IT for small and medium-sized enterprises (SME)

CW Europe: Russia banks on electronic payments

A recent study by Sberbank, Russia’s largest state-run lender, shows the country has experienced a cashless payment boom over the past decade. Also read about the attempt by four Russians to break into the networks of the Organisation for the Prohibition of Chemical Weapons in The Hague, and why the Estonian government is directly targeting IT professionals in the UK. Continue Reading

UK trade sector risks GDPR fines over poor data disposal

UK businesses in the trade sector are risking GDPR fines for failing to wipe data from old IT equipment, a survey shows Continue Reading

By

• Warwick Ashford, Senior analyst

Most UK retailers plan to up cyber security

The majority of UK retailers are planning to increase cyber security measures during the Christmas season, a survey reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Prevention and detection key to disrupting malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Simon Persin, Turnkey Consulting

Criminals act like nation-state attackers in Russian campaign

Security researchers have uncovered evidence of a sustained effort targeting Russian state-owned critical infrastructure companies by financially motivated non-state actors Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Severing C&C comms is key, but complex

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Emma Bickerstaffe, Information Security Forum (ISF)

Mac malware makes debut in top 10 list

Mac malware appears in the WatchGuard top 10 malware list for first time, and 6.8% of major websites still use an insecure SSL protocol, according to the firm’s latest internet security report Continue Reading

By

• Warwick Ashford, Senior analyst

O2 expected to pursue Ericsson for compensation over 24-hour stoppage

Mobile network operator could seek up to £100m in damages from its supplier, which failed to update expired software certificates, causing a day-long outage Continue Reading

By

• Alex Scroxton, Security Editor

Security Think Tank: Firms neglect DNS security at their peril

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Simon McCalla, Nominet

UK businesses feel let down by government on cyber security

Government needs to provide more support around cyber security issues in 2019, according to the majority of UK IT leaders polled Continue Reading

By

• Warwick Ashford, Senior analyst

Finnish government announces research and development ecosystem

Finland has launched an innovation ecosystem that will support IoT and AI developers amongst others Continue Reading

By

• Gerard O'Dwyer

Half of business leaders unaware of BPC cyber attacks

Half of management teams polled in 12 countries, including the UK, are unaware of business process compromise (BPC) attacks Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Three steps to detect malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Bruce Beam , (ISC)²

Douglas Engelbart, the forgotten hero of modern computing

Half a century ago, Douglas Engelbart demonstrated an experimental computer that laid the foundations for modern computing. His vision to use computing power to solve complex problems in all areas of human activity has become reality, but not in the way that he imagined Continue Reading

By

• Jake Charles Rees

Security Think Tank: How to tool up to catch evasive malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including “sleepers” designed to be activated at a future date? Continue Reading

By

• Paddy Francis

BT and KCOM named broadband USO suppliers

Ofcom has named BT, and in East Yorkshire, KCOM, as the designated providers for the incoming broadband universal service obligation Continue Reading

By

• Alex Scroxton, Security Editor

Fileless malware surge, warns Malwarebytes report 

Data from millions of consumers reveals an uptick in fileless malware and other new-generation malware that calls for a new cyber security approach, report reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Software failure paralyses O2’s 4G network

O2 is racing to fix a major outage on its 4G network that has left millions of mobile subscribers without access to data services Continue Reading

By

• Alex Scroxton, Security Editor

Adobe releases Flash patch for zero-day exploit

Emergency security update released for zero-day vulnerability that is being exploited in the wild via a Microsoft Office document, according to researchers Continue Reading

By

• Warwick Ashford, Senior analyst

Drawing the line for cyber warfare

With alleged Russian meddling in elections and the state-backed attack on Iran’s nuclear programme, it is becoming difficult to define the boundaries of cyber warfare Continue Reading

By

• Phil Wilcox

Brexit implications for data protection

Leaving the European Union will have serious implications for data protection in the UK unless adequate steps are taken, so businesses are advised to have contingency plans in place Continue Reading

By

• Peter Ray Allison

Security Think Tank: Situational awareness underpins effective security

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure they detect such methods and that all C&C systems are removed, including ‘sleepers’ designed to be activated at a future date? Continue Reading

By

• Mike Gillespie

Australia races towards commercial quantum computing

Universities make headway in the challenge of commercialising quantum computing Continue Reading

By

• Beverley Head

Nominet brings security expertise and tech to market

The .uk domain registry is to bring its DNS expertise and technology developed for the NCSC to market to address cyber security ‘blindspot’ Continue Reading

By

• Warwick Ashford, Senior analyst

Phishing at centre of cyber attack on Ukraine infrastructure

Phishing is one of the key tools used by cyber attackers against critical national infrastructure (CNI), as highlighted by attacks on telecommunications in Ukraine Continue Reading

By

• Warwick Ashford, Senior analyst

Financial institutions’ data at risk despite security spending

Despite increased spending on cyber security, digital transformation and advanced attacks mean financial institutions’ data is still at risk, a report reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Basic steps to countering malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure they detect such methods and that all C&C systems are removed, including "sleepers" designed to be activated at a future date Continue Reading

By

• Petra Wenham

100 million Quora.com user details exposed

Question-and-answer site is the latest organisation to admit a breach of users’ personal data, with industry commentators calling out credential theft as a top cause of such breaches Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Combine tech, process and people to block malware comms

As attackers begin to use multiple command and control systems to communicate with backdoors and other malware, how can organisations ensure that they detect such methods and that all C&C systems are removed, including "sleepers" designed to be activated at a future date. Continue Reading

By

• Maxine Holt, Omdia

BT announces new head of security business

BT has appointed a former law enforcement officer and BT investigator as the new head of its security business Continue Reading

By

• Warwick Ashford, Senior analyst

Police investigations into cyber crime up 14% in a year

Officers forced to follow up over 2,500 complaints of Instagram, Facebook, email and website hacking, and Bitcoin ransom, despite a rise in violent crime, report reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Cyber crime most significant harm in UK, says top cyber cop

Cyber crime is the most significant harm in the UK, according to the cyber lead at the City of London Police, which is the national lead for online crime Continue Reading

By

• Warwick Ashford, Senior analyst

Marriott data breach highlights basic failings

A breach of a guest reservation database of the Starwood division of the Marriott International hotel group highlights basic personal data protection failures Continue Reading

By

• Warwick Ashford, Senior analyst

WannaCry borderline national cyber emergency

The May 2017 WannaCry attack, which disrupted services at one-third of NHS trusts and more than 600 primary care organisations is the closest the UK has come to a national cyber emergency, says the NCSC Continue Reading

By

• Warwick Ashford, Senior analyst

E-commerce sites warned of heightened DDoS threat

E-commerce sites are being urged to ensure that they have adequate DDoS protection ahead of the vital holiday trading season after attacks ramped up on Black Friday and Cyber Monday Continue Reading

By

• Warwick Ashford, Senior analyst

How to build SME storage using public cloud storage

Small companies can often take advantage of public cloud storage offerings to supplement or replace on-premise infrastructure. We look at key options in file, block and object storage Continue Reading

By

• Chris Evans

Agile becomes mainstream

There are clear parallels between the conditions that led the IT industry to adopt agile approaches and the challenges facing business today Continue Reading

By

• Simon Masters

UK cyber security strategy making ‘good progress’

The National Cyber Security Strategy is making good progress, but there is much left to be done, according to a Cabinet Office official Continue Reading

By

• Warwick Ashford, Senior analyst

Cyber resilience lacking due to apathy of UK leaders

An unwillingness to accept that cyber is a real threat to critical national infrastructure by UK political and business leaders has resulted in a lack of resilience, says security industry veteran Continue Reading

By

• Warwick Ashford, Senior analyst

More effective digital transformation through the power of your own people

The old model of escalating decisions up and down the management chain does not work any more. Business leaders need to delegate responsibility for projects to business and technology specialists and eliminate the fear of failure Continue Reading

By

• Peter Ironside, KPMG

Businesses failing to win consumer trust

Businesses are still largely failing to win the trust of consumers to keep their personal data safe as data breaches continue to make headlines Continue Reading

By

• Warwick Ashford, Senior analyst

Openreach extends Gfast roll-out to a million more homes

Copper-based ultrafast broadband roll-out continues at pace Continue Reading

By

• Alex Scroxton, Security Editor

York teen crowned 2018 UK cyber security champion

Teenager beat off competition from 41 other cyber security enthusiasts from across the UK, and six from Singapore, in the UK Cyber Security Challenge final Continue Reading

By

• Warwick Ashford, Senior analyst

ICO fines Uber £385,000 for data protection failings

Like Facebook, Uber has escaped a potentially much higher fine for data protection failings because the 2016 breach that affected millions of UK customers is not covered by the GDPR Continue Reading

By

• Warwick Ashford, Senior analyst

High Court trial over Horizon computer system completes witness cross-examinations

The High Court trial in which subpostmasters are suing the Post Office has reached an important stage Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

GDPR is encouraging UK IT directors to pay cyber ransoms

As predicted ahead of the General Data Protection Regulation enforcement deadline, research shows that fear of fines under the new laws is making some firms more likely to pay cyber ransoms Continue Reading

By

• Warwick Ashford, Senior analyst

Lords call for HMRC to delay Making Tax Digital for VAT

The government must begin to listen to small businesses and should delay the roll-out of its Making Tax Digital for VAT programme by at least a year, says the Lords Economic Affairs Committee Continue Reading

By

• Lis Evenstad

Sixth form college rebuilds after fire with Scale hyper-converged

Xaverian College suffered a server room fire but took the opportunity to build a hyper-converged infrastructure with Scale Computing that did away with costly VMware licence fees Continue Reading

By

• Antony Adshead, Storage Editor

Three factors marginalising the CISO role

Chief information security officers are typically marginalised due to three factors, and de-coupling the technical and managerial aspects of the job will enable empowerment, says consultant Continue Reading

By

• Warwick Ashford, Senior analyst

UK firms in the dark around the impact of cyber attacks

UK firms have a long way to go in building the business resilience required to withstand cyber threats and other major disruptions, a study shows Continue Reading

By

• Warwick Ashford, Senior analyst

Many firms still stuck in GDPR prep phase six months after its initiation

Six months after the GDPR compliance deadline, many companies are struggling to make data protection principles part of everyday business, says PwC’s GDPR and data protection lead Continue Reading

By

• Warwick Ashford, Senior analyst

Keep people at the centre of risk management, says consultant

In assessing the cyber risks to a business, security professionals should start with the people in an organisation and keep them at the centre in identifying and mitigating risk, says consultant Continue Reading

By

• Warwick Ashford, Senior analyst

Enterprises lack capability against persistent cyber attacks

A report urges organisations to strengthen their cyber defence capabilities to pre-empt, detect and respond to post-breach attacks Continue Reading

By

• Warwick Ashford, Senior analyst

It’s complicated: How enterprises are approaching IAM challenges

Identity and access management challenges are evolving with digital transformation. Computer Weekly explores some of the ways organisations are ensuring the right people gain the right access to the right resources Continue Reading

By

• Christian Annesley

AI-enhanced security tools necessary for today’s threats

Machine learning-enhanced tools are necessary to keep up with current threats, but are not perfect and will not solve the security skills gap problem, says KuppingerCole Continue Reading

By

• Warwick Ashford, Senior analyst

Zero-trust security not an off-the-shelf product

The zero-trust security model is a business enabler that needs to be supported by a strategy and security architecture, analyst warns cyber security leaders Continue Reading

By

• Warwick Ashford, Senior analyst

Broadband voucher scheme to end early thanks to high demand

The government has urged small business owners to consider signing up for its ultrafast broadband connection voucher scheme before the available funding runs out Continue Reading

By

• Alex Scroxton, Security Editor

5G will unleash digital transformation for UK enterprises

Mobile operator EE is working hand-in-hand with its largest enterprise customers to realise the potential of its future 5G mobile network Continue Reading

By

• Alex Scroxton, Security Editor

User behaviour analytics adding new insight

User behaviour analytics is helping to add new insights by providing the missing element in security event information management approaches, says Martin Kuppinger Continue Reading

By

• Warwick Ashford, Senior analyst

Firms lack responsible exec for cyber security

Narrow gap between CEO, CIO and CISO roles means no single executive function is stepping up to take responsibility for cyber security, a study shows Continue Reading

By

• Warwick Ashford, Senior analyst

Post-quantum cryptography a major challenge, says expert

The crypto wars are just beginning and open systems are key to improved security in future, says cryptography expert Continue Reading

By

• Warwick Ashford, Senior analyst

Researcher urges IoT security legislation

Suppliers of internet connected devices are largely failing to improve the security of their products, exposing users to privacy risks, so there is no choice but to legislate in this area, says a researcher Continue Reading

By

• Warwick Ashford, Senior analyst

GDPR a challenge to AI black boxes

Most artificial intelligence “black boxes” do not comply with EU data protection laws and will have to be re-engineered, warns security researcher and consultant Continue Reading

By

• Warwick Ashford, Senior analyst

CW Benelux: Bikes face scooter challenge in Netherlands

The concept of rental scooters is perfect for the Netherlands, where bicycles are already the most widely used method of transport. Scooter startups see the potential to apply the latest smart technologies to the concept, but regulations could be a barrier. Also in this issue, read how chatbots are taking off with Dutch organisations, with KLM's chatbot a pioneering example, and find out how Dutch bank ING is getting a financial boost from an employee performance management rethink. Continue Reading

Decentralised ID key to identity security

Enterprises need to step up protections around identity-related compromises and look to decentralised identity in the longer term to improve security, says computer scientist Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Top considerations to reduce application layer attacks

What should organisations be doing to address application layer attacks and reduce the likelihood of a breach through this type of attack? Continue Reading

By

• Tim Holman, 2-sec

Investment fund buys into broadband supplier Hyperoptic

Mubadala Investment Company, the VC arm of the government of Abu Dhabi, is to acquire a minority stake in full-fibre broadband supplier Hyperoptic as the firm brings forward its roll-out Continue Reading

By

• Alex Scroxton, Security Editor

Cyber security high on European Commission agenda

The European Commission is recognising the growing importance of cyber security to the digital economy and is increasing funding to support research, resilience and cooperation Continue Reading

By

• Warwick Ashford, Senior analyst

Smart Dubai platform is the backbone of the city's transformation

Aisha bin Bishr, director general at Smart Dubai Office, talks about the Smart Data platform and soon-to-be-unveiled UAE Pass, a digital ID and signature which is being touted as one of the foundations a city needs to transform Continue Reading

By

• Edward Banda

Automation and CSR are driving reskilling process for UK plc, says Cisco

UK business leaders are planning to make dramatic changes to their organisations between now and 2020, according to a new report from Cisco Continue Reading

By

• Alex Scroxton, Security Editor

Start preparing for post-quantum data protection

Organisations that need to retain sensitive information for long periods of time need to start preparing for the post-quantum era, according to an IBM security architect Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Gap, risk and business impact analysis key to application security

What should organisations be doing to address application layer attacks and reduce the likelihood of a breach through this type of attack? Continue Reading

By

• Ramsés Gallego, Isaca

Openreach launches Fibre First programme in Belfast and Nottingham

Openreach has named Belfast and Nottingham as the latest cities to benefit from a full-fibre broadband roll-out Continue Reading

By

• Alex Scroxton, Security Editor

Banking sector leading CIAM innovation, say Big Four

Maturity in consumer identity and access management (CIAM) differs from sector to sector, with the banking sector taking the lead in terms of innovation, according to the Big Four accounting firms Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Three ways to safeguard against application layer vulnerabilities

What should organisations be doing to address application layer attacks and reduce the likelihood of a breach through this type of attack? Continue Reading

By

• Bruce Beam , (ISC)²

Security Think Tank: Deploy multiple defence layers to protect data-rich applications

What should organisations be doing to address application layer attacks and reduce the likelihood of a breach through this type of attack? Continue Reading

By

• Simon Persin, Turnkey Consulting

Government is open for business, says SME Crown Representative

The government’s Crown Representative for SMEs, Emma Jones, sheds light on her three-pronged approach to increase spend with smaller businesses Continue Reading

By

• Lis Evenstad

Key elements to success in consumer identity management

Success in consumer identity management is not just about getting the technology right, it is also about keeping in mind the consumer needs, preferences and concerns, says KuppingerCole Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: A three-pronged approach to application security

What should organisations be doing to address application layer attacks and reduce the likelihood of a breach through this type of attack? Continue Reading

By

• Petra Wenham

Hyperoptic full-fibre network hits public housing milestone

More than 150,000 publicly owned homes have now been connected to Hyperoptic’s ultrafast fibre broadband network Continue Reading

By

• Alex Scroxton, Security Editor

GDPR driving data protection maturity

The EU data protection laws are helping to drive data protection maturity internationally, but five months after enforcement many companies are still playing catch-up, says consultant Continue Reading

By

• Warwick Ashford, Senior analyst

UK Post Office looks to enable reusable digital ID

The UK Post Office is investigating the possibility of enabling UK citizens to re-use their passport data for other applications where digital identity is a key component Continue Reading

By

• Warwick Ashford, Senior analyst

Budget 2018: No great leap forward for broadband, but no need to panic

The chancellor set aside £1.6bn for digital technology in the Budget, but broadband services did not draw much attention. Is this a surprise, or a reflection of growing commercial investment in full-fibre, and what should the role of government be? Continue Reading

By

• Alex Scroxton, Security Editor

Aim for long-term customer identity relationship

Consumer identity management can deliver competitive advantage, but only if businesses follow some golden rules, says KuppingerCole Continue Reading

By

• Warwick Ashford, Senior analyst

Security Think Tank: Defend application layer with good security hygiene

What should organisations be doing to address application layer attacks and reduce the likelihood of a breach through this type of attack? Continue Reading

By

• Mike Gillespie

O2 extends rural 4G network to 339 communities

O2 has extended its rural network roll-out, targeting over 300 small communities all over the UK Continue Reading

By

• Alex Scroxton, Security Editor

Security Think Tank: Counter application layer attacks with automation

What should organisations be doing to address application layer attacks and reduce the likelihood of a breach through this type of attack? Continue Reading

By

• Paddy Francis

NGA secures £22m for Bristol-Newport fibre link

Ultrafast wholesale network builder Nextgenaccess has been awarded funding from the National Digital Infrastructure Fund to improve connectivity in South Wales Continue Reading

By

• Alex Scroxton, Security Editor

Security Think Tank: Focus on security before app deployment

What should organisations be doing to address application layer attacks and reduce the likelihood of a breach through this type of attack? Continue Reading

By

• Richard Absalom, Information Security Forum

IoT ecosystem needs to be investigated, say experts

A conference of IoT experts convened by Enisa and Europol has made key recommendations to ensure security vulnerabilities do not overshadow benefits Continue Reading

By

• Warwick Ashford, Senior analyst

GandCrab decryption tool released by No More Ransom

Another decryption tool has been made available free of charge in the battle against ransomware to help victims avoid paying to release their data Continue Reading

By

• Warwick Ashford, Senior analyst

Firms will use AI to automate HR processes within two years

Companies are gearing up to automate HR processes with artificial intelligence and machine learning, while at the same time battling with outdated IT systems Continue Reading

By

• Bill Goodwin, Computer Weekly

Becrypt security platform helps ease cloud adoption

Becrypt’s secure operating system is driving a new service aimed at helping organisations reduce cost and increase agility in using cloud-based services and online applications Continue Reading

By

• Warwick Ashford, Senior analyst

Choose security tools wisely to gain upper hand

The cyber threat landscape is continually changing, but staying abreast of attacker and defender innovation can help business leaders gain the upper hand, says KuppingerCole Continue Reading

By

• Warwick Ashford, Senior analyst

CityFibre backers pump £2.5bn into full-fibre broadband

Network expansion will add 27 towns and cities to CityFibre’s current roll-out to 10 locations in support of a consumer full-fibre service delivered by Vodafone Continue Reading

By

• Alex Scroxton, Security Editor

Interview: Steve Grobman, McAfee CTO shares his views on some burning security questions

Cyber security technology innovator and veteran Steve Grobman shares his views on adversarial artificial intelligence, post-quantum cryptography and security for next-gen tech Continue Reading

By

• Warwick Ashford, Senior analyst

Government to invest £8m in Brexit customs training and automation

The Treasury and HMRC are putting measures in place to support the customs sector should the UK leave the EU with no deal, including funding to increase automation and training Continue Reading

By

• Lis Evenstad

Morrisons loses appeal against data breach liability ruling

Supermarket chain has lost its appeal against a High Court ruling that found it liable for a data leak by a former employee, underlining the importance of managing insider threats Continue Reading

By

• Warwick Ashford, Senior analyst

Centralised identity risky and not web 3.0 friendly, says entrepreneur

User controlled identity is less risky than centralised identity and essential for the next evolution of the web, according to an entrepreneur and evangelist of self-sovereign identity and blockchain technologies Continue Reading

By

• Warwick Ashford, Senior analyst

McAfee combining threat intel with AI

Simulations show that threat intelligence and artificial intelligence is a powerful combination, according to McAfee’s technology head Continue Reading

By

• Warwick Ashford, Senior analyst