Security policy and user awareness

UK local councils under huge cyber attack pressure

Investigation underlines importance of security automation and employee awareness training Continue Reading

By

• Warwick Ashford, Senior analyst

Getting a handle on mobile security in your enterprise

Everyone now has a mobile device at work, so how can enterprises ensure they are secure? Continue Reading

By

• Rene Millman

A third of Brits plan to exercise right to be forgotten

After the General Data Protection Regulation compliance deadline, a third of Britons polled say they plan to exercise their right to be forgotten, but few fully understand the GDPR and how it will affect them Continue Reading

By

• Warwick Ashford, Senior analyst

F-Secure warns against ‘evil maid’ attacks

Business people are being urged not to underestimate the importance of physical security for their laptops, which can be used as entry points by attackers if not adequately protected Continue Reading

By

• Warwick Ashford, Senior analyst

UK Foreign Office minister condemns Russia for NotPetya attacks

The UK has attributed to Russia the NotPetya malware that caused significant disruption globally, based on an assessment by the NCSC Continue Reading

By

• Warwick Ashford, Senior analyst

Telegram zero-day exploit is a warning

The discovery of an exploit of a zero-day vulnerability in the Telegram messaging app demonstrates that not all “secure” apps are automatically safe, security experts have warned Continue Reading

By

• Warwick Ashford, Senior analyst

Home Office fights terrorist content online with detection tool

The Home Office has partnered ASI Data Science to create a tool which automatically detects terrorist content on online platforms Continue Reading

By

• Lis Evenstad

Industrial cyber security improving, but needs work

Cyber attacks on industrial and critical infrastructure systems are increasing in number and sophistication, but more attention is being paid to security, says Honeywell at it opens new Dubai facility Continue Reading

By

• Warwick Ashford, Senior analyst

CW ANZ: Prepare for EU data law

Faced with the double whammy of complying with Australia’s upcoming data breach notification requirement and Europe’s new data protection regime, Australian firms are behind where they need to be in their compliance efforts. In this month’s edition of CW ANZ, find out how Australian organisations are getting ready for the GDPR, the challenges they are facing in meeting two new laws at the same time, as well as what they need to do to achieve their compliance goals. Read the issue now. Continue Reading

Cyber security awareness top priority in financial sector

Information security chiefs in the financial sector say cyber security awareness needs to be a top priority Continue Reading

By

• Warwick Ashford, Senior analyst

FS-ISAC enables safer financial data sharing with API

The global financial industry's body for cyber and physical threat intelligence analysis and sharing has published an API to facilitate safer sharing of consumer financial information Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: How to evolve SecOps capacity

How can organisations evolve their security operations teams to do more automation of basic tasks and cope with dynamic IT environments? Continue Reading

By

• Adrian Davis, (ISC)²

UK government orders review of online laws

The UK Law Commission is to review current legislation on offensive online communications to ensure they are up to date with technology Continue Reading

By

• Warwick Ashford, Security Editor

Lauri Love plans to use ‘internet as a force for good’

Engineering student Lauri Love says he plans to help businesses fight cyber crime, after the court of appeal ruled that he can be tried in the UK for allegedly hacking US computer systems, rather than face extradition to the US Continue Reading

By

• Julia Gregory and Niels Ladefoged

Safer Internet Day: Building online safety practices with young people

Many organisations around the UK are contributing to the important work on making the internet a safer place for everyone Continue Reading

By

• Julian David, TechUK

Researchers discover malicious Chrome extensions

Security researchers have discovered a new botnet delivered via malicious Chrome extensions designed to hijack computers to mine cryptocurrency and record victims’ every move Continue Reading

By

• Warwick Ashford, Security Editor

Appeal Court to give landmark verdict on Lauri Love extradition

The Appeal Court will decide whether Lauri Love, who has serious health issues, should be extradited to the US to face hacking charges, or face trial in the UK. The landmark case is the first test of legal protections introduced by Theresa May to protect vulnerable people Continue Reading

By

• Bill Goodwin, Investigations Editor

Security Think Tank: Automating basic security tasks

How can organisations evolve their security operations teams to do more automation of basic tasks and cope with dynamic IT environments? Continue Reading

By

• Petra Wenham

UK finance sector cyber security pros admit shocking practices

UK financial sector IT security teams face immense challenges that are undermining business opportunities and continuity in financial services, a survey reveals Continue Reading

By

• Warwick Ashford, Security Editor

IT Priorities 2018: Data protection a top priority ahead of GDPR

Data protection continues to be a key focus for IT security investment for European firms in 2018, as does the emphasis on cloud and mobile security as companies move to these technology platforms Continue Reading

By

• Warwick Ashford, Security Editor

Davos debates global tech risks

In this week's Computer Weekly, world leaders at Davos discuss the growing reliance on technology and how to tackle the political and economic threats of the digital age. Our latest buyer's guide examines mobile app development. And we look at the biggest challenges facing CIOs in 2018 - including digital skills, automation, innovation and diversity. Read the issue now. Continue Reading

IoT security risks need immediate action, says report

The security failings in today’s internet-connected devices will only become more pervasive unless action is taken immediately, according to industry experts Continue Reading

By

• Warwick Ashford, Security Editor

New controversies as Trump passes US Foreign Intelligence Surveillance Act

The amended Foreign Intelligence Surveillance Act, which seeks to legitimise US surveillance on foreigners, has been signed off by president Trump Continue Reading

By

• Kevin Cahill

Taking complexity out of cyber security

The key to improving the cyber security posture of organisations is to keep complexity at bay, according to a senior Microsoft executive Continue Reading

By

• Aaron Tan, Informa TechTarget

Judge will take time to seek answers from EU court over Max Schrems Facebook privacy fight

The Irish High Court will take time to decide what questions to put before the European Court of Justice in a case with significant implications for EU and US trade and the privacy of EU citizens Continue Reading

By

• Bill Goodwin, Investigations Editor

Create security culture to boost cyber defences, says Troy Hunt

Security suffers when there is tension between software developers and security professionals, but it is common in many organisations, says world-renowned security blogger and trainer Continue Reading

By

• Warwick Ashford, Senior analyst

Davos: Disintegration of the internet could create economic turmoil

Politicians and business leaders will discuss the risks posed by fake news, cyber attacks, and artificial intelligence to jobs, political stability and global security, at the World Economic Forum in Davos Continue Reading

By

• Bill Goodwin, Investigations Editor

Why GDPR is great for SMEs

SME laggards facing potential fines for non-compliance should wake up and smell the tasty carrot of a leaner, smarter business post-GDPR Continue Reading

Why GDPR is great for SMEs

SME laggards facing potential fines for non-compliance should wake up and smell the tasty carrot of a leaner, smarter business post-GDPR Continue Reading

By

• Jim Mortleman

Nuclear weapons’ cyber attack risk relatively high, says report

With the potential for catastrophic consequences from a nuclear weapons detonation attack, it is crucial to have the most robust nuclear policies in place, says an international affairs think-tank Continue Reading

By

• Warwick Ashford, Senior analyst

UAE tech growth prompts firms to review internal IT security

As IT becomes more prominent in the UAE economy, more and more internal connections between people and systems are created, all of which need to be secured Continue Reading

By

• Alicia Buller

Countdown to GDPR

In this week’s Computer Weekly, with the EU General Data Protection Regulation (GDPR) coming in to force this year, we look at the challenges for businesses to comply by the 25 May deadline. We examine the future for HPE as CEO Meg Whitman steps down. And we find out how the move to hyper-converged systems affects your backup strategy. Read the issue now. Continue Reading

Cyber attacks in 2017 drive Nordic security efforts

The volume of cyber attacks last year has increased boardroom focus on security in the Nordic region Continue Reading

By

• Eeva Haaramo

Sweden steps up cyber defence measures

Sweden is tightening up its cyber security defences as part of a wider national security strategy Continue Reading

By

• Gerard O'Dwyer

Florida warns 30,000 medical records may have been exposed

The health agency in the US state of Florida has warned that the records of up to 30,000 Medicaid patients may have been exposed when the agency’s IT systems were breached Continue Reading

By

• Warwick Ashford, Senior analyst

IT Priorities 2018: ANZ ups ante on cloud services and software

Organisations in Australia and New Zealand are bullish on IT spending, particularly in cloud infrastructure services, cloud applications and all-flash storage arrays Continue Reading

By

• Aaron Tan, Informa TechTarget

Top IT priorities for Nordic CIOs in 2018

Nordic CIOs tell Computer Weekly about their intentions for the year ahead Continue Reading

By

• Eeva Haaramo

UK government blames North Korea for WannaCry cyber attack

The UK and US governments say a North Korean group was responsible for the ransomware attacks that hit the NHS and other organisations globally this year Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Top cyber security predictions in APAC in 2018

Cyber criminals will ramp up efforts to mine cryptocurrencies, while mobile malware will rear its ugly head across the APAC region in 2018 Continue Reading

By

• Aaron Tan, Informa TechTarget

Barclays Bank stops offering Kaspersky software to new users

Bank is no longer offering customers Kaspersky anti-virus software after UK security agency issues warning Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

CW ANZ: On cyber alert

Achieving any form of computer security is an uphill task, costing Australian companies time and money with no prospect of a reprieve any time soon. In this month’s CW ANZ, read about the state of cyber security in Australia, Telstra’s efforts to help enterprises improve their cyber security posture, and how Australian organisations can keep up with the demands of cyber security. Also, find out why unsanctioned cloud apps continue to be a major bugbear among security chiefs in Australia. Continue Reading

CW ASEAN: How managed security services help to reduce cyber risk

The growing complexity and volume of cyber threats has led to rising demand for managed security services that provide the capabilities and technological know-how to combat cyber threats. In this month’s issue of CW ASEAN, read more about the pros and cons of using managed security services and considerations you should be aware of. Also, find out what organizations can do to put the odds in their favor when combating cyber threats. Continue Reading

How the biggest cyber security disasters could have been avoided

The headline-grabbing breaches that hit Accenture and Equifax in 2017 could have been averted had basic cyber hygiene been in place Continue Reading

By

• Jessica McGreal, Contino

Dmarc email validation – we're doing it all wrong

Dmarc is a hugely important way to reduce email fraud – just ask HMRC – but it also makes email marketing campaigns far more effective Continue Reading

By

• Ed Tucker, Human Firewall

IT security hindering productivity and innovation, survey shows

IT security is hindering productivity and innovation across enterprises, research has revealed Continue Reading

By

• Warwick Ashford, Senior analyst

RSA’s Middle East cyber security conference gains its own identity

RSA Abu Dhabi conference focuses on region’s cyber security needs as digital technology deployments expand Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

CW500: How the NHS WannaCry cyber attack unfolded

NHS Digital’s head of security talks about the security landscape in the NHS and why it led to extra challenges when the WannaCry cyber attack hit the NHS in May 2017 Continue Reading

By

• Lis Evenstad

CW500: A perfect storm – the cyber attack that hit Parliament

The former director of the Parliamentary Digital Service shares details and lessons learned from the cyber attack that hit UK parliament in June and explains why it was a “good experience” Continue Reading

By

• Lis Evenstad

How Australia is tackling cyber crime

Telcos such as Telstra and industry associations in Australia are chipping in to help enterprises that are being targeted by cyber criminals with phishing and social engineering exploits Continue Reading

By

• Beverley Head

Cage director found guilty of terrorism offence after refusing to disclose passwords

Muhammad Rabbani, international director of Cage, is convicted of an offence under the terrorism act after refusing to disclose his mobile phone PIN and laptop password under Terrorism Act Continue Reading

By

• Bill Goodwin, Investigations Editor

NotPetya attack cost up to £15m, says UK ad agency WPP

Advertising giant was one of many companies hit in June 2017 by malware distributed through Ukrainian accounting software Continue Reading

By

• Warwick Ashford, Senior analyst

Most UK councils hit by cyber attacks

A study has revealed that most UK local authorities have suffered cyber attacks in the past year, showing local government is a key target for cyber criminals and that legacy software is a top security concern Continue Reading

By

• Warwick Ashford, Senior analyst

Cyber crime a significant risk to individuals and organisations

Cyber crime is still a significant risk to individuals and organisations, a report claims, with the top threats including business email compromise, ransomware, and banking and mobile malware Continue Reading

By

• Warwick Ashford, Senior analyst

People with non-IT backgrounds could help fill cyber security skills gap

Organisations should look to fill cyber security roles with people who are curious and have work experience rather than focusing solely on graduates Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Instagram fixes API blamed for celebrity data leaks

Instagram says it has fixed the API responsible for enabling hackers to access some personal details of high-profile users of the service Continue Reading

By

• Warwick Ashford, Senior analyst

Security professionals name top causes of breaches

Security professionals have named the top reasons for successful cyber attacks, which are affecting more than half of organisations Continue Reading

By

• Warwick Ashford, Senior analyst

How banking technology has changed since the crash

In this week’s Computer Weekly, 10 years after the financial crash, we examine how banking technology has changed as a result of the economic crisis. We look at how GDPR, the EU’s new data protection laws, will affect your data storage strategies. And we ask if the cryptocurrency boom will remain a niche pursuit or whether the underlying technologies can bring benefits for enterprise IT. Read the issue now. Continue Reading

NotPetya highlights cyber risk in shipping industry

Malware attack has shown that the shipping industry is vulnerable to cyber attacks, with Danish shipping giant Maersk reporting potential cost of up to $300m Continue Reading

By

• Warwick Ashford, Senior analyst

Malicious email spikes in Q2, reports Proofpoint

Malicious email campaigns saw a spike in volume and increased variety in the second quarter of 2017, a cyber security report reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Russian cyber espionage group targeting hotel Wi-Fi

A Russian cyber espionage group is targeting hotel Wi-Fi networks to carry out malware infections and potentially steal credentials, researchers warn Continue Reading

By

• Warwick Ashford, Senior analyst

Gaming apps ‘main source’ of mobile phishing attacks, research shows

Analysis of 100,000 corporate devices shows more than a quarter of traffic going to phishing domains was from gaming apps Continue Reading

By

• Zach Emmanuel, Computer Weekly

CW ANZ: Cyber security plan bears fruit

Australia’s Cyber Security Strategy, aimed at protecting citizens, companies and critical infrastructure, has made significant headway over the past year, but the jury is still out on its long-term impact. In this month’s CW ANZ, we take a look at the progress of Australia’s national cyber security blueprint and what else needs to be done to better protect Australia’s interests in the global cyber security landscape. Also, read about what the Australian government is doing to better guard public sector IT systems against cyber attacks. Continue Reading

CW ASEAN: Stay alert to threats

With cyber threats intensifying in recent years, from the global outbreak of ransomware to intrusions of university networks to access government data, the role of threat intelligence in anticipating and mitigating threats has become more important than ever. In this month’s CW ASEAN, learn how organizations can make the most out of threat data feeds in an intelligence-driven security strategy. Also, find out how companies can navigate the ominous cyber threat landscape by investing in cyber security technology and processes. Continue Reading

Newcastle council data leak shows need for security automation

Leak of child adoption information by Newcastle City Council resulted from accidental email attachment by employee Continue Reading

By

• Warwick Ashford, Senior analyst

NHS urged to spend extra cyber defence funds wisely

The NHS has been urged to invest wisely in cyber defences after the government announced plans to increase data security funding by millions of pounds in response to the Caldicott review Continue Reading

By

• Warwick Ashford, Senior analyst

Criminal law: Are Twitter threats taken seriously?

As threats of violence become increasingly common online, law enforcement is taking stronger action against the perpetrators Continue Reading

By

• John F Marchiano

Petya ransomware hits Aussie businesses

The latest ransomware attack has reached Australia’s shores, prompting calls to dump on-premise IT infrastructure for the cloud Continue Reading

By

• Stuart Kennedy

Abu Dhabi uses surveillance tech to protect Grand Prix

Police use surveillance technology and monitoring software to ensure public safety when Formula One visits the UAE each year Continue Reading

By

• Alicia Buller

Australia’s decryption plan seen as untenable

Experts say efforts to get technology and social media firms to cooperate with the authorities in decrypting communications will be hard to achieve Continue Reading

By

• Beverley Head

Microchips implanted in hands could be in use for payments in 20 years

UK consumers are becoming more accepting that biometric authentication will become the norm for payments Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

People can be strongest link in cyber security, says NCSC

People are often seen as the weakest link when it comes to cyber security, but that must change, says the National Cyber Security Centre Continue Reading

By

• Warwick Ashford, Senior analyst

Interview: Nick Bleech, head of information security, Travis Perkins

Last year, Travis Perkins implemented Splunk to help it to respond more quickly to security threats. Now, the business is looking into machine learning and a single customer view Continue Reading

By

• Clare McDonald, Business Editor

HSBC voice authentication tricked by twins

Twin brothers managed to trick HSBC’s voice recognition security system into giving account access to the wrong person Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Singapore universities hit by advanced persistent threat attacks

The attacks on NUS and NTU networks appear to be the work of APT actors and not casual hackers Continue Reading

By

• Aaron Tan, Informa TechTarget

Barclays launches £10m UK digital safety campaign

Barclays is to lead a £10m campaign against digital fraud as research reveals London, Bristol and Birmingham are scam hotspots, with young adults most at risk Continue Reading

By

• Warwick Ashford, Senior analyst

Human interaction still key to cyber attacks, study reveals

An analysis of threats faced by organisations in the first quarter of 2017 reveals that cyber attackers still rely heavily on user interaction Continue Reading

By

• Warwick Ashford, Senior analyst

Security as a service on the rise in the UAE

Organisations in the United Arab Emirates are increasingly turning to security services Continue Reading

By

• Alicia Buller

How UK organisations are leaving themselves open for cyber attack

UK organisations are leaving themselves wide open to cyber attack despite huge investments in cyber security systems, according to two former hackers now working in cyber defence Continue Reading

By

• Warwick Ashford, Senior analyst

Interview: F-Secure’s Mikko Hyppönen on the Nordics, Russia and the internet of insecure things

Computer Weekly sat down with Finnish cyber security expert Mikko Hyppönen to talk about security in the Nordics, Russia and the trouble with connected devices Continue Reading

By

• Eeva Haaramo

How IT can be more defensible

A renowned Google engineer calls for the IT industry to build devices capable of being defended and for enterprises to take a balance sheet approach in managing risks Continue Reading

By

• Aaron Tan, Informa TechTarget

Thorn CEO on using machine learning and tech partnerships to tackle online child sex abuse

The CEO of US-based no-profit Thorn explains how cross-industry collaboration and machine learning is helping her organisation stay one step ahead of online child sex abusers Continue Reading

By

• Caroline Donnelly, Senior Editor, UK

Threats grow in Saudi Arabia’s cyber sector

Saudi Arabia's wealth makes it an attractive target for cyber criminals, but what have been the recent trends in cyber crime? Continue Reading

By

• Triska Hamid

CW ASEAN: Raising national security standards

In this month’s CW ASEAN, we describe how Singapore is improving its cyber security defenses and preparations through a partnership with British security company BAE Systems. We also find out why the Thai military plans to recruit civilian cyber warriors and we take a look at evolving security approaches. Read the issue now. Continue Reading

CW ANZ: Take cover from cyber threats

In the latest issue of CW ANZ we focus on security, with analysis of why Australian organisations are not sold on cyber insurance. It certainly isn’t a lack of cyber attacks – Australia is, in fact, making cyber security headlines for the wrong reasons. We also take a look at the need for organisations to meet IoT security challenges head-on. Read the issue now. Continue Reading

APAC topped the world in number of cyber attacks in 2016

The prevalent use of pirated software is one of the possible reasons for the APAC region’s poor showing in Trend Micro’s annual study on the state of cyber security Continue Reading

By

• Aaron Tan, Informa TechTarget

NCSC to educate UK politicians on the cyber threat

The National Cyber Security Centre is to deliver tailored seminars for politicians on how to protect their email communications and voters’ data to defend against cyber threats to the political system Continue Reading

By

• Warwick Ashford, Senior analyst

CW Europe: Technology poses new risks to jobs, economies and society

Rapid advances in technology could have destabilising effects on employment and economic growth, and could exacerbate social unrest, the World Economic Forum (WEF) warned. Society’s failure to keep pace with technology change was a key risk under discussion at Davos in January. Continue Reading

CW Nordics: Top IT priorities for Nordic CIOs in 2017

In this first issue of CW Nordics in 2017 we take a look what CIOs in the region are expecting in the year ahead. We asked a select group of CIOs and analysts in Denmark, Finland, Norway and Sweden what IT projects are at the top their priority lists. Also read about the Nordic region as a hotspot for IT startups, with Sweden punching above its weight in financial technology. And find out how board executives at healthcare company Elekta are analysing workforce data to make better strategic decisions. Continue Reading

Beware printer helpline scam, warns NTS eCrime Team

National Trading Standards is warning consumers about a scam targeting those looking for help with printer problems Continue Reading

By

• Warwick Ashford, Senior analyst

TechUK launches framework to build public trust in the IoT

Tech sector association techUK wants to help overcome public distrust in the internet of things Continue Reading

By

• Alex Scroxton, Security Editor

Top 10 IT security stories of 2016

Here are Computer Weekly’s top 10 IT security stories of 2016: Continue Reading

By

• Warwick Ashford, Senior analyst

Data danger: Cyber threats lurk inside every company

In this week’s issue, we investigate the hidden threats lurking in every company and discuss what options CIOs and heads of security have to limit damage. We also look at how CIOs can fund digital initiatives when costs are under pressure, and how Boots has built an SAP centre of expertise to take back control of the strategic direction of its IT organisation from its previously outsourced structure. Read the issue now. Continue Reading

Typo allowed Russian hackers to access US Democratic Party emails

Typographical mistake in an email warning of a phishing attack on the US Democrats led to thousands of private emails being accessed and published by Russian-backed hackers Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

European law enforcement seeking smart ways to fight cyber crime

Cyber criminals are always likely to be better resourced than law enforcement. Now, national and regional police forces in Europe are switching tactics to even the odds. Under-resourced law enforcement needs a smarter approach as cyber crime becomes increasingly prevalent and sophisticated, backed by the money and expertise of organised crime groups set up and run as well-resourced and efficient professional business organisations. Cyber crime operations typically have teams dedicated to looking at open source intelligence, targets’ physical environments, weaknesses in supply chains, and potential collaborators inside target organisations to enable sophisticated, blended attacks that involve a combination of actions against a range of vulnerabilities, making them difficult to detect and defend against. Continue Reading

Security Think Tank: Communication is key to cyber security in digital era

How can information security professionals help organisations to understand the cyber risks across increasingly digital businesses? Continue Reading

By

• Ramses Gallego

Top 10 ANZ enterprise IT stories of 2016

Here is a rundown of Computer Weekly’s most popular ANZ enterprise IT articles for 2016 Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

One in four Wi-Fi hotspots vulnerable to attack, study finds

At least one in four Wi-Fi hotspots are open to attack, a study by Kaspersky Lab reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Government data security confusing, finds PAC

A Public Accounts Committee hearing shows the government’s data and cyber security landscape is chaotic and confusing Continue Reading

By

• Lis Evenstad

Counting the cost of financial cyber crime

In this week’s Computer Weekly, the cyber security of banks is under scrutiny after an attack on Tesco Bank leads to millions lost in fraudulent transactions. Our latest buyer’s guide, on server operating systems, looks at the new features in Windows Server 2016. And Coca-Cola explains how a move to the cloud is helping motivate staff. Read the issue now. Continue Reading

Amber Rudd orders Lauri Love extradition to US to face hacking charges

Engineering student Lauri Love faces trials in three US states and a possible 99-year jail sentence for allegedly hacking into US government computer systems as part of a political protest, despite concerns over his health Continue Reading

By

• Fiona O'Cleirigh