IT governance
IT governance provides the core workflows and processes that help IT managers to oversee the successful functioning of the IT department, and to prove the value of IT to the business. Regulations and compliance are just as important as technological and management skills, and we highlight the best practice in IT governance and the example of successful IT leaders.
-
News
20 Nov 2024
Post Office project taking control of Horizon data from Fujitsu as part of messy split
The Post Office will no longer rely on Fujitsu for Horizon data past and present once cloud migration project is complete, in a major uncoupling of the 30-year relationship Continue Reading
-
Feature
19 Nov 2024
Storage technology explained: Ransomware and storage and backup
We look at ransomware attacks, and the importance of good backup practice as well as immutable snapshots, air-gapping, network segmentation, AI anomaly detection and supplier warranties Continue Reading
-
Opinion
19 Nov 2024
Overcoming the cyber paradox: Shrinking budgets – growing threats
The challenging macro environment has left security budgets stretched thin even while new tech like AI presents a threat multiplier. In the face of these challenges, it becomes vital for security leads to do more to maintain funding Continue Reading
-
News
19 Nov 2024
Subpostmasters hit by Post Office scandal plan to meet over nuclear option
Members of campaign group Justice for Subpostmasters Alliance will discuss taking legal action in their pursuit of full, fair and final financial redress Continue Reading
-
News
18 Nov 2024
How banks are navigating the AI landscape
Industry experts discuss the transformative potential of artificial intelligence in banking, while addressing the challenges and governance implications of integrating AI into financial services Continue Reading
-
News
18 Nov 2024
AWS widening scope of MFA programme after early success
AWS reports strong take-up of multi-factor authentication among customers since making it compulsory for root users earlier this year, and plans to expand the scope of its IAM programme in spring 2025 Continue Reading
-
News
18 Nov 2024
Denmark’s AI-powered welfare system fuels mass surveillance
Research reveals the automated tools used to flag individuals for benefit fraud violate individuals’ privacy and risk discriminating against marginalised groups Continue Reading
-
News
18 Nov 2024
Post Office IT boss calls for subpostmasters to judge him on his actions
Recently installed Post Office chief transformation officer tasked with replacing controversial IT system tells Computer Weekly the organisation’s leadership understands the challenges ahead Continue Reading
-
News
15 Nov 2024
CBRE: Spare datacentre capacity levels to hit all-time low across Europe by end of 2024
Real estate consultancy CBRE has lifted the lid on how growing demand for datacentre capacity, coupled with shortages of land and power in Europe, are having a downbeat impact on vacancy rates Continue Reading
-
News
14 Nov 2024
HMRC puts Loan Charge settlements ‘on pause by request’ until independent review concludes
After campaigners called for HMRC to pause all of its Loan Charge enforcement activity until the government’s independent review of the policy is complete, Computer Weekly has learned that the agency is accepting requests to pause settlements Continue Reading
-
News
14 Nov 2024
MPs hold first ever debate on live facial recognition
MPs have held an open debate on police use of live facial recognition technology for the first time since it was initially deployed by the Met Police in August 2016 Continue Reading
-
Opinion
14 Nov 2024
How standards and assurance are making responsible AI achievable
Everyone would agree that taking an ethically principled approach to using AI is essential - but in practice, delivering governance and assurance mechanisms around implementing AI responsibly is what really matters Continue Reading
-
News
13 Nov 2024
China’s Volt Typhoon rebuilds botnet in wake of takedown
Nine months after its malicious botnet comprising legacy routers was disrupted by the Americans, Chinese APT Volt Typhoon is rebuilding and presents as persistent a threat as ever Continue Reading
-
News
12 Nov 2024
Microsoft fixes 89 CVEs on penultimate Patch Tuesday of 2024
High-profile vulns in NTLM, Windows Task Scheduler, Active Directory Certificate Services and Microsoft Exchange Server should be prioritised from November’s Patch Tuesday update Continue Reading
-
News
12 Nov 2024
Zero-day exploits increasingly sought out by attackers
Threat actors increasingly favour zero-day exploits to attack their victims before patches become available, according to the NCSC and CISA, which have just published a list of the most widely used vulnerabilities of 2023 Continue Reading
-
News
12 Nov 2024
More data stolen in 2023 MOVEit attacks comes to light
Over a year since the infamous MOVEit Transfer cyber attacks affected thousands of organisations, more new victims have come to light after an anonymous threat actor leaked their data on the dark web Continue Reading
-
Opinion
12 Nov 2024
Strengthening cyber: Best IAM practices to combat threats
The Security Think Tank considers best practices in identity and access management and how can they be deployed to enable IT departments to combat cyber-attacks, phishing attacks and ransomware Continue Reading
-
News
12 Nov 2024
Post Office requested four-year Horizon extension, as Fujitsu boss arrived at public inquiry
Fujitsu boss says the Horizon system has reached the end of its life and a long contract extension might not be possible Continue Reading
-
News
12 Nov 2024
Police cloud project raises data protection concerns despite legal reforms
Ongoing data protection issues with the use of hyperscale public cloud infrastructure by UK police could complicate the ambitions of nine forces to move their common records management system into the cloud Continue Reading
-
E-Zine
12 Nov 2024
Innovating with weather data at the Met Office
In this week’s Computer Weekly, we find out how the Met Office is using its vast stores of weather data to create innovative new products. Our latest buyer’s guide looks into identity and access management systems. And we examine the geopolitical threats that could curb the openness of open source. Read the issue now. Continue Reading
-
News
11 Nov 2024
UK Bolt drivers win legal claim to be classed as workers
Employment Tribunal ruling says Bolt must classify its drivers as workers rather than self-employed, putting drivers in line to receive thousands of pounds in compensation from the ride-hailing and delivery app Continue Reading
-
Feature
08 Nov 2024
What are the security risks of bring your own AI?
The rise of generative AI has led to a plethora of publicly accessible artificial intelligence tools, but what are the risks when external AI tools are used with corporate data? Continue Reading
-
News
08 Nov 2024
Inside Grab’s platform strategy
Grab’s group CTO talks up the super app’s platform strategy, architecture and organisational structure behind its growth across diverse Southeast Asian markets Continue Reading
-
News
07 Nov 2024
Google Cloud MFA enforcement meets with approval
Latest Google Cloud policy to enforce multifactor authentication across its user base is welcomed by security professionals Continue Reading
-
News
07 Nov 2024
AI a force multiplier for the bad guys, say cyber pros
CIISec’s annual report on the security profession finds evidence of growing concern that artificial intelligence will ultimately prove more useful to threat actors than defenders Continue Reading
-
News
07 Nov 2024
Interview: Petra Molnar, author of ‘The walls have eyes’
Refugee lawyer and author Petra Molnar speaks to Computer Weekly about the extreme violence people on the move face at borders across the world, and how increasingly hostile anti-immigrant politics is being enabled and reinforced by a ‘lucrative panopticon’ of surveillance technologies Continue Reading
-
News
06 Nov 2024
UK government launches AI assurance platform for enterprises
The platform is designed to drive demand for the UK’s artificial intelligence assurance sector and help build greater trust in the technology by helping businesses identify and mitigate a range of AI-related risks Continue Reading
-
News
06 Nov 2024
Lords shoplifting inquiry calls for facial recognition laws
A Lords committee has expressed concern about the use of facial recognition technology by retailers to combat shoplifting, and is calling on the government to introduce new laws to ensure there are minimum standards for their deployments Continue Reading
-
News
06 Nov 2024
Starmer announces tech-enabled crackdown on people smuggling
The UK government has announced a further £75m of funding for its Border Security Command, meaning it will now have £150m over two years to spend on new technologies and staff Continue Reading
-
Opinion
05 Nov 2024
User-centric security should be core to cloud IAM practice
The Security Think Tank considers best practices in identity and access management and how can they be deployed to enable IT departments to combat cyber-attacks, phishing attacks and ransomware Continue Reading
-
News
01 Nov 2024
CISA looks to global collaboration as fraught US election begins
The US' CISA cyber agency has unveiled a two-year International Strategic Plan to advance collaboration and improve resilience against shared risks and threats Continue Reading
-
News
01 Nov 2024
Outside IR35: What the Autumn Budget’s Employers’ NI changes mean for IT contractors
The UK government used the Autumn Budget to announce an increase to the amount of Employers’ National Insurance Contributions companies will have to pay, which could have big implications for IT contractors Continue Reading
-
News
31 Oct 2024
Post Office scandal affected relationships of two-thirds of victims
The Post Office scandal, regarded as the UK’s widest miscarriage of justice, destroyed the financial wellbeing of former subpostmasters, took away their liberty and inflicted grief on their relationships Continue Reading
-
Opinion
30 Oct 2024
IAM best practices for cloud environments to combat cyber attacks
The Security Think Tank considers best practices in identity and access management and how can they be deployed to enable IT departments to combat cyber-attacks, phishing attacks and ransomware Continue Reading
-
News
30 Oct 2024
Why geopolitics risks global open source collaborations
Linux Foundation’s decision to ban Russian maintainers has the potential to destroy open source’s global collaboration model Continue Reading
-
News
30 Oct 2024
No simple replacement for digital evidence rules, says Post Office Horizon trial judge
Judge in Post Office Horizon trial says a more flexible approach to how digital evidence is used in court cases may be required as IT complexity increases Continue Reading
-
News
29 Oct 2024
EMEA businesses siphoning budgets to hit NIS2 goals
With NIS2 now in effect, European business leaders are having to divert budget from elsewhere to achieve compliance Continue Reading
-
News
29 Oct 2024
AI core to Nordic net-zero economy
Artificial intelligence will be core to attempts by Nordic countries to become net-zero economies Continue Reading
-
Definition
29 Oct 2024
What is responsible AI?
Responsible AI is an approach to developing and deploying artificial intelligence (AI) from both an ethical and legal point of view. The goal of responsible AI is to use AI in a safe, trustworthy and ethical fashion. Continue Reading
-
Feature
29 Oct 2024
Rewiring Whitehall: The next steps in digital government
There’s a new government in place with fresh impetus to accelerate the digital transformation of public services – but what’s going to be different, better and more successful this time around? Continue Reading
-
News
28 Oct 2024
Russian Linux kernel maintainers blocked
To ensure compliance, the Linux kernel will no longer allow Russian software developers to work on maintaining the codebase Continue Reading
-
News
28 Oct 2024
UK launches cyber guidance package for tech startups
The NCSC and NPSA, alongside agencies from the Five Eyes alliance, have issued guidance for startups on how to secure themselves against common cyber threats and targeted industrial espionage Continue Reading
-
News
25 Oct 2024
Lords committee warns about risks of the UK losing its EU data adequacy
The UK government must work with the European Commission (EC) to secure a renewal of UK’s two data adequacy statuses, says cross-party Lords committee, in stark warning about impacts of losing the ability to seamlessly exchange citizens’ personal data Continue Reading
-
News
25 Oct 2024
Dutch critical infrastructure at risk despite high leadership confidence
Stark paradox in Dutch cyber security landscape has business leaders expressing high confidence in their IT infrastructure as cyber attacks rise Continue Reading
-
News
24 Oct 2024
Government ‘urged’ to overturn all convictions based on Post Office Capture
Influential group has written to the government calling for legislation to overturn the criminal convictions of former subpostmasters that were based on Capture system data Continue Reading
-
Feature
24 Oct 2024
Kenyan workers win High Court appeal to take Meta to trial
Despite the company arguing that Kenyan courts have no jurisdiction over an American company, the Nairobi High Court has ruled that Meta must face more than 180 content moderators and data labellers in court over allegedly poor working conditions, negative mental health impacts, and loss of pay Continue Reading
-
News
23 Oct 2024
Government hails Cyber Essentials success
Scheme to help keep organisations’ IT safe and secure has given businesses more confidence they won’t fall victim to a cyber attack Continue Reading
-
Feature
23 Oct 2024
Detect ransomware in storage to act before it spreads
Anomaly detection and immutable copies can be frontline tools against ransomware – we look at the role storage can play against the latest techniques employed by ransomware gangs Continue Reading
-
News
22 Oct 2024
Change to rules on computer evidence will be an ‘outcome’ of Post Office scandal
The executive currently heading up the Post Office’s investigations department has told public inquiry that rules on computer evidence have to change Continue Reading
-
News
22 Oct 2024
Dell CTO: Enterprise AI poised to take off in 2025
After a period of experimentation, the building blocks are in place for wider enterprise adoption of AI, says Dell Technologies’ global CTO, John Roese Continue Reading
-
News
22 Oct 2024
Labour’s 10-year health service plan will open up data sharing
To save the health service, Labour is focusing on bolstering the NHS app and enabling greater sharing of patient records in England Continue Reading
-
News
22 Oct 2024
Former Post Office IT boss alleged to have misrepresented alternative to in-house build
Internal Post Office document reveals allegations that former transformation boss misrepresented off-the-shelf option to replace Horizon Continue Reading
-
News
21 Oct 2024
Can AI be secure? Experts discuss emerging threats and AI safety
International cyber security experts call for global cooperation and proactive strategies to address the security challenges posed by artificial intelligence Continue Reading
-
News
21 Oct 2024
Review of late evidence doesn’t change Post Office Capture system report
Conclusions reached in government-commissioned report into pre-Horizon software are unchanged after late evidence reviewed Continue Reading
-
News
17 Oct 2024
Met Police investigating senior Post Office worker over evidence destruction allegation
Public inquiry evidence confirms that the Metropolitan Police are investigating a senior Post Office staff member regarding instructions to destroy evidence Continue Reading
-
News
17 Oct 2024
NCSC chief warns of gap in cyber threats and defence capabilities
The UK and its allies must take collective action to improve their cyber resilience and repel the increasing volume of severe cyber attacks, says NCSC chief Continue Reading
-
News
17 Oct 2024
EU cyber security bill NIS2 hits compliance deadline
The EU’s NIS2 bill will harmonise how companies and member states approach cyber security, but its success will depend on how well it is implemented and enforced Continue Reading
-
News
16 Oct 2024
Former police officer heading Post Office operations did nothing to help innocent subpostmasters
Former chief operating officer did nothing when action could have put a stop to the Post Office wrongful prosecutions Continue Reading
-
News
15 Oct 2024
Tech and digital skills key to improving police productivity
The Policing Productivity Review sees data and technology as a way of improving productivity and outcomes, as well as a potential means of restoring diminishing legitimacy, but warns there needs to be a revamp in digital skills, investment and coordination to harness the full range of benefits Continue Reading
-
News
15 Oct 2024
UK government unveils AI safety research funding details
Through its AI Safety Institute, the UK government has committed an initial pot of £4m to fund research into various risks associated with AI technologies, which will increase to £8.5m as the scheme progresses Continue Reading
-
News
15 Oct 2024
Hillingdon Council commits £9m to tech revamp in digital strategy
Hillingdon’s three-year digital strategy will see the council fund attempts to modernise its systems and infrastructure, change how residents interact with the local authority and make better use of data Continue Reading
-
News
15 Oct 2024
NCSC expands school cyber service to academies and private schools
The National Cyber Security Centre is expanding its PDNS for Schools service to encompass a wider variety of institutions up and down the UK Continue Reading
-
News
11 Oct 2024
Post Office believes it took £36m from subpostmasters with unexplained losses
The Post Office wrongly blamed subpostmasters for unexplained account shortfalls and made them cover losses out of their own pockets - then banked the money itself Continue Reading
-
News
11 Oct 2024
Post Office set to axe in-house-developed New Branch IT software
Troubled business may ditch its plan to build a new core branch system in-house and buy an off-the-shelf alternative Continue Reading
-
News
10 Oct 2024
NCSC issues fresh alert over wave of Cozy Bear activity
The NCSC, FBI and NSA publish updated warning about Cozy Bear’s activities, highlighting a range of vulnerabilities the threat actor is using to set up its cyber attacks Continue Reading
-
News
10 Oct 2024
Government launches cyber standard for local authorities
Local government bodies are being invited to take advantage of a new NCSC-derived Cyber Assessment Framework to help enhance their resilience and ward off cyber attacks Continue Reading
-
News
10 Oct 2024
Internet Archive web historians target of hacktivist cyber attack
The Internet Archive nonprofit digital library and Wayback Machine operator has been attacked by pro-Palestinian hacktivists Continue Reading
-
News
10 Oct 2024
How Recorded Future finds ransomware victims before they get hit
Threat intel specialists at Recorded Future have shared details of newly developed techniques they are using to disrupt Rhysida ransomware attacks before the gang even has a chance to execute them Continue Reading
-
News
10 Oct 2024
UK and US pledge closer working on children’s online safety
In their first agreement on the subject of children’s online safety, the UK and US governments have said they will create a new working group to boost cooperation Continue Reading
-
News
10 Oct 2024
Australia bolsters cyber defences with security bill
Legislation tackles IoT security and establishes a Cyber Incident Review Board to bolster Australia’s cyber resilience Continue Reading
-
News
09 Oct 2024
MoneyGram customer data breached in attack
MoneyGram confirms that customer data has been stolen in an incident that appears to have started with a social engineering attack on its IT helpdesk staff Continue Reading
-
News
09 Oct 2024
Five zero-days to be fixed on October Patch Tuesday
Stand-out vulnerabilities in Microsoft’s latest Patch Tuesday drop include problems in Microsoft Management Console and the Windows MSHTML Platform Continue Reading
-
News
08 Oct 2024
Secureworks: Ransomware takedowns didn’t put off cyber criminals
The number of active cyber criminal ransomware gangs has surged by almost a third in the space of 12 months, according to the latest intelligence from Secureworks Continue Reading
-
News
08 Oct 2024
Post Office IT transformation project was ‘set up to fail’, chairman tells inquiry
Post Office interim chairman tells Horizon public inquiry that the Post Office needs to reset New Branch IT project Continue Reading
-
News
08 Oct 2024
UK’s cyber incident reporting law to move forward in 2025
The UK government says that enforced cyber incident and ransomware reporting for critical sectors of the economy will help to build a better picture of the threat landscape and enable more proactive and preventative responses Continue Reading
-
News
08 Oct 2024
Can the Post Office project to replace Horizon be rescued?
Evidence from the Post Office public inquiry shows huge problems with the critical project to replace the troubled Horizon IT system – after two government-mandated reviews, is there any sign it can succeed? Continue Reading
-
News
07 Oct 2024
Labour sets up new office to coordinate tech innovation regulations
The newly formed Regulatory Innovation Office has been set up to ensure existing regulations do not become barriers to emerging tech innovations Continue Reading
-
Feature
07 Oct 2024
Why responsible AI is a business imperative
Tools are emerging for real-world AI systems that focus more on responsible adoption, deployment and governance, rather than academic and philosophical questions about speculative risks Continue Reading
-
News
04 Oct 2024
NCSC celebrates eight years as Horne blows in
Outgoing NCSC interim leader Felicity Oswald shares her thoughts on the body’s work over the past eight years as she hands over the reins to incoming CEO Richard Horne Continue Reading
-
News
04 Oct 2024
Post Office senior executive suspended over allegations of destroying evidence
Statement to public inquiry reveals that investigation is underway over allegations that a senior Post Office executive instructed staff to destroy evidence Continue Reading
-
News
03 Oct 2024
Microsoft files lawsuit to seize domains used by Russian spooks
Microsoft has been given permission to seize multiple domains used by the Russian state threat actor Star Blizzard as part of a coordinated disruption effort undertaken ahead of the US elections Continue Reading
-
News
03 Oct 2024
SOC teams falling out of love with threat detection tools
Security operations centre practitioners are fed up of being flooded with pointless alerts and many no longer have much confidence in their threat detection tools, according to a report Continue Reading
-
News
03 Oct 2024
Local councils need ‘better support’ to buy AI responsibly
The Ada Lovelace Institute says there is lack of adequate support on how councils can safely and responsibly procure artificial intelligence systems in the public interest Continue Reading
-
Opinion
03 Oct 2024
Rise of the cyber clones: When seeing isn’t believing
It is frighteningly easy to clone someone else's identity using readily-available artificial intelligence tools Continue Reading
-
News
03 Oct 2024
Post Office and Fujitsu: from blood brothers to bad blood
Former Post Office chief transformation officer’s evidence to the public inquiry reveals organisation’s strained relationship with main IT supplier Fujitsu Continue Reading
-
News
02 Oct 2024
UK and Singapore to collaborate on supporting ransomware victims
At the fourth Counter Ransomware Initiative Summit in the US, both the UK and Singapore have committed to working on new guidance designed to better support victims and undermine cyber criminal business models Continue Reading
-
News
01 Oct 2024
APAC organisations embrace generative AI
Study reveals a surge in GenAI adoption across APAC, with businesses looking to train their own models, likely to address specific regional needs and market dynamics Continue Reading
-
News
01 Oct 2024
Post Office ditches MoneyGram after cyber attack
The Post Office offered a short extension to enable it to asses the impact of the MoneyGram cyber incident, but the contract has now expired and MoneyGram services are no longer available in Post Office branches Continue Reading
-
Opinion
30 Sep 2024
The cyber industry needs to accept it can't eliminate risk
The Computer Weekly Security Think Tank panel considers incident response in the wake of the July CrowdStrike incident, sharing their views on what CrowdStrike got wrong, what it did right, and next steps Continue Reading
-
News
30 Sep 2024
Investigation finds 'reasonable likelihood' Post Office Capture software caused accounting losses
An independent forensic analysis finds the predecessor to Horizon IT system was also likely to have caused shortfalls for which subpostmasters were blamed, years before the Post Office scandal Continue Reading
-
News
27 Sep 2024
Printing vulnerability affecting Linux distros raises alarm
Security pros need to get in front of a series of vulnerabilities affecting the Cups Linux printing service after an apparently botched disclosure process saw technical details published in advance of a patch Continue Reading
-
Opinion
27 Sep 2024
Defaulting to open: Decoding the (very public) CrowdStrike event
The Computer Weekly Security Think Tank panel considers incident response in the wake of the July CrowdStrike incident, sharing their views on what CrowdStrike got wrong, what it did right, and next steps Continue Reading
-
Opinion
27 Sep 2024
Cyber companies need a best practice approach to major incidents.
The Computer Weekly Security Think Tank panel considers incident response in the wake of the July CrowdStrike incident, sharing their views on what CrowdStrike got wrong, what it did right, and next steps Continue Reading
-
News
26 Sep 2024
Racist Network Rail Wi-Fi hack was work of malicious insider
Police have revealed that this week’s racist cyber attack on public Wi-Fi networks at stations across the UK appears to have been the work of a malicious insider, after arresting an employee of one of the service providers Continue Reading
-
News
26 Sep 2024
Subpostmasters living years with disputed but unresolved debts to the Post Office, inquiry told
Continued errors with the Horizon system mean subpostmasters have unresolved account shortfalls hanging over them for years Continue Reading
-
News
26 Sep 2024
Islamophobic cyber attack downs Wi-Fi at UK transport hubs
An apparent hacktivist attack disrupted public-facing Wi-Fi networks at UK rail stations to display Islamophobic content Continue Reading
-
News
25 Sep 2024
CrowdStrike apologises to US government for global mega-outage
CrowdStrike executive Adam Meyers appears before a US government committee to explain the series of errors that led directly to one of the biggest IT outages in history Continue Reading
-
News
25 Sep 2024
Post Office IT procurement mess saw £35m spent on air conditioner, says board member
Post Office IT procurement mistakes have wasted millions of pounds of taxpayers money, non-executive board member tells public inquiry Continue Reading
-
News
24 Sep 2024
Money transfer firm MoneyGram rushes to contain cyber attack
Money transfer specialist MoneyGram services remain down several days after a network outage developed into a full-blown cyber security incident Continue Reading
-
News
24 Sep 2024
Unique malware sample volumes seen surging
BlackBerry’s latest ‘Global threat intelligence’ report details a surge in unique malware samples as threat actors ramp up the pace of targeted attacks Continue Reading
-
Opinion
24 Sep 2024
How to respond when your cyber company becomes the story
The Computer Weekly Security Think Tank panel considers incident response in the wake of the July CrowdStrike incident, sharing their views on what CrowdStrike got wrong, what it did right, and next steps Continue Reading
-
News
23 Sep 2024
Microsoft shares progress on Secure Future Initiative
Microsoft has published a progress report on its Secure Future Initiative, launched last year in the wake of multiple security incidents, and made a series of commitments to improve its internal cyber culture Continue Reading