Privacy and data protection
-
News
11 Dec 2023
Nordic governments join forces to protect data transfers
Nordic countries deepen their cooperation over cyber security amid heightened threat from neighbouring Russia Continue Reading
-
E-Zine
07 Sep 2023
CW EMEA: The value of valuing people
In this month’s CW EMEA ezine, we look at HR software and strategies that can help combat staff attrition, find out how Finland’s and Sweden’s plans to join NATO have initiated activity in the Nordic cyber security sector already, consider the data privacy challenges associated with generative AI, and find out why it is important for companies to implement new cryptography standards now in preparation for quantum-safe communication. Read the issue now. Continue Reading
-
Feature
05 Mar 2021
Dealing with the challenge of beg bounties
The rise of so-called beg bounties is becoming a challenge for security teams, and can be a drain on time and resources. But what is a beg bounty, and how does it differ from a bug bounty? Continue Reading
-
News
05 Mar 2021
Singapore Airlines the latest victim of supply chain attack
A restricted set of data of over 580,000 frequent flyer members of Singapore Airlines was exposed in a supply chain attack against Sita’s passenger service system Continue Reading
-
News
04 Mar 2021
Qualys caught up in Accellion FTA breach
Security services supplier confirms that some of its data was stolen via vulnerabilities in Accellion’s file transfer product Continue Reading
-
News
03 Mar 2021
Emergency patch addresses MS Exchange Server zero-days
Microsoft releases an emergency patch to address multiple zero-day exploits directed at on-premise installations of Exchange Server Continue Reading
-
News
02 Mar 2021
EU seeking pan-European Covid-19 passport solution
The European Union’s proposal could see the creation of a Covid-19 vaccine passport to enable travel across the EU Continue Reading
-
News
01 Mar 2021
Digital secretary Dowden outlines UK post-Brexit data approach
The UK government is searching for a new information commissioner with an updated remit to use data to support growth and innovation, and plans on reaching new international data partnerships Continue Reading
-
News
25 Feb 2021
GCHQ sets out rules of the road for AI in cyber
A paper produced by GCHQ shows how the intelligence agency can use artificial intelligence responsibly as a tool to protect the UK’s national security Continue Reading
-
News
25 Feb 2021
Npower shuts off app after credential stuffing attack
Npower customers will have to log in to their accounts on its website after its app was withdrawn following a security breach Continue Reading
-
News
25 Feb 2021
MHRA and other agencies to offer new resources for scam victims
New landing page resources will replace .uk domains suspended for criminal activity to help members of the public access appropriate guidance Continue Reading
-
News
24 Feb 2021
Transport for NSW hit by Accellion breach
Australian state agency Transport for New South Wales is the latest victim of the supply chain attack against Accellion’s legacy file transfer system Continue Reading
-
News
24 Feb 2021
Vaccine passports prove an ethical minefield
Privacy campaigners warn that vaccine passports may turn out to be discriminatory and invasive, while technologists agree careful consideration must be given to their design Continue Reading
-
News
24 Feb 2021
Is Clubhouse safe, and should CISOs stop its use?
With more concerns being raised over the privacy and security of social media app Clubhouse, we consider whether security teams should consider restricting or stopping employees from using it Continue Reading
-
News
24 Feb 2021
Bombardier is latest victim of Accellion supply chain attack
Canadian aviation company joins the growing list of Accellion breach victims Continue Reading
-
News
24 Feb 2021
Warning on security risk from virtual events platforms
Vulnerabilities found in virtual events platforms could form part of a variant supply chain attack Continue Reading
-
News
23 Feb 2021
CyberScotland offers centralised security resource hub
Newly launched partnership brings together security resources for individuals and organisations across Scotland Continue Reading
-
News
22 Feb 2021
Microphones, smartphones, laptops among items stolen from BBC
A total of 105 devices have been stolen from the BBC in the past two years, some of which may have been spirited away by remote workers Continue Reading
-
News
22 Feb 2021
Pandemic has exposed fractures in cyber fraud strategy
RUSI report urges a bolder and more coordinated response to cyber-enabled fraud as the pandemic lays bear the scale of the problem Continue Reading
-
News
19 Feb 2021
European Commission proposes UK data adequacy agreement
The publication of two draft data adequacy decisions brings the UK closer to a final positive decision, which will enable the continued free flow of data between the EU and the UK if green-lit by member states Continue Reading
-
News
19 Feb 2021
NCSC cyber defence scheme blocked thousands of scams in 2019
The NCSC has reported another productive year for its Active Cyber Defence programme Continue Reading
-
News
19 Feb 2021
Biden will act on cyber security to fix SolarWinds mess
US will take action to modernise its defences in the wake of the SolarWinds attack, says US government cyber lead Anne Neuberger Continue Reading
-
News
18 Feb 2021
Swedish police fined for unlawful use of facial-recognition app
Sweden’s data watchdog has found that Swedish police failed to conduct the data protection checks required by law before using controversial facial-recognition tool Continue Reading
-
News
18 Feb 2021
City of Helsinki adopts MyData principles to improve digital services
Principles on the use of personal data for the benefit of society will guide Finnish capital’s ambitious digital plans Continue Reading
-
News
18 Feb 2021
2020 a record year for cyber, thanks to Covid
The UK’s cyber industry now employs close to 50,000 people and contributes billions to the economy Continue Reading
-
News
18 Feb 2021
Assessing UK law enforcement data adequacy
Data protection experts discuss the consequences of achieving data adequacy between the UK and EU for the UK’s intelligence services and criminal justice sector Continue Reading
-
News
17 Feb 2021
North Korean Lazarus Group hackers indicted in US
Charges filed relate to Lazarus Group’s long-running cyber crime spree, including financial theft and extortion, WannaCry malware and the cyber attack on Sony Pictures Continue Reading
-
Opinion
17 Feb 2021
Vaccine passports highlight social impact of systems design
Vaccine or immunity passports are an opportunity to advance the design of trustworthy digital systems, but much more work still needs to be done Continue Reading
-
News
17 Feb 2021
Egregor ransomware arrests confirmed
Authorities confirm that they have arrested an undisclosed number of cyber criminals associated with the Egregor ransomware Continue Reading
-
News
17 Feb 2021
Law firm and cyber criminals clash over source of stolen data
Cyber attack victim Jones Day says its data was stolen in a supply chain attack, but the gang holding it to ransom disagrees Continue Reading
-
News
16 Feb 2021
North Korea accused of Pfizer Covid vaccine cyber attack
South Korean intelligence pins a recent attack on Pfizer, targeting information on coronavirus vaccines, on its neighbour Continue Reading
-
News
16 Feb 2021
Central government should promote data policy compliance, say civil servants
Most civil servants want the government to gain additional powers to promote data policy compliance to ensure better use of data, according to research Continue Reading
-
News
15 Feb 2021
Post Office to offer digital ID services to customers
Post Office partnership with Yoti is intended to expand customer choice as to how people prove their identity when accessing services Continue Reading
-
News
15 Feb 2021
NCSC recognises UK’s top cyber schools
National Cyber Security Centre CyberFirst Schools initiative has handed out 14 gold, silver and bronze awards recognising excellence in cyber security teaching Continue Reading
-
News
15 Feb 2021
Government to impose new digital identity system across all Gov.uk services
Cabinet Office minister Michael Gove writes to Whitehall departments mandating the use of a new digital identity system that will allow citizens to be tracked across the Gov.uk website Continue Reading
-
Opinion
15 Feb 2021
Security Think Tank: Renewed US stability may ease cyber tensions
As US president Joe Biden sets out his agenda for the next four years, we consider the opportunities for renewed international collaboration on cyber security, what aspects of cyber Biden should focus on, and ask how the industry can make its voice heard Continue Reading
-
News
12 Feb 2021
UK border surveillance regime highly privatised, says Privacy International
Research from Privacy International raises concerns about the deep involvement of technology companies in the development and deployment of various technologies throughout the UK’s border regime, along with the lack of scrutiny they receive Continue Reading
-
Opinion
12 Feb 2021
Security Think Tank: Biden must address insider security threat first
As US president Joe Biden sets out his agenda for the next four years, we consider the opportunities for renewed international collaboration on cyber security, what aspects of cyber Biden should focus on, and ask how the industry can make its voice heard Continue Reading
-
News
11 Feb 2021
Hacked Finnish therapy business collapses
Vastaamo, the Finnish psychotherapy centre whose patients were blackmailed by a cyber criminal gang, has filed for bankruptcy Continue Reading
-
News
11 Feb 2021
Government launches digital identity trust framework
The government’s draft framework, which aims to set out rules for the use of digital identities, will be tested with industries, services, users and organisations ahead of a final version being published Continue Reading
-
E-Zine
11 Feb 2021
CW Benelux: Is reluctance to report cyber crimes in the Netherlands helping the criminals get away?
According to an academic study in the Netherlands, only one in seven Dutch people report a cyber crime to the police when it happens - feeling it is better to sort the problem out themselves because they don’t think the police will do anything. This is storing up trouble as cyber crime is an increasing problem in the country. Also in this issue, read why Dutch bank ABN Amro is selling its head office. Continue Reading
-
Opinion
11 Feb 2021
Security Think Tank: Biden’s team can make a difference on security
As US president Joe Biden sets out his agenda for the next four years, we consider the opportunities for renewed international collaboration on cyber security, what aspects of cyber Biden should focus on, and ask how the industry can make its voice heard Continue Reading
-
News
11 Feb 2021
Singtel falls prey to supply chain attack
The Singapore telco reveals that its Accellion file sharing system was illegally hacked in a supply chain attack Continue Reading
-
News
10 Feb 2021
Dating app users warned to watch out for scammers
A vast amount of money was lost to romance scammers last year, and with millions of people isolated in lockdown the problem is getting worse, according to a report Continue Reading
- 10 Feb 2021
-
News
10 Feb 2021
HelloKitty almost certainly behind CD Projekt ransomware attack
Theories that the cyber attack on a high-profile gaming studio was orchestrated by players who are disappointed in a videogame are likely wide of the mark, according to analysis Continue Reading
-
News
10 Feb 2021
Sim-swapping crooks targeted celebrities, influencers
Eight arrests have been made in England and Scotland in connection with a series of Sim-swapping attacks targeting high-profile victims Continue Reading
-
Opinion
10 Feb 2021
Security Think Tank: UK well-placed to work with Biden on cyber
As US president Joe Biden sets out his agenda for the next four years, we consider the opportunities for renewed international collaboration on cyber security, what aspects of cyber Biden should focus on, and ask how the industry can make its voice heard Continue Reading
-
News
09 Feb 2021
Facebook sued for data-sharing practices with third parties
Data protection claim filed in London against social media giant for its alleged failure to give at least one million users in England and Wales meaningful control over their personal data Continue Reading
-
News
09 Feb 2021
Government launches review of use of health data for research
The review, which will be led by Ben Goldacre, will look at home-efficient and safe use of health data for research and analysis Continue Reading
-
News
09 Feb 2021
Data breaches are a ticking timebomb for consumers
Damage from data breaches goes far beyond the impact to the target organisation – an obvious fact that is too often overlooked, says F-Secure Continue Reading
-
News
09 Feb 2021
Cyberpunk 2077 developer refuses to pay up after ransomware attack
Polish video game developer CD Projekt has released details of a ransomware attack on its systems Continue Reading
-
News
09 Feb 2021
NHS reports fewer phishing emails in 2020
The NHSmail email service saw a steady decline in suspected phishing emails during the course of 2020 Continue Reading
-
Opinion
09 Feb 2021
Security Think Tank: Biden has a chance to renew cyber alliances
As President Joe Biden sets out his agenda for the next four years, we consider the opportunities for renewed international collaboration on cyber security, what aspects of cyber Biden should focus on, and ask how the industry can make its voice heard? Continue Reading
-
News
08 Feb 2021
Data of thousands of Dutch citizens leaked from government Covid-19 systems
Weak access controls and outdated systems blamed for leaking of the personal details of thousands of Dutch citizens tested for Covid-19 Continue Reading
-
News
05 Feb 2021
EncroChat: Appeal court finds ‘digital phone tapping’ admissible in criminal trials
Appeal Court decides EncroChat-encrypted phone records can be used in criminal trials. Critics say the decision means phone tapping no longer has a ‘clear meaning in the digital age’ Continue Reading
-
News
05 Feb 2021
Google Chrome update to patch serious zero-day
A serious heap buffer overflow vulnerability means Google Chrome users should patch their browsers as soon as possible Continue Reading
-
News
05 Feb 2021
Financial regulatory body bombarded with malicious emails
New disclosures reveal the FCA’s systems bounced almost a quarter of a million malicious emails in a three-month period Continue Reading
-
News
05 Feb 2021
Security firm Stormshield loses source code in cyber attack
Source code from two products developed by French cyber security firm was compromised in a December 2020 incident Continue Reading
-
News
05 Feb 2021
Denmark and Sweden to issue digital vaccine certificates
Sweden and Denmark announce plans to develop digital certificates that prove people have been vaccinated against Covid-19 Continue Reading
-
News
04 Feb 2021
Woodland Trust hit by cyber attack in December
Conservation charity is investigating what it describes as a ‘sophisticated’ cyber attack but has waited nearly two months to inform its members Continue Reading
-
News
04 Feb 2021
Fraud and cyber crime still vastly under-reported
The scale of digitally enabled crime in the UK is dramatically under-reported, new statistics indicate Continue Reading
-
News
04 Feb 2021
CDEI: Local government data use must keep up Covid momentum
The Centre for Data Ethics and Innovation says momentum in local authority data use during the Covid-19 pandemic is in danger of being dissipated without central government investment and support for data skills development Continue Reading
-
News
03 Feb 2021
Foxtons rejects claims of slow reaction to data leak
Investigators have unearthed 16,000 data records that seem to have been stolen in an attack on property firm Foxtons last year, but the organisation says it acted by the book in dealing with the incident Continue Reading
-
News
03 Feb 2021
‘Classic’ Cerber ransomware targets health sector in high volumes
Cerber ransomware-as-a-service seems to have re-emerged as one of the most critical cyber threats facing healthcare organisations, reports VMware Carbon Black Continue Reading
-
News
01 Feb 2021
UKRI suspends services after ransomware attack
UK Research and Innovation was hit by an undisclosed strain of ransomware at the end of January Continue Reading
-
News
01 Feb 2021
‘Victory for free speech and openness’ after tribunal confirms no territorial restrictions to FOIA
Freedom of information tribunal rules that investigative journalists and others can use the Freedom of Information Act if they live outside the UK or are not British citizens Continue Reading
-
News
31 Jan 2021
Indian firms see growing value of data
Half of Indian IT leaders see a permanent increase in value of data as their organisations come under threat from mounting cyber attacks amid the pandemic Continue Reading
-
News
29 Jan 2021
Hunting and anti-hunting groups locked in tit-for-tat row over data gathering
The leaking of internal documents has prompted a row between pro- and anti-hunting groups about the legality of the other’s data collection practices Continue Reading
-
News
29 Jan 2021
Biometrics ethics group addresses public-private use of facial recognition
Home Office’s Biometrics and Forensics Ethics Group releases briefing note on the use of live facial recognition in public–private collaborations following a year-long investigation Continue Reading
-
News
27 Jan 2021
Pandemic response has improved privacy posture, says Cisco
Data privacy seems to be ‘coming of age’ to some extent and organisational responses to Covid-19 may be partly responsible, according to a report Continue Reading
-
News
27 Jan 2021
Mimecast breach was work of SolarWinds attackers
Mimecast’s investigation into a January 2021 breach of its systems turns up evidence that the culprit was the same group that targeted SolarWinds in December Continue Reading
-
News
27 Jan 2021
Emotet botnet goes offline as cops seize servers
The Emotet botnet has been disrupted and knocked offline after a major international effort by law enforcement Continue Reading
-
News
27 Jan 2021
Grindr complaint results in €9.6m GDPR fine
Norway’s data protection authority plans to apply a fine totalling 10% of LGBTQ+ dating app Grindr’s revenues over its data sharing practices Continue Reading
-
News
27 Jan 2021
Emergency Apple updates patch exploited zero-days
Three vulnerabilities could give attackers full control of their target Apple devices, and must be patched immediately Continue Reading
-
Opinion
26 Jan 2021
The ransomware routine: pages from the Secret IR Insider’s diary
The Secret Incident Response Insider shares behind-the-scenes stories of what really happens after organisations are hit by cyber attacks – and shows how they could have been avoided Continue Reading
-
News
26 Jan 2021
Conservatives broke data law to racially profile millions
The Conservative Party acted illegally in collecting data that inferred voters’ ethnicity and religious background, a Select Committee has heard Continue Reading
-
News
26 Jan 2021
North Korean state attacks legitimate security researchers
Threat researchers specialising in vulnerability research and development appear to be being targeted by a North Korean state-backed group Continue Reading
-
Blog Post
26 Jan 2021
Juggling data silos, privacy and fraud
Among the uncomfortable truths about the government’s response to the pandemic is the fact that some people have and will continue to play the system. At the time it was introduced, the furlough ... Continue Reading
-
News
26 Jan 2021
ICO extends commissioner Denham’s term of office
Extension of Elizabeth Denham’s tenure as information commissioner will give the government more time to appoint her successor Continue Reading
-
News
26 Jan 2021
Cyber fraud a national security issue, says Rusi report
A report from the Rusi think tank calls for fresh approaches to how we think about fighting fraud Continue Reading
-
E-Zine
26 Jan 2021
Salad as a service: How tech could revolutionise farming
In this week’s Computer Weekly, we find out how new technologies are supporting the rise of vertical farming, and could revolutionise food supply chains. We examine one of the biggest trends in the cloud – serverless computing. And Brexit has not yet ended the debate about UK-EU data protection. Read the issue now. Continue Reading
-
News
25 Jan 2021
Cracking the message in a bottle
Between 2016 and 2019, a number of bottles washed ashore in Hamburg, each containing an ‘uncrackable’ message Continue Reading
-
News
22 Jan 2021
ICO resumes adtech investigation
The UK Information Commissioner’s Office was criticised for ending its investigation into alleged malpractice in advertising technology, but has now resumed its probe Continue Reading
-
News
22 Jan 2021
Sepa data leaks as agency resists ransom demands
The Scottish Environment Protection Agency is resisting extortion demands from a ransomware gang, but has suffered a data leak in retaliation Continue Reading
-
News
22 Jan 2021
Google threatens to cut off Australia
Google’s threat to end its Australian Search operation comes in the face of new legislation that would force it to pay media publishers for news content Continue Reading
-
News
21 Jan 2021
Immigration exemption in data protection law faces further legal challenge
Human rights groups set to take legal challenge against immigration exemption to Court of Appeal on the basis that everyone, regardless of their nationality or residence, should have their fundamental rights and freedoms protected as stated in the GDPR Continue Reading
-
News
21 Jan 2021
Gamarue malware found on government-issued school laptops
Devices handed out by the government to support vulnerable children contain malware that appears to be contacting C2 infrastructure in Russia Continue Reading
-
Feature
21 Jan 2021
How can healthcare organisations fight increased cyber crime in 2021?
As the Covid-19 pandemic enters what may be its most dangerous phase, we explore how healthcare organisations can ward off cyber threats while preserving their ability to deliver critical care Continue Reading
-
News
21 Jan 2021
Interview: Tony Porter, chief privacy officer, Corsight AI
Tony Porter speaks to Computer Weekly about the changes in facial-recognition during his time as surveillance camera commissioner, the ethics of using the technology, and his new role as chief privacy officer at Corsight AI Continue Reading
-
News
21 Jan 2021
Incompetent cyber criminals leak data in opsec failure
Even cyber criminals need to pay attention to their information security posture, as this cautionary tale uncovered by Check Point reveals Continue Reading
-
News
19 Jan 2021
UK fraud agency deploys ArcGIS dashboard for data sharing
The National Fraud Intelligence Bureau says it has achieved improved transparency with the public, as well as saving 3,500 staff hours and £100,000 Continue Reading
-
News
19 Jan 2021
Value of GDPR fines shows dramatic increase in 2020
European regulators imposed almost €160m worth of fines during the past 12 months, a substantial rise Continue Reading
-
News
19 Jan 2021
Criminals fiddled stolen Covid-19 vaccine data to damage trust
Malicious actors manipulated stolen Covid-19 data in a way clearly intended to damage public trust in vaccines, says the EMA Continue Reading
-
Opinion
19 Jan 2021
Security Think Tank: In 2021, enable, empower and entrust your users
After a year of unprecedented disruption thanks to Covid-19, it looks like remote working is set to remain with us for now, which means security strategies will change in 2021. What will this change look like, and what tools and services will be selling like hot cakes? Continue Reading
-
News
19 Jan 2021
MAS offers guidance on mitigating supply chain threats
Monetary Authority of Singapore revises its technology risk management guidelines to help the financial sector guard against supply chain attacks Continue Reading
-
News
18 Jan 2021
MoD reports 18% rise in data loss incidents
The Ministry of Defence reported more than five hundred data security incidents in 2019-20, with seven serious enough to warrant disclosure to the ICO Continue Reading
-
News
18 Jan 2021
Australians lost A$176m to scams in 2020
Investment scams topped the list of scams, which grew by 23.1% in 2020 as criminals exploited human psychology using social engineering Continue Reading
-
News
15 Jan 2021
150,000 records accidentally wiped from police systems
Home Office claims data wiped from national police systems only relates to people who have never been convicted of a crime or had further police action taken against them following an arrest Continue Reading
-
News
15 Jan 2021
Coalition proposes secure standard model for Covid-19 passports
Vaccination Credential Initiative is working to ensure that people vaccinated against Covid-19 can access their records in a secure, verifiable and privacy-preserving way Continue Reading
-
News
14 Jan 2021
All EU states can take data protection cases against Facebook, says EU court
An opinion from the European Court of Justice has the potential to lead to a flood of privacy complaints against Facebook if upheld Continue Reading
-
News
14 Jan 2021
Old, on-premise systems targeted in Hackney ransomware attack
Council reveals some more insight into how the Pysa ransomware gang infiltrated its systems by exploiting legacy technology Continue Reading