News

Application security and coding requirements

• June 20, 2016 20 Jun'16

  Lower average cost of Australian data breaches is not a sign of comfort

  The average cost of a data breach to Australian organisations dropped in 2015, according to research

• June 12, 2016 12 Jun'16

  Philippines government data breach is a warning to Asean region

  Security is a rising concern in the Asean region, with fears fuelled by incidents such as the recent hacking incident in Manila

• April 29, 2016 29 Apr'16

  Cyber security in Belgium will gain prominence after terror attacks

  Belgium’s physical security has been branded inadequate, so how does the country’s cyber security measure up?

• April 13, 2016 13 Apr'16

  NCA attempts 'back door' access to obtain activist Lauri Love’s passwords

  Court told that use of civil proceedings to force disclosure of alleged hacker Lauri Love's passwords is disproportionate and would breach human rights law

• March 31, 2016 31 Mar'16

  Adwind at centre of cyber attack on Singapore bank

  Kaspersky Lab has revealed that the Adwind malware-as-a-service platform was at the centre of an attack on a Singapore bank

• March 23, 2016 23 Mar'16

  Gov.uk Verify not secure enough for NHS, says HSCIC

  The government’s Verify identity verification platform isn’t secure enough for the NHS, so Liverpool Clinical Commissioning Group and HSCIC are working to add extra levels of security

• January 29, 2016 29 Jan'16

  HSBC online services hit by DDoS attack

  HSBC was hit by a distributed denial of service (DDoS) attack, which targeted its online personal banking services.

• December 24, 2015 24 Dec'15

  Top 10 IT security stories of 2015

  Computer Weekly looks back at the most significant stories on IT security in the past 12 months

• December 07, 2015 07 Dec'15

  Cyber attacks an increasing concern for Asean countries

  Organisations in the Association of Southeast Asian Nations are increasingly the targets for cyber criminals, according to a report focused on the region

• December 03, 2015 03 Dec'15

  Veracode finds most web apps fail Owasp security check list

  The findings of a report on critical vulnerabilities in most web applications is raising concerns over potential security vulnerabilities in millions of websites

• September 18, 2015 18 Sep'15

  Public-private co-operation in the Nordics tackles growing cyber crime threat

  Nordic governments and businesses are putting cyber security at the centre of their planning as threats increase

• September 09, 2015 09 Sep'15

  Security vulnerability management more than patching, warns Secunia

  Keeping track of what makes an IT environment vulnerable is an ongoing and complex task, according to Secunia

• July 31, 2015 31 Jul'15

  Commercial software more secure than open source, finds report

  A study has found that commercial code is more compliant than open source code with security compliance standards, such as the Owasp top 10 and the CWE top 25

• June 26, 2015 26 Jun'15

  Computer Weekly European User Awards 2015 winners revealed

  The winners have been announced for the Computer Weekly European User Awards 2015. See who made the top spots

• June 24, 2015 24 Jun'15

  IT professionals give Windows 10 Start button the thumbs up

  A survey of European and North American IT professionals has found that the return of the Start button is the most enticing feature in Microsoft's latest operating system

• June 23, 2015 23 Jun'15

  Pharmaceutical companies use BPM to cut cost of clinical trial drugs

  Pharmaceutical companies have developed an IT system to secure the supply of medicines they need for clinical studies, saving hundreds of thousands on their drugs bill in the process

• May 26, 2015 26 May'15

  NATS failure down to bug from the 90s and redundant code

  A bug present in Nats since 1990s has been identified as the root cause of the five-hour outage of UK air traffic control on 12 December 2014

• May 18, 2015 18 May'15

  Whitehall technology chiefs vetoed new Windows XP support deal

  Government technology chiefs vetoed a new deal with Microsoft to continue Windows XP support to force laggards to move off the OS

• April 30, 2015 30 Apr'15

  IoT benefits and privacy not mutually exclusive, says industry expert

  It is possible to mitigate the privacy and security risks of the internet of things (IoT) without losing its benefits, according to an industry expert

• February 27, 2015 27 Feb'15

  Case study: Norwegian insurer invests in Darktrace machine-learning cyber defence

  Shipping insurance company DNK hopes to inspire the rest of the shipping industry to adopt Darktrace’s cyber defence system

• February 24, 2015 24 Feb'15

  PrivDog SSL compromise potentially worse than Superfish

  Some versions of PrivDog software designed to block online ads compromise internet security in a similar way to Superfish

• January 06, 2015 06 Jan'15

  Google under fire over Windows zero-day disclosure

  Google has come under fire for publishing a proof-of-concept attack exploiting a flaw in Windows 8.1 before Microsoft had released a security update

• December 17, 2014 17 Dec'14

  Cabinet Office begins procurement for next stage of Gov.uk Verify

  The Cabinet Office has submitted a tender notice for a £150m three-year framework for the provision of identity assurance services

• December 17, 2014 17 Dec'14

  US interception in the EU faces new legal challenges

  US government orders against Microsoft to hand over email data 'infringes privacy legislation' in other countries

• November 28, 2014 28 Nov'14

  CGI secures communications between pilots and air traffic control

  Satellite communications firm Inmarsat has outsourced the provision of security IT and services to CGI

• October 09, 2014 09 Oct'14

  WordPress most attacked application

  Websites that run the WordPress content management system are attacked 24% more often than those using other systems

• October 08, 2014 08 Oct'14

  Malware being used to steal cash from ATMs

  Criminals are using malware to steal cash from ATMs without debit and credit cards

• September 17, 2014 17 Sep'14

  KPMG: IoT, 3D printing and healthcare IT to have most impact

  Internet of things (IoT), 3D printing and biotech or healthcare IT are among the IT trends that will change the way people work and live

• September 15, 2014 15 Sep'14

  Salesforce issues advice on avoiding Dyreza attack

  Salesforce has issued a set of guidelines on tightening security after a number of its customers were targeted by the Dyreza email virus

• August 27, 2014 27 Aug'14

  Security experts identify top 10 software design flaws

  The IEEE Center for Secure Design has published a report on how to avoid the top 10 software security design flaws

• August 11, 2014 11 Aug'14

  USB-connected devices present cyber vulnerabilities

  Connecting devices to computers using a USB port could lead to security breaches, say Berlin-based researchers

• July 04, 2014 04 Jul'14

  Barclays passes government’s ‘internet-born threat’ test

  Barclays Bank has been awarded the government’s cyber security certificate for digital banking services after independent tests of services such as Pingit

• July 03, 2014 03 Jul'14

  Netflix releases its AWS monitoring tool Security Monkey into the wild

  Netflix has made Security Monkey, the AWS tracker tool it built for itself, freely available to other Amazon cloud users

• April 25, 2014 25 Apr'14

  Heartbleed prompts tech firms to pledge open-source support

  Top tech firms have joined forces to support open-source software to help prevent future bugs like Heartbleed

• April 17, 2014 17 Apr'14

  Datacentre lessons learnt from Heartbleed bug

  The Heartbleed bug, an OpenSSL flaw affecting millions of websites, has some lessons for datacentre providers and operators

• February 21, 2014 21 Feb'14

  Employee mobiles expose firms to attack, says Webroot

  Employees mobile devices expose companies to malicious applications and attacks, according to the latest mobile threat report from Webroot

• February 05, 2014 05 Feb'14

  Bank of England publishes Waking Shark II cyber security exercise results

  Bank of England publishes the results of its Waking Shark II security exercise, which tested financial institutions' contingency plans for cyber attack

• January 23, 2014 23 Jan'14

  US startup aims to turn tables on hackers

  US startup Shape Security is turning the tables against hackers by using one of their own techniques against them

• January 10, 2014 10 Jan'14

  More than 1,100 DWP workers disciplined over benefits snooping

  More than 1,100 employees at the Department for Work and Pensions have received official warnings since 2008 for prying into benefits records

• December 05, 2013 05 Dec'13

  UK citizen sues Microsoft over Prism private data leak to NSA

  A court action brought in the UK will test Microsoft's legal right to disclose private data on UK citizens to US intelligence services

• October 30, 2013 30 Oct'13

  Identity assurance system moves into beta test phase

  The Government Digital Service has started testing of a key system to support plans for citizens to securely prove their identity when accessing online public services

• August 23, 2013 23 Aug'13

  Box.com forges new cloud security model

  Service providers and consumers need to move to a security model better suited to the cloud computing, says Box.com

• July 19, 2013 19 Jul'13

  Facebook to acquire UK startup Monoidics

  Facebook is to acquire UK startup Monoidics, which makes code verification and analysis tools and specialises in detecting coding errors

• July 15, 2013 15 Jul'13

  Black market for software security flaws reaches new highs

  The black market in previously undiscovered vulnerabilities in commercial software is so established that the average flaw sells for up to $160,000

• June 10, 2013 10 Jun'13

  Telefonica Digital forms security group Eleven Paths

  The business division of mobile operator Telefonica launches Eleven Paths, an independent company working on security issues in the workplace

• May 15, 2013 15 May'13

  Microsoft declares conformance with ISO 27034-1

  Microsoft has declared conformance with ISO 27034-1, the first part of an international standard for secure software development

• May 13, 2013 13 May'13

  Cyber criminals hack Washington court system

  Hackers gain access to the personal data of 160,000 US citizens after compromising Washington State court service servers

• April 22, 2013 22 Apr'13

  US jails LulzSec hacker Cody Kretsinger

  The US has jailed a member of hacktivist group LulzSec for a year for his role in breaching computer systems at Sony Pictures Entertainment in 2011

• April 19, 2013 19 Apr'13

  Conficker makes way for web-based attacks, says Microsoft

  Web attacks emerge as top threat as businesses finally begin to win the battle against Conficker and other worms, says Microsoft

• April 11, 2013 11 Apr'13

  Bots and web apps among top threats to data security, says Check Point

  Bots, viruses, breaches and attacks are a constant and real threat to the information security of organisations