Regulatory compliance and standard requirements
-
News
19 Dec 2024
Latest attempt to override UK’s outdated hacking law stalls
Amendments to the Data Bill that would have given the UK cyber industry a boost by updating restrictive elements of the Computer Misuse Act have failed to progress beyond a Lords committee Continue Reading
-
Opinion
19 Dec 2024
The Data Bill: It’s time to cyber up
The Computer Misuse Act is outdated and needs reform - so it's disappointing to see the government decline an opportunity to update the legislation, says the peer who proposed amendments Continue Reading
-
Opinion
26 Oct 2018
As data volumes grow, backup needs analytics, says StorageCraft CEO
Backup appliance maker’s CEO says backup needs analytics so customers can prioritise restore of critical data in a world where volumes increase by 50% a year Continue Reading
-
News
26 Oct 2018
IoT ecosystem needs to be investigated, say experts
A conference of IoT experts convened by Enisa and Europol has made key recommendations to ensure security vulnerabilities do not overshadow benefits Continue Reading
-
Opinion
25 Oct 2018
Mitigating third-party cyber risks in a new regulatory environment
GDPR and the NIS Directive increase the focus on managing cyber security throughout the supply chain. Organisations need to check their suppliers are compliant Continue Reading
-
News
25 Oct 2018
MEPs call for action in wake of Facebook-Cambridge Analytica scandal
European members of parliament demand action to protect citizens’ privacy from abuses such as those uncovered in the Facebook-Cambridge Analytica data sharing scandal Continue Reading
-
News
25 Oct 2018
ICO issues maximum £500,000 fine to Facebook
The UK privacy watchdog has confirmed that Facebook has escaped a fine of more than $1bn under the GDPR, but will face the maximum under the DPA for failing to protect users’ personal information Continue Reading
-
News
25 Oct 2018
Cathay Pacific under fire over breach affecting 9.4 million passengers
Hong Kong-based airline reveals massive data breach of the most sensitive personal data of passengers five months after loss was confirmed Continue Reading
-
News
25 Oct 2018
Becrypt security platform helps ease cloud adoption
Becrypt’s secure operating system is driving a new service aimed at helping organisations reduce cost and increase agility in using cloud-based services and online applications Continue Reading
-
News
23 Oct 2018
Morrisons loses appeal against data breach liability ruling
Supermarket chain has lost its appeal against a High Court ruling that found it liable for a data leak by a former employee, underlining the importance of managing insider threats Continue Reading
-
News
19 Oct 2018
Learn lessons from attacks, says McAfee investigations chief
Organisations should use every cyber attack as an opportunity to learn, identify weaknesses and improve security posture, according to McAfee’s head of cyber investigations Continue Reading
-
News
18 Oct 2018
NHS standards framework aims to set the bar for quality and efficiency
NHS Digital’s standards framework sets out renewed commitment to implement and use open standards across the NHS Continue Reading
-
News
18 Oct 2018
Time to implement new cyber security protections, says McAfee CEO Chris Young
Convergence of threats and technologies and an increasingly complex regulatory environment are driving the need to implement new cyber security protections, says McAfee chief Continue Reading
-
News
16 Oct 2018
UK faces 10 cyber attacks a week as hostile states step up hacking, says NCSC
The UK’s National Cyber Security Centre has thwarted more than 1,600 attacks over the past two years – many by hostile nation states Continue Reading
-
News
15 Oct 2018
Tech companies should not be under legal duty to remove terrorist material, says watchdog
The internet should not be a safe place for terrorists, but making it compulsory for technology companies to trawl for radical content risks interfering with the rights of innocent people, says Max Hill QC, the independent reviewer of terrorism legislation Continue Reading
-
News
15 Oct 2018
Good data governance is good business
Organisations are failing to understand the importance of getting their data relationship with customers right and seeing the business opportunities that it enables, an industry analyst warns Continue Reading
-
News
15 Oct 2018
Apple challenges Australia’s proposed decryption law
Tech giant Apple argued that the lack of judicial oversight could reduce customer trust and security, among other reservations over Australia’s draft decryption legislation Continue Reading
-
News
11 Oct 2018
MEPs urge Facebook to roll out election fraud prevention measures
Facebook is coming under pressure from European lawmakers to do more to prevent its user data from being misappropriated during elections Continue Reading
-
News
10 Oct 2018
Detail of Dutch reaction to Russian cyber attack made public deliberately
Four Russian intelligence officials were expelled from the Netherlands after an attempted hack on the global chemical weapons watchdog. The Dutch government has been open about the detail Continue Reading
-
Opinion
09 Oct 2018
Security Think Tank: Monitoring key to outcomes-based security
What is the first step towards moving from a tick-box approach to security to one that is outcomes-based, and how can an organisation test if its security defences are delivering the desired outcome? Continue Reading
-
News
08 Oct 2018
High Court blocks Google iPhone privacy lawsuit
The UK High Court has thrown out a group action lawsuit against Google for tracking iPhone browsing data, but campaign group Google You Owe Us, which brought the litigation, will appeal the decision Continue Reading
-
News
08 Oct 2018
ICO hits Heathrow Airport with £120,000 data breach fine over lost USB stick
Information Commissioner’s Office fines airport after a member of the public came across a USB stick containing sensitive personal information about airport staff Continue Reading
-
Opinion
08 Oct 2018
Customers need to be at the centre of GDPR plans
Responding to a breach is not just about data, it is about taking care of, and protecting, customers Continue Reading
-
News
05 Oct 2018
GDPR case work swamps Denmark’s data protection agency
The agency investigating alleged breaches of GDPR in Denmark is recruiting additional resources to cope with the increase in work Continue Reading
-
Opinion
04 Oct 2018
Security Think Tank: Use Cyber Essentials to kick-start outcomes-based security
What is the first step towards moving from a tick-box approach to security to one that is outcomes-based and how can an organisation test whether its security defences are delivering the desired outcome? Continue Reading
-
News
01 Oct 2018
Facebook could face up to $1.6bn fine for data breach
Facebook is under increased pressure to demonstrate that users’ personal data is protected as it faces a potential fine of more than a billion dollars for a data breach affecting millions of users Continue Reading
-
News
28 Sep 2018
EU sees eIDAS regulation come into full force
A regulation aimed at cutting red tape to enable a digital single market in Europe will soon be in full force, but it could present some challenges to the UK after Brexit Continue Reading
-
Feature
27 Sep 2018
Prepare now for quantum computers, QKD and post-quantum encryption
The predicted processing power of quantum computers is likely to make existing encryption algorithms obsolete. Quantum key distribution (QKD) is a possible solution - we investigate whether QKD is viable Continue Reading
-
News
26 Sep 2018
ICO threatens fines for outstanding fees
The UK’s privacy watchdog has issued warning letters to organisations, including some NHS trusts and government organisations, for failing to pay a new data protection fee Continue Reading
-
News
26 Sep 2018
Financial services firms face potential security bombshell
UK financial services are facing a security crisis over outdated services and applications, a survey shows Continue Reading
-
News
25 Sep 2018
PCI DSS compliance falls despite security benefit
Despite the benefits of the payment card industry security standard, there is a concerning downward trend in compliance, a report reveals Continue Reading
-
News
19 Sep 2018
Europol cyber crime report highlights emerging threats to enterprise security
Research highlights increase in sophistication of ransomware attacks, while revealing details of new and emerging threats to enterprises Continue Reading
-
Podcast
14 Sep 2018
Printing, document capture and compliance risk in the GDPR era
Printers, scanners and mobile devices that capture data from documents all store data in some way or other. How can you be sure to be compliant with GDPR with regard to that data? Continue Reading
-
News
13 Sep 2018
No Deal Brexit may hinder free flow of personal data from EU to UK
The government’s No Deal Brexit planning document on data protection warns free flow of personal data from EU isn’t guaranteed, and organisations must take action to ensure they will still be able receive data from Europe Continue Reading
-
News
13 Sep 2018
GCHQ mass surveillance regime was in breach of human rights law, European court rules
The European Court of Human Rights in Strasbourg has ruled that the UK’s collection of bulk interception of communications data lacked adequate oversight and safeguards and was in breach of human rights law Continue Reading
-
News
12 Sep 2018
FCA warns it cannot manage financial crime risks without sharing data with EU
FCA admits it will be unable to manage financial crime effectively if it cannot share data with EU authorities. Continue Reading
-
News
11 Sep 2018
British Airways data breach: Security researchers name suspects and query attack timeline
Security researchers claim to have pinpointed the cause and perpetrators of the British Airways data breach, and also claim the attackers may have had access to its customer data for far longer than previously thought Continue Reading
-
News
10 Sep 2018
Cyber criminals outspend businesses in cyber security battle
Cybercriminals are flexing their financial might and UK organisations are facing more attacks as a result Continue Reading
-
News
07 Sep 2018
BA praised for swift GDPR-aligned action on data breach
British Airways has been praised for its swift response to a customer data breach, which could be the first test case under the EU’s GDPR and new UK GDPR-aligned data protection laws Continue Reading
-
News
03 Sep 2018
Majority of UK firms not insured for data breaches
Many UK firms are not insured against information security breaches and data loss, and would have to spend £1m on average to recover from a breach, a report reveals Continue Reading
-
News
30 Aug 2018
Blockchain gains foothold in Australia
A number of blockchain projects are under way in Australia, but questions remain about whether the technology is wanted Continue Reading
-
News
29 Aug 2018
Improving security is top driver for ISO 27001
Organisations are implementing the ISO 27001 standard in recognition of the fact that cyber attacks are increasingly inevitable and that it is best to be well-prepared to fend off attacks and mitigate their effect Continue Reading
-
News
28 Aug 2018
Challenge to anti-GDPR immigration exemption in DPA to go ahead
Two human rights groups are challenging a controversial clause in new UK data protection legislation that they say is in conflict with the EU’s Charter of Fundamental Rights and undermines the General Data Protection Regulation Continue Reading
-
News
23 Aug 2018
Australian government agency trials secure cloud service
The Digital Transformation Agency has become the first government agency in Australia to test the use of Microsoft Office 365 in a secure cloud environment Continue Reading
-
News
22 Aug 2018
Nearly a third of organisations still not GDPR ready
As the UK and other states implement the EU’s GDPR, many organisations admit they are still not fully compliant, but most claim to be able to respond to data subject access requests Continue Reading
-
Opinion
22 Aug 2018
Better the data you know – how GDPR is affecting UK tech companies
As the dust settles from the General Data Protection Regulation, the implications for technology firms in the UK are becoming clearer Continue Reading
-
News
22 Aug 2018
Superdrug denies data breach
Superdrug has warned online customers it believes may have had personal details exposed, but claims its systems were not compromised, in what could be the first GDPR-related extortion attempt Continue Reading
-
News
21 Aug 2018
New Zealand to run national cyber security exercise
The island-nation will test the resilience of its critical infrastructure in November 2018, bringing together multiple agencies to protect assets of national significance Continue Reading
-
News
21 Aug 2018
Malaysia’s financial sector warms up to cloud, but lacks security leadership
Almost two-thirds of Malaysia’s financial services firms are developing a cloud strategy, but not all have a security plan in place Continue Reading
-
News
20 Aug 2018
Planned Australian law raises tech firms’ security concerns
A digital industry group representing some of the world’s largest tech firms is opposed to proposed Australian laws aimed at compelling them to help security agencies and police Continue Reading
-
News
16 Aug 2018
Trump sparks speculation after repealing cyber attack restraints
The US president has sparked speculation about US policy on launching cyber attacks by repealing Obama-era restraints, underlining the need for international rules on cyber warfare Continue Reading
-
News
14 Aug 2018
UK banks under pressure to improve downtime reporting under new FCA rules
To make it easier for customers to compare and switch between current account providers, UK banks are under pressure to improve their reporting processes for downtime and security incidents Continue Reading
-
News
13 Aug 2018
ICO strengthens commitment to technology and innovation
Information Commissioner’s Office has demonstrated its commitment to technology and innovation by appointing a new executive director to focus on this area Continue Reading
-
News
13 Aug 2018
UK firms concerned about cyber arms race
Continuous investment and activity are key in the cyber arms race, according to Databarracks, as research shows UK firms are worried about keeping up with security challenges Continue Reading
-
News
12 Aug 2018
Over 146 billion records to be stolen over next five years
The US will bear the brunt of data exfiltration efforts by cyber criminals, though Asia-Pacific nations such as Singapore will not be spared Continue Reading
-
News
10 Aug 2018
Butlin’s warns of potential personal data breach
Holiday camp chain blames cyber breach on a phishing attack, implying that attackers were able to steal user credentials to access customer data – and underlining the need for security awareness training Continue Reading
-
News
09 Aug 2018
ICO fines Emma’s Diary £140,000
The UK’s privacy watchdog has fined a marketing company for illegally collecting and selling personal information for political campaigning Continue Reading
-
News
08 Aug 2018
Australia calls for interventionist approach in new cyber agenda
The Australian government is forming a cyber defence network comprising security agencies and private sector partners to support a more interventionist approach towards cyber security Continue Reading
-
News
07 Aug 2018
Starbucks to advise on development of bitcoin trading platform
Coffee giant Starbucks has joined a group of firms advising Intercontinental Exchange on the development of a digital assets platform Continue Reading
-
Opinion
06 Aug 2018
Security Think Tank: Outsource responsibility, not accountability
What critical security controls can be outsourced and how do organisations, SMEs in particular, maintain confidence that they are being managed effectively and appropriately? Continue Reading
-
News
06 Aug 2018
Half of UK consumers to exercise GDPR rights within a year
More than half of UK consumers will exercise their General Data Protection Regulation rights within a year and almost two-thirds will retract or review data use because of the Facebook-Cambridge Analytica scandal, a study shows Continue Reading
-
News
03 Aug 2018
UK security centre to launch IoT security standard
The London-based Centre for Strategic Cyber Space and Security Science is working on an internet of things security standard and has roped in participants from eight markets Continue Reading
-
Opinion
02 Aug 2018
Security Think Tank: Risk tolerance key to security outsourcing policy
What critical security controls can be outsourced, and how do organisations – SMEs in particular – maintain confidence that they are being managed effectively and appropriately? Continue Reading
-
News
31 Jul 2018
UK business overestimating level of consumer trust, study shows
UK consumer trust is low, with the majority of UK businesses admitting to selling customer data, a report reveals Continue Reading
-
News
31 Jul 2018
Australia’s health sector reports most data breaches again
In the first full quarter since Australia’s mandatory breach disclosure scheme came into effect, healthcare providers reported the most data breaches amid controversy over the national health record system Continue Reading
-
News
31 Jul 2018
Dixons Carphone ups data breach figure to 10 million
Dixons Carphone now believes the number of personal data records affected in 2017’s data breach is nearly 10 times greater than initially thought Continue Reading
-
News
30 Jul 2018
Search begins for UK’s cyber security Unsung Heroes
The Security Serious cyber awareness campaign has opened nominations for the third annual cyber security Unsung Heroes awards Continue Reading
-
News
29 Jul 2018
Burden of data protection rests on firms and governments
A senior executive at Singapore’s Cyber Security Agency stressed the role of corporate data governance and government regulations in raising the bar on cyber security Continue Reading
-
News
26 Jul 2018
Facebook stock price falls on slowing growth forecast
Facebook’s stock price has fallen dramatically in response to a forecast of slower revenue growth in 2018 and lower-than-expected user growth for the second quarter Continue Reading
-
Opinion
25 Jul 2018
Beyond GDPR: ePrivacy could have an even greater impact on mobile
From how we monitor air pollution and manage our public transport systems, to how we enable connected cars and the next generation of 5G mobile services, the forthcoming ePR could have a lasting impact on European society Continue Reading
-
News
25 Jul 2018
Australian energy sector caught in security catch-22
With regulators unwilling to accept security investments that would lead to higher tariffs, there is a chance that Australia’s National Energy Market could face increased cyber risks Continue Reading
-
Opinion
24 Jul 2018
What the ICO's Facebook fine teaches us
Legal expert Alexander Egerton considers whether the ICO’s planned £500,000 fine for Facebook is the precursor of a spate of increased fines across the board, or if it shows the ICO’s stance has not changed and will continue to target certain activities Continue Reading
-
News
20 Jul 2018
Huge Singapore data breach shows need for new approach
A major data breach in Singapore underlines the need for a new approach to protecting critical data and applications, say security experts Continue Reading
-
News
20 Jul 2018
GDPR drives down UK insider threat
The insider threat in European countries is falling post-General Data Protection Regulation, but continues to rise in the US, a study has revealed Continue Reading
-
News
20 Jul 2018
NCSC report underlines cyber threat for legal firms
Legal firms are a top target for cyber attackers, the latest report from the National Cyber Security Centre shows, emphasising the need for comprehensive cyber defence capabilities Continue Reading
-
News
20 Jul 2018
Uptick in UK privacy awareness, says ICO
The UK’s privacy watchdog, the Information Commissioner’s Office, reports increased public awareness of privacy and information rights issues Continue Reading
-
News
19 Jul 2018
Uber appoints first privacy and data protection chiefs
Uber is getting its privacy and data protection house in order in the wake of damaging data breaches and in anticipation of the company’s planned stock market launch in 2019 Continue Reading
-
News
17 Jul 2018
A third of organisations do not have a security expert, survey shows
Around a third of organisations are vulnerable to cyber attacks due to a lack of dedicated in-house cyber security experts, finds Gartner survey Continue Reading
-
News
15 Jul 2018
New industry network to bolster data protection in ASEAN
The Data Protection Excellence network will assist organisations and individuals new to data protection laws by providing hands-on training and professional certification courses Continue Reading
-
Feature
13 Jul 2018
Matching disaster recovery to cyber threats
While it is important to take steps to prevent cyber attacks, they can still happen. That is why disaster recovery practices are equally critical Continue Reading
-
News
12 Jul 2018
Cyber attackers cashing in on ‘hidden’ attack surface
Cyber attackers are cashing in on organisations’ lack of visibility into all online interactions that can involve multiple third parties, a report reveals Continue Reading
-
News
11 Jul 2018
Cloudian adds Storage Made Easy file-sync-and-share compliance
Object storage maker adds file-sync-and-share with compliance filters from Storage Made Easy to restrict movement of potentially sensitive data between endpoints and datacentres Continue Reading
-
News
11 Jul 2018
Facebook could face ICO fine of up to £500,000
Facebook could face the maximum fine provided by the UK’s previous data protection laws for lack of transparency and security issues relating to the harvesting of data, the UK’s privacy watchdog has revealed Continue Reading
-
News
10 Jul 2018
Lords urge Brexit negotiators to reach agreement on security
Time is running out for the UK and EU to agree on a future security relationship and if negotiators fail to find common ground, all stakeholders stand to lose, warns a Lords’ committee Continue Reading
-
Feature
10 Jul 2018
Cyber crime: why business should report it as soon as possible
Cyber crime is affecting a growing number of businesses, yet few are reporting it. Computer Weekly lifts the veil on cyber crime reporting, looking at the who, what, when, where, how and why Continue Reading
-
News
09 Jul 2018
As prime minister unveils Brexit plans, TechUK calls for deal on services
The UK tech industry wants a Brexit deal open to services, mirroring the EU trade agreement with Canada Continue Reading
-
News
09 Jul 2018
Collaborative taskforce launches security intelligence network
BAE Systems, Vodafone, cyber security incubator CyLon and other partners have joined forces in unveiling a manifesto for safeguarding society in the digital age Continue Reading
-
News
06 Jul 2018
ICO Grants Programme launches second round of funding
The ICO is inviting a second round of applications for funding to promote and support independent, innovative research and solutions focused on privacy and data protection Continue Reading
-
News
06 Jul 2018
European Parliament calls for suspension of Privacy Shield
The Privacy Shield framework that replaced the Safe Harbour agreement for personal data transfers between the EU and the US is under increased pressure due to alleged non-compliance by US firms Continue Reading
-
News
04 Jul 2018
Singapore company turns to blockchain to improve food security
SMC Nutrition is using a blockchain distributed ledger developed by a Singapore-based company to gain visibility across its supply chain and ensure food security Continue Reading
-
News
03 Jul 2018
Exiting EU committee cattle-prods government on 'data adequacy'
House of Commons Select Committee for Exiting the European Union urges the government to start the process to secure a “Data Adequacy Decision” from the EU pronto Continue Reading
-
News
03 Jul 2018
Feds expand Facebook data sharing probe
The US federal probe into Facebook’s data sharing practices is expanding and MEPs are considering new measures as the firm reveals it granted extended access to 61 companies and admits to another data sharing software bug Continue Reading
-
News
29 Jun 2018
UK government cyber security standard welcomed
The information security community has welcomed the publication of the government’s minimum cyber security standard, which could be used by any organisation to improve its cyber defences Continue Reading
-
News
29 Jun 2018
GDPR exposes breach reporting flaws
In the month since the GDPR compliance deadline, it has become clear that many organisations are not well prepared for personal data breach notifications, says PwC’s data protection lead Continue Reading
-
News
29 Jun 2018
UK biometrics strategy criticised for lack of content
The long-awaited government biometrics strategy falls short of the mark, say critics, failing to provide a detailed and coherent strategy or governance framework Continue Reading
-
News
29 Jun 2018
British Muslim considers appeal after court rules repeated terrorism stops are legal
Muzaffar Abdullah, a 37-year-old gas engineer who has been stopped and questioned by police at airports at least 10 times, is considering an appeal after being found guilty of wilful obstruction for refusing to answer questions under controversial terrorism legislation. He received a conditional discharge. Continue Reading
-
News
27 Jun 2018
AI and other tech key to post-Brexit success, says Matt Hancock
Digital secretary Matt Hancock highlights the importance of emerging technologies to the future of the UK at the opening of London’s cyber security innovation centre Continue Reading
-
News
27 Jun 2018
Global IoT security standard remains elusive
Despite the lack of a global internet of things security standard, existing security frameworks are on the same page in areas such as device upgradability and data stewardship Continue Reading
-
News
26 Jun 2018
British Muslim challenges use of intelligence databases for repeated police stops
Muzaffar Abdullah is challenging police use of intelligence databases to repeatedly stop and question Muslims, after being arrested for refusing to answer questions under Schedule 7 of the Terrorism Act 2000. His lawyers say he had been stopped at least 10 times before and the police should have known he had no connection to terrorism Continue Reading
-
News
25 Jun 2018
UK privacy groups join call on EU to halt comms data collection
UK-based privacy groups have joined calls for a halt to the collection of communications data by European Union member states Continue Reading
-
News
19 Jun 2018
Singapore remains hotbed for cyber threats
Singapore was a victim of advanced persistent threats, phishing and website defacements in 2017, according to the latest threat landscape report by the Cyber Security Agency Continue Reading
-
E-Zine
19 Jun 2018
Microsoft becomes devoted to open source developers
In this week’s Computer Weekly, after Microsoft’s recent acquisition of GitHub, we examine the software giant’s tools for embracing open source developers. Secretary of state for digital, culture, media and sport Matt Hancock talks about growing the UK digital economy and supporting the tech sector. And we look at SAP’s next steps for its “intelligent enterprise” strategy. Read the issue now. Continue Reading