News

Privacy and data protection

• December 04, 2018 04 Dec'18

  Financial institutions’ data at risk despite security spending

  Despite increased spending on cyber security, digital transformation and advanced attacks mean financial institutions’ data is still at risk, a report reveals

• December 04, 2018 04 Dec'18

  100 million Quora.com user details exposed

  Question-and-answer site is the latest organisation to admit a breach of users’ personal data, with industry commentators calling out credential theft as a top cause of such breaches

• December 03, 2018 03 Dec'18

  Liberty heads for judicial review over Investigatory Powers Act

  The UK's powers to conduct supsicionless bulk surveillance on individuals and organisations face a legal challenge in the high court next year

• December 03, 2018 03 Dec'18

  BT announces new head of security business

  BT has appointed a former law enforcement officer and BT investigator as the new head of its security business

• December 03, 2018 03 Dec'18

  UK government commits to opening up data in bid to push adoption of AI

  Opening up data is vital to government plans to push adoption of artificial intelligence across all sectors of the UK economy

• December 03, 2018 03 Dec'18

  Police investigations into cyber crime up 14% in a year

  Officers forced to follow up over 2,500 complaints of Instagram, Facebook, email and website hacking, and Bitcoin ransom, despite a rise in violent crime, report reveals

• November 30, 2018 30 Nov'18

  Marriott data breach highlights basic failings

  A breach of a guest reservation database of the Starwood division of the Marriott International hotel group highlights basic personal data protection failures

• November 30, 2018 30 Nov'18

  WannaCry borderline national cyber emergency

  The May 2017 WannaCry attack, which disrupted services at one-third of NHS trusts and more than 600 primary care organisations is the closest the UK has come to a national cyber emergency, says the NCSC

• November 29, 2018 29 Nov'18

  UK cyber security strategy making ‘good progress’

  The National Cyber Security Strategy is making good progress, but there is much left to be done, according to a Cabinet Office official

• November 29, 2018 29 Nov'18

  120,000 police officers to receive cyber security training

  Cisco is partnering with UK police forces to offer cyber security training through the Cisco Networking Academy

• November 28, 2018 28 Nov'18

  Cyber resilience lacking due to apathy of UK leaders

  An unwillingness to accept that cyber is a real threat to critical national infrastructure by UK political and business leaders has resulted in a lack of resilience, says security industry veteran

• November 28, 2018 28 Nov'18

  CIO interview: Stephen Docherty on NHS data sharing

  The Cambridge Analytica scandal raised awareness about privacy. Stephen Docherty, CIO of South London and Maudsley NHS Trust, explains why

• November 27, 2018 27 Nov'18

  Businesses failing to win consumer trust

  Businesses are still largely failing to win the trust of consumers to keep their personal data safe as data breaches continue to make headlines

• November 27, 2018 27 Nov'18

  ICO fines Uber £385,000 for data protection failings

  Like Facebook, Uber has escaped a potentially much higher fine for data protection failings because the 2016 breach that affected millions of UK customers is not covered by the GDPR

• November 26, 2018 26 Nov'18

  Unprecedented actions by Commons committee augur badly for Facebook

  House of Commons’ serjeant-at-arms effectively arrested the CEO of a US software company and frogmarched him to Parliament, where he was told he would be imprisoned if he failed to hand over papers on Facebook

• November 23, 2018 23 Nov'18

  Interview: Roger Taylor, chair, Centre for Data Ethics and Innovation

  Chair of the new Centre for Data Ethics and Innovation says collaboration is vital for developing effective frameworks to manage the proliferation of AI and data-driven technologies

• November 22, 2018 22 Nov'18

  ICO finds Metropolitan Police's Gangs Matrix seriously breaches data protection laws

  A year-long ICO investigation has highlighted major problems with how the Metropolitan Police handles and shares the personal data of individuals on its Gangs Matrix

• November 20, 2018 20 Nov'18

  Dutch audit finds Microsoft Office leaks confidential data

  The diagnostics Microsoft Office collects from users should be a source of concern for any government CISO, according to a DPIA audit

• November 20, 2018 20 Nov'18

  Police challenged over refusal to disclose files on WikiLeaks staff

  Lawyers will challenge the Metropolitan Police Service today to confirm or deny whether it holds correspondence with US law enforcement about three WikiLeaks staff – including two UK citizens – in a freedom of information tribunal

• November 17, 2018 17 Nov'18

  Credit card fraud in ANZ showing no signs of abating

  The value of fraudulent transactions more than doubled that of legitimate purchases during the third quarter this year

• November 16, 2018 16 Nov'18

  Three factors marginalising the CISO role

  Chief information security officers are typically marginalised due to three factors, and de-coupling the technical and managerial aspects of the job will enable empowerment, says consultant

• November 16, 2018 16 Nov'18

  UK firms in the dark around the impact of cyber attacks

  UK firms have a long way to go in building the business resilience required to withstand cyber threats and other major disruptions, a study shows

• November 16, 2018 16 Nov'18

  Many firms still stuck in GDPR prep phase six months after its initiation

  Six months after the GDPR compliance deadline, many companies are struggling to make data protection principles part of everyday business, says PwC’s GDPR and data protection lead

• November 15, 2018 15 Nov'18

  Keep people at the centre of risk management, says consultant

  In assessing the cyber risks to a business, security professionals should start with the people in an organisation and keep them at the centre in identifying and mitigating risk, says consultant

• November 15, 2018 15 Nov'18

  DeepMind won’t share patient data with Google ‘at this stage’, says company’s health boss

  Amid concerns and questions around Google’s takeover of the DeepMind’s Streams app, Dominic King, the company’s health lead, promises that ‘at this stage’, nothing will change, and it won’t share any patient data with the internet giant

• November 15, 2018 15 Nov'18

  Members of Parliament should back EU Withdrawal Agreement, says industry

  Industry experts say the government’s EU Withdrawal Agreement is far from perfect and still requires more clarity, but call on MPs to back it, as it’s better than a No-Deal Brexit

• November 14, 2018 14 Nov'18

  AI-enhanced security tools necessary for today’s threats

  Machine learning-enhanced tools are necessary to keep up with current threats, but are not perfect and will not solve the security skills gap problem, says KuppingerCole

• November 14, 2018 14 Nov'18

  Zero-trust security not an off-the-shelf product

  The zero-trust security model is a business enabler that needs to be supported by a strategy and security architecture, analyst warns cyber security leaders

• November 13, 2018 13 Nov'18

  Thailand’s Democrat Party holds election with blockchain

  The Zcoin blockchain was used to store file hashes of voting data and identities of voting members of Thailand’s main opposition party

• November 12, 2018 12 Nov'18

  Home Office to use smartphone ID for EU Exit scheme

  The Home Office will use smartphone digital identity verification to support applications for the government’s EU Exit Settlement Scheme  

• November 12, 2018 12 Nov'18

  Government considering dedicated internet regulator, says digital minister

  An upcoming white paper is likely to set out proposals for an internet regulator, a House of Lords committee has been told

• November 12, 2018 12 Nov'18

  EU regulation set to advance single market for non-personal data

  The European Union Council and Parliament have approved a regulation, to take effect in six months’ time, to ensure the free movement of non-personal data, such as IoT data, across the bloc

• November 09, 2018 09 Nov'18

  Post-quantum cryptography a major challenge, says expert

  The crypto wars are just beginning and open systems are key to improved security in future, says cryptography expert

• November 08, 2018 08 Nov'18

  Australia needs better cloud and data management capabilities

  Use of cloud services is soaring in Australia, but a lack of cloud management skills is holding back enterprises from reaping the full benefits of the technology

• November 08, 2018 08 Nov'18

  Researcher urges IoT security legislation

  Suppliers of internet connected devices are largely failing to improve the security of their products, exposing users to privacy risks, so there is no choice but to legislate in this area, says a researcher

• November 08, 2018 08 Nov'18

  Privacy International files GDPR complaint against Oracle

  General Data Protection Regulation complaints against Oracle and six other companies filed with Information Commissioner’s Office

• November 08, 2018 08 Nov'18

  GDPR a challenge to AI black boxes

  Most artificial intelligence “black boxes” do not comply with EU data protection laws and will have to be re-engineered, warns security researcher and consultant

• November 08, 2018 08 Nov'18

  Increasing value of personal data a 21st century challenge

  The increasing value of personal data presents the challenge of managing a personal data economy, says identity and security expert

• November 08, 2018 08 Nov'18

  Singapore’s SunMoon uses blockchain to trace apples

  Fruit and vegetable distributor has implemented a blockchain platform that enables consumers and suppliers to trace the origin of Fuji apples – with other fruits to follow

• November 07, 2018 07 Nov'18

  Decentralised ID key to identity security

  Enterprises need to step up protections around identity-related compromises and look to decentralised identity in the longer term to improve security, says computer scientist

• November 07, 2018 07 Nov'18

  Cyber security high on European Commission agenda

  The European Commission is recognising the growing importance of cyber security to the digital economy and is increasing funding to support research, resilience and cooperation

• November 06, 2018 06 Nov'18

  Information commissioner calls for stricter regulation on political use of data

  Information commissioner Elizabeth Denham’s investigation into the use of data in elections and campaigns, finds "a disturbing disregard for voters’ personal privacy"

• November 06, 2018 06 Nov'18

  Start preparing for post-quantum data protection

  Organisations that need to retain sensitive information for long periods of time need to start preparing for the post-quantum era, according to an IBM security architect

• November 05, 2018 05 Nov'18

  Banking sector leading CIAM innovation, say Big Four

  Maturity in consumer identity and access management (CIAM) differs from sector to sector, with the banking sector taking the lead in terms of innovation, according to the Big Four accounting firms

• November 02, 2018 02 Nov'18

  DevSecOps not limited to coding, says analyst

  DevSecOps is seen as a way of ensuring application security, but security leaders must understand that embedding a security culture and taking the inter-dependencies of new development frameworks into account is key, says KuppingerCole

• November 02, 2018 02 Nov'18

  Facebook to appeal EU-US data transfer ruling in Irish Supreme Court

  Facebook will appeal a decision by the Irish High Court to refer questions over the legality of EU-US data transfers to the European Court of Justice in January, as the Dublin court rejects attempt by a UK IT expert to join the case

• November 02, 2018 02 Nov'18

  Radisson hotel group could be GDPR test case

  Privacy watchers say the breach of personal data of members of the Radisson Hotel Group’s loyalty scheme could be an interesting test case for how the GDPR will be applied

• November 01, 2018 01 Nov'18

  Key elements to success in consumer identity management

  Success in consumer identity management is not just about getting the technology right, it is also about keeping in mind the consumer needs, preferences and concerns, says KuppingerCole

• October 31, 2018 31 Oct'18

  GDPR driving data protection maturity

  The EU data protection laws are helping to drive data protection maturity internationally, but five months after enforcement many companies are still playing catch-up, says consultant

• October 31, 2018 31 Oct'18

  UK Post Office looks to enable reusable digital ID

  The UK Post Office is investigating the possibility of enabling UK citizens to re-use their passport data for other applications where digital identity is a key component