IT governance
IT governance provides the core workflows and processes that help IT managers to oversee the successful functioning of the IT department, and to prove the value of IT to the business. Regulations and compliance are just as important as technological and management skills, and we highlight the best practice in IT governance and the example of successful IT leaders.
-
Feature
11 Jul 2023
Norwegian data privacy experts sound alarm over generative AI
Hundreds of millions of people embrace generative artificial intelligence, blissfully ignorant of what it’s doing to data privacy. Continue Reading
-
News
24 Apr 2023
Finland and Estonia deepen cross-border digital partnerships
Finland and Estonia, two global tech pioneers, are increasingly sharing their expertise Continue Reading
-
News
15 Dec 2021
CMA wants Apple and Google to open up mobile ecosystem
Interim report from Competitions and Markets Authority finds Apple and Google exert too much control over the mobile device market Continue Reading
-
News
14 Dec 2021
Almost half of networks probed for Log4Shell weaknesses
Close to half of corporate networks have already been actively targeted by individuals seeking to exploit the critical Log4Shell Apache bug Continue Reading
-
News
14 Dec 2021
Joint committee publishes report on improving Online Safety Bill
MPs and peers release report on Online Safety Bill following five-month inquiry into the draft legislation and make a number of recommendations on how it can be improved to deal with harmful content and abuse on the internet Continue Reading
-
E-Zine
14 Dec 2021
The rules for a safer internet
In this week’s Computer Weekly, as the government publishes the Online Safety Bill, we look at what the laws mean for internet services. A ransomware victim shares the insider story of the trauma of losing their corporate IT systems. And we ask, what happens when quantum computers get too powerful to verify their output? Read the issue now. Continue Reading
-
News
13 Dec 2021
What is Log4Shell, and why are we panicking about it?
It’s been described as a ‘design failure of catastrophic proportions’ that threatens the very fabric of the digital world. Find out what the Log4j2 Log4Shell panic is all about, and what you should do about it Continue Reading
-
Opinion
13 Dec 2021
Security Think Tank: There’s much more to do to secure hybrid workers
Security learning is a career-long process, so as 2021 draws to a close, participants in the Computer Weekly Security Think Tank sum up the most important cyber lessons they’ve taken away from the past 12 months Continue Reading
-
News
10 Dec 2021
C-suite’s biggest ransomware fear: Post-attack regulatory sanctions
Exposure to regulatory sanctions such as fines are the biggest worry for C-suite executives in the wake of a ransomware attack Continue Reading
-
News
09 Dec 2021
What are the challenges associated with the MITRE ATT&CK framework?
Businesses sometimes struggle to use the MITRE ATT&CK framework effectively. Learn more about some of the challenges, and how to overcome them Continue Reading
-
News
09 Dec 2021
UK and US to collaborate on privacy innovation contest
Joint UK-US innovation challenge contest centring on privacy-enhancing technology announced at Summit for Democracy in Washington DC Continue Reading
-
Opinion
09 Dec 2021
The power of AI can be unleashed with a focus on ethics
An EY survey reveals the public’s concerns around the growing use of artificial intelligence – but also the opportunities for organisations that take the right ethical approach Continue Reading
-
Opinion
09 Dec 2021
Security Think Tank: Good documentation could save your bacon
Security learning is a career-long process, so as 2021 draws to a close, participants in the Computer Weekly Security Think Tank sum up the most important cyber lessons they’ve taken away from the past 12 months Continue Reading
-
News
08 Dec 2021
Russia may be collaborating with US to bring cyber criminals to heel
Trustwave’s SpiderLabs says its analysis of chatter on underground dark web forums suggests cyber criminals are starting to panic that formerly ‘friendly’ governments are on their case Continue Reading
-
News
08 Dec 2021
CIO interview: Nicola Wadham, Financial Ombudsman Service
CIO Nicola Wadham brings Computer Weekly up to speed on the Financial Ombudsman Service’s IT challenges and successes Continue Reading
-
News
08 Dec 2021
UK privacy chief denies conflict of interest in new role
UK information commissioner will join a private law firm that represents technology companies she used to regulate, raising questions about conflicts of interest and drawing ‘revolving door’ criticisms Continue Reading
-
News
08 Dec 2021
Number of .uk domain suspensions at record low
Statistics from Nominet show how effective law enforcement action against cyber crime in the UK is paying off Continue Reading
-
News
07 Dec 2021
Investigation mounted into Spar supermarket cyber attack
Possible supply chain cyber attack left more than 300 Spar supermarkets unable to process credit card payments Continue Reading
-
News
06 Dec 2021
IT Priorities 2022: Pandemic’s long tail for cyber buyers
Pandemic response has been top of mind for cyber leaders these past 18 months, and as Covid-19 turns two, the TechTarget/Computer Weekly IT Priorities 2022 study shows buyers are still focused on how Covid has upended the workplace Continue Reading
-
News
03 Dec 2021
Serious violence duty in PCSC Bill would gut UK data rights
Proposed data gathering powers for UK police could override existing data protection rules, damage citizens’ trust in essential public services and further entrench discriminatory policing practices Continue Reading
-
Podcast
02 Dec 2021
COP26 reflections, tech sector reacts to Sunak on skills – Computer Weekly Downtime Upload podcast
Caroline Donnelly, Clare McDonald and Brian McKenna reflect on datacentres and climate change, the tech sector’s reaction to government IT skills investment, and the Post Office scandal story Continue Reading
-
Opinion
02 Dec 2021
Security Think Tank: Think people, processes and systems
Security learning is a career-long process, so as 2021 draws to a close, participants in the Computer Weekly Security Think Tank sum up the most important cyber lessons they’ve taken away from the past 12 months Continue Reading
-
News
01 Dec 2021
Kaspersky introduces cyber policy for bionic devices
Cyber firm Kaspersky has become one of the first organisations in the world to develop and implement a security policy covering the use of bionic devices and other forms of human augmentation Continue Reading
-
Opinion
01 Dec 2021
A ‘whole of society’ approach to cyber may be on the horizon
Nominet Cyber managing director David Carroll reflects on the NCSC’s latest annual review amid 2021’s fast-evolving threat landscape Continue Reading
-
News
01 Dec 2021
Cloud-based Redwood becomes latest challenger bank to make a profit
Cloud-based business bank becomes the latest of the new wave of challengers to achieve profit Continue Reading
-
News
30 Nov 2021
Compliance, device management a challenge for NHS cyber teams
Information gleaned by asset visibility specialist Armis reveals that despite improvements, some daunting security challenges still dog the NHS Continue Reading
-
News
30 Nov 2021
HP patches bugs in over 150 printer models
More than 150 HP multifunction printers are at risk of compromise through a series of newly disclosed vulnerabilities, one of them wormable Continue Reading
-
News
30 Nov 2021
Recovering from ransomware: One organisation’s inside story
In February 2021, French office equipment supplier Manutan fell victim to a DoppelPaymer ransomware hit. IT ops director Jérôme Marchandiau tells the inside story of the incident Continue Reading
-
News
30 Nov 2021
Over 100 civil society groups call for changes to EU AI Act
Civil, human and digital rights organisations sign open letter calling on European policymakers to put fundamental rights at the heart of the proposed Artificial Intelligence Act Continue Reading
-
News
29 Nov 2021
Second Mizuho executive quits after IT problems
IT failures have forced the CEO of Japanese financial services group to step down Continue Reading
-
News
29 Nov 2021
British Army picks Immersive Labs for cyber training
The British Army will make Immersive Labs’ security training platform available to all serving personnel Continue Reading
-
News
29 Nov 2021
Three latest trends and developments around the Mitre ATT&CK framework
Framework is set to receive important updates to help organisations and businesses evolve their cyber security. Learn more about what it offers Continue Reading
-
Opinion
29 Nov 2021
Security Think Tank: Dissecting the true value of SASE is a challenge
As a relatively nascent technology that is getting a lot of publicity, dissecting the true value of SASE is still a difficult proposition, for now Continue Reading
-
Opinion
26 Nov 2021
Security Think Tank: SASE will become operational reality
While still considered very much a buzzword, the pace of change in corporate networks and operational technology means secure access service edge (SASE) is becoming reality for many Continue Reading
-
News
25 Nov 2021
Government must prove its plans to police encryption work, says ex-cyber security chief
Ciaran Martin, the former UK cyber security chief, says the government must explain how it can access encrypted communications without damaging cyber security and weakening privacy Continue Reading
-
News
24 Nov 2021
Regulation of AI needed to avoid the mistakes of social media
Government is urged to work with industry on a flexible regulatory framework to ensure the explainability, reliability and robustness of artificial intelligence Continue Reading
-
News
24 Nov 2021
Consumer cyber bill to protect mobiles, smart devices
Product Security and Telecommunications Infrastructure Bill will reinforce protections for consumer devices and mandate improvements to default security settings Continue Reading
-
News
24 Nov 2021
Apple sues under-fire malware firm NSO
Lawsuit alleges spyware firm NSO Group targeted Apple’s users, adding to the pressure on the under-fire company Continue Reading
-
News
24 Nov 2021
Police tech introduced with little scrutiny or training
A Lords inquiry into the adoption of advanced algorithmic technologies by police in England and Wales has been told that new tools are being introduced without proper training and with little scrutiny of their impacts Continue Reading
-
News
22 Nov 2021
Upcoming holidays prompt ransomware warning from authorities
Ransomware gangs know how calendars work, and may target their attacks around major holidays to take advantage of more people being off work, according to a new alert Continue Reading
-
News
22 Nov 2021
Black Friday cyber warning for 4,000 card-skimming victims
NCSC warns thousands of small retailers that their websites are being exploited to steal customer data Continue Reading
-
News
19 Nov 2021
Why is Emotet back, and should we be worried about it?
The sudden reappearance of Emotet this week has security teams on high alert, but do we need to be worried about its return, and what should we be doing about it? Continue Reading
-
News
19 Nov 2021
UK government announces safety tech challenge fund winners
The Safety Tech Challenge Fund winners will now develop technologies to limit the spread of child abuse material in encrypted environments, which the government has claimed will not be repurposed for other uses Continue Reading
-
Feature
19 Nov 2021
Cloud storage compliance pitfalls: Post-pandemic and post-Brexit
We look at the key areas of cloud storage compliance that can trip you up, with shared responsibility with cloud providers and data residency among the most important Continue Reading
-
News
19 Nov 2021
GCHQ, NSA chiefs recommit to counter cyber threats
UK and US intelligence services reaffirm a joint commitment to disrupt and deter new and emerging cyber threats Continue Reading
-
News
18 Nov 2021
UK government enshrines law to strip out ‘high-risk’ suppliers’ tech from networks
UK Telecommunications (Security) Act receives Royal Assent, mandating stronger legal duties on telecoms firms to protect the UK’s networks and giving the government new powers to control use of high-risk suppliers Continue Reading
-
News
18 Nov 2021
Memento ransomware gang quick to retool for ‘optimum’ outcome
The operators of a new ransomware called Memento are quick to retool for ‘success’ if they run up against a competent defender, says Sophos Continue Reading
-
News
18 Nov 2021
Sky ECC provided free cryptophones to a Canadian police force
Internal emails disclosed in a US court show how Sky Global supplied sample encrypted phones to a Canadian police force before its phone users became subject to an international police investigation Continue Reading
-
News
18 Nov 2021
AstraZeneca looks at the bigger picture in enterprise social media
How do you work with people in different time zones and from different cultures and what happens when people leave the company? Continue Reading
-
News
18 Nov 2021
Cryptophone supplier Sky Global takes legal action over US government website seizures
Canadian tech company Sky Global has filed a legal motion claiming that the US government unlawfully seized the company’s internet sites following police investigations into the use of its cryptophones by organised crime Continue Reading
-
News
17 Nov 2021
Security startups line up on Cyber Runway
Some 108 cyber security startups representing the UK’s most cutting-edge innovators are to join Plexal’s Cyber Runway accelerator Continue Reading
-
News
17 Nov 2021
Zero-days: The next element of the service-based cyber economy?
Digital Shadows researchers have reported on the emergence of zero-days as a service, which could be the next big thing in the cyber criminal underworld Continue Reading
-
News
17 Nov 2021
GovTech to enhance Government on Commercial Cloud
GCC 2.0 will include improvements in user onboarding and provide single credential access to public cloud services and engineering tools, among other areas Continue Reading
-
News
16 Nov 2021
One-fifth of NCSC-supported cyber incidents linked to Covid-19
National Cyber Security Centre has helped to thwart multiple cyber incidents that could have seriously disrupted the UK’s response to the pandemic Continue Reading
-
Opinion
16 Nov 2021
Security Think Tank: SASE – more than the sum of its parts?
Airbus Cybersecurity’s Paddy Francis asks what makes an integration of the various components of SASE more the sum of their parts, and what are the benefits and pitfalls? Continue Reading
-
News
15 Nov 2021
UK government proposes new rules for digital supply chain security
Proposals could see IT service providers legally required to adhere to the NCSC’s Cyber Assessment Framework, among other things Continue Reading
-
Feature
15 Nov 2021
Social value not yet fully embedded in procurement practices
Social value procurement rules are designed to diversify the public sector’s supplier base while providing society with wider collective benefits, but are yet to be fully introduced Continue Reading
-
Opinion
15 Nov 2021
Security Think Tank: What to find out before investing in SASE
Petra Wenham of the BCS shares her thoughts on what organisations need to consider as they investigate whether or not to invest in secure access service edge technology Continue Reading
-
News
12 Nov 2021
New law needed to rein in AI-powered workplace surveillance
MPs and peers call for new legislation to regulate the growing use of artificial intelligence in the workplace, which is being used to surveil workers’ performance and behaviour Continue Reading
-
News
12 Nov 2021
Oversight of biometrics and surveillance should not go to ICO
Biometrics and surveillance camera commissioner Fraser Sampson has panned the UK government’s proposed plan to absorb the functions of those roles under the remit of the information commissioner Continue Reading
-
News
12 Nov 2021
BT applies Covid-19 R number modelling to threat response
A prototype cyber security tool developed at BT uses epidemiological principles to detect and respond to cyber threats Continue Reading
-
News
11 Nov 2021
HPE’s Aruba networking unit hit by cyber attack
Undisclosed threat actor compromised data buckets used to run the Aruba Central cloud environment using a stolen access key Continue Reading
-
News
11 Nov 2021
Finance ombudsman overturns more than three-quarters of bank decisions on APP fraud
The financial services ombudsman is siding with customers in over 75% of complaints against banks that refuse to repay losses to authorised push payment fraud Continue Reading
-
News
11 Nov 2021
Scale of crime-as-a-service economy a growing concern, say researchers
The cyber criminal underground continues its evolution towards a service-based economy Continue Reading
-
Opinion
11 Nov 2021
The ICO is right to push back against government meddling
Some criticisms of the ICO are justified, but the answer to that is not to give Whitehall more oversight over the data protection regulator, argues legal expert Edward Machin Continue Reading
-
News
11 Nov 2021
Bank of England loses 161 computing devices in three years
Bank cannot account for phones, laptops and tablets that have gone missing over the past three years Continue Reading
-
News
11 Nov 2021
Lloyd v Google Supreme Court verdict brings end to privacy class actions against big tech in UK
A ruling by the Supreme Court has left it financially unviable for individuals to bring class actions in the UK against big tech companies for privacy breaches Continue Reading
-
Opinion
11 Nov 2021
Zero trust: Now is the time
The cyber security industry has been talking about a zero-trust approach to security for just over a decade, but now it’s time to move towards full implementation because it is more appropriate than ever, and it is rapidly gaining support from suppliers Continue Reading
-
News
10 Nov 2021
November Patch Tuesday drop fixes bugs in Excel, Exchange Server
Another relatively light Patch Tuesday drop from Microsoft addresses 55 vulnerabilities, two of them already being exploited Continue Reading
-
News
10 Nov 2021
EU artificial intelligence regulation risks undermining social safety net
Europe’s proposed artificial intelligence regulation will not adequately protect people from European governments' increasing use of the technology in social security decisions and resource allocation, says Human Rights Watch Continue Reading
-
Feature
10 Nov 2021
Digital surveillance of remote workers may increase enterprise risk
From productivity tools to security threats, we explore how digital surveillance is forcing remote workers towards shadow IT Continue Reading
-
Feature
10 Nov 2021
How to manage endpoint security in a hybrid work environment
The future of the workplace is clearly hybrid, but this has untold implications around endpoint security. How can businesses overcome these? Continue Reading
-
News
09 Nov 2021
Yoti develops age estimation algorithm for under-13s
Age estimation technology developed by Yoti is being pitched as a way of helping social media platforms and other online businesses protect younger internet users from harm Continue Reading
-
News
09 Nov 2021
Blockchain technology will help banks will cut cross-border payment costs by $10bn in 2030
The use of blockchain technology in cross-border payments will save global banks $10bn in 2030, according to research Continue Reading
-
News
09 Nov 2021
US seeks to extradite REvil affiliate who attacked Kaseya
US Department of Justice unseals charges against a Ukrainian national accused of being behind the summer 2021 REvil ransomware attack on Kaseya Continue Reading
-
News
08 Nov 2021
REvil associates arrested in international ransomware crackdown
Two individuals suspected of conducting 5,000 REvil ransomware attacks were arrested by Romanian police last week as an international crackdown on the crime gang gathers pace Continue Reading
-
News
08 Nov 2021
Gig economy workforce nearly trebles over five years
Over four million people in England and Wales now work for gig economy platforms at least once a week, marking a nearly threefold increase since 2016 Continue Reading
-
Opinion
08 Nov 2021
Watching me, watching you – challenging the rise of digital surveillance at work
Unprecedented levels of digital monitoring at work is embedding a culture of surveillance, despite workers’ opposition to the practices, says Prospect Union Continue Reading
-
News
08 Nov 2021
How cosmetics retailer Lush made over its approach to authentication
Evolving approaches to IT at cosmetics retailer Lush meant the organisation’s previous approach to authentication was no longer up to scratch. Find out how it overcame this hurdle Continue Reading
-
Feature
05 Nov 2021
Immutable snapshots aim to neutralise ransomware
Snapshots – usually immutable anyway – get functionality to stop ransomware intruders moving or deleting snapshots, so customers know they have clean copies of data to restore from Continue Reading
-
News
05 Nov 2021
Digital secretary calls for permanent online safety committee
Digital secretary commits to establishing ongoing oversight of the Online Safety Bill and its implementation, and suggests the grace period on criminal liability for tech company execs should be shortened from two years to a maximum of six months once it’s enacted Continue Reading
-
News
05 Nov 2021
US offers $10m reward for intel on DarkSide ransomware gang
US government puts up a $10m reward for information on the DarkSide ransomware gang, the group that attacked Colonial Pipeline six months ago Continue Reading
-
News
03 Nov 2021
Spyware firm NSO and others added to US banned Entity List
US government bans target Israeli spyware makers and cyber firms in Russia and Singapore Continue Reading
-
News
03 Nov 2021
Facebook self-imposes facial recognition moratorium
Facebook and Meta have committed to halting their use of facial recognition technology and deleting the biometric data of more than a billion people by the end of 2021, but will retain the underlying algorithms and software for potential use in future products Continue Reading
-
News
03 Nov 2021
UK’s Labour Party hit by third-party data breach
Data on Labour Party members was recently compromised in an apparent cyber attack on a third-party data processor Continue Reading
-
Opinion
03 Nov 2021
Security Think Tank: SASE – marketing buzz or the future of security?
SASE architectures promise to prevent multiple types of cyber attacks, but deciding whether SASE is right for your organisation will require understanding whether SASE is a fit for your use cases in IT Continue Reading
-
News
02 Nov 2021
Convicted Silk Road admin stripped of £500k in crypto earnings
Jailed Silk Road administrator Thomas White, aka Cthulhu, has been ordered to hand over more than £490,000 of illicit earnings Continue Reading
-
News
01 Nov 2021
Businesses and governments urged to take action over Trojan Source supply chain attacks
Businesses and governments have been put on alert to guard against Trojan Source hacking attacks Continue Reading
-
News
01 Nov 2021
MPs and Lords grill Facebook over online safety efforts
Facebook answers British lawmakers’ questions about the social media giant’s efforts to ensure the safety of its users, as part of legislative security of the government's proposed online safety bill Continue Reading
-
Feature
01 Nov 2021
IT’s role in sustainability for a resilient supply chain
A circular economy is among the long-term measures needed to combat climate change. This requires data transparency across supply chains Continue Reading
-
News
28 Oct 2021
Illegal state surveillance in Africa ‘carried out with impunity’
Analysis of surveillance laws and practices in six African countries finds that existing privacy laws are failing to protect citizens from illegal digital surveillance, which is being facilitated and enabled by global tech companies Continue Reading
-
News
28 Oct 2021
How ransomware crews pile on the pressure to get victims to pay
Sophos researchers share some of the more common tactics ransomware gangs use to pressurise their victims into paying up Continue Reading
-
News
27 Oct 2021
Government commits millions to security investment
Spending Review adds more than £750m of funding to improve cyber security resilience across government Continue Reading
-
News
27 Oct 2021
Cyber sector growth exacerbating skills shortage
Data from security association (ISC)² shows demand for cyber pros is still outpacing supply as the sector continues an upward growth trajectory Continue Reading
-
News
27 Oct 2021
Russian IT market growing steadily after pandemic
Russia’s enterprise IT sector is recovering steadily after a slowdown caused by Covid-19 Continue Reading
-
News
26 Oct 2021
Cyber experts on how to nobble a Nobelium attack
A recent spate of attempted Nobelium cyber attacks were mostly unsuccessful, but serve as a reminder to pay attention to some more fundamental aspects of security Continue Reading
-
Opinion
26 Oct 2021
The future is digital, so why is Britain’s national strategy waterfall?
UK government policy is dominated by old, traditional attitudes – rather like the waterfall approach to IT projects. Unless policymaking adopts digital-style approaches, the UK is doomed to long-term decline Continue Reading
-
News
22 Oct 2021
MEPs vote to expand Europol data mandate
The European Parliament has voted in favour of expanding Europol’s mandate to process data and develop AI tools, but critics claim it contradicts a previous vote which opposed using new technologies to predict crime Continue Reading
-
News
21 Oct 2021
German regulator imposes limit on number of new customers digital bank can sign each month
BaFin limits the number of new customers that digital bank N26 can enrol until it is reassured on issues it has raised about the company Continue Reading
-
News
20 Oct 2021
Police IT buyers should compel suppliers to prove AI claims
House of Lords told that UK law enforcement bodies should use their position as buyers to compel private sector suppliers to divulge more information about how their AI-powered technologies work Continue Reading
-
Feature
19 Oct 2021
Back on the office network: What are the risks for mobile users?
Many people are returning to offices and bringing their mobile devices with them. What are the cyber security implications of this? Continue Reading
-
News
18 Oct 2021
How Samlesbury, Lancashire became the home of the National Cyber Force
The National Cyber Force, a new branch of the military, is gearing up to fight battles in cyber space from the fields of Lancashire. Its presence is expected to bring a high-tech renaissance to the region Continue Reading