News

IT governance

• October 10, 2024 10 Oct'24

  Government launches cyber standard for local authorities

  Local government bodies are being invited to take advantage of a new NCSC-derived Cyber Assessment Framework to help enhance their resilience and ward off cyber attacks

• October 10, 2024 10 Oct'24

  Internet Archive web historians target of hacktivist cyber attack

  The Internet Archive nonprofit digital library and Wayback Machine operator has been attacked by pro-Palestinian hacktivists

• October 10, 2024 10 Oct'24

  How Recorded Future finds ransomware victims before they get hit

  Threat intel specialists at Recorded Future have shared details of newly developed techniques they are using to disrupt Rhysida ransomware attacks before the gang even has a chance to execute them

• October 10, 2024 10 Oct'24

  UK and US pledge closer working on children’s online safety

  In their first agreement on the subject of children’s online safety, the UK and US governments have said they will create a new working group to boost cooperation

• October 10, 2024 10 Oct'24

  Australia bolsters cyber defences with security bill

  Legislation tackles IoT security and establishes a Cyber Incident Review Board to bolster Australia’s cyber resilience

• October 09, 2024 09 Oct'24

  MoneyGram customer data breached in attack

  MoneyGram confirms that customer data has been stolen in an incident that appears to have started with a social engineering attack on its IT helpdesk staff

• October 09, 2024 09 Oct'24

  Five zero-days to be fixed on October Patch Tuesday

  Stand-out vulnerabilities in Microsoft’s latest Patch Tuesday drop include problems in Microsoft Management Console and the Windows MSHTML Platform

• October 08, 2024 08 Oct'24

  Secureworks: Ransomware takedowns didn’t put off cyber criminals

  The number of active cyber criminal ransomware gangs has surged by almost a third in the space of 12 months, according to the latest intelligence from Secureworks

• October 08, 2024 08 Oct'24

  Post Office IT transformation project was ‘set up to fail’, chairman tells inquiry

  Post Office interim chairman tells Horizon public inquiry that the Post Office needs to reset New Branch IT project

• October 08, 2024 08 Oct'24

  UK’s cyber incident reporting law to move forward in 2025

  The UK government says that enforced cyber incident and ransomware reporting for critical sectors of the economy will help to build a better picture of the threat landscape and enable more proactive and preventative responses

• October 08, 2024 08 Oct'24

  Can the Post Office project to replace Horizon be rescued?

  Evidence from the Post Office public inquiry shows huge problems with the critical project to replace the troubled Horizon IT system – after two government-mandated reviews, is there any sign it can succeed?

• October 07, 2024 07 Oct'24

  Labour sets up new office to coordinate tech innovation regulations

  The newly formed Regulatory Innovation Office has been set up to ensure existing regulations do not become barriers to emerging tech innovations

• October 04, 2024 04 Oct'24

  NCSC celebrates eight years as Horne blows in

  Outgoing NCSC interim leader Felicity Oswald shares her thoughts on the body’s work over the past eight years as she hands over the reins to incoming CEO Richard Horne

• October 04, 2024 04 Oct'24

  Post Office senior executive suspended over allegations of destroying evidence

  Statement to public inquiry reveals that investigation is underway over allegations that a senior Post Office executive instructed staff to destroy evidence

• October 03, 2024 03 Oct'24

  Microsoft files lawsuit to seize domains used by Russian spooks

  Microsoft has been given permission to seize multiple domains used by the Russian state threat actor Star Blizzard as part of a coordinated disruption effort undertaken ahead of the US elections

• October 03, 2024 03 Oct'24

  SOC teams falling out of love with threat detection tools

  Security operations centre practitioners are fed up of being flooded with pointless alerts and many no longer have much confidence in their threat detection tools, according to a report

• October 03, 2024 03 Oct'24

  Local councils need ‘better support’ to buy AI responsibly

  The Ada Lovelace Institute says there is lack of adequate support on how councils can safely and responsibly procure artificial intelligence systems in the public interest

• October 03, 2024 03 Oct'24

  Post Office and Fujitsu: from blood brothers to bad blood

  Former Post Office chief transformation officer’s evidence to the public inquiry reveals organisation’s strained relationship with main IT supplier Fujitsu

• October 02, 2024 02 Oct'24

  UK and Singapore to collaborate on supporting ransomware victims

  At the fourth Counter Ransomware Initiative Summit in the US, both the UK and Singapore have committed to working on new guidance designed to better support victims and undermine cyber criminal business models

• October 01, 2024 01 Oct'24

  APAC organisations embrace generative AI

  Study reveals a surge in GenAI adoption across APAC, with businesses looking to train their own models, likely to address specific regional needs and market dynamics

• October 01, 2024 01 Oct'24

  Post Office ditches MoneyGram after cyber attack

  The Post Office offered a short extension to enable it to asses the impact of the MoneyGram cyber incident, but the contract has now expired and MoneyGram services are no longer available in Post Office branches

• September 30, 2024 30 Sep'24

  Investigation finds 'reasonable likelihood' Post Office Capture software caused accounting losses

  An independent forensic analysis finds the predecessor to Horizon IT system was also likely to have caused shortfalls for which subpostmasters were blamed, years before the Post Office scandal

• September 27, 2024 27 Sep'24

  Printing vulnerability affecting Linux distros raises alarm

  Security pros need to get in front of a series of vulnerabilities affecting the Cups Linux printing service after an apparently botched disclosure process saw technical details published in advance of a patch

• September 26, 2024 26 Sep'24

  Racist Network Rail Wi-Fi hack was work of malicious insider

  Police have revealed that this week’s racist cyber attack on public Wi-Fi networks at stations across the UK appears to have been the work of a malicious insider, after arresting an employee of one of the service providers

• September 26, 2024 26 Sep'24

  Subpostmasters living years with disputed but unresolved debts to the Post Office, inquiry told

  Continued errors with the Horizon system mean subpostmasters have unresolved account shortfalls hanging over them for years

• September 26, 2024 26 Sep'24

  Islamophobic cyber attack downs Wi-Fi at UK transport hubs

  An apparent hacktivist attack disrupted public-facing Wi-Fi networks at UK rail stations to display Islamophobic content

• September 25, 2024 25 Sep'24

  CrowdStrike apologises to US government for global mega-outage

  CrowdStrike executive Adam Meyers appears before a US government committee to explain the series of errors that led directly to one of the biggest IT outages in history

• September 25, 2024 25 Sep'24

  Post Office IT procurement mess saw £35m spent on air conditioner, says board member

  Post Office IT procurement mistakes have wasted millions of pounds of taxpayers money, non-executive board member tells public inquiry

• September 24, 2024 24 Sep'24

  Money transfer firm MoneyGram rushes to contain cyber attack

  Money transfer specialist MoneyGram services remain down several days after a network outage developed into a full-blown cyber security incident

• September 24, 2024 24 Sep'24

  Unique malware sample volumes seen surging

  BlackBerry’s latest ‘Global threat intelligence’ report details a surge in unique malware samples as threat actors ramp up the pace of targeted attacks

• September 23, 2024 23 Sep'24

  Microsoft shares progress on Secure Future Initiative

  Microsoft has published a progress report on its Secure Future Initiative, launched last year in the wake of multiple security incidents, and made a series of commitments to improve its internal cyber culture

• September 23, 2024 23 Sep'24

  Home Office eVisa scheme is ‘broken’, says Open Rights Group

  Digital rights campaigners say the Home Office’s plan to make its new electronic Visa scheme a real-time online-only process is part and parcel of the 'hostile environment' around immigration status

• September 20, 2024 20 Sep'24

  UN body urges ‘globally inclusive and distributed’ AI governance

  A United Nations body set up to investigate the international governance of AI says the nature of how the technology currently operates requires a global approach to regulation that prioritises equity and inclusion

• September 19, 2024 19 Sep'24

  CIOs urged to pace AI adoption

  At the recent Gartner IT Symposium 2024 in Gold Coast, experts call for CIOs to pace their adoption of AI, manage costs and embrace ‘augmented leadership’

• September 18, 2024 18 Sep'24

  NCSC exposes Chinese company running malicious Mirai botnet

  The NCSC and its Five Eyes allies have published details of the activities of a China-based cyber security company that is operating a Mirai IoT botnet in the service of government-backed intrusions

• September 18, 2024 18 Sep'24

  Public digital transformation will be challenged by austerity

  Public sector and IT industry figures gathered at TechUK’s 10th annual Building the Smarter State event discussed how Labour’s ‘mission-driven’ policy approach can drive digital transformation efforts in the context of fresh austerity measures

• September 17, 2024 17 Sep'24

  Salesforce’s agentic AI platform to transform business automation

  CRM giant’s Agentforce lets organisations build and deploy autonomous agents to automate business processes through advanced learning and data integration

• September 17, 2024 17 Sep'24

  Fujitsu loses £50m in sales after Post Office scandal furore

  Supplier of the controversial Horizon IT system has been hit by public outrage after the Post Office scandal became mainstream news

• September 12, 2024 12 Sep'24

  Lord introduces bill to regulate public sector AI and automation

  A private members’ bill seeking to regulate the use of artificial intelligence (AI) and other automated technologies throughout the public sector has been brought to Parliament

• September 12, 2024 12 Sep'24

  Data sharing for immigration raids ferments hostility to migrants

  Data sharing between public and private bodies for the purposes of carrying out immigration raids helps to prop up the UK’s hostile environment by instilling an atmosphere of fear and deterring migrants from accessing public services

• September 12, 2024 12 Sep'24

  UK and others sign first ‘binding’ treaty on AI and human rights

  The UK, US and EU have all signed a treaty from the Council of Europe that aims to mitigate the threat AI poses to human rights, democracy and the rule of law, but commentators say it lacks enforcement mechanisms and creates loopholes

• September 11, 2024 11 Sep'24

  Datacentres granted critical national infrastructure status

  The global IT outage caused by CrowdStrike has shown why keeping datacentres secure and safe is critical to the UK

• September 11, 2024 11 Sep'24

  HMRC could lose millions in unpaid tax as non-compliant umbrella enters pre-pack administration

  HMRC looks set to miss out on millions of pounds in unpaid tax it is owed by a non-compliant umbrella company that slipped into administration, prompting renewed calls for the sector to be regulated

• September 05, 2024 05 Sep'24

  NCSC and allies call out Russia's Unit 29155 over cyber warfare

  The NCSC and counterpart agencies from the US and other countries have exposed a long-running campaign of Russian cyber espionage and warfare conducted by GRU Unit 29155

• September 05, 2024 05 Sep'24

  Fog ransomware crew evolving into wide-ranging threat

  The emergent Fog ransomware gang appears to be changing up its victimology in search of more cash-rich victims

• September 05, 2024 05 Sep'24

  Ongoing TfL cyber attack takes out Dial-a-Ride service

  The Dial-a-Ride assisted transit service for disabled people had to temporarily suspend part of its operations as Transport for London deals with an ongoing cyber attack, but the service has now been recovered

• September 04, 2024 04 Sep'24

  Retailers question using live facial recognition for shoplifting

  Retailers praise benefits of retrospective over live facial recognition in dealing with shoplifting, but stress there are ongoing concerns around the ethical, legal and safety implications of using the technology in stores

• September 04, 2024 04 Sep'24

  CMA clears Microsoft and Inflection AI transaction

  Microsoft’s hiring of Inflection AI teams is regarded as a merger under UK law, but this deal has not curbed competition in the artificial intelligence market

• September 04, 2024 04 Sep'24

  Fraud and scam complaints hit highest ever level in UK

  The Financial Ombudsman Service says it recorded almost 9,000 complaints about fraud and scams from April to June, the most ever recorded

• September 04, 2024 04 Sep'24

  Post Office and Fujitsu malevolence and incompetence means huge final taxpayers’ bill

  The human tragedy caused by the Post Office scandal cannot be measured, but the total financial cost will be well beyond the £1bn set aside by the government