News
IT governance
-
December 01, 2023
01
Dec'23
Report reveals sorry state of cyber security at UK football clubs
Football clubs up and down the country are putting staff, players and fans alike at risk through outdated attitudes to cyber security, according to a report
-
December 01, 2023
01
Dec'23
Lords committee urges caution on UK use of autonomous weapons
UK government must ensure proper democratic oversight of its development and use of AI-powered weapon systems, says Lords committee
-
December 01, 2023
01
Dec'23
The Security Interviews: Mark McClain, SailPoint Technologies
SailPoint founder and CEO Mark McClain reflects on how the concept of identity has evolved over the past 20 years, and points to rapid evolution still to come
-
November 30, 2023
30
Nov'23
Government’s Online Fraud Charter welcomed
The government has corralled 11 of the largest tech platforms in the world to commit to its Online Fraud Charter, designed to tackle online scams, fake adverts, and more
-
November 30, 2023
30
Nov'23
Rhysida gang stole hundreds of gigabytes of British Library data
The Rhysida ransomware gang behind the cyber attack on the British Library has published almost 600GB of stolen data to its dark web leak site
-
November 30, 2023
30
Nov'23
Slow government response to Post Office scandal compensation forces new legislation
Subpostmasters who exposed widest miscarriage of justice in UK history still waiting for compensation after decades of fighting
-
November 29, 2023
29
Nov'23
Scope of Okta helpdesk breach widens to impact all users
Okta has widened the scope of the October breach of its systems to include every customer that has used its helpdesk service, after new information came to light
-
November 28, 2023
28
Nov'23
CCRC refers two posthumous subpostmaster appeals to Crown Court
CCRC refers posthumous appeals against convictions to Crown Court for first time
-
November 28, 2023
28
Nov'23
Scope of British Library data breach widens
Personal data on British Library users has appeared for sale on the dark web following a Rhysida ransomware attack, as the scope of the still-developing incident widens again
-
November 28, 2023
28
Nov'23
Volume of unique malware samples threatens to overwhelm defenders
A massive increase in malware volumes could cause problems for security teams tasked with adapting their defences against them
-
November 27, 2023
27
Nov'23
The Security Interviews: Zeki Turedi, field CTO Europe, CrowdStrike
Organisations are racing to keep their security up to date against the latest threats. CrowdStrike’s Zeki Turedi explains how to protect against novel and innovative cyber attacks
-
November 27, 2023
27
Nov'23
NCSC publishes landmark guidelines on AI cyber security
The NCSC and its US counterpart CISA have brought together tech companies and governments to countersign a new set of guidelines aimed at promoting a secure-by-design culture in AI development
-
November 24, 2023
24
Nov'23
UK police plan national roll-out of facial-recognition phone app
UK police chiefs plan to expand use of facial-recognition technology through a nationwide roll-out of mobile-based tools and increases in retrospective facial-recognition, but oversight problems persist
-
November 23, 2023
23
Nov'23
DWP to surveil bank accounts of benefit claimants for fraud
The UK government has outlined how it plans to tackle benefit fraud by giving the Department for Work and Pensions new powers compelling banks to collect and share data on claimants’ bank accounts
-
November 23, 2023
23
Nov'23
MOVEit incident spurred UK decision makers to spend big on cyber
The MOVEit cyber attacks that unfolded in the spring and summer of 2023 seem to have driven an increase in both ransomware awareness and spend, according to a report
-
November 23, 2023
23
Nov'23
North Korean APTs go all in on supply chain attacks, warns NCSC
Threat actors linked to the North Korean regime are becoming more adept at targeting software supply chains in the service of their cyber attacks
-
November 22, 2023
22
Nov'23
An inside look at a Scattered Spider cyber attack
Threat researchers at ReliaQuest share the inside track on a Scattered Spider cyber attack they investigated
-
November 22, 2023
22
Nov'23
Palantir awarded NHS FDP data contract
NHS England has awarded a £330m, seven-year contract to US data specialist Palantir, prompting concerns from data privacy practitioners
-
November 22, 2023
22
Nov'23
CISA reveals how LockBit hacked Boeing via Citrix Bleed
As alarm grows around the world about the impact of the so-called Citrix Bleed vulnerability, Boeing has shared details of its experience at the hands of the LockBit ransomware crew
-
November 21, 2023
21
Nov'23
Over half of SME cyber incidents now ‘malware-free’
The age of malware-driven cyber attacks may have peaked, at least when it comes to incidents affecting small and medium sized enterprises
-
November 21, 2023
21
Nov'23
Canada’s Mounties among government employees hit by LockBit
A LockBit attack on a specialist supplier of relocation services has engulfed multiple government agencies in Canada
-
November 20, 2023
20
Nov'23
Kingfisher develops AI-agnostic platform to power DIY assistant
The platform provides a framework for security and compliance and enables developers to test different large language models
-
November 20, 2023
20
Nov'23
JPMorgan Chase tops bank AI ranking
Report reveals that JPMorgan Chase is the world's top bank for AI, along with Capital One and Royal Bank of Canada, but Europeans are lagging behind
-
November 20, 2023
20
Nov'23
IT not ready for AI, Pure Storage survey finds
Storage, compute and networking hardware won’t cope without upgrades, and that often means total IT infrastructure overhaul
-
November 17, 2023
17
Nov'23
Does third-party support make sense?
We speak to a Rimini Street customer about their experience of managing an Oracle ERP
-
November 16, 2023
16
Nov'23
Royal Mail spent £10m on cyber measures after LockBit attack
Royal Mail has spent approximately £10m on recovery and improved cyber resilience measures in the wake of the January 2023 LockBit ransomware attack
-
November 16, 2023
16
Nov'23
Outgoing police tech watchdog warns of declining oversight
The outgoing biometrics and surveillance camera commissioner for England and Wales discusses police deployment of powerful new surveillance technologies, and the declining state of oversight in this area
-
November 16, 2023
16
Nov'23
Interview: Dan Huddart, CTO, Homeprotect
After building up experience in the insurance sector, Homeprotect’s chief technology officer sought the freedom to innovate being offered at the rapidly scaling company
-
November 16, 2023
16
Nov'23
Ransomware gang grasses up uncooperative victim to US regulator
The ALPHV/BlackCat ransomware gang has added a new tactic to its playbook, going to ever more extreme lengths in search of a pay-off
-
November 16, 2023
16
Nov'23
British Library’s Halloween cyber scare was ransomware
The British Library has provided an update on an ongoing cyber incident affecting its systems, confirming it to be the result of a ransomware attack
-
November 15, 2023
15
Nov'23
BlackCat affiliate seen using malvertising to spread ransomware
Researchers at eSentire identified a wave activity from an ALPHV/BlackCat ransomware affiliate which has adopted a somewhat unusual approach to delivering its locker
-
November 15, 2023
15
Nov'23
November Patch Tuesday heralds five new MS zero-days
Microsoft pushes fixes for five new zero-days in its latest monthly update
-
November 15, 2023
15
Nov'23
US government reinforces ICBC hack link to Citrix Bleed
US Treasury adds weight to reports that a ransomware gang gained access to the systems of Chinese bank ICBC by exploiting a critical Citrix flaw
-
November 14, 2023
14
Nov'23
Fast-acting cyber gangs increasingly disabling telemetry logs
Sophos guidance for security practitioners and defenders highlights a growing trend for threat actors to disable or wipe telemetry logs to cover their tracks
-
November 14, 2023
14
Nov'23
Francis Maude calls for GDS and CDDO to merge
Review into the civil service by the former Cabinet Office minister says the two organisations should become one entity to avoid sending mixed signals around accountability and leadership
-
November 13, 2023
13
Nov'23
Rogue state-aligned actors are most critical cyber threat to UK
The prospect of rogue nation-state-aligned attackers bringing down the UK’s critical infrastructure is keeping the NCSC up at night
-
November 13, 2023
13
Nov'23
Lloyds Bank warns over rising threat of crypto scams
Report by Lloyds Banking Group finds there has been a 23% increase in cryptocurrency scams in 2023 compared with last year, targeting mostly younger investors
-
November 13, 2023
13
Nov'23
Victims’ legal action over 2015 Carphone Warehouse breach moves forward
A class action against Currys Retail over the 2015 data breach of Carphone Warehouse customers has been granted permission to move forward in the courts
-
November 10, 2023
10
Nov'23
UN disarmament body calls for global action on autonomous weapons
UN draft resolution highlighting the dangers of autonomous weapons passes with overwhelming majority
-
November 10, 2023
10
Nov'23
Ransomware attack on major Chinese lender disrupts financial markets
The financial services arm of one of the world’s largest banks was taken offline by a supposed LockBit ransomware attack, causing problems for US markets
-
November 09, 2023
09
Nov'23
UK government does not see need for specific AI legislation
The UK government does not currently see the need for new artificial intelligence legislation, as many regulators are already dealing effectively with AI-related harms
-
November 09, 2023
09
Nov'23
The Security Interviews: Why cyber needs to integrate better
Cyber security is an intensely technical field, but we shouldn’t ignore the soft skills of communication and collaboration. Wipro’s Tony Buffomante explains why a robust security posture is dependent on a security team engaging with the wider ...
-
November 08, 2023
08
Nov'23
Former Post Office manager has no memory of preparing witness statement in legal dispute
Evidence of computer problems was omitted from the witness statement of a former Post Office manager in a legal battle with a subpostmaster blamed for unexplained accounting shortfalls
-
November 08, 2023
08
Nov'23
Data-sharing management gap highlights cyber risk, says report
Organisations are struggling to secure their use of communications tools to share data with third-party partners and suppliers, and in the process are exposing themselves to heightened levels of risk, according to a report
-
November 08, 2023
08
Nov'23
AI Summit not the place for human rights, says French finance minister
Despite commitments at the UK’s AI Safety Summit to respect and protect human rights, the French finance minister said it was not the right forum to discuss signatories' human rights records
-
November 08, 2023
08
Nov'23
Iconic Singapore hotel caught up in major data breach
The Marina Bay Sands resort in Singapore uncovered a data breach of its guest loyalty programme last month
-
November 08, 2023
08
Nov'23
King’s Speech misses the mark on cyber law reform, says campaign
A group of activists who want to reform the UK’s computer misuse laws to protect bona fide cyber pros from prosecution have been left disappointed by a lack of legislative progress
-
November 08, 2023
08
Nov'23
The Security Interviews: ISC2’s Clar Rosso on cyber diversity and policy
Computer Weekly catches up with ISC2 CEO Clar Rosso to talk about diversifying the cyber workforce and supporting cyber pros as they keep up with growing compliance and security policy demands
-
November 07, 2023
07
Nov'23
Unesco unveils seven-point anti-disinformation plan
United Nations body outlines seven proposals for civil society, governments, regulators and tech platforms to adopt to combat the source of disinformation
-
November 07, 2023
07
Nov'23
AI Safety Summit review
Computer Weekly takes stock of the UK government’s AI Safety Summit and the differing perspectives around its success