Security policy and user awareness
-
News
25 Mar 2026
US government launches Bureau of Emerging Threats
The US’ Bureau of Emerging Threats sits within the State Department and will supposedly help address national security threats arising from cyber attacks, the weaponisation of space and other emerging technologies Continue Reading
-
News
25 Mar 2026
Google targets 2029 for post-quantum cyber readiness
Google sets out a timeline for its migration to post-quantum cryptography, saying it will complete its migration before the end of the 2020s Continue Reading
-
Opinion
25 Mar 2026
Platformisation or platform theatre? Navigating cyber consolidation
The Security Think Tank looks at platformisation, considering questions such as how CISOs can distinguish between a truly integrated platform and 'integration theater, and how to protect unified platforms. Continue Reading
-
News
25 Mar 2026
Why AI agents are one prompt away from ransomware
As AI adoption advances beyond chatbots, security leaders are up against rogue AI agents mirroring threat actors and a generational skills gap as security operations teams become overly dependent on AI Continue Reading
-
News
24 Mar 2026
Cyber pros must grasp the vibe coding nettle, says NCSC chief
At RSA in San Francisco, NCSC chief exec Richard Horne says security professionals have an opportunity and a responsibility to get in front of the security issues raised by the popularity of ‘vibe coding’ Continue Reading
-
News
24 Mar 2026
US government bans imported routers, raising tough questions
The US communications regulator has enacted a ban on all router hardware made outside America citing security concerns, but experts say the move may risk creating more issues than it solves Continue Reading
-
Opinion
24 Mar 2026
Cyber platformisation is a skills issue for security teams
The Security Think Tank looks at platformisation, considering questions such as how CISOs can distinguish between a truly integrated platform and 'integration theater, and how to protect unified platforms. Continue Reading
-
News
23 Mar 2026
Irish government launches CNI resilience plan
Ireland’s National Strategy on the Resilience of Critical Entities sets out a pathway to improved cyber resilience for the nation’s critical infrastructure, and establishes compliance with an EU directive Continue Reading
-
News
20 Mar 2026
UK Cyber Monitoring Centre plans expansion in US amid risk of Category 5 attack
Organisations lulled into a false sense of security after Russian invasion of Ukraine are still at risk of a Category 5 attack in 2026 Continue Reading
-
News
19 Mar 2026
Cisa tells US organisations to harden endpoint management after Stryker attack
Last week’s cyber attack on the systems of a US medical services company by Iranian hacktivists has prompted an alert from Cisa, urging organisations to reinforce their defensive posture Continue Reading
-
News
19 Mar 2026
Gartner: Ditch ‘big transformation’ cyber strategies for continuous improvement
As artificial intelligence reshapes the enterprise, CISOs must abandon risky big bang security transformation initiatives in favour of incremental changes to build cyber resilience Continue Reading
-
News
19 Mar 2026
Apple issues first Background patch for WebKit browser flaw
Apple’s first ever Background Security Update fixes a WebKit browser engine bug that could enable threat actors to see and steal important data from their victims Continue Reading
-
News
17 Mar 2026
Digital IDs edge closer to practical reality for UK businesses
Industries and policymakers are strongly aligned on the need for digital company IDs for UK businesses, as progress is made towards the implementation of a practical standard Continue Reading
-
Blog Post
17 Mar 2026
UK Digital Identity Policy - Issues, Choices and Questions in 850 words
How do we ensure that UK ID policy is effective and meaningful? 850 words, with 14 key actions and 12 foundational questions that need to be answered before moving forward on the introduction of a ... Continue Reading
-
Opinion
17 Mar 2026
Beyond integration theatre: Building stronger cyber platforms
The Security Think Tank looks at platformisation, considering questions such as how CISOs can distinguish between a truly integrated platform and 'integration theater, and how to protect unified platforms. Continue Reading
-
News
11 Mar 2026
Cyber industry welcomes women, but challenges persist
Three-quarters of women working in security say they feel comfortable in the field, but women are still much more likely to be laid off and face persistent challenges around career advancement, according to a report Continue Reading
-
News
11 Mar 2026
Welsh government boosts funding for cyber education
The Welsh government’s Tech Valleys programme is providing three-quarters of a million pounds to help reach thousands of primary school children with security education and careers guidance Continue Reading
-
News
10 Mar 2026
Microsoft patches zero-days in .NET and SQL Server
Zero-days in .NET and SQL Server, and a handful of critical RCE bugs, form the nucleus of Microsoft’s March Patch Tuesday update Continue Reading
-
News
10 Mar 2026
WA auditor general flags weak Microsoft 365 security controls across state entities
Western Australia’s Office of the Auditor General has uncovered weaknesses in M365 configurations across seven government agencies, leading to compromised accounts and data breaches Continue Reading
-
News
09 Mar 2026
UK to launch cyber fraud squad in April
The UK’s Online Crime Centre, launching next month, will bring together government, police, intelligence agencies, banks, mobile networks and tech firms to take coordinated action against cyber fraud Continue Reading
-
News
09 Mar 2026
Trump looks to power up post-quantum, AI security
The US has unveiled a six-pillar national cyber security strategy, with developing technological areas such as post-quantum cryptography and artificial intelligence front and centre Continue Reading
-
News
06 Mar 2026
Scattered Spider attack on TfL affected 10 million people
The 2024 Scattered Spider attack on Transport for London affected approximately 10 million people, many of whom remain blissfully unaware their data was compromised Continue Reading
-
News
04 Mar 2026
Iranian hacktivists muster their forces but state APTs lay low
Hacktivist activity surrounding the Iran war is sky-high but Iran’s state-backed cyber espionage actors have yet to show their hands, giving security teams a valuable window of time to shore up their defences Continue Reading
-
News
04 Mar 2026
Zero-day in Android phone chips under active attack
Google and Qualcomm have tag-teamed a serious vulnerability in the chipsets used in Android mobile devices, which has been exploited in the wild as a zero-day Continue Reading
-
News
04 Mar 2026
Tycoon2FA phishing platform dismantled in major operation
A Europol-led sting against the infamous Tycoon2FA MFA bypass phishing service has been successful, with operations disrupted and ringleaders and cyber criminal users identified Continue Reading
-
News
03 Mar 2026
NCSC: No increase in cyber threat from Iran, but be prepared
While cyber threat levels remain stable following the outbreak of war in the Middle East at the weekend, at-risk organisations in the UK should take steps to ward off potential reprisals from Iran-linked threat actors Continue Reading
-
News
26 Feb 2026
CrowdStrike touts agentic SOC to tackle security woes
By embedding AI agents across its platform, CrowdStrike is looking to help security teams automate repetitive security tasks, enabling them to focus on complex and stealthier threats that could slip under the radar Continue Reading
-
News
25 Feb 2026
Cisco Catalyst SD-WAN users targeted in series of cyber attacks
The NCSC, Cisa, and other Five Eyes agencies have warned of mass exploitation of vulnerabilities in Cisco Catalyst SD-WAN, which Cisco is attributing to an unknown threat actor called UAT-8616 Continue Reading
-
News
25 Feb 2026
Application exploitation back in vogue, says IBM cyber unit
IBM’s X-Force unit observes an uptick in the exploitation of vulnerable public-facing software applications Continue Reading
-
News
25 Feb 2026
How AI code generation is pushing DevSecOps to machine speed
Organisations should adopt shared platforms and automated governance to keep pace with the growing use of generative AI tools that are helping developers produce code at unprecedented volumes Continue Reading
-
News
24 Feb 2026
Cyber association launches code of conduct for security pros
ISC2’s Code of Professional Conduct will supposedly establish a worldwide framework dedicated to principled and ethical practices in the security trade Continue Reading
-
News
23 Feb 2026
Why crypto agility is key to quantum readiness
With quantum computing threatening current encryption standards, experts call for organisations to achieve crypto agility by managing the lifecycle of certificates and cryptographic keys through automation Continue Reading
-
Opinion
19 Feb 2026
The year that speed changed cyber security
At a time when threat actors are operating at machine speed, understanding which essential systems are needed to keep the lights on can be the difference between business continuity and existential crisis Continue Reading
-
News
18 Feb 2026
Flaws in Google and Microsoft products added to Cisa catalogue
Cisa has added six CVEs to its Kev catalogue this week, including newly disclosed issues in Google Chromium and Dell RecoverPoint for Virtual Machines, and some older flaws as well Continue Reading
-
Opinion
18 Feb 2026
Generative and agentic AI in security: What CISOs need to know
AI is introducing new risks that existing evaluation and governance approaches were never designed to manage, creating a widening gap between what AI-backed security tools promise and what can be realistically controlled. Continue Reading
-
News
17 Feb 2026
Western cyber alliances risk fragmenting in new world order
The conduct of powerful nations is causing knock-on effects in the cyber world as long-standing security frameworks appear increasingly precarious Continue Reading
-
Feature
17 Feb 2026
The evolution of threat research: Looking beyond best-of-breed
Traditional models of threat research as a service are changing and evolving towards a more bespoke model that puts more control in the hands of end-user cyber teams Continue Reading
-
News
17 Feb 2026
Government wages cyber campaign as half the UK’s SMEs are breached
UK government says half of all small businesses have been cyber breached in the recent past as it urges them to ‘lock the door’ Continue Reading
-
E-Zine
17 Feb 2026
Charities turn to tech for greater impact
The fallout from the Post Office scandal is a recurring theme of reporting for Computer Weekly, and in this week’s ezine, we find out how the organisation’s efforts to address the shortcomings of its Horizon software have resulted in it being hit with a multimillion-pound IR35-related tax bill. We also sit down with Checkout.com CTO Mariano Albera to find out how he’s applying his knowledge of e-commerce to the finance sector, and why coding will always have a special place in his heart. In the third and final instalment of the AI security buyer’s guide, we take a look at how the technology can both help and hinder enterprise IT security strategies. And, rounding out the issue, we find out how five different charities are using CRM and digital experience technologies to bolster donations. Read the issue now. Continue Reading
-
Feature
16 Feb 2026
Making sense of AI’s role in cyber security
Cyber security companies have jumped on the AI bandwagon. We look at where artificial intelligence is a useful add-on and where it poses potential risks Continue Reading
-
News
11 Feb 2026
The Security Interviews: Mick Baccio, Splunk
Mick Baccio, global security advisor at Splunk SURGe and Cisco Foundation AI, reveals how the experience of running cyber on a dime for a US presidential campaign has informed how he does security, and why the basics still matter Continue Reading
-
News
10 Feb 2026
February Patch Tuesday: Microsoft drops six zero-days
Microsoft releases patches for six zero-day flaws in its latest monthly update, many of them related to security feature bypass issues Continue Reading
-
Opinion
10 Feb 2026
How GenAI is breaking traditional cyber security awareness tactics
With threat actors exploiting the growing use of generative AI tools and the prevalence of shadow AI, organisations must strengthen their security programmes and culture to manage the rising risk Continue Reading
-
News
09 Feb 2026
As space gets crowded, cyber threats from jamming to stalker satellites loom large
Experts at the inaugural CYSAT Asia in Singapore warn of the urgency of securing space assets amid growing geopolitical tensions and supply chain vulnerabilities Continue Reading
-
Opinion
04 Feb 2026
Smaller, safer AI models may be key to unlocking business value
While AI presents a significant opportunity to further the way we do business, what if it’s time to consider a new direction? What if the safest and most effective path for AI isn’t to go larger, but smaller instead? Continue Reading
-
News
04 Feb 2026
UK government must get its hands dirty on security, report says
As the UK government develops its National Cyber Action Plan, a report from the Rusi think tank urges Westminster to take a more interventionist approach Continue Reading
-
News
02 Feb 2026
Canva uses 1Password to secure ID during growth phase
As it underwent a growth spurt in the early 2020s, graphic design platform Canva turned to 1Password to manage identity across its expanding organisation Continue Reading
-
News
02 Feb 2026
Interview: Why identity is the nucleus for cyber security
Amid a wave of market consolidation, Computer Weekly speaks to Keeper Security’s leadership on how identity and access management systems are becoming unified identity platforms capable of securing both human and machine identities Continue Reading
-
Blog Post
30 Jan 2026
The role of AI in cybersecurity
For years, anti-virus tools have used behavioural analysis and machine learning to identify rogue programs and unusual user activity. And as the tools evolved from simple pattern matching machines ... Continue Reading
-
News
29 Jan 2026
RAMP ransomware forum goes dark in probable FBI sting
RAMP, an infamous Russian-speaking cyber crime forum, has gone off the air after an apparent US operation Continue Reading
-
News
27 Jan 2026
Wave of ShinyHunters vishing attacks spreading fast
The ShinyHunters hacking collective that caused chaos in 2025 is ramping up a new voice phishing campaign, with several potential victims already identified Continue Reading
-
Opinion
26 Jan 2026
AI claims are cheap: The challenge is to work out what's real
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around AI and figure out which AI cyber use cases are worth a look, and which are just hype. Continue Reading
-
Blog Post
25 Jan 2026
What is the objective of the Cyber Security and Resilience Bill?
Organisations need to demonstrate not just how much they are spending to improve their security but that they are spending it effectively. They should report annually to regulators on how their ... Continue Reading
-
News
23 Jan 2026
US punts renewal of threat data sharing law to September
US lawmakers have extended the Cybersecurity Information Sharing Act of 2015 for another nine months, buying time to enact a replacement for the legislation. Continue Reading
-
News
23 Jan 2026
Singapore debuts world’s first governance framework for agentic AI
The Infocomm Media Development Authority has released a guide to help enterprises deploy artificial intelligence agents safely and address specific risks such as unauthorised actions and automation bias Continue Reading
-
News
21 Jan 2026
UK and China reach out across cyber no-man's land
London and Beijing have supposedly conducted high-level talks seeking to establish a joint security forum to help de-escalate potential cyber flashpoints, according to reports Continue Reading
-
Opinion
20 Jan 2026
Why organisations must block AI browsers – for now
AI browsers can improve employee productivity through autonomous workflows, but their security flaws and data leakage risks can expose enterprises to critical cyber threats Continue Reading
-
News
15 Jan 2026
Cyber body ISC2 signs on as UK software security ambassador
Professional cyber association ISC2 pledges support to UK government’s Software Security Ambassador scheme, part of the recently unveiled Cyber Action Plan Continue Reading
-
News
13 Jan 2026
Microsoft patches 112 CVEs on first Patch Tuesday of 2026
January brings a larger-than-of-late Patch Tuesday update out of Redmond, but an uptick in disclosures is often expected at this time of year Continue Reading
-
News
13 Jan 2026
‘Dual-channel’ attacks are the new face of BEC in 2026
Business email compromise remains a significant threat as cyber fraudsters deploy a more diverse range of tactics against their potential victims, according to a report Continue Reading
-
Opinion
13 Jan 2026
Cutting through the noise: SaaS accelerators vs. enterprise AI
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around AI and figure out which AI cyber use cases are worth a look, and which are just hype. Continue Reading
-
News
12 Jan 2026
Business leaders see AI risks and fraud outpacing ransomware, says WEF
C-suite executives are more concerned with risks arising from AI vulnerabilities and cyber fraud than ransomware, according to the World Economic Forum Continue Reading
-
News
12 Jan 2026
Intersec Dubai highlights why AI has become critical in the race against cyber attackers
Cigna Healthcare’s Jean Wiles warns that healthcare security teams must act faster without sacrificing accuracy or compliance as threats driven by artificial intelligence scale Continue Reading
-
News
09 Jan 2026
Agentic AI requires rethink of cloud security strategy
Security leaders discuss the rise of agentic AI, warning that autonomous agents operating at machine speed will require organisations to move away from static protection towards behavioural monitoring and automated reasoning Continue Reading
-
News
08 Jan 2026
Personal data of thousands stolen in attack on London councils
The West London council at the centre of a major cyber incident has now started the process of informing residents that their personal data was compromised in the attack Continue Reading
-
News
08 Jan 2026
Like it or not, AI will transform cyber strategy in 2026
Bubble or no bubble, from cyber skills to defensive strategies to governance, risk and compliance, artificial intelligence will remake the cyber world in 2026 Continue Reading
-
Opinion
08 Jan 2026
Security Think Tank: Stop buying AI, start buying outcomes
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around artificial intelligence and figure out which AI cyber use cases are worth a look, and which are just hype Continue Reading
-
News
05 Jan 2026
UK government to spend £210m on public sector cyber resilience
The UK government unveils a £120m Cyber Action Plan to help reinforce and promote IT security resilience across the country's public services Continue Reading
-
News
29 Dec 2025
Top 10 cyber security stories of 2025
AI dominated all tech conversations this year, but the concerns of cyber security professionals extend far beyond. From remote work to supply chains, quantum to identity, there were plenty of other topics for the industry to chew over in 2025. Continue Reading
-
News
18 Dec 2025
Fortinet vulnerabilities prompt pre-holiday warnings
Analysts track exploitation of two vulnerabilities disclosed last week by Fortinet Continue Reading
-
Opinion
18 Dec 2025
Passwords to prompts: Identity and AI redefined cyber in 2025
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
18 Dec 2025
AI safeguards improving, says UK government-backed body
Inaugural AI Security Institute report claims that safeguards in place to ensure AI models behave as intended seem to be improving Continue Reading
-
News
17 Dec 2025
ClickFix attacks that bypass cyber controls on the rise
NCC’s monthly threat report details the growing prevalence of ClickFix attacks in the wild Continue Reading
-
Opinion
17 Dec 2025
Security platform consolidation in 2026: The AI imperative
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
15 Dec 2025
The three cyber trends that will define 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
15 Dec 2025
In cyber security, basics matter, even in 2025
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
15 Dec 2025
What is driving the rise of infostealer malware?
Infostealer malware is a growing problem for cyber security teams, and these attacks have the potential to cause significant damage to businesses. What is enabling them to thrive? Continue Reading
-
Opinion
12 Dec 2025
Quantum risk to quantum readiness: A PQC roadmap
No one knows exactly when quantum computing will arrive, but accelerating progress is prompting security and IT leaders to recognise the potential risks. So how do organisations begin implementing post-quantum cryptography? Continue Reading
-
Opinion
12 Dec 2025
What lies in store for cyber security skills in 2026?
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
10 Dec 2025
Security pros should prepare for tough questions on AI in 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
08 Dec 2025
NCSC warns of confusion over true nature of AI prompt injection
Malicious prompt injections to manipulate GenAI large language models are being wrongly compared to classical SQL injection attacks. In reality, prompt injection may be a far worse problem, says the UK’s NCSC Continue Reading
-
Opinion
04 Dec 2025
From trust to turbulence: Cyber's road ahead in 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
04 Dec 2025
NCC supporting London councils gripped by cyber attacks
Three west London councils hit by a cyber attack continue to investigate as services remain disrupted nearly two weeks on Continue Reading
-
Feature
04 Dec 2025
In an AI-first world, the future of cyber security is its workforce
The cyber security industry will experience immense change due to AI by 2030, so both employers and professionals need to grasp the nettle, and quickly, if they are to have the right skills and experience in place to succeed Continue Reading
-
Opinion
03 Dec 2025
In 2026, collaboration, honesty and humility in cyber are key
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
News
03 Dec 2025
UK government pledges to rewrite Computer Misuse Act
Campaigners celebrate as security minister Dan Jarvis commits to amending the outdated Computer Misuse Act to protect security professionals from prosecution Continue Reading
-
News
03 Dec 2025
UK national security strategy failing to account for online world
The UK government’s national security strategy is falling short on online matters, according to the independent reviewer of terrorism Continue Reading
-
News
03 Dec 2025
Post Office avoids £1m fine over botched website upgrade data breach
The Information Commissioner’s Office considered fining the Post Office £1m for a 2024 data breach that let subpostmasters down again Continue Reading
-
News
03 Dec 2025
Women in Cybersecurity Middle East marks five years of impact at Black Hat MEA
As AI reshapes the regional cyber security landscape, diversity and skills development remain at the heart of building a resilient digital workforce Continue Reading
-
Opinion
02 Dec 2025
UK's Cyber Bill should be just one part of a wider effort
New cyber legislation is necessary but a wider effort is needed to harden the UK's security and resilience. Continue Reading
-
Opinion
02 Dec 2025
Cyber's defining lessons of 2025, and what comes next
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Feature
02 Dec 2025
Inserting AI into cyber awareness
As industry looks to grasp the use of AI and automated features, how are security suppliers facing the challenge of adding these capabilities to their products and services? We talked to one provider to find out Continue Reading
-
Opinion
01 Dec 2025
What lies in store for the security world in 2026?
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026. Continue Reading
-
Opinion
01 Dec 2025
How headlines can drive change in cyber security
Big news stories can shift attitudes. There’s no doubt that insurance vendors and brokers are using major cyber attacks to promote their products, but can security teams also use it to help their businesses be better prepared? Continue Reading
-
News
26 Nov 2025
US breach reinforces need to plug third-party security weaknesses
Cyber breach at US financial sector tech provider highlights the risk of third-party vulnerabilities in finance ecosystems Continue Reading
-
Opinion
21 Nov 2025
Protecting the defenders: Addressing cyber's burnout crisis
The Computer Weekly Security Think Tank considers the burdens and responsibilities that accompany the role of chief information security officer, and share guidance on how to navigate a challenging career path. Continue Reading
-
News
20 Nov 2025
UK targets ‘bulletproof’ services that hosted ransomware gangs
The UK’s NCA and partners have cracked down on ‘bulletproof’ services that hosted cyber criminal infrastructure Continue Reading
-
News
19 Nov 2025
EU sets out plans to cut red tape on digital
Changes have been proposed to simplify AI Act compliance for smaller businesses, easier cyber security reporting and tweaks to GDPR Continue Reading
-
News
19 Nov 2025
UAE to launch first space-to-ground quantum communication network
Technology Innovation Institute and Space42 unveil a collaboration at the Dubai Airshow to deliver the UAE’s first space-enabled quantum communication network, strengthening national cyber resilience and advancing sovereign leadership in next-generation secure infrastructure Continue Reading
-
News
18 Nov 2025
Ransomware resilience may be improving in the health sector
A Sophos report on ransomware highlights resilience improvements among healthcare organisations but warns that the wider threat is still live and growing Continue Reading
-
News
18 Nov 2025
Fintech leaders call for united front against AI-driven cyber crime
As AI makes financial scams more personalised and convincing, fintech experts have called for deeper collaboration and the use of behavioural analytics and other technologies to protect consumers Continue Reading
-
News
12 Nov 2025
US cyber intel sharing law set for temporary extension
The CISA 2015 cyber intelligence sharing law, which lapsed just over a month ago amid a wider shutdown, will receive a temporary lease of life should attempts to reopen the federal government succeed Continue Reading