News

Regulatory compliance and standard requirements

• June 21, 2024 21 Jun'24

  Kaspersky says it can continue to sell cyber threat intelligence in spite of US ban

  The US government is stopping Kaspersky Lab from offering its antivirus software and cyber security tools to US firms and citizens

• June 19, 2024 19 Jun'24

  Microsoft admits no guarantee of sovereignty for UK policing data

  Documents show Microsoft’s lawyers admitted to Scottish policing bodies that the company cannot guarantee sensitive law enforcement data will remain in the UK, despite long-standing public claims to the contrary

• June 11, 2024 11 Jun'24

  PSNI ran secret unit to monitor journalists’ and lawyers’ phones, claims former senior officer

  The Police Service of Northern Ireland denies claims that its anti-corruption unit used a standalone computer to ‘avoid scrutiny and control’

• June 11, 2024 11 Jun'24

  More than 160 Snowflake customers hit in targeted data theft spree

  Mandiant reports that more than 160 Snowflake customers have been hit in a broad data theft and extortion campaign targeting organisations that have failed to pay proper attention to securing valuable credentials

• June 07, 2024 07 Jun'24

  Northern Irish police used covert powers to monitor over 300 journalists

  PSNI publishes report on police surveillance of journalists and lawyers, but Northern Ireland’s Policing Board says it does not give the assurances needed

• June 07, 2024 07 Jun'24

  Bitdefender makes MDR services free to NHS bodies hit by Qilin

  Bitdefender offers NHS bodies affected by a major cyber incident free access to its product suite, as the health service continues to deal with the impact of the Qilin ransomware attack on partner Synnovis

• June 04, 2024 04 Jun'24

  OAIC files civil penalty action against Medibank

  The OAIC alleges that Medibank failed to take reasonable steps to protect the personal information of 9.7 million Australians in the October 2022 data breach

• June 03, 2024 03 Jun'24

  Police chief commissions ‘independent review’ of surveillance against journalists and lawyers

  PNSI chief constable appoints lawyer to conduct review into police phone surveillance of journalists, lawyers and NGOs

• June 03, 2024 03 Jun'24

  97 FTSE 100 firms exposed to supply chain breaches

  Between March 2023 and March 2024, 97 out of 100 companies on the UK’s FTSE 100 list were put at risk of compromise following supply chain breaches at third-party suppliers

• June 03, 2024 03 Jun'24

  AI Seoul Summit review

  Dozens of governments and tech companies attending the second global AI Safety Summit have committed themselves to the safe and inclusive development of the technology, but questions remain around whether the commitments made go far enough

• June 02, 2024 02 Jun'24

  Ticketek Australia hit by data breach

  Customer names, dates of birth and email addresses of Ticketek Australia account holders reportedly impacted in latest data breach affecting event ticketing firm

• May 31, 2024 31 May'24

  Law student ‘unfairly disciplined’ after reporting data breach blunder

  A law student has accused a leading legal college of unethical behaviour and a “lack of integrity” after it brought misconduct proceedings against him when he reported a data security blunder

• May 28, 2024 28 May'24

  Executive Interview: Why Dell wants to be your one-stop AI shop

  At Dell Technologies World in Las Vegas, artificial intelligence was the talk of the town as Dell staked out an all-encompassing strategy ahead of an anticipated goldrush. Dell’s Nick Brackney explains why the tech giant believes it's onto a winner

• May 23, 2024 23 May'24

  Northern Ireland police face £750,000 fine after data protection blunder put lives at risks

  Information commissioner John Edwards uses discretion to reduce proposed fine from £5.6m to £750,000

• May 23, 2024 23 May'24

  Munich Re sees strong growth in AI insurance

  Global reinsurance giant Munich Re expects more demand for AI insurance from organisations that are looking to manage the risks of AI as they experiment more with the technology

• May 21, 2024 21 May'24

  Parliamentary committee criticises big tech response to election threats

  Parliamentary committee says tech companies ‘regurgitated publicly available content’ and failed to address questions raised by MPs and peers

• May 21, 2024 21 May'24

  The Security Interviews: What is the real cyber threat from China?

  Former NCSC boss Ciaran Martin talks about nation-state attacks, why the UK has become so exercised about cyber espionage, and how our leaders are in danger of misunderstanding their adversaries

• May 20, 2024 20 May'24

  WikiLeaks founder Julian Assange granted appeal

  Two high court judges granted WikiLeaks founder Julian Assange leave to appeal against extradition to the US after defence lawyers argued that the US had failed to give adequate assurances

• May 17, 2024 17 May'24

  Why the UK needs to fix its broken IT security market

  Ollie Whitehouse, CTO of GCHQ’s National Cyber Security Centre, says the market for secure software is broken. Are new laws required to make software companies liable for poor security?

• May 15, 2024 15 May'24

  Cyber Safety Force wants to change conversation around risk

  A consortium to help cyber pros better manage risk has launched, with ambitious goals to change the nature of the conversation from cyber security to cyber safety

• May 15, 2024 15 May'24

  WikiLeaks founder’s extradition case labelled ‘institutional corruption’

  Call for Julian Assange to be prosecuted in the US has been condemned as ‘institutional corruption on a judicial level’ with the WikiLeaks founder a ‘political prisoner’

• May 14, 2024 14 May'24

  CyberUK 24: UK insurance industry gets tough on ransomware

  Three of the UK’s largest insurance associations have signed on to a new initiative spearheaded by the NCSC to try to bring down the number of ransomware payments being made

• May 10, 2024 10 May'24

  Over 5.3 billion data records exposed in April 2024

  The number of data records breached in April 2024 hit over five billion, a staggering year-on-year increase

• May 09, 2024 09 May'24

  Cyber attack victims need to speak up, says ICO

  The Information Commissioner’s Office is urging organisations to be transparent and learn from each other’s mistakes as it reveals most of the cyber attacks it responds to stem from the same core errors

• May 09, 2024 09 May'24

  Ofcom publishes draft online child safety rules for tech firms

  In the draft codes, Ofcom calls on technology firms to use ‘robust’ age-checking and content moderation systems to keep harmful material away from children online

• May 08, 2024 08 May'24

  Police accessed phone records of ‘trouble-making journalists’

  The Police Service of Northern Ireland ran a rolling programme to monitor phone records of journalists to identify the source of police leaks, it was claimed today

• May 03, 2024 03 May'24

  Patch GitLab vuln without delay, users warned

  The addition of a serious vulnerability in the GitLab open source platform to CISA’s KEV catalogue prompts a flurry of concern

• May 03, 2024 03 May'24

  EU calls out Fancy Bear over attacks on Czech, German governments

  The European Union, alongside member states Czechia and Germany, have accused Russian government APT Fancy Bear of being behind a series of attacks on political parties and government bodies

• May 02, 2024 02 May'24

  NCSC updates warning over hacktivist threat to CNI

  The NCSC and CISA have warned about the evolving threat from Russia-backed hacktivist threat actors targeting critical national infrastructure, after a number of American utilities were attacked

• May 02, 2024 02 May'24

  Ukrainian national sentenced over REvil ransomware spree

  A 24-year-old Ukrainian man has been sentenced to more than 13 years in prison after being convicted of his role in the REvil ransomware attacks

• May 02, 2024 02 May'24

  Dropbox Sign user information accessed in data breach

  Account data belonging to Dropbox Sign users was accessed by an unknown threat actor after they hacked into the organisation’s backend infrastructure

• May 02, 2024 02 May'24

  BBC instructs lawyers over allegations of police surveillance of journalist

  Lawyers for the BBC have written to the Investigatory Powers Tribunal over allegations that the Police Service of Northern Ireland spied on investigative journalist Vincent Kearney

• May 01, 2024 01 May'24

  EMEA CISOs must address human factors behind cyber incidents

  The 17th annual Verizon report on data breaches makes for sobering reading for security pros, urging them to do more to address the human factors involved in cyber incidents, and highlighting ongoing issues with zero-day patching

• May 01, 2024 01 May'24

  Australia’s Qantas apologises for mobile app data breach

  Australian flag carrier Qantas has apologised after a glitch in its mobile application temporarily enabled some customers to view the flights and booking details of other frequent fliers on two separate occasions

• May 01, 2024 01 May'24

  DWP anti-fraud measures will allow monitoring of bank accounts of landlords, carers and parents

  Parliamentarians raise concerns that a proposed law to require banks to monitor the accounts of millions of people receiving state benefits could lead to those on welfare being denied accommodation or bank accounts

• May 01, 2024 01 May'24

  Autonomous weapons reduce moral agency and devalue human life

  Military technology experts gathered in Vienna have warned about the detrimental psychological effects of AI-powered weapons, arguing that implementing systems of algorithmic-enabled killing dehumanises both the user and the target

• April 30, 2024 30 Apr'24

  Persistent data breaches deny people with HIV dignity and privacy

  The ICO has urged charities and healthcare organisations that work with people living with HIV to do better when it comes to protecting their personal data, after the HIV status of more than 100 people was accidentally disclosed by London’s Central ...

• April 30, 2024 30 Apr'24

  Global majority united on multilateral regulation of AI weapons

  Foreign ministers and civil society representatives say that multilateralism is key to controlling the proliferation and use of AI-powered autonomous weapons, but that a small number of powerful countries are holding back progress

• April 29, 2024 29 Apr'24

  UK’s long-awaited device security law kicks in

  The Product Security and Telecommunications Infrastructure Act has become law across the UK, enforcing basic cyber security standards across connected products sold to the public

• April 25, 2024 25 Apr'24

  Progress being made on gender diversity in cyber

  Women make up a higher percentage of new entrants to the cyber security profession, particularly among younger age groups, and are increasingly taking up leadership positions and hiring roles, but challenges still persist

• April 24, 2024 24 Apr'24

  Mandatory MFA pays off for GitHub and OSS community

  Mandating multifactor authentication for select developers has been a huge success for GitHub, the platform reports, and now it wants to go further

• April 24, 2024 24 Apr'24

  TikTok ban sails through US Senate

  A law that will ban TikTok in the US unless its owner sells up pronto passed the US Senate by a landslide majority after being included in a package of military aid

• April 24, 2024 24 Apr'24

  Education will be key to good AI regulation: A view from the USA

  Computer Weekly sat down with Salesforce’s vice-president of federal government affairs, Hugh Gamble, to find out how the US is forging a path towards AI regulation, and how things look from Capitol Hill

• April 22, 2024 22 Apr'24

  Former Sellafield consultant claims the nuclear complex tampered with evidence

  Whistleblower Alison McDermott claims former employer Sellafield tampered with metadata in letters used in evidence during an employment tribunal

• April 22, 2024 22 Apr'24

  Digital Edge punching above its weight in Asia datacentre market

  Fast-growing datacentre provider Digital Edge is eyeing business from hyperscalers and counting on its strengths in datacentre operations and local partnerships to stand out from rivals

• April 22, 2024 22 Apr'24

  IT leaders hiring CISOs aplenty, but don’t fully understand the role

  Most businesses now have a CISO, but perceptions of what CISOs are supposed to do, and confusion over the value they offer, may be holding back harmonious relations, according to a report

• April 21, 2024 21 Apr'24

  Crime agency criticises Meta as European police chiefs call for curbs on end-to-end encryption

  Law enforcement agencies step up demands for ‘lawful access’ to encrypted communications

• April 19, 2024 19 Apr'24

  Report reveals Northern Ireland police put up to 18 journalists and lawyers under surveillance

  Disclosures that the Police Service of Northern Ireland obtained phone communications data from journalists and lawyers leads to renewed calls for inquiry

• April 18, 2024 18 Apr'24

  CSA warns of emerging security risks with cloud and AI

  Few users appreciate the security risks of cloud and have the expertise to implement the complex security controls, says CSA chief executive David Koh

• April 18, 2024 18 Apr'24

  TUC publishes legislative proposal to protect workers from AI

  Proposed bill for regulating artificial intelligence in the UK seeks to translate well-meaning principles and values into concrete rights and obligations that protect workers from systems that make ‘high-risk’ decisions about them