomware content from cyber crime forums has done little to prevent initial access brokers from advertising their services, with the number of access listings increasing in the second quarter of 2021 Continue Reading
-
News
04 Aug 2021
Fred IT replaces paper prescriptions with QR codes
Fred IT’s eRX Script Exchange is now used by 21,000 doctors and 95% of Australian pharmacies, delivering more than 11 million digital prescriptions by July 2021 Continue Reading
-
Feature
04 Aug 2021
Disaster recovery for SMEs: Five key areas to consider
We look at key disaster recovery considerations for SMEs, including why backup is not enough, how to create a disaster recovery plan, best-practice DR testing and DR as a service Continue Reading
-
News
03 Aug 2021
UK MoD turns to hackers to help secure digital assets
Hackers given direct access to internal Ministry of Defence systems to identify and report security vulnerabilities Continue Reading
-
News
03 Aug 2021
New ransomware gang spins out of DarkSide
The emergence of a ransomware gang known as BlackMatter raises questions that it could be a re-brand of REvil or DarkSide Continue Reading
-
News
03 Aug 2021
Destruction and integrity cyber attacks on the rise
Cyber security professionals have reported a sharp rise in debilitating attacks aimed at destroying or manipulating data Continue Reading
-
News
03 Aug 2021
Ransomware attacks increase dramatically during 2021
Dramatic increase in ransomware attacks globally during first half of 2021 driven by triple extortion technique, and is only set to expand further Continue Reading
-
E-Zine
03 Aug 2021
The fears and benefits of virtualising reality
In this week’s Computer Weekly, we examine the mingling of virtual and physical worlds and find positive applications and worrisome implications from augmented reality. We find out how to run a virtual hackathon during the pandemic – pizza still included. And we look at how to improve performance of your private cloud. Read the issue now. Continue Reading
-
Opinion
02 Aug 2021
Five tips to ensure your crisis comms plan is ready for a cyber attack
Business leaders take note: standard crisis communications plans are inadequate if you have fallen victim to a cyber attack. HPL’s Ted Birkhahn shares five tips to make sure you are ready to face the public Continue Reading
-
News
02 Aug 2021
Government publishes second version of digital identity trust framework
The second iteration of the framework, still in alpha version, sets out how organisations can become certified digital identity service providers Continue Reading
-
News
30 Jul 2021
Hospitality firms must accelerate digital transformation to secure long-term recovery
Key retail sector must respond quickly to new post-pandemic digital-first demands and consumer behaviours to regain competitive edge, says study Continue Reading
-
News
29 Jul 2021
Technical hiccups force Babuk ransomware gang to change tactics
The Babuk ransomware operation backed away from encrypting its victims’ files, and technical difficulties may be to blame, reports McAfee Continue Reading
-
News
29 Jul 2021
Investigatory Powers Tribunal finds UK spy agencies unlawfully collected personal data
Campaign groups Privacy International and Liberty are gearing up to bring further legal action after a court found that UK spy agencies unlawfully collected phone and internet records Continue Reading
-
News
28 Jul 2021
Almost half unaware of GP data-sharing plans
Around half of adults in England – approximately 20 million people – remain unaware of the scope of the NHS GPDPR programme, prompting calls for a public education campaign Continue Reading
-
News
28 Jul 2021
Top vulnerabilities target perimeter devices
The most frequently exploited CVEs of the year so far are to be found in perimeter and network access devices, according to a joint advisory from the NCSC and partners Continue Reading
-
News
28 Jul 2021
COP26 cyber resource hub launched for Glasgow businesses
New digital information hub for Glasgow business to help organisations keep secure both physically and online ahead of major climate change summit Continue Reading
-
Opinion
28 Jul 2021
Security Think Tank: Consider cyber policies and procedures as you welcome employees back
With Covid-19 restrictions easing, offices are welcoming back remote workers this summer, bringing with them their notebooks and mobiles, and creating an endpoint management headache for CISOs. What do security teams need to account for to protect their returning office workers? Continue Reading
-
News
27 Jul 2021
ICO ends its involvement in dispute between NatWest Bank and data breach whistleblower
The Information Commissioner’s Office has ended its involvement in a dispute between a data breach whistleblower and NatWest bank Continue Reading
-
News
27 Jul 2021
US lawmakers call for probe into ‘arrogant’ spyware firm
US members of Congress have called for an investigation into NSO Group, the spyware supplier at the centre of a massive surveillance scandal Continue Reading
-
News
27 Jul 2021
TikTok sets up cyber security hub in Dublin
Dublin-based cyber centre will oversee the security of TikTok’s users across Europe Continue Reading
-
News
27 Jul 2021
How IBM is solving the data privacy problem
IBM’s fully homomorphic encryption technology lets enterprises apply analytics and machine learning to encrypted data without compromising data privacy Continue Reading
-
E-Zine
27 Jul 2021
Are we getting cyber security skills all wrong?
In this week’s Computer Weekly, the chair of the new UK Cyber Security Council tells us how she plans to fundamentally reimagine what working in IT security means. Our latest buyer’s guide examines ERP modernisation and its role in digital transformation. And we take an in-depth look at the first preview version of Windows 11. Read the issue now. Continue Reading
-
Definition
26 Jul 2021
network access control (NAC)
Network access control (NAC), also called network admission control, is a method to bolster the security, visibility and access management of a proprietary network. Continue Reading
-
News
26 Jul 2021
Malicious actors turn to obscure programming languages
Using new, lesser-known or otherwise uncommon programming languages to code new malwares can help skirt cyber defences Continue Reading
-
News
26 Jul 2021
No More Ransom initiative saves £850m over five years
Initiative’s free ransomware decryption tools have been used by more than six million people since 2016 Continue Reading
-
Opinion
26 Jul 2021
Government-led innovation can help cyber startups find a market
There are many reasons why early-stage cyber startups often struggle to get off the ground, but government-backed programmes can help them find a path Continue Reading
-
News
25 Jul 2021
Tokyo 2020 hit by data breach
The user names and passwords of Tokyo 2020 ticket holders and event volunteers were reportedly compromised, but government official claims the data leak was not large Continue Reading
-
News
25 Jul 2021
OAIC: Uber failed to protect personal data of Australians
Uber did not take reasonable steps to protect Australians’ personal information from unauthorised access, says Australia’s national privacy watchdog Continue Reading
-
25 Jul 2021
How the UK Cyber Security Council plans to professionalise security
As chair of the new UK Cyber Security Council, Claudia Natanson is in a superb position to develop professional standards in IT security and she intends to fundamentally reimagine what a security job actually is Continue Reading
-
News
23 Jul 2021
Kaseya obtains universal ransomware decryptor
Kaseya says it obtained a ransomware decryptor key from a trusted third party, but there is no word on whether a ransom was paid Continue Reading
-
Definition
22 Jul 2021
SYN scanning
SYN scanning is a tactic that a malicious hacker can use to determine the state of a communications port without establishing a full connection. Continue Reading
-
News
22 Jul 2021
Respect in Security challenges abuse and harassment in cyber
With around a third of cyber pros saying they have personally experienced harassment at work or online, a new initiative is urging organisations to pledge their support to help free the community from the scourge of abuse. We met its founders Continue Reading
-
Feature
22 Jul 2021
New thinking and systems required to tackle online fraud in retail
Online fraud is a growing problem for retail, but are merchants doing enough to update systems and how should they change their actions to address it? Continue Reading
-
News
22 Jul 2021
Beeinfotech PH opens telco-neutral datacentre in the Philippines
Datacentre startup is touting carrier neutrality, bespoke services and cyber security capabilities to meet the growing demand for co-location services in the Philippines Continue Reading
-
Feature
21 Jul 2021
Five ways to ensure remote working security and compliance
A mix of on-site and remote working has become a fact of life for many organisations. We look at five key things you should consider to ensure compliance and security Continue Reading
-
News
21 Jul 2021
France’s Macron among alleged Pegasus targets
Data relating to devices used by French president Emmanuel Macron and the head of the World Health Organization, among others, has been uncovered in a dataset linked to government use of spyware Continue Reading
-
News
20 Jul 2021
NCSC’s Cameron urges deeper cyber alliance-building
Speaking to an event in Israel, NCSC CEO Lindy Cameron has praised joint UK-Israeli efforts on security collaboration Continue Reading
-
Opinion
20 Jul 2021
Sparsely staffed offices: the new post-pandemic cyber gap
With many offices still operating at limited capacity, a red teaming expert reveals how his job is getting easier, and why this is a problem Continue Reading
-
Opinion
20 Jul 2021
The Secret IR Insider’s Diary: It’s all gone quie...
The ‘Q’ word isn’t one that’s really used in incident response, says the Secret IR Insider, largely because as soon as you use it, something happens Continue Reading
-
News
20 Jul 2021
NHS Digital tightens rules for GPDPR data scrape
The proposed collection of patient data held by GPs will now only commence when three key criteria have been fulfilled, says NHS Digital Continue Reading
-
Opinion
20 Jul 2021
Security Think Tank: A return to the office is not a return to normal
With Covid-19 restrictions easing, offices are welcoming back remote workers this summer, bringing with them their notebooks and mobiles, and creating an endpoint management headache for CISOs. What do security teams need to account for to protect their returning office workers? Continue Reading
-
E-Zine
20 Jul 2021
Ripe for change – mixing digital innovation with traditional winemaking
In this week’s Computer Weekly, we find out how global winemaker Concha y Toro uses the latest tech to enhance 150-year old traditional processes. Pharma giant GSK explains how an API strategy is changing its business model. And we talk to retailers using video technology to bridge the gap between in-store and online selling. Read the issue now. Continue Reading
-
News
19 Jul 2021
Government launches consultation on plans for UK digital identity market
DCMS wants stakeholders to offer their views on proposals for a new governance regime and expanding access to government-held datasets for identity verification Continue Reading
-
Opinion
19 Jul 2021
Is tech team remuneration opening up a new form of cyber risk?
Failing to reward cyber security staff in line with increases for other members of the tech team could open up new risks to organisations Continue Reading
-
News
19 Jul 2021
UK, US confirm Chinese state backed MS Exchange Server attacks
UK and US governments, alongside the EU and Nato, have formally attributed the March 2021 Microsoft Exchange Server attacks to Chinese state-backed actors Continue Reading
-
News
19 Jul 2021
Pegasus mobile RAT abused to monitor journalists and activists
Israel-based surveillance specialist NSO Group is facing renewed pressure after it emerged its Pegasus mobile surveillance tool may be being widely abused by repressive regimes Continue Reading
-
Feature
19 Jul 2021
Windows 11: A first look at the first preview
Microsoft recently unveiled its plans for the next version of the Windows operating system. We give it a test drive Continue Reading
-
News
19 Jul 2021
Privacy Shield: One year on and companies are still grappling for answers
Activist lawyer Max Schrems and Eduardo Ustaran, partner at Hogan Lovells, look for common ground in a problem with no easy answers Continue Reading
-
Feature
19 Jul 2021
Tips to minimise vulnerabilities in web and mobile apps
Agile software development can sometimes be at odds with secure by design principles. We look at how organisations are balancing security with coding Continue Reading
-
News
16 Jul 2021
Legacy SonicWall kit exploited in ransom campaign
Users of older versions of SonicWall Secure Mobile Access 100 and Secure Remote Access products are at risk from a new ransomware campaign Continue Reading
-
Blog Post
16 Jul 2021
The Changing UK Cyberpolicing and Cyberskills scene - an update
The Covid Lockdown unleashed a torrent of employment and skills related fraud, as criminals seize the opportunity to loot the new programmes , as they did to the Individual Learning Accounts after ... Continue Reading
-
News
15 Jul 2021
Macquarie Data Centres to build Sydney North facility
Macquarie Data Centres’ latest 32MW facility will come with a cyber security centre that monitors and manages cyber security events Continue Reading
-
15 Jul 2021
Covid-19 vaccine supply chain under attack by unknown nation state
An unknown nation state actor is attempting to disrupt the supply of coronavirus vaccines Continue Reading
