Security policy and user awareness
-
News
06 Mar 2026
Scattered Spider attack on TfL affected 10 million people
The 2024 Scattered Spider attack on Transport for London affected approximately 10 million people, many of whom remain blissfully unaware their data was compromised Continue Reading
-
News
04 Mar 2026
Iranian hacktivists muster their forces but state APTs lay low
Hacktivist activity surrounding the Iran war is sky-high but Iran’s state-backed cyber espionage actors have yet to show their hands, giving security teams a valuable window of time to shore up their defences Continue Reading
-
News
04 Mar 2026
Zero-day in Android phone chips under active attack
Google and Qualcomm have tag-teamed a serious vulnerability in the chipsets used in Android mobile devices, which has been exploited in the wild as a zero-day Continue Reading
-
News
04 Mar 2026
Tycoon2FA phishing platform dismantled in major operation
A Europol-led sting against the infamous Tycoon2FA MFA bypass phishing service has been successful, with operations disrupted and ringleaders and cyber criminal users identified Continue Reading
-
News
03 Mar 2026
NCSC: No increase in cyber threat from Iran, but be prepared
While cyber threat levels remain stable following the outbreak of war in the Middle East at the weekend, at-risk organisations in the UK should take steps to ward off potential reprisals from Iran-linked threat actors Continue Reading
-
News
26 Feb 2026
CrowdStrike touts agentic SOC to tackle security woes
By embedding AI agents across its platform, CrowdStrike is looking to help security teams automate repetitive security tasks, enabling them to focus on complex and stealthier threats that could slip under the radar Continue Reading
-
News
25 Feb 2026
Cisco Catalyst SD-WAN users targeted in series of cyber attacks
The NCSC, Cisa, and other Five Eyes agencies have warned of mass exploitation of vulnerabilities in Cisco Catalyst SD-WAN, which Cisco is attributing to an unknown threat actor called UAT-8616 Continue Reading
-
News
25 Feb 2026
Application exploitation back in vogue, says IBM cyber unit
IBM’s X-Force unit observes an uptick in the exploitation of vulnerable public-facing software applications Continue Reading
-
News
25 Feb 2026
How AI code generation is pushing DevSecOps to machine speed
Organisations should adopt shared platforms and automated governance to keep pace with the growing use of generative AI tools that are helping developers produce code at unprecedented volumes Continue Reading
-
News
24 Feb 2026
Cyber association launches code of conduct for security pros
ISC2’s Code of Professional Conduct will supposedly establish a worldwide framework dedicated to principled and ethical practices in the security trade Continue Reading
-
News
23 Feb 2026
Why crypto agility is key to quantum readiness
With quantum computing threatening current encryption standards, experts call for organisations to achieve crypto agility by managing the lifecycle of certificates and cryptographic keys through automation Continue Reading
-
Opinion
19 Feb 2026
The year that speed changed cyber security
At a time when threat actors are operating at machine speed, understanding which essential systems are needed to keep the lights on can be the difference between business continuity and existential crisis Continue Reading
-
News
18 Feb 2026
Flaws in Google and Microsoft products added to Cisa catalogue
Cisa has added six CVEs to its Kev catalogue this week, including newly disclosed issues in Google Chromium and Dell RecoverPoint for Virtual Machines, and some older flaws as well Continue Reading
-
Opinion
18 Feb 2026
Generative and agentic AI in security: What CISOs need to know
AI is introducing new risks that existing evaluation and governance approaches were never designed to manage, creating a widening gap between what AI-backed security tools promise and what can be realistically controlled. Continue Reading
-
News
17 Feb 2026
Western cyber alliances risk fragmenting in new world order
The conduct of powerful nations is causing knock-on effects in the cyber world as long-standing security frameworks appear increasingly precarious Continue Reading
-
Feature
17 Feb 2026
The evolution of threat research: Looking beyond best-of-breed
Traditional models of threat research as a service are changing and evolving towards a more bespoke model that puts more control in the hands of end-user cyber teams Continue Reading
-
News
17 Feb 2026
Government wages cyber campaign as half the UK’s SMEs are breached
UK government says half of all small businesses have been cyber breached in the recent past as it urges them to ‘lock the door’ Continue Reading
-
E-Zine
17 Feb 2026
Charities turn to tech for greater impact
The fallout from the Post Office scandal is a recurring theme of reporting for Computer Weekly, and in this week’s ezine, we find out how the organisation’s efforts to address the shortcomings of its Horizon software have resulted in it being hit with a multimillion-pound IR35-related tax bill. We also sit down with Checkout.com CTO Mariano Albera to find out how he’s applying his knowledge of e-commerce to the finance sector, and why coding will always have a special place in his heart. In the third and final instalment of the AI security buyer’s guide, we take a look at how the technology can both help and hinder enterprise IT security strategies. And, rounding out the issue, we find out how five different charities are using CRM and digital experience technologies to bolster donations. Read the issue now. Continue Reading
-
Feature
16 Feb 2026
Making sense of AI’s role in cyber security
Cyber security companies have jumped on the AI bandwagon. We look at where artificial intelligence is a useful add-on and where it poses potential risks Continue Reading
-
News
11 Feb 2026
The Security Interviews: Mick Baccio, Splunk
Mick Baccio, global security advisor at Splunk SURGe and Cisco Foundation AI, reveals how the experience of running cyber on a dime for a US presidential campaign has informed how he does security, and why the basics still matter Continue Reading
-
News
10 Feb 2026
February Patch Tuesday: Microsoft drops six zero-days
Microsoft releases patches for six zero-day flaws in its latest monthly update, many of them related to security feature bypass issues Continue Reading
-
Opinion
10 Feb 2026
How GenAI is breaking traditional cyber security awareness tactics
With threat actors exploiting the growing use of generative AI tools and the prevalence of shadow AI, organisations must strengthen their security programmes and culture to manage the rising risk Continue Reading
-
News
09 Feb 2026
As space gets crowded, cyber threats from jamming to stalker satellites loom large
Experts at the inaugural CYSAT Asia in Singapore warn of the urgency of securing space assets amid growing geopolitical tensions and supply chain vulnerabilities Continue Reading
-
Opinion
04 Feb 2026
Smaller, safer AI models may be key to unlocking business value
While AI presents a significant opportunity to further the way we do business, what if it’s time to consider a new direction? What if the safest and most effective path for AI isn’t to go larger, but smaller instead? Continue Reading
-
News
04 Feb 2026
UK government must get its hands dirty on security, report says
As the UK government develops its National Cyber Action Plan, a report from the Rusi think tank urges Westminster to take a more interventionist approach Continue Reading
-
News
02 Feb 2026
Canva uses 1Password to secure ID during growth phase
As it underwent a growth spurt in the early 2020s, graphic design platform Canva turned to 1Password to manage identity across its expanding organisation Continue Reading
-
News
02 Feb 2026
Interview: Why identity is the nucleus for cyber security
Amid a wave of market consolidation, Computer Weekly speaks to Keeper Security’s leadership on how identity and access management systems are becoming unified identity platforms capable of securing both human and machine identities Continue Reading
-
Blog Post
30 Jan 2026
The role of AI in cybersecurity
For years, anti-virus tools have used behavioural analysis and machine learning to identify rogue programs and unusual user activity. And as the tools evolved from simple pattern matching machines ... Continue Reading
-
News
29 Jan 2026
RAMP ransomware forum goes dark in probable FBI sting
RAMP, an infamous Russian-speaking cyber crime forum, has gone off the air after an apparent US operation Continue Reading
-
News
27 Jan 2026
Wave of ShinyHunters vishing attacks spreading fast
The ShinyHunters hacking collective that caused chaos in 2025 is ramping up a new voice phishing campaign, with several potential victims already identified Continue Reading
-
Opinion
26 Jan 2026
AI claims are cheap: The challenge is to work out what's real
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around AI and figure out which AI cyber use cases are worth a look, and which are just hype. Continue Reading
-
Blog Post
25 Jan 2026
What is the objective of the Cyber Security and Resilience Bill?
Organisations need to demonstrate not just how much they are spending to improve their security but that they are spending it effectively. They should report annually to regulators on how their ... Continue Reading
-
News
23 Jan 2026
US punts renewal of threat data sharing law to September
US lawmakers have extended the Cybersecurity Information Sharing Act of 2015 for another nine months, buying time to enact a replacement for the legislation. Continue Reading
-
News
23 Jan 2026
Singapore debuts world’s first governance framework for agentic AI
The Infocomm Media Development Authority has released a guide to help enterprises deploy artificial intelligence agents safely and address specific risks such as unauthorised actions and automation bias Continue Reading
-
News
21 Jan 2026
UK and China reach out across cyber no-man's land
London and Beijing have supposedly conducted high-level talks seeking to establish a joint security forum to help de-escalate potential cyber flashpoints, according to reports Continue Reading
-
Opinion
20 Jan 2026
Why organisations must block AI browsers – for now
AI browsers can improve employee productivity through autonomous workflows, but their security flaws and data leakage risks can expose enterprises to critical cyber threats Continue Reading
-
News
15 Jan 2026
Cyber body ISC2 signs on as UK software security ambassador
Professional cyber association ISC2 pledges support to UK government’s Software Security Ambassador scheme, part of the recently unveiled Cyber Action Plan Continue Reading
-
News
13 Jan 2026
Microsoft patches 112 CVEs on first Patch Tuesday of 2026
January brings a larger-than-of-late Patch Tuesday update out of Redmond, but an uptick in disclosures is often expected at this time of year Continue Reading
-
News
13 Jan 2026
‘Dual-channel’ attacks are the new face of BEC in 2026
Business email compromise remains a significant threat as cyber fraudsters deploy a more diverse range of tactics against their potential victims, according to a report Continue Reading
-
Opinion
13 Jan 2026
Cutting through the noise: SaaS accelerators vs. enterprise AI
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around AI and figure out which AI cyber use cases are worth a look, and which are just hype. Continue Reading
-
News
12 Jan 2026
Business leaders see AI risks and fraud outpacing ransomware, says WEF
C-suite executives are more concerned with risks arising from AI vulnerabilities and cyber fraud than ransomware, according to the World Economic Forum Continue Reading
-
News
12 Jan 2026
Intersec Dubai highlights why AI has become critical in the race against cyber attackers
Cigna Healthcare’s Jean Wiles warns that healthcare security teams must act faster without sacrificing accuracy or compliance as threats driven by artificial intelligence scale Continue Reading
-
News
09 Jan 2026
Agentic AI requires rethink of cloud security strategy
Security leaders discuss the rise of agentic AI, warning that autonomous agents operating at machine speed will require organisations to move away from static protection towards behavioural monitoring and automated reasoning Continue Reading
-
News
08 Jan 2026
Personal data of thousands stolen in attack on London councils
The West London council at the centre of a major cyber incident has now started the process of informing residents that their personal data was compromised in the attack Continue Reading
-
News
08 Jan 2026
Like it or not, AI will transform cyber strategy in 2026
Bubble or no bubble, from cyber skills to defensive strategies to governance, risk and compliance, artificial intelligence will remake the cyber world in 2026 Continue Reading
-
Opinion
08 Jan 2026
Security Think Tank: Stop buying AI, start buying outcomes
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around artificial intelligence and figure out which AI cyber use cases are worth a look, and which are just hype Continue Reading
-
News
05 Jan 2026
UK government to spend £210m on public sector cyber resilience
The UK government unveils a £120m Cyber Action Plan to help reinforce and promote IT security resilience across the country's public services Continue Reading
-
News
29 Dec 2025
Top 10 cyber security stories of 2025
AI dominated all tech conversations this year, but the concerns of cyber security professionals extend far beyond. From remote work to supply chains, quantum to identity, there were plenty of other topics for the industry to chew over in 2025. Continue Reading
-
News
18 Dec 2025
Fortinet vulnerabilities prompt pre-holiday warnings
Analysts track exploitation of two vulnerabilities disclosed last week by Fortinet Continue Reading
-
Opinion
18 Dec 2025
Passwords to prompts: Identity and AI redefined cyber in 2025
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
18 Dec 2025
AI safeguards improving, says UK government-backed body
Inaugural AI Security Institute report claims that safeguards in place to ensure AI models behave as intended seem to be improving Continue Reading
-
News
17 Dec 2025
ClickFix attacks that bypass cyber controls on the rise
NCC’s monthly threat report details the growing prevalence of ClickFix attacks in the wild Continue Reading
-
Opinion
17 Dec 2025
Security platform consolidation in 2026: The AI imperative
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
15 Dec 2025
The three cyber trends that will define 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
15 Dec 2025
In cyber security, basics matter, even in 2025
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
15 Dec 2025
What is driving the rise of infostealer malware?
Infostealer malware is a growing problem for cyber security teams, and these attacks have the potential to cause significant damage to businesses. What is enabling them to thrive? Continue Reading
-
Opinion
12 Dec 2025
Quantum risk to quantum readiness: A PQC roadmap
No one knows exactly when quantum computing will arrive, but accelerating progress is prompting security and IT leaders to recognise the potential risks. So how do organisations begin implementing post-quantum cryptography? Continue Reading
-
Opinion
12 Dec 2025
What lies in store for cyber security skills in 2026?
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
10 Dec 2025
Security pros should prepare for tough questions on AI in 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
08 Dec 2025
NCSC warns of confusion over true nature of AI prompt injection
Malicious prompt injections to manipulate GenAI large language models are being wrongly compared to classical SQL injection attacks. In reality, prompt injection may be a far worse problem, says the UK’s NCSC Continue Reading
-
Opinion
04 Dec 2025
From trust to turbulence: Cyber's road ahead in 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
04 Dec 2025
NCC supporting London councils gripped by cyber attacks
Three west London councils hit by a cyber attack continue to investigate as services remain disrupted nearly two weeks on Continue Reading
-
Feature
04 Dec 2025
In an AI-first world, the future of cyber security is its workforce
The cyber security industry will experience immense change due to AI by 2030, so both employers and professionals need to grasp the nettle, and quickly, if they are to have the right skills and experience in place to succeed Continue Reading
-
Opinion
03 Dec 2025
In 2026, collaboration, honesty and humility in cyber are key
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
03 Dec 2025
UK government pledges to rewrite Computer Misuse Act
Campaigners celebrate as security minister Dan Jarvis commits to amending the outdated Computer Misuse Act to protect security professionals from prosecution Continue Reading
-
News
03 Dec 2025
UK national security strategy failing to account for online world
The UK government’s national security strategy is falling short on online matters, according to the independent reviewer of terrorism Continue Reading
-
News
03 Dec 2025
Post Office avoids £1m fine over botched website upgrade data breach
The Information Commissioner’s Office considered fining the Post Office £1m for a 2024 data breach that let subpostmasters down again Continue Reading
-
News
03 Dec 2025
Women in Cybersecurity Middle East marks five years of impact at Black Hat MEA
As AI reshapes the regional cyber security landscape, diversity and skills development remain at the heart of building a resilient digital workforce Continue Reading
-
Opinion
02 Dec 2025
UK's Cyber Bill should be just one part of a wider effort
New cyber legislation is necessary but a wider effort is needed to harden the UK's security and resilience. Continue Reading
-
Opinion
02 Dec 2025
Cyber's defining lessons of 2025, and what comes next
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Feature
02 Dec 2025
Inserting AI into cyber awareness
As industry looks to grasp the use of AI and automated features, how are security suppliers facing the challenge of adding these capabilities to their products and services? We talked to one provider to find out Continue Reading
-
Opinion
01 Dec 2025
What lies in store for the security world in 2026?
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
01 Dec 2025
How headlines can drive change in cyber security
Big news stories can shift attitudes. There’s no doubt that insurance vendors and brokers are using major cyber attacks to promote their products, but can security teams also use it to help their businesses be better prepared? Continue Reading
-
News
26 Nov 2025
US breach reinforces need to plug third-party security weaknesses
Cyber breach at US financial sector tech provider highlights the risk of third-party vulnerabilities in finance ecosystems Continue Reading
-
Opinion
21 Nov 2025
Protecting the defenders: Addressing cyber's burnout crisis
The Computer Weekly Security Think Tank considers the burdens and responsibilities that accompany the role of chief information security officer, and share guidance on how to navigate a challenging career path. Continue Reading
-
News
20 Nov 2025
UK targets ‘bulletproof’ services that hosted ransomware gangs
The UK’s NCA and partners have cracked down on ‘bulletproof’ services that hosted cyber criminal infrastructure Continue Reading
-
News
19 Nov 2025
EU sets out plans to cut red tape on digital
Changes have been proposed to simplify AI Act compliance for smaller businesses, easier cyber security reporting and tweaks to GDPR Continue Reading
-
News
19 Nov 2025
UAE to launch first space-to-ground quantum communication network
Technology Innovation Institute and Space42 unveil a collaboration at the Dubai Airshow to deliver the UAE’s first space-enabled quantum communication network, strengthening national cyber resilience and advancing sovereign leadership in next-generation secure infrastructure Continue Reading
-
News
18 Nov 2025
Ransomware resilience may be improving in the health sector
A Sophos report on ransomware highlights resilience improvements among healthcare organisations but warns that the wider threat is still live and growing Continue Reading
-
News
18 Nov 2025
Fintech leaders call for united front against AI-driven cyber crime
As AI makes financial scams more personalised and convincing, fintech experts have called for deeper collaboration and the use of behavioural analytics and other technologies to protect consumers Continue Reading
-
News
12 Nov 2025
US cyber intel sharing law set for temporary extension
The CISA 2015 cyber intelligence sharing law, which lapsed just over a month ago amid a wider shutdown, will receive a temporary lease of life should attempts to reopen the federal government succeed Continue Reading
-
News
12 Nov 2025
Microsoft users warned over privilege elevation flaw
An elevation of privilege vulnerability in Windows Kernel tops the list of issues to address in the latest monthly Patch Tuesday update Continue Reading
-
Opinion
07 Nov 2025
Resilience for resilience: Managing burnout among cyber leaders
The Computer Weekly Security Think Tank considers the burdens and responsibilities that accompany the role of chief information security officer, and share guidance on how to navigate a challenging career path. Continue Reading
-
News
07 Nov 2025
How Palo Alto Networks is leveraging AI
Palo Alto Networks CIO Meerah Rajavel explains how the company is using AI to sieve through 90 billion security events a day, and why security and user experience are two sides of the same coin Continue Reading
-
Opinion
06 Nov 2025
We need to build psychological readiness into cyber security
The Computer Weekly Security Think Tank considers the burdens and responsibilities that accompany the role of chief information security officer, and share guidance on how to navigate a challenging career path. Continue Reading
-
News
05 Nov 2025
Darktrace: Developer tools under constant attack
Attackers are using automated tools to target development environments within seconds of them going live, warns Darktrace’s global field chief information security officer Continue Reading
-
Opinion
05 Nov 2025
CISO burnout: A crisis of expectation and isolation
The Computer Weekly Security Think Tank considers the burdens and responsibilities that accompany the role of chief information security officer, and share guidance on how to navigate a challenging career path. Continue Reading
-
News
05 Nov 2025
Dutch boardroom cyber security knowledge gap exposed
Cyber security governance professor warns that executives lack the capability to assess cyber threats in implementation approaches Continue Reading
-
News
04 Nov 2025
The Security Interviews: Colin Mahony, CEO, Recorded Future
Recorded Future’s CEO talks threat intelligence, AI in cyber security and the ever-changing cyber threat landscape Continue Reading
-
News
04 Nov 2025
Fewer data breaches in Australia, but human error now a bigger threat
Australian privacy commissioner warns that the human factor is a growing threat as notifications caused by staff mistakes rose significantly even as total breaches declined 10% from a record high Continue Reading
-
Opinion
03 Nov 2025
CISOs in court: Balancing cyber resilience and legal accountability
The Computer Weekly Security Think Tank considers the burdens and responsibilities that accompany the role of chief information security officer, and share guidance on how to navigate a challenging career path. Continue Reading
-
News
31 Oct 2025
European governments opt for open source alternatives to Big Tech encrypted communications
European governments are rolling out decentralised secure messaging and collaboration services as they seek to reduce their reliance on Big Tech companies Continue Reading
-
News
31 Oct 2025
Cyber agencies co-sign Exchange Server security guide
US and allied cyber agencies team up to try to nudge users to pay more attention to securing Microsoft Exchange Server Continue Reading
-
Opinion
31 Oct 2025
Ransomware resilience: It’s time to be ‘more Bruce Lee’
The growing threat of ransomware attacks requires cyber to evolve from a defensive posture to being increasingly proactive. Building threat intel can enable this, helping better predict, prioritise and prevent ransomware attacks. Continue Reading
-
Opinion
31 Oct 2025
Why asset visibility matters in industrial cyber security
Industrial organisations face rising operational security cyber threats. Asset visibility is vital for defence - without knowing what’s connected, organisations are risk blind Continue Reading
-
News
30 Oct 2025
Yubico bolsters APAC presence, touts device subscriptions
Yubico is hiring local teams in Singapore and pitching its subscription service to help enterprises secure employee access to corporate networks and applications Continue Reading
-
News
29 Oct 2025
Scope of US state-level privacy laws expands rapidly in 2025
Nine state-level data protection laws have come into force in the US this year, and three more are slated for January 2026. Navigating this complex landscape is becoming a challenge Continue Reading
-
News
28 Oct 2025
Effective cyber sanctions require a joined-up approach, says Rusi
Calling out and sanctioning cyber threat actors can be an effective tool, but is not a universal panacea, and needs to be considered as part of a wider, strategic approach, say Rusi think tank analysts Continue Reading
-
News
27 Oct 2025
LockBit 5.0 expands targeting amid ransomware escalation
The LockBit RaaS operation is back in action, with technical features and expanded targeting, and is contributing to a steadily growing number of ransomware attacks Continue Reading
-
News
24 Oct 2025
UK ramps up ransomware fightback with supply chain security guide
Multinational guidance, developed by the UK and Singapore, is designed to help organisations reinforce their supply chain against ransomware attacks Continue Reading
-
News
23 Oct 2025
Amid CISA cuts, US state launches first VDP
Legislators in Annapolis, Maryland, have teamed up with Bugcrowd to launch a statewide vulnerability disclosure programme Continue Reading
-
Quiz
23 Oct 2025
Cybersecurity awareness quiz: Questions and answers
From phishing to patching, file sharing to MFA, find out how much you know about preventing cybersecurity incidents in this security awareness training quiz. Continue Reading