IT for small and medium-sized enterprises (SME)

Broadband divide persists across the UK, says Which?

Latest statistics from Which? show the UK’s broadband divide persists, with many areas still missing out on high-speed services despite industry tub-thumping Continue Reading

By

• Alex Scroxton, Security Editor

Name and shame firms with poor cyber security, government told

The government should name and shame companies whose cyber security measures fail to protect consumers’ data and firms should implement Active Cyber Defence, an academic report urges Continue Reading

By

• Warwick Ashford, Senior analyst

Public procurement key to cyber security

Using public procurement as a means of boosting cyber security is the top recommendation for 2019, according to a report based on expert views Continue Reading

By

• Warwick Ashford, Senior analyst

Five issues for SMEs to consider when adopting encryption

Encryption is still considered difficult to deploy and use as a data protection method, especially by small businesses, but considering five key factors can make adoption easier, says Becrypt Continue Reading

By

• Warwick Ashford, Senior analyst

Breach of nearly 2.7 billion records underlines password flaws

Potentially the biggest personal data breach to date from thousands of sources, some possibly breached as far back as 2008, illustrates the deeply flawed nature of password-based authentication, say industry commentators Continue Reading

By

• Warwick Ashford, Senior analyst

Threat intelligence boosts security training

Security professionals in training can now benefit from real-time threat intelligence data, thanks to a partnership between Digital Shadows and Immersive Labs Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Cloud tech helps to protect advanced networks

How can organisations combine software-defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network? Continue Reading

By

• Greg Temm

UK tech firms favour second referendum as next move in Brexit stalemate

UK tech firms want to remain as close to the EU as possible and believe a second referendum on membership of the trading bloc would be the best way out of the current political stalemate Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Researchers discover new Magecart group

Security researchers have uncovered a sub-group of the Magecart hacking group, highlighting the wider risks of web-based supply chain attacks Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Walk before you run

How can organisations combine software-defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network? Continue Reading

By

• Vladimir Jirasek, Foresight Cyber

Millions of industrial remote controllers open to attack

Millions of industrial remote controllers are open to cyber attack because of vulnerabilities in the radio frequency technology used, a study has revealed Continue Reading

By

• Warwick Ashford, Senior analyst

The rise of DevSecOps

The increasing complexity of security threats facing enterprises is leading to DevSecOps approaches, which combine operations and development with security, so that all business units are involved in security operations Continue Reading

By

• Finbarr Toesland

Businesses fail to apply encryption technology effectively

Most businesses are not applying common encryption tools effectively to contain the fallout and costs of data breaches, research shows Continue Reading

By

• Warwick Ashford, Senior analyst

Nottingham Building Society boosts storage and saves power with Nexsan deployment

Building society ditches geriatric IBM storage array to gain reliability, boost capacity by 20 times and make energy savings with Nexsan, but rejects flash storage for spinning disk SAN Continue Reading

By

• Antony Adshead, Storage Editor

Security Think Tank: Apply different techniques to safeguard against rogue code

How can organisations combine software-defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network? Continue Reading

By

• Ramsés Gallego, Isaca

Security Think Tank: Combine SDN, containerisation and encryption to halt rogue code

How can organisations combine software-defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network? Continue Reading

By

• Mary-Jo de Leeuw, (ISC)2

Top UK hacker-for-hire jailed

Notorious British hacker-for-hire jailed for cyber attacks on a Liberian telco after an international criminal justice operation Continue Reading

By

• Warwick Ashford, Senior analyst

AI application overlooked in cyber security research

Despite the proliferation of cyber security products and services claiming to be driven by artificial intelligence, the application of the technology is being overlooked by research, a study shows Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: How to use SDN, containers and encryption – and some warnings

How can organisations combine software-defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network? Continue Reading

By

• Petra Wenham

Microsoft takes community approach to artificial intelligence in Sweden

Microsoft is making increasing use of artificial intelligence in Sweden as it shares experiences with the development community Continue Reading

By

• Jane Hamrin

Security Think Tank: Creative thinking key to meeting emerging security challenges

How can organisations combine software-defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network? Continue Reading

By

• Gareth Haken, ISF

UK firms say £6.6bn annual security testing cost too high

Avord launches platform to reduce the multibillion-pound annual cyber security testing cost that most UK firms say is too high Continue Reading

By

• Warwick Ashford, Senior analyst

Enterprises are increasing the human workforce while deploying AI

Artificial intelligence is creating more jobs than it replaces, according to a study of businesses using the technology Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

CW Middle East: Bahrain aims to be fintech hub

Bahrain’s government wants to make the country the go-to place in the Middle East for financial technology companies. It hopes to capitalise on its banking know-how to establish an ambitious fintech “ecosystem”. Also read about Dubai’s plans for the Smart Data platform and the UAE Pass, a digital ID and signature, and how Shell is using AI to amplify the human impact of its workforce. Continue Reading

2FA bypass tool highlights top business security vulnerabilities

CEOs are the most likely target of two-factor authentication phishing bypasses, demonstrated by a security researcher’s proof-of-concept attack Continue Reading

By

• Warwick Ashford, Senior analyst

FireEye gears up email security for emerging threats

Email continues to be a top means of initiating cyber attacks with new detection bypass techniques and executive impersonation capabilities continually emerging, research shows Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: The security role of SDN, containers, encryption and SDP

How can organisations combine software-defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network? Continue Reading

By

• Paddy Francis

Second Lorca cohort to focus on supply chain security

The second cohort of companies to benefit from the new London cyber innovation centre will focus on user-centric security and securing supply chains Continue Reading

By

• Warwick Ashford, Senior analyst

Protego Labs launches serverless app security tool

Security professionals and developers now have a way to assess the security of their serverless applications with a new open source testing tool donated to Owasp Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Meeting the security challenge of multiple IT environments

How can organisations combine software defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network? Continue Reading

By

• Maxine Holt, Omdia

Boards need to be active partners in cyber defence

Board members must be active governance partners in collaborative cyber defence, says US regional information sharing and analysis organisation Continue Reading

By

• Warwick Ashford, Senior analyst

BlackBerry licenses security tech to IoT device makers

BlackBerry is to license its secure software development technology to the makers of internet-connected devices to boost IoT security Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Use SDN, containerisation and encryption tools to boost security

How can organisations combine software defined networking, containerisation and encryption to prevent rogue code from running freely across a corporate network? Continue Reading

By

• Simon Persin, Turnkey Consulting

Modern IT underlines need for zero-trust security

The increasing complexity of supply chains and interconnectivity of IT systems means the attack surface is widening and security has to evolve accordingly, warns British computer scientist Continue Reading

By

• Warwick Ashford, Senior analyst

Data breaches affected more than a billion people in 2018

The personal information of more than a billion people was compromised in 2018 as companies holding the data failed to keep it safe Continue Reading

By

• Warwick Ashford, Senior analyst

Phishing attacks hidden by custom fonts

Security researchers have uncovered a new way in which phishing attacks are evading detection. Continue Reading

By

• Warwick Ashford, Senior analyst

Fortinet to lead cyber security discussion at WEF annual summit

The head of cyber security firm Fortinet has been named as a discussion leader at the upcoming World Economic Forum annual meeting in Davos, Switzerland Continue Reading

By

• Warwick Ashford, Senior analyst

Kaspersky Lab champions gender equality and digital child safety

Kaspersky Lab report highlights gender equality in the technology industry and child education about digital security Continue Reading

By

• Warwick Ashford, Senior analyst

Nordic digital transformation driven by traditional businesses

More traditional Nordic businesses are fuelling the region's digital transformation, finds report Continue Reading

By

• Gerard O'Dwyer

SMEs urged to get on board with Network Services 2 framework

Suppliers have until the end of January 2019 to sign up to the new government network services purchasing framework Continue Reading

By

• Alex Scroxton, Security Editor

Can we live without passwords?

Can you imagine a future in which we can be secure online without having to remember an unwieldly list of passwords? Solutions are emerging that could make passwords redundant, but there will be other security problems to resolve Continue Reading

By

• Bruno Halopeau & Adrien Ogee

Security Think Tank: Focus on malicious use of AI in 2019

At the close of 2018, we asked CW Security Think Tank contributors to name one thing predicted for 2018 that did not happen, one thing that was not predicted but did happen, and one thing that should happen in 2019 but probably will not Continue Reading

By

• Rob Clyde, Isaca

Top 10 HR technology stories of 2018

Companies are turning to artificial intelligence, robotic automation and chatbots to take the drudgery out of human resource management Continue Reading

By

• Bill Goodwin, Computer Weekly

Security Think Tank: Strong 2FA should be a goal in 2019

At the close of 2018, we asked CW Security Think Tank contributors to name one thing predicted for 2018 that did not happen, one thing that was not predicted but did happen, and one thing that should happen in 2019 but probably will not Continue Reading

By

• Paddy Francis

Top 10 Middle East stories of 2018

Here are Computer Weekly’s top 10 Middle East enterprise IT stories of 2018 Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Top 10 IT security stories of 2018

Here are Computer Weekly’s top 10 IT security stories of 2018 Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Let’s hope for treaty on online norms

At the close of 2018, we asked CW Security Think Tank contributors to name one thing predicted for 2018 that did not happen, one thing that was not predicted but did happen, and one thing that should happen in 2019 but probably will not Continue Reading

By

• Stephen Bonner, Deloitte Cyber Risk Services

Security Think Tank: Put collaboration on 2019 security agenda

At the close of 2018, we asked CW Security Think Tank contributors to name one thing predicted for 2018 that did not happen, one thing that was not predicted but did happen, and one thing that should happen in 2019 but probably will not Continue Reading

By

• Emma Bickerstaffe, Information Security Forum (ISF)

Top 10 cyber crime stories of 2018

Here are Computer Weekly’s top 10 cyber crime stories of 2018 Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Align security strategy to business objectives

At the close of 2018, we asked CW Security Think Tank contributors to name one thing predicted for 2018 that did not happen, one thing that was not predicted and did happen and one thing that should happen in 2019, but probably will not Continue Reading

By

• Mike Gillespie

Top 10 broadband stories of 2018

The networking industry swung firmly behind full-fibre broadband in 2018, with encouraging signs that the gold-standard of broadband service delivery technology is at long last taking off in the UK Continue Reading

By

• Alex Scroxton, Security Editor

Broadband coverage improved through 2018, says Ofcom

Ofcom’s annual Connected Nations report reveals that the number of people who cannot receive a 10Mbps broadband connection has halved Continue Reading

By

• Alex Scroxton, Security Editor

Ofcom fires starting gun for new mobile spectrum auction

Mobile spectrum in the 700MHz and 3.6-3.8GHz bands will be put up for auction either late in 2019 or early in 2020 Continue Reading

By

• Alex Scroxton, Security Editor

Security Think Tank: Let’s get back to basics in 2019

At the close of 2018, we asked CW Security Think Tank contributors to name one thing predicted for 2018 that did not happen, one thing that was not predicted but did happen, and one thing that should happen in 2019 but probably will not Continue Reading

By

• Mike Sheward

Security Think Tank: Prioritise multifactor authentication in 2019

At the close of 2018, we asked CW Security Think Tank contributors to name one thing predicted for 2018 that did not happen, one thing that was not predicted but did happen, and one thing that should happen in 2019 but probably will not Continue Reading

By

• Corey Nachreiner, Watchguard Technologies

Iranian cyber espionage highlights human element

State-backed hackers in Iran have reportedly upped efforts to compromise US officials’ email accounts using phishing scams Continue Reading

By

• Warwick Ashford, Senior analyst

Australia passes controversial encryption law

Arguments continue over law that requires companies to work with government agencies to ensure that encrypted communications can be read if a crime is suspected Continue Reading

By

• Beverley Head

Security Think Tank: Smart botnets resist attempts to cut comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including "sleepers" designed to be activated at a future date Continue Reading

By

• Raef Meeuwisse

Security Think Tank: Strategies for blocking malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Greg Temm

Machine identity protection development gets funding boost

Cyber security firm Venafi has launched a development fund aimed at accelerating the delivery of protection for machine identities Continue Reading

By

• Warwick Ashford, Senior analyst

Social engineering at the heart of critical infrastructure attack

Social engineering is the core technique used in a series of cyber attacks targeting government, defence, nuclear, energy and financial organisations around the world, which means people are key to defence Continue Reading

By

• Warwick Ashford, Senior analyst

CW Europe: Russia banks on electronic payments

A recent study by Sberbank, Russia’s largest state-run lender, shows the country has experienced a cashless payment boom over the past decade. Also read about the attempt by four Russians to break into the networks of the Organisation for the Prohibition of Chemical Weapons in The Hague, and why the Estonian government is directly targeting IT professionals in the UK. Continue Reading

UK trade sector risks GDPR fines over poor data disposal

UK businesses in the trade sector are risking GDPR fines for failing to wipe data from old IT equipment, a survey shows Continue Reading

By

• Warwick Ashford, Senior analyst

Most UK retailers plan to up cyber security

The majority of UK retailers are planning to increase cyber security measures during the Christmas season, a survey reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Prevention and detection key to disrupting malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Simon Persin, Turnkey Consulting

Criminals act like nation-state attackers in Russian campaign

Security researchers have uncovered evidence of a sustained effort targeting Russian state-owned critical infrastructure companies by financially motivated non-state actors Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Severing C&C comms is key, but complex

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Emma Bickerstaffe, Information Security Forum (ISF)

Mac malware makes debut in top 10 list

Mac malware appears in the WatchGuard top 10 malware list for first time, and 6.8% of major websites still use an insecure SSL protocol, according to the firm’s latest internet security report Continue Reading

By

• Warwick Ashford, Senior analyst

O2 expected to pursue Ericsson for compensation over 24-hour stoppage

Mobile network operator could seek up to £100m in damages from its supplier, which failed to update expired software certificates, causing a day-long outage Continue Reading

By

• Alex Scroxton, Security Editor

Security Think Tank: Firms neglect DNS security at their peril

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Simon McCalla, Nominet

UK businesses feel let down by government on cyber security

Government needs to provide more support around cyber security issues in 2019, according to the majority of UK IT leaders polled Continue Reading

By

• Warwick Ashford, Senior analyst

Finnish government announces research and development ecosystem

Finland has launched an innovation ecosystem that will support IoT and AI developers amongst others Continue Reading

By

• Gerard O'Dwyer

Half of business leaders unaware of BPC cyber attacks

Half of management teams polled in 12 countries, including the UK, are unaware of business process compromise (BPC) attacks Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Three steps to detect malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Bruce Beam , (ISC)²

Douglas Engelbart, the forgotten hero of modern computing

Half a century ago, Douglas Engelbart demonstrated an experimental computer that laid the foundations for modern computing. His vision to use computing power to solve complex problems in all areas of human activity has become reality, but not in the way that he imagined Continue Reading

By

• Jake Charles Rees

Security Think Tank: How to tool up to catch evasive malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Paddy Francis

BT and KCOM named broadband USO suppliers

Ofcom has named BT, and in East Yorkshire, KCOM, as the designated providers for the incoming broadband universal service obligation Continue Reading

By

• Alex Scroxton, Security Editor

Fileless malware surge, warns Malwarebytes report 

Data from millions of consumers reveals an uptick in fileless malware and other new-generation malware that calls for a new cyber security approach, report reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Software failure paralyses O2’s 4G network

O2 is racing to fix a major outage on its 4G network that has left millions of mobile subscribers without access to data services Continue Reading

By

• Alex Scroxton, Security Editor

Adobe releases Flash patch for zero-day exploit

Emergency security update released for zero-day vulnerability that is being exploited in the wild via a Microsoft Office document, according to researchers Continue Reading

By

• Warwick Ashford, Senior analyst

Drawing the line for cyber warfare

With alleged Russian meddling in elections and the state-backed attack on Iran’s nuclear programme, it is becoming difficult to define the boundaries of cyber warfare Continue Reading

By

• Phil Wilcox

Brexit implications for data protection

Leaving the European Union will have serious implications for data protection in the UK unless adequate steps are taken, so businesses are advised to have contingency plans in place Continue Reading

By

• Peter Ray Allison

Security Think Tank: Situational awareness underpins effective security

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure they detect such methods and that all C&C systems are removed, including ‘sleepers’ designed to be activated at a future date? Continue Reading

By

• Mike Gillespie

Australia races towards commercial quantum computing

Universities make headway in the challenge of commercialising quantum computing Continue Reading

By

• Beverley Head

Nominet brings security expertise and tech to market

The .uk domain registry is to bring its DNS expertise and technology developed for the NCSC to market to address cyber security ‘blindspot’ Continue Reading

By

• Warwick Ashford, Senior analyst

Phishing at centre of cyber attack on Ukraine infrastructure

Phishing is one of the key tools used by cyber attackers against critical national infrastructure (CNI), as highlighted by attacks on telecommunications in Ukraine Continue Reading

By

• Warwick Ashford, Senior analyst

Financial institutions’ data at risk despite security spending

Despite increased spending on cyber security, digital transformation and advanced attacks mean financial institutions’ data is still at risk, a report reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Basic steps to countering malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure they detect such methods and that all C&C systems are removed, including "sleepers" designed to be activated at a future date Continue Reading

By

• Petra Wenham

100 million Quora.com user details exposed

Question-and-answer site is the latest organisation to admit a breach of users’ personal data, with industry commentators calling out credential theft as a top cause of such breaches Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Combine tech, process and people to block malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including "sleepers" designed to be activated at a future date. Continue Reading

By

• Maxine Holt, Omdia

BT announces new head of security business

BT has appointed a former law enforcement officer and BT investigator as the new head of its security business Continue Reading

By

• Warwick Ashford, Senior analyst

Police investigations into cyber crime up 14% in a year

Officers forced to follow up over 2,500 complaints of Instagram, Facebook, email and website hacking, and Bitcoin ransom, despite a rise in violent crime, report reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Cyber crime most significant harm in UK, says top cyber cop

Cyber crime is the most significant harm in the UK, according to the cyber lead at the City of London Police, which is the national lead for online crime Continue Reading

By

• Warwick Ashford, Senior analyst

Marriott data breach highlights basic failings

A breach of a guest reservation database of the Starwood division of the Marriott International hotel group highlights basic personal data protection failures Continue Reading

By

• Warwick Ashford, Senior analyst

WannaCry borderline national cyber emergency

The May 2017 WannaCry attack, which disrupted services at one-third of NHS trusts and more than 600 primary care organisations is the closest the UK has come to a national cyber emergency, says the NCSC Continue Reading

By

• Warwick Ashford, Senior analyst

E-commerce sites warned of heightened DDoS threat

E-commerce sites are being urged to ensure that they have adequate DDoS protection ahead of the vital holiday trading season after attacks ramped up on Black Friday and Cyber Monday Continue Reading

By

• Warwick Ashford, Senior analyst

How to build SME storage using public cloud storage

Small companies can often take advantage of public cloud storage offerings to supplement or replace on-premise infrastructure. We look at key options in file, block and object storage Continue Reading

By

• Chris Evans

Agile becomes mainstream

There are clear parallels between the conditions that led the IT industry to adopt agile approaches and the challenges facing business today Continue Reading

By

• Simon Masters

UK cyber security strategy making ‘good progress’

The National Cyber Security Strategy is making good progress, but there is much left to be done, according to a Cabinet Office official Continue Reading

By

• Warwick Ashford, Senior analyst

Cyber resilience lacking due to apathy of UK leaders

An unwillingness to accept that cyber is a real threat to critical national infrastructure by UK political and business leaders has resulted in a lack of resilience, says security industry veteran Continue Reading

By

• Warwick Ashford, Senior analyst