News

IT for telecoms and internet organisations

• May 17, 2022 17 May'22

  (ISC)² to train 100,000 cyber pros in UK

  Security association (ISC)² unveils ambitious UK training programme

• May 13, 2022 13 May'22

  Pro-competition data sharing will not include users’ personal info, says minister

  UK government proposals to improve competition in digital markets by making tech giants share data with smaller firms will not include consumers’ personal information, says digital minister

• May 11, 2022 11 May'22

  CyberUK 22: Five Eyes focuses on MSP security

  The western intelligence community has set out practical steps IT service providers and their customers can take to protect themselves

• May 11, 2022 11 May'22

  Cyber accreditation body Crest forges new training partnerships

  Crest says partnerships with Hack The Box and Immersive Labs will enhance its members’ defensive and offensive security skills

• May 11, 2022 11 May'22

  Microsoft fixes three zero-days on May Patch Tuesday

  It’s the second-to-last Patch Tuesday as we know it, and Microsoft has fixed a total of 75 bugs, including three zero-days

• May 11, 2022 11 May'22

  EU plans to police child abuse raise fresh fears over encryption and privacy rights

  Draft regulation unveiled today will require internet and messaging firms to use algorithms to identify grooming and child abuse or face heavy fines

• May 10, 2022 10 May'22

  CyberUK 22: Cyber leaders affirm UK’s whole-of-society strategy

  On the opening day of CyberUK 2022, GCHQ director Jeremy Fleming and NCSC CEO Lindy Cameron have spoken of their commitment to the government’s ambition for a whole-of-society cyber strategy

• May 10, 2022 10 May'22

  CyberUK 22: NCSC refreshes cloud security guidance

  The National Cyber Security Centre is revising its cloud guidance as increasing uptake of potentially vulnerable cloud services puts more organisations at risk of compromise

• May 06, 2022 06 May'22

  UK digital markets regulator to be given statutory powers

  Digital Markets Unit will be put on statutory footing by UK government to ensure technology giants do not abuse market power, but announcement comes with no clear indication of when legislation will be introduced

• May 03, 2022 03 May'22

  Five TLS comms vulnerabilities hit Aruba, Avaya switching kit

  Five new vulnerabilities in the implementation of transport layer security communications leave several popular switches vulnerable to remote code execution

• April 28, 2022 28 Apr'22

  Ransomware recovery costs dwarf actual ransoms

  The cost of recovering from a ransomware attack far outweighs the ransoms now being demanded by cyber criminals, according to recent data

• April 28, 2022 28 Apr'22

  Russia plumbs new depths in cyber war on Ukraine

  Microsoft details cyber attacks on Ukrainian civilian communications, nuclear safety authorities, and the exploitation of the destruction of Mariupol in a phishing campaign

• April 27, 2022 27 Apr'22

  Log4Shell, ProxyLogon, ProxyShell among most exploited bugs of 2021

  These 15 CVEs were the most commonly exploited last year, and if you haven’t mitigated against them, now is the time

• April 27, 2022 27 Apr'22

  Ransomware victims paying out when they don’t need to

  Sophos’s annual State of Ransomware report shows dramatic increases in the impact of ransomware attacks, but also finds many organisations are paying ransoms when they don’t need to

• April 27, 2022 27 Apr'22

  Government digital ignorance puts Dutch economy at risk

  In this interview, Michiel Steltman, managing director of Digital Infrastructure Netherlands, tells Computer Weekly why the Dutch digital economy is at risk due to a lack of knowledge and understanding at government level

• April 26, 2022 26 Apr'22

  BCS passes defiant Ukrainian tech industry message to its members

  BCS, the Chartered Institute for IT, has passed on a message from Ukrainian IT suppliers that the country is open for, and in need of, business

• April 26, 2022 26 Apr'22

  Emotet tests new tricks to thwart enhanced security

  The operators of the Emotet botnet seem to be trying to find a way to get around recent changes made by Microsoft to better protect its users

• April 26, 2022 26 Apr'22

  Danish researcher explains zero-knowledge proofs and post-quantum encryption

  A graduate from the University of Aarhus, a Danish researcher is now a leading player in some of the most important issues in cyber security

• April 21, 2022 21 Apr'22

  Five Eyes in new Russia cyber warning

  Latest cross-body alert warns of Russian threat to utilities and other core elements of national infrastructure

• April 21, 2022 21 Apr'22

  Tech to account for over half of regulatory compliance spending

  By 2026, regtech will account for more than half of the money that businesses spend on compliance with regulations

• April 13, 2022 13 Apr'22

  WatchGuard firewall users urged to patch Cyclops Blink vulnerability

  The US authorities have seen fit to add the WatchGuard vulnerability used by Sandworm to build the Cyclops Blink botnet to its list of must-patch vulnerabilities

• April 13, 2022 13 Apr'22

  Microsoft patches two zero-days, 10 critical bugs

  Patch Tuesday is here once again. This month, security teams must fix two privilege escalation zero-days in the Windows Common Log File System Driver and the Windows User Profile Service

• April 07, 2022 07 Apr'22

  Amazon workers defeat company to form first US union

  Amazon warehouse workers in Staten Island, New York, have successfully formed the first union at the company, with organisers pledging to help their colleagues across the US do the same

• April 07, 2022 07 Apr'22

  European IT and BPO outsourcing off to strong start

  European IT and business process outsourcing services continue to increase rapidly, with cloud-based services now more than half of the total

• April 05, 2022 05 Apr'22

  Secrecy over police EncroChat hacking is unconstitutional, defence lawyers tell top French court

  France’s constitutional court, the Conseil Constitutionnel, has heard arguments that the use of ‘defence secrecy’ to withhold information about police surveillance operations breaches the French constitution

• April 05, 2022 05 Apr'22

  Triple-threat Borat malware no joke for victims

  Unlike its namesake, the newly discovered Borat malware won’t raise a smile for IT security pros

• April 05, 2022 05 Apr'22

  Saudi Arabian ICT sector hits $32.1bn after strong pandemic response

  The Saudi Arabian IT and communications sector is recovering strongly from the Covid-19 pandemic

• April 04, 2022 04 Apr'22

  Environmental campaigners halt Meta datacentre construction in the Netherlands

  Datacentre being built to serve ‘metaverse’ worlds would consume nearly half as much energy as all other datacentres in the country

• April 01, 2022 01 Apr'22

  Two teenagers charged with Lapsus$ cyber attacks

  City of London Police have charged two teenagers in connection with the Lapsus$ cyber crime spree

• April 01, 2022 01 Apr'22

  Four moves to ‘checkmate’ critical assets thanks to lax cloud security

  Malicious actors can compromise 94% of critical assets within four steps of the initial breach point, according to a report

• March 31, 2022 31 Mar'22

  Lapsus$ cyber crime spree continues despite arrests

  The arrests of seven people in connection with the Lapsus$ cyber crime group has not dented the gang’s enthusiasm for causing chaos

• March 30, 2022 30 Mar'22

  One-third of UK firms suffer a cyber attack every week

  New statistics from the annual DCMS Cyber security breaches survey reveal the extent and frequency with which UK organisations are being attacked by malicious actors

• March 29, 2022 29 Mar'22

  NCSC: Not necessarily wise to ditch Kaspersky

  UK’s National Cyber Security Centre issues refreshed guidance on organisations’ usage of technology and services of Russian origin, but stops short of advising users to expunge all Russian products from their IT estates

• March 29, 2022 29 Mar'22

  Wave of Log4j-linked attacks targeting VMware Horizon

  Sophos issues a new warning to organisations that have so far failed to patch their VMware Horizon servers against Log4Shell

• March 28, 2022 28 Mar'22

  Most big businesses are taking up banking as a service

  API-based banking services allow corporate customers to offer financial services without the need for heavy tech development or regulatory approval

• March 23, 2022 23 Mar'22

  Chinese state media use Facebook to push pro-Russia disinformation on Ukraine war

  Facebook owner Meta accused of failing to follow its own policies by not disclosing how Chinese state media were targeting Facebook users with ‘propaganda’ ads about the conflict in Ukraine

• March 18, 2022 18 Mar'22

  Ukrainian cyber defences prove resilient

  Thanks to a combination of prior experience and global support, Ukraine’s defences against cyber incidents are holding strong in the face of Russian attacks

• March 17, 2022 17 Mar'22

  Online Safety Bill introduced in Parliament

  The government has introduced its long-awaited Online Safety Bill in Parliament, alongside new criminal offences and sanctions for tech company execs

• March 17, 2022 17 Mar'22

  How multiphysics simulation might accelerate the advent of quantum computing – and vice versa

  Sophisticated tools that simulate more than one physical phenomenon at a time may help designers home in on optimal architectures for quantum computers at less cost – and much faster

• March 16, 2022 16 Mar'22

  German authorities warn on Kaspersky but stop short of ban

  Germany authorities warn Kaspersky users to consider alternatives to the firm’s flagship antivirus software, citing national security concerns and the war on Ukraine

• March 15, 2022 15 Mar'22

  Meta fined €17m over EU data breaches

  The Irish Data Protection Commissioner has fined Meta after finding it in breach of GDPR rules

• March 11, 2022 11 Mar'22

  AWS launches its first UK healthtech accelerator

  A cohort of 12 startups will use AWS resources to accelerate their technology and business development, with opportunities to sell to public sector healthcare organisations at the end

• March 11, 2022 11 Mar'22

  Kaspersky forced to deny source code leak

  Kaspersky says an alleged leak of its source code was in fact material anyone could have gleaned from its public servers

• March 10, 2022 10 Mar'22

  Tech brands sign on to HackerOne responsible security drive

  Tech companies sign HackerOne’s new corporate security responsibility pledge to bring cyber out of the shadows and promote effective, secure development practices

• March 09, 2022 09 Mar'22

  Paid-for advertising measures included in Online Safety Bill

  New measures to deal with fraudulent paid-for advertising have been included in the government’s draft Online Safety Bill, marking the fourth extension in two months

• March 09, 2022 09 Mar'22

  China’s APT41 exploited Log4j within hours

  APT41 compromised multiple government organisations via the Log4Shell exploit within hours of its initial disclosure, Mandiant claims

• March 09, 2022 09 Mar'22

  Microsoft serves up three zero-days on March Patch Tuesday

  Three zero-days pop up in Microsoft’s March update, along with a number of other noteworthy concerns for defenders

• March 03, 2022 03 Mar'22

  Boardroom does not see ransomware as a priority

  Less than a quarter of company directors think ransomware is a top priority for their security teams, according to Egress

• March 03, 2022 03 Mar'22

  Use of encrypted Telegram platform soars in Ukraine, Russia

  Encrypted messaging service Telegram is proving a valuable asset to both sides in Russia’s war on Ukraine

• March 02, 2022 02 Mar'22

  Gothenburg University makes breakthrough in energy efficient computers

  Swedish and Japanese universities make advancement in the development of computers that can work as energy efficiently as a brain