News

IT governance

• March 15, 2024 15 Mar'24

  Global McDonalds IT outage result of third-party error

  An IT outage that forced McDonald's to temporarily shutter thousands of restaurants has been blamed on a configuration error by a third-party supplier, but there is no suspicion of foul play

• March 15, 2024 15 Mar'24

  London Mayor’s Office reprimanded over data breach

  The London Mayor’s Office has been reprimanded by the ICO after an internal error exposed the data of people who had made complaints against the Metropolitan Police

• March 14, 2024 14 Mar'24

  MPs will attempt to amend law on overturning Post Office scandal convictions

  Business and trade select committee chair says the job is not done with legislation to overturn wrongful subpostmaster convictions and provide financial redress

• March 13, 2024 13 Mar'24

  US authorities move a step closer to banning TikTok

  Lawmakers in Washington DC have moved a step closer to enacting a broad national ban on controversial video app TikTok in the US, with global ramifications

• March 13, 2024 13 Mar'24

  British Library opens up over ransomware attack to help others

  The British Library has opted for full transparency after experiencing a devastating ransomware attack, publishing details of the intrusion, its response and the lessons it has learned

• March 13, 2024 13 Mar'24

  Unprecedented bill to exonerate hundreds of wrongly convicted Post Office workers arrives

  Unprecedented legislation that will see hundreds of former subpostmaster convictions for fraud and theft overturned begins its journey through Parliament

• March 12, 2024 12 Mar'24

  March Patch Tuesday throws up two critical Hyper-V flaws

  Two critical vulnerabilities in Windows Hyper-V stand out on an otherwise unremarkable Patch Tuesday

• March 12, 2024 12 Mar'24

  Nationwide IT infrastructure poised to absorb Virgin Money

  A Nationwide takeover of Virgin Money will be the biggest financial services acquisition since 2008, but what about the IT challenges and opportunities that go with it?

• March 12, 2024 12 Mar'24

  Industry partnerships and data key to better public services

  Using public-private partnerships and improving the use of data are key to improving public services and the government’s ‘science and technology superpower’ ambitions, says digital secretary Michelle Donelan

• March 12, 2024 12 Mar'24

  Current subpostmaster account shortfalls reveal extent of Post Office’s pre-2019 neglect

  Hundreds of current subpostmasters might have been hounded for money or prosecuted had the Post Office not been forced to change its ways in 2019

• March 11, 2024 11 Mar'24

  Government not facing up to CNI cyber risks, committee warns

  The Joint Committee on the National Security Strategy has accused the government of burying its head in the sand over the cyber threat to UK critical infrastructure

• March 11, 2024 11 Mar'24

  Dutch organisations vulnerable to deepfake fraud

  With the information many employees share on social media, Dutch companies are especially vulnerable to a new form of fraud

• March 11, 2024 11 Mar'24

  How Microsoft is easing GenAI adoption into financial services

  Microsoft is supporting enterprise deployment models, addressing the risks of the technology and leveraging its industry cloud capabilities to ease generative AI adoption in the financial sector

• March 11, 2024 11 Mar'24

  TechUK calls for next government to introduce ‘industrial strategy’ for AI

  Trade group TechUK publishes blueprint calling for winner of next election to boost tech startups, digitise government services and accelerate technology R&D

• March 08, 2024 08 Mar'24

  OSS leaders detail commitments to bolster software security

  CISA has announced a number of actions to help secure the global open source ecosystem, as leading package repositories including the Python and Rust foundations advance their own initiatives

• March 07, 2024 07 Mar'24

  Government insists it is acting ‘responsibly’ on military AI

  The government has responded to calls from a Lords committee that it must “proceed with caution” when it comes to autonomous weapons and military artificial intelligence, arguing that caution is already embedded throughout its approach

• March 07, 2024 07 Mar'24

  Indian government issues advisory to mitigate AI risks

  Tech firms will require permission from the government to use and provide under-tested or unreliable AI models and software to Indian users

• March 07, 2024 07 Mar'24

  MPs call for Post Office exclusion from compensation schemes, as trust hits rock bottom

  Former subpostmasters and MPs do not trust the Post Office to do the right thing for victims of the Horizon IT scandal

• March 06, 2024 06 Mar'24

  Apple patches zero-days amid ‘foundational’ post-quantum update

  Apple’s iOS 17.4 update not only fixes zero-day flaws that are being actively exploited, but includes important new security protocols to safeguard users against future attacks

• March 06, 2024 06 Mar'24

  ‘Brutal’ decisions required to sort out Post Office mess, says select committee chair

  Liam Byrne, chair of the business and trade select committee, tells Computer Weekly about the group’s focus on getting Horizon scandal victims what they are owed

• March 06, 2024 06 Mar'24

  Post Office prosecutions during Horizon go-live phase are ‘frightening’

  The Post Office used subpostmasters as guinea pigs to test its software and take the rap for its errors

• March 05, 2024 05 Mar'24

  Rapid7 hits out over botched vulnerability disclosure

  Software development firm JetBrains and security specialist Rapid7 fall out over the handling of a critical vulnerability disclosure, while customers are left rushing to patch

• March 05, 2024 05 Mar'24

  ALPHV/BlackCat gang vanishes amid ransomware ‘turmoil’

  Mystery surrounds the apparent disappearance of the ALPHV/BlackCat cyber crime gang amid reports that a prominent US victim paid a $22m ransom

• March 05, 2024 05 Mar'24

  IT chiefs fear Kubernetes data log overload

  IT architectures are set to grow in complexity, and more mission-critical systems are being deployed on Kubernetes, meaning log files are becoming unmanageable

• March 05, 2024 05 Mar'24

  Dutch organisations start building a federated European cloud

  The ‘European cloud services in an open federated ecosystem’ (ECOFED) project is co-funded by the Dutch government and will run from 2024 to 2027

• March 05, 2024 05 Mar'24

  American Express customers exposed through third-party breach

  US card giant warns customers that their personal details may have been exposed after a third party experienced a systems breach

• March 05, 2024 05 Mar'24

  Banning ransomware payments back on the agenda

  The idea of banning ransomware payments to cyber criminals is back on the agenda, with former NCSC chief Ciaran Martin arguing that tougher measures need to be taken

• March 04, 2024 04 Mar'24

  Amazon lobbyists banned from European Parliament

  Amazon lobbyists have had their access badges to the European Parliament revoked, following allegedly repeated refusals to engage with lawmakers on issues around working conditions and rights

• March 04, 2024 04 Mar'24

  How ANZ organisations can address challenges in AI adoption

  Pure Storage's global CTO Alex McMullan discusses the data and sustainability challenges in artificial intelligence adoption, which can be addressed by centralising datasets and focusing on data quality and management

• March 01, 2024 01 Mar'24

  IT leaders focus on enterprise software to drive cost savings

  ERP and supply chain software are among the big-ticket investment areas in 2024, and managing these projects is a top priority

• March 01, 2024 01 Mar'24

  Fancy Bear sniffs out Ubiquiti router users

  The authorities have warned users of Ubiquiti EdgeRouter products to take remedial action after a number of devices were hijacked into a malicious botnet by a Russian cyber espionage unit

• February 29, 2024 29 Feb'24

  Okta doubles down on cyber in wake of high-profile breaches

  Okta launches Secure Identity Commitment to shore up its technology in the wake of a damaging breach and elevate best practice around identity

• February 29, 2024 29 Feb'24

  Police arrested journalists as part of surveillance operation to identify confidential sources

  Three police forces took part in surveillance operations between 2011 and 2018 to identify sources that leaked information to journalists Trevor Birney and Barry McCaffrey, the Investigatory Powers Tribunal hears

• February 28, 2024 28 Feb'24

  New version of ALPHV/BlackCat ransomware hits victims

  An updated version of the ALPHV/BlackCat ransomware has been spotted in the wild amid a series of attacks on American healthcare providers, prompting a new alert from the authorities

• February 28, 2024 28 Feb'24

  75% of third-party breaches target software, IT supply chains

  Data drawn from SecurityScorecard’s telemetry reveals how supply chain breaches are becoming a weapon of choice for threat actors

• February 28, 2024 28 Feb'24

  Users love their cyber teams, but find them frustrating

  Despite strong support for security teams, a good number of ordinary workers see them as obstructive to business goals, and would like to see them operate more transparently

• February 28, 2024 28 Feb'24

  Government urged to take a pro-innovation approach to quantum regulation

  Responsible innovation, learning from AI and the use of foresight techniques should inform policymaking

• February 28, 2024 28 Feb'24

  UC finetunes tech strategy to support digital masterplan

  The University of Canberra is scoping a new project to determine data, integration and multicloud strategies to support its long-term digital roadmap

• February 27, 2024 27 Feb'24

  Black Basta and Bl00dy ransomware gangs exploiting ConnectWise vulns

  More ransomware gangs have been observed exploiting two dangerous vulnerabilities in ConnectWise ScreenConnect software, prompting new warnings for users to get patching

• February 27, 2024 27 Feb'24

  VulnCheck bug listing to help track new threats quicker

  Exploit intelligence firm VulnCheck launches a proprietary Known Exploited Vulnerabilities catalogue in hopes of improving end-user access to intel on emerging threats and reaching those that the likes of CISA do not

• February 27, 2024 27 Feb'24

  Government should face legal deadlines on paying Post Office victims

  The government should face a legal deadline on paying Horizon scandal victims and unfair previous settlements should be reopened, MPs have been told - amid further boardroom controversy at the Post Office

• February 27, 2024 27 Feb'24

  Majority of UK employees ‘willingly gamble’ with security

  Human-centric threats originating from employees continue to damage organisations both financially and reputationally, according to a report

• February 27, 2024 27 Feb'24

  Hycu uses AI to develop APIs for SaaS application backup

  SaaS applications don’t usually come with built-in data protection, but Hycu plans to tackle that gap in the market with AI to generate the connectors needed to backup user data

• February 27, 2024 27 Feb'24

  Cozy Bear and other APTs changing tack as cloud adoption increases

  A change in APT tactics has been observed resulting from greater adoption of cloud-based services, according to the NCSC

• February 26, 2024 26 Feb'24

  Storage and backup spend in 2024 targets risk and resilience

  The TechTarget and ESG spending intentions survey finds big bias towards averting risk and building organisational resilience, but on-premise storage a significant planned outlay

• February 26, 2024 26 Feb'24

  Secret court hears claims of police surveillance against journalists

  Journalists Trevor Birney and Barry McCaffrey argue that the use of covert powers by the police to identify their confidential sources represents an attack on press freedom

• February 23, 2024 23 Feb'24

  ConnectWise users see cyber attacks surge, including ransomware

  ConnectWise ScreenConnect users who have yet to patch against a critical vulnerability are now being targeted by a barrage of cyber attacks, including ransomware

• February 23, 2024 23 Feb'24

  NCA trolls under fire LockBit gang leaders

  The NCA has teased details of the identity of LockBit's main admin via the gang’s compromised dark web site, and hinted that he has been engaging with law enforcement

• February 23, 2024 23 Feb'24

  Home Office signs tech and data sharing deal with Frontex

  The UK’s deal with the EU border agency is intended to improve operational cooperation, and will expand British authorities’ access to technology and data that can be used to reduce small boat crossings of the English Channel

• February 22, 2024 22 Feb'24

  Cyber experts alarmed by ‘trivial’ ConnectWise vulns

  The disclosure of two dangerous vulnerabilities in the popular ConnectWise ScreenConnect product is drawing comparisons with major cyber incidents, including the 2021 Kaseya attack