Data breach incident management and recovery

Gary McKinnon: Why Lauri Love should be spared the nightmare of extradition

Computer activist Lauri Love should be spared a life sentence in a US jail, says former hacker Gary McKinnon Continue Reading

By

• Gary McKinnon

Digital knowledge at the British Library

In this week’s Computer Weekly, we find out about the technology plans at the British Library as it aims to store the UK’s printed and digital history. Graph database technology is being used to help improve food safety throughout the supply chain – we examine how it works. And tech leaders tell us how to architect IT infrastructure for moving to the cloud. Read the issue now. Continue Reading

Consumers trust banks more than government for biometric security

UK citizens think banks are the best organisations to provide biometric authentication for payments Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Alleged hacker Lauri Love can be extradited to the US, court rules

Westminster Magistrates’ Court has ruled that alleged hacker, Lauri Love, can be extradited to the US, where he could face a 99-year prison sentence Continue Reading

By

• Fiona O'Cleirigh

Lauri Love: the student accused of hacking the US

How did a brilliant but fragile computer science student from a rural English town end up facing life imprisonment in the US? Computer Weekly speaks to Lauri Love Continue Reading

By

• Bill Goodwin and Niels Ladefoged

MaidSafe secure internet concept enters testing phase

Scottish internet startup MaidSafe brings its vision for a more private and secure approach to the web a step closer to reality Continue Reading

By

• Alex Scroxton, Security Editor

Get protected: The importance of security

It is not uncommon for computer systems to be compromised by a company’s own employees. In this week’s issue we look at the Sage data breach, which highlights the risk every organisation faces from its staff. Staff are often motivated by revenge, but sometimes internal logins can be compromised, enabling hackers to circumvent firewalls. Our CIO interview is TalkTalk’s CTO, Gary Steen, and we have a report from the Intel Developer Forum on the chipmaker’s future plans. Continue Reading

CW Benelux: Painting by numbers

In this issue of CW Benelux, we describe how data scientists in the Netherlands have applied technology to art. The Dutch are renowned for being creative with technology and the country has a deep history in art, boasting some of the most celebrated painters. It is therefore apt that the combined tech brains of ING, Microsoft, the Technical University of Delft and other contributors have created The Next Rembrandt, which serves as a visual showcase for big data. The new portrait in the style of Rembrandt van Rijn was put together by a combination of big data technology and 3D printing. All of Rembrandt’s 346 paintings were analysed using data analytics, making it possible to create a seemingly genuine Rembrandt image, while a 3D printer made accurate emulation of his paint patterns and textures a reality. Also in the Netherlands, we feature a case study about how The Hague is solving a bike parking headache with a mobile app. Continue Reading

CW Nordics: Dealing with digital disruption

The Nordic countries are renowned for being home to thriving tech startup scenes, so it is hardly surprising that IT is a disruptive force in the region. In this quarter’s CW Nordics ezine we look more closely at how the Nordic region is being affected by technology disruption across industry sectors and how organisations are reacting to it. Continue Reading

PwC Australia uses gamification to teach cyber security lessons

With the number of cyber incidents identified by Australian organisations more than doubling in the past year, PwC is using an online game to give enterprises first-hand experience of what it means to face a cyber attack Continue Reading

By

• Beverley Head

Banner Health cyber breach underlines need for faster intrusion detection

A data breach at Banner Health has highlighted the importance of intrusion detection and prompted calls for greater cyber security investment in the increasingly targeted healthcare industry Continue Reading

By

• Warwick Ashford, Senior analyst

Artificial intelligence takes centre stage in cyber security

Artificial intelligence-led cyber security technology has been in the spotlight at two major industry conferences in Las Vegas, signalling a firm trend in cyber defence research Continue Reading

By

• Warwick Ashford, Senior analyst

IBM sets up security centre in Canberra

IBM leads the charge as large private businesses invest heavily in security resources across Australia in an attempt to close the security gap Continue Reading

By

• Beverley Head

CW ASEAN: July 2016

Lessons from the Philippine government hack: In this issue we ask why a hack on the Philippine Commission on the Elections (Comelec) was allowed to happen and what organisations in Southeast Asia can learn from this breach of security. Retailers in the region are concerned – read how the theft of customer data is their biggest worry. Continue Reading

CW ANZ: July 2016

Australia knows it has a cyber security problem, but not the scale. In this month’s CW ANZ we describe how Australia's $230m security strategy serves as a wake-up call to enterprises. We also reveal the techniques and technologies being used to protect one Australian school, as well as a more general look at the main cyber threats to orgainsations in Australia. Read the issue now. Continue Reading

Lauri Love may be faking mental illness claims lawyer for US

Prosecution lawyer Peter Caldwell questions whether activist Lauri Love is exaggerating mental health problems to avoid extradition to face hacking charges in the US Continue Reading

By

• Fiona O’Cleirigh and Bill Goodwin

Lower average cost of Australian data breaches is not a sign of comfort

The average cost of a data breach to Australian organisations dropped in 2015, according to research Continue Reading

By

• Beverley Head

The password’s the problem – lessons from the LinkedIn breach

In this week’s Computer Weekly, after millions of LinkedIn users had their data compromised, we look at the lessons to be learned from this latest data breach incident. Our buyer’s guide looks at NoSQL technologies and compares the offerings from database leaders Microsoft and Oracle. And we examine the benefits of cloud-based data analytics and how to make it work for your organisation. Read the issue now. Continue Reading

Philippines government data breach is a warning to Asean region

Security is a rising concern in the Asean region, with fears fuelled by incidents such as the recent hacking incident in Manila Continue Reading

By

• Zafar Anjum

Human error causes more data loss than malicious attacks

Stupid humans, you are the weakest link, at least according to the ICO Continue Reading

By

• Cliff Saran, Managing Editor

A new wave of cyber attacks targets the Middle East’s banks

Hot on the heels of the Qatar National Bank breach comes a campaign employing advanced social engineering techniques Continue Reading

By

• Tom Paye

CW Benelux: May-July 2016

Welcome to the Computer Weekly ezine focused on the Benelux region. This quarterly publication will look at the issues facing CIOs in Belgium, the Netherlands and Luxemburg. Continue Reading

Australian health sector an easy target for cyber criminals, says IBM

A push to encourage greater adoption of electronic health records has raised the spectre of online record theft Continue Reading

By

• Beverley Head

The hunters who prey on cyber criminals

In this week’s Computer Weekly, we talk to the hunters – a new breed of security expert that proactively hunts down cyber attackers before they can strike. We visit Silicon Valley to meet some of the up-and-coming startups in data analytics and business intelligence. And we hear from IT leaders about the people, process and cultural aspects of managing digital transformation. Read the issue now. Continue Reading

Israeli volunteers ready their cyber defences as Anonymous affiliates attack

Every April, Israel braces itself for an onslaught from pro-Palestinian hackers, but the occupants of a small conference room in Tel Aviv stand in their way Continue Reading

By

• Niv Lilien

NCA attempts 'back door' access to obtain activist Lauri Love’s passwords

Court told that use of civil proceedings to force disclosure of alleged hacker Lauri Love's passwords is disproportionate and would breach human rights law Continue Reading

By

• Bill Goodwin, Computer Weekly

Activist Lauri Love faces order to disclose encryption keys

The UK’s National Crime Agency takes an unusual legal step to force a former university student accused of hacking to disclose encryption keys Continue Reading

By

• Bill Goodwin, Computer Weekly

'Citizens will be stripped naked' by Turkey’s data law

Turkey's data protection law, introduced in March 2016, will make Turkey a near total surveillance state, yet the EU, apparently more concerned about securing Turkey's help in controlling immigration, is turning a blind eye Continue Reading

By

• Craig Shaw & Zeynep Sentek

DDoS attacks on universities normally performed by “disgruntled” students or employees

The majority of distributed denial of service attacks on universities are made by students or employees, says the head of infrastructure services at the University of London Continue Reading

By

• Clare McDonald, Business Editor

Adwind at centre of cyber attack on Singapore bank

Kaspersky Lab has revealed that the Adwind malware-as-a-service platform was at the centre of an attack on a Singapore bank Continue Reading

By

• Zafar Anjum

Most students say cyber security is a growing threat

Some 70% of higher education students say they are aware that cyber crime and attacks are a threat, but less than half think security is their responsibility Continue Reading

By

• Clare McDonald, Business Editor

Building datacentres under the sea

In this week’s Computer Weekly, we look at Microsoft’s trial of an underwater datacentre and assess the technology and environmental implications of running cloud services under the sea. As PC suppliers build new products around Windows 10, we ask if the desktop PC is set to be reinvented. And with ransomware on the rise, we examine the threat of cyber extortion. Read the issue now. Continue Reading

The problem with passwords: how to make it easier for employees to stay secure

An organisation’s IT security can be compromised if staff do not follow a strict policy of using strong passwords to access internal systems Continue Reading

By

• Jeremy Bergsman, CEB

Surviving broadband failure

In this week’s Computer Weekly, after the recent BT broadband outage, we examine the options to keep your communications in place in the event of a failure, to ensure business continuity. We look at the prospects for the OpenStack open source cloud platform in the enterprise. And we see how Ireland is making progress on delivering a digital health service. Read the issue now. Continue Reading

EU managers need to up cyber security collaboration, study finds

There is still much work to be done in the area of collaboration and sharing responsibility when it comes to preventing data breaches, a study has found Continue Reading

By

• Warwick Ashford, Senior analyst

US IT professionals overconfident in cyber attack detection, study finds

Most US IT professionals are confident in key security controls to detect cyber attacks – but unsure how long it would take automated tools to discover a breach Continue Reading

By

• Warwick Ashford, Senior analyst

HSBC online services hit by DDoS attack

HSBC was hit by a distributed denial of service (DDoS) attack, which targeted its online personal banking services. Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Beyond India – the emerging outsourcing destinations

In this week’s Computer Weekly, we look at the growing number of offshore alternatives to the dominant outsourcing destination of India and assess their relative merits. We examine how to respond if your organisation is affected by a data breach. And we analyse how virtualisation technology can help improve your disaster recovery strategy. Read the issue now. Continue Reading

CW Europe - January 2016

This month, CW Europe looks in-depth at an issue that is set to affect people across all 28 European Union member states – the abolition of mobile roaming charges, set for mid-2017. Continue Reading

Interview: James Bamford on surveillance, Snowden and technology companies

Investigative journalist and documentary maker James Bamford was among the first to uncover the secrets of the US National Security Agency and its global surveillance Continue Reading

By

• Bill Goodwin, Computer Weekly

Top 10 IT security stories of 2015

Computer Weekly looks back at the most significant stories on IT security in the past 12 months Continue Reading

By

• Warwick Ashford, Senior analyst

Bracknell man arrested over VTech toy hack

Police have arrested a 21-year-old man in connection with the hacking of Hong Kong-based toymaker VTech Continue Reading

By

• Alex Scroxton, Security Editor

How to deal with the aftermath of a data breach

Considering that a data breach could happen to any company, at any time, a plan of action is the best tactic Continue Reading

By

• Dan Raywood

Cyber attacks an increasing concern for Asean countries

Organisations in the Association of Southeast Asian Nations are increasingly the targets for cyber criminals, according to a report focused on the region Continue Reading

By

• Zafar Anjum

Essential guide to data breaches, the dark web and the hidden data economy

In this guide, we look at the aftermath of a data breach - what do cyber criminals use that stolen data for, and what can companies do to avoid becoming a victim? Continue Reading

Workday ringfences support in Europe after Safe Harbour ruled unsafe

US cloud HR and financial services provider reponds to Safe Harbour failure by ringfencing European data Continue Reading

By

• Bill Goodwin, Computer Weekly

Defence review promises 1.2% of defence budget spend on technology

The government’s defence review highlights need for technology investment, innovative ideas and cyber security Continue Reading

By

• Lis Evenstad

Cyber security mindset needs to change, says report

Government organisations are prime targets for cyber attacks, leading to increased importance on robust information security, according to a report by Intel Security and the Digital Government Security Forum Continue Reading

By

• Lis Evenstad

CW Europe – November 2015

Cloud computing has huge benefits to businesses in Europe, but data protection rules have been different for organisations in different parts of Europe. This is about to change with the final version of the General Data Protection Regulation (GDPR) expected soon. All 28 EU member states will have one set of rules to follow. Continue Reading

000Webhost blames PHP exploit for breach of 13.5 million records

Unencrypted passwords for a free web hosting firm were on sale for five months before customers were notified their records had been leaked, according to a security researcher Continue Reading

By

• Warwick Ashford, Senior analyst

Infosec pros should start preparing for the future, say experts

Information security professionals need to grow their skills, engage with the business, increase security awareness, set business goals and tailor their messages, says a panel of experts Continue Reading

By

• Warwick Ashford, Senior analyst

The true cost of a cyber security breach in Australia

The costs of cyber security breaches can quickly add up with fines, reputational damage and overhauls to network security all hitting the coffers. The case of one Australian firm shows why paying a ransom to a hacker might be tempting. Continue Reading

By

• Beverley Head

NHS Health Apps Library to close

The NHS Health Apps Library is shutting down after a two-year tenure, shortly after NHS-approved apps were found to leak data Continue Reading

By

• Lis Evenstad

CW Europe – October 2015

Access to vast amounts of educational resources via the cloud promises much for education. But like in the business world there are fears associated with the cloud. Read the issue now. Continue Reading

Is Microsoft Office 2016 reliable enough for business?

A day after a major Skype outage, Microsoft unveils Office 2016, which, ironically, offers tight integration with Skype Continue Reading

By

• Cliff Saran, Managing Editor

Public-private co-operation in the Nordics tackles growing cyber crime threat

Nordic governments and businesses are putting cyber security at the centre of their planning as threats increase Continue Reading

By

• Eeva Haaramo

BT launches ethical hacking service for bankers

BT introduces a certified Crest Star ethical hacking test service for financial services customers Continue Reading

By

• Alex Scroxton, Security Editor

RSA Group flags ID theft risk to Lloyds Bank customers following datacentre storage theft

International insurance group has seen 500 customers take up offer of identity theft protection in wake of datacentre theft Continue Reading

By

• Caroline Donnelly, Senior Editor, UK

US State Department plans cyber security playbook

The US State Department issues a request for information to determine the capabilities of commercial industry to provide and maintain a cyber security playbook Continue Reading

By

• Warwick Ashford, Senior analyst

Life’s a breach: How to handle the press after a hacking attack

Emily Dent, specialist in crisis PR, offers some advice to organisations that unexpectedly find themselves in the headlines Continue Reading

By

• Emily Dent

Carphone Warehouse data breach hits 2.4 million UK customers

Carphone Warehouse confirms the authorities have been notified about the breach, and urges customers to take steps to protect themselves Continue Reading

By

• Caroline Donnelly, Senior Editor, UK

CW Europe – August 2015

Data is a valuable thing nowadays, and more businesses are collecting it for exactly that reason. However, with the collection of data also comes concern for consumers and governments over where the data is stored and what companies will do with it. This issue of CW Europe investigates the different cultural attitudes towards data management ethics. Continue Reading

Anyone still running Windows Server 2003 is now at risk

Businesses still running Windows server 2003 are vulnerable to attack from hackers looking to exploit security holes Continue Reading

By

• Cliff Saran, Managing Editor

Kaspersky Lab praised for handling of Duqu 2.0 cyber attack

Kaspersky Lab determined the best approach to cyber attack was to not only admit that it had been hacked, but also to provide extensive information on the malware Continue Reading

By

• Warwick Ashford, Senior analyst

The drivers and inhibitors of cyber security evolution

A study shows a shift in IT security spending to detection and response – but why are most organisations falling way behind the more enlightened front runners? Continue Reading

By

• Warwick Ashford, Senior analyst

A guide to threat management

This is a CIOs guide to threat management. Continue Reading

Ryanair remains tight-lipped over £3.3m hacker theft

Ryanair provided no details of how hackers took £3.3m from one of its bank accounts, as industry pundits call for greater collaboration Continue Reading

By

• Warwick Ashford, Senior analyst

Bill Binney, the ‘original’ NSA whistleblower, on Snowden, 9/11 and illegal surveillance

Always a patriot: Computer Weekly talks to Bill Binney, the senior NSA official who blew the whistle before Edward Snowden Continue Reading

By

• Fiona O'Cleirigh

Cyber security boot camp launched to boost skills

Sans Cyber Academy unveils eight-week security boot camp after businesses demand more cyber security specialists Continue Reading

By

• Kayleigh Bateman, Computer Weekly

Banks hide cyber crime losses, says City of London Police

Banks obscure the amount of money lost to cyber fraudsters – preferring to write off cyber theft as operating losses – says the City of London Police Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Security risk potential linked to young, mobile users

A study conducted by wireless supplier Aruba Networks has identified a distinct cohort of high-risk, security-agnostic workers Continue Reading

By

• Alex Scroxton, Security Editor

Taking stock of e-commerce systems

In this week's Computer Weekly, the first of our three-part buyer's guide to next generation e-commerce looks at managing inventory in multi-channel retailers. We highlight the six technology companies that are threats to the dominance of high-street banks. And we examine the top five issues in virtual machine backup. Read the issue now. Continue Reading

Target agrees to $10m breach compensation

US retailer Target has agreed to a $10m compensation package for victims of its 2013 data breach Continue Reading

By

• Warwick Ashford, Senior analyst

Premera hack exposes 11 million financial and medical records

US health insurance firm Premera Blue Cross reveals an IT systems breach, exposing financial and medical records of 11 million customers Continue Reading

By

• Warwick Ashford, Senior analyst

2015 IT priorities: SDN yet to prove itself, fear of network hacks growing

In Computer Weekly’s 2015 IT priorities study, software-defined networking is still behind management and monitoring as a networking priority Continue Reading

By

• Alex Scroxton, Security Editor

Case study: Norwegian insurer invests in Darktrace machine-learning cyber defence

Shipping insurance company DNK hopes to inspire the rest of the shipping industry to adopt Darktrace’s cyber defence system Continue Reading

By

• Jenny Stadigs

Five ways to prepare a company board for a cyber breach

Five key things that boards need to do to stop their businesses leaking like sieves and potentially going to the wall Continue Reading

By

• Neil Hare-Brown

Damballa report highlights the limitations of prevention-centric security

Anti-virus (AV) suppliers can take more than six months to create signatures for malware, according to a report from security firm Damballa Continue Reading

By

• Warwick Ashford, Senior analyst

Online money transfer provider Xoom suffers multimillion-dollar fraud

Digital money transfer provider Xoom has admitted to suffering a $30.8m loss at the hands of fraudsters Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

What might North Korea v US cyberwarfare over Sony mean for other corporates?

North Korea behind Sony attack and US counter-penetration -- what now, asks SearchCIO's Francesca Sales. Continue Reading

Fears over the IT security of new banks are overblown

Challenger banks such as PayPal are perceived to be less secure than traditional banks when protecting personal data. But is this the case? Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Cabinet Office begins procurement for next stage of Gov.uk Verify

The Cabinet Office has submitted a tender notice for a £150m three-year framework for the provision of identity assurance services Continue Reading

By

• Caroline Baldwin, Freelance editor and journalist

US interception in the EU faces new legal challenges

US government orders against Microsoft to hand over email data 'infringes privacy legislation' in other countries Continue Reading

By

• Fiona O’Cleirigh

CGI secures communications between pilots and air traffic control

Satellite communications firm Inmarsat has outsourced the provision of security IT and services to CGI Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

US State Department bolsters email security after suspected breach

The US State Department took its unclassified email system offline to bolster security after a suspected breach in October 2014 Continue Reading

By

• Warwick Ashford, Senior analyst

US Postal Service latest government target for cyber attack

Hackers breach the networks of the US Postal Service in the latest of a series of attacks on US government agencies Continue Reading

By

• Warwick Ashford, Senior analyst

Many firms still unprepared for cyber attack, EY survey shows

More than a third of organisastions have no real-time insight on cyber risks necessary to combat rising threats, a survey has shown Continue Reading

By

• Warwick Ashford, Senior analyst

Most businesses do not understand risks of data breaches, study finds

More than 70% of businesses do not understand fully the risks associated with data breaches, a study shows Continue Reading

By

• Warwick Ashford, Senior analyst

Incident response: a common failing

Organisations hit by cyber attacks often lack an effective incident response plan. Why are so many unprepared? Continue Reading

By

• Warwick Ashford, Senior analyst

Cloud providers rush to build European datacentres over data sovereignty

Cloud providers IBM and Google build datacentres in the EU as enterprises insist on keeping their data in Europe Continue Reading

By

• Archana Venkatraman, Datacentre Editor

Azure CTO Mark Russinovich's top ten public cloud security risks

Microsoft Azure cloud CTO Mark Russinovich identified ten key security risks of public cloud services Continue Reading

By

• Archana Venkatraman, Datacentre Editor

WordPress most attacked application

Websites that run the WordPress content management system are attacked 24% more often than those using other systems Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Malware being used to steal cash from ATMs

Criminals are using malware to steal cash from ATMs without debit and credit cards Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Home Depot under fire for data breach notification

US retailer Home Depot criticised for delays in telling customers their payment card details may have been compromised Continue Reading

By

• Warwick Ashford, Senior analyst

KPMG: IoT, 3D printing and healthcare IT to have most impact

Internet of things (IoT), 3D printing and biotech or healthcare IT are among the IT trends that will change the way people work and live Continue Reading

By

• Archana Venkatraman, Datacentre Editor

Salesforce issues advice on avoiding Dyreza attack

Salesforce has issued a set of guidelines on tightening security after a number of its customers were targeted by the Dyreza email virus Continue Reading

By

• Cliff Saran, Managing Editor

EY seeks tech startups to address challenges of right to be forgotten

Professional services firm Ernst & Young is looking for startups to find technology solutions to the ‘right to be forgotten’ regulation Continue Reading

By

• Caroline Baldwin, Freelance editor and journalist

USB-connected devices present cyber vulnerabilities

Connecting devices to computers using a USB port could lead to security breaches, say Berlin-based researchers Continue Reading

By

• Caroline Baldwin, Freelance editor and journalist

Cyber Security Challenge UK takes on the internet of things

The latest level of the Cyber Security Challenge will involve participants hacking devices connected to the internet of things Continue Reading

By

• Clare McDonald, Business Editor

Paddy Power hit by data breach in 2010

Gambling firm Paddy Power owns up to 2010 data breach after recovering a compromised dataset in Canada Continue Reading

By

• Alex Scroxton, Security Editor