IT governance

IT governance provides the core workflows and processes that help IT managers to oversee the successful functioning of the IT department, and to prove the value of IT to the business. Regulations and compliance are just as important as technological and management skills, and we highlight the best practice in IT governance and the example of successful IT leaders.

Feature 11 Jul 2023
Norwegian data privacy experts sound alarm over generative AI

Hundreds of millions of people embrace generative artificial intelligence, blissfully ignorant of what it’s doing to data privacy. Continue Reading
News 24 Apr 2023
Finland and Estonia deepen cross-border digital partnerships

Finland and Estonia, two global tech pioneers, are increasingly sharing their expertise Continue Reading

News 15 Apr 2021

University of Hertfordshire is latest academic cyber attack victim

Multiple systems are offline at the University of Hertfordshire following a cyber attack Continue Reading
News 15 Apr 2021

Ireland’s DPC launches probe into Facebook leak

The Irish Data Protection Commission has launched an ‘own volition’ inquiry into the leak of data from 500 million Facebook profiles Continue Reading
News 14 Apr 2021

FBI accesses ProxyLogon target servers to disrupt cyber criminals

US Justice Department reveals successful court-authorised effort to clamp down on ProxyLogon exploitation Continue Reading
News 14 Apr 2021

EU set to tilt AI balance in favour of citizen rights

New draft EU regulations aim to protect people from biased decision-making Continue Reading
News 14 Apr 2021

NSA unearths more MS Exchange vulnerabilities

Microsoft patches more critical vulnerabilities in Exchange Server a month after the ProxyLogon incident, after being warned by the US National Security Agency Continue Reading
Opinion 14 Apr 2021

Security Think Tank: Vaccine passports must be secure by design

What are the security issues and challenges presented by vaccine passports, and how should they be designed and used with ethics and privacy in mind? Continue Reading
Opinion 14 Apr 2021

Security Think Tank: Vaccine passports cannot be taken lightly

What are the security issues and challenges presented by vaccine passports, and how should they be designed and used with ethics and privacy in mind? Continue Reading
News 13 Apr 2021

MP told to ditch official email over hacking fears

MP Tom Tugendhat claims the intelligence services advised him to switch to the Gmail service due to concerns his parliamentary email could be hacked Continue Reading
News 13 Apr 2021

Millions of devices at risk from NAME:WRECK DNS bugs

Newly disclosed set of nine DNS vulnerabilities puts over 100 million consumer, enterprise and industrial IoT devices at risk Continue Reading
Feature 12 Apr 2021

Why some jobseekers have turned to cyber crime during the pandemic

Research shows that many people have been seeking cyber crime-related work on the dark web, but why? Continue Reading
Opinion 12 Apr 2021

What has a year of home working meant for the DPO?

Byron Shirley of The Compliance Space explores how the role of the data protection officer has changed in the past 12 months Continue Reading
News 09 Apr 2021

Cring ransomware hits ICS through two-year-old bug

A long-disclosed vulnerability in Fortinet’s Fortigate VPN servers is being exploited to distribute Cring ransomware Continue Reading
News 08 Apr 2021

Nation-state cyber attacks double in three years

Cyber attacks backed by nation states are becoming more frequent and varied, moving the world closer to a point of ‘advanced cyber-conflict’, according to a University of Surrey research project Continue Reading
News 07 Apr 2021

Facebook ducks calls to apologise over huge data leak

Facebook gives its side of the story as data on millions of its users leaks, but is yet to apologise for security lapses that put half a billion people at risk of compromise Continue Reading
News 07 Apr 2021

Digital Markets Unit starts work on codes of conduct for tech giants

Digital markets regulator officially launched to ensure tech giants such as Facebook and Google cannot exploit their market dominance to crowd out competition and stifle innovation online Continue Reading
News 06 Apr 2021

Facebook data leak could be outside scope of GDPR

Regulators may be unable to do much about leaked data on 533 million Facebook users, as it seems to have been stolen before GDPR came into force Continue Reading
News 31 Mar 2021

NHS is apparently closing security skills gap

By the end of 2020, there were more than twice as many in-house security professionals at NHS trusts as there were two years before Continue Reading
News 31 Mar 2021

Cyber Security Council to champion UK security pros

A new cyber security professional body has launched with the aim of developing and promoting UK cyber security excellence globally and growing the skills base Continue Reading
News 30 Mar 2021

Ransomware attack on London schools highlights warnings

Ransomware attack on Harris Federation comes just days after a fresh NCSC alert for the education sector Continue Reading
News 30 Mar 2021

The Security Interviews: How to secure an F1 team in a pandemic

A multi-year digital transformation programme paid off for F1 team Williams Racing when the 2020 season was abruptly postponed thanks to Covid-19. Learn how the team’s CIO has been supporting remote working and protecting data Continue Reading
News 29 Mar 2021

Backup survey: UK councils’ downtimes five times longer than average

Backup product supplier Veeam’s freedom of information request finds councils’ average downtime is seven hours and that backup and disaster recovery testing is not done frequently Continue Reading
Feature 29 Mar 2021

Ecolabels and data sanitisation key to recycling and reusing IT assets

Ecolabels on hardware and data sanitisation of devices are key to recycling and reusing old IT equipment respectively, helping enterprises avoid unnecessary asset destruction and contributing to increasingly high levels of electronic waste globally Continue Reading
Feature 26 Mar 2021

Backup appliances the hot topic for Pas-de-Calais fire brigade

With requirements for strict, long-duration backup and archiving, French fire brigade set out to replace optical media with a StorageCraft appliance and disaster-proof storage Continue Reading
News 26 Mar 2021

Retailer FatFace pays $2m ransom to Conti cyber criminals

Retailer FatFace paid out a $2m ransom to restore its data following a January 2021 cyber attack by the Conti ransomware syndicate Continue Reading
News 26 Mar 2021

Remote working burn-out a factor in security risk

After a year of working from the kitchen table, stress and burn-out are increasing, giving rise to more security risks – and Millennials seem to be particularly affected Continue Reading
News 25 Mar 2021

Cyber security complacency puts UK at risk, says NCSC head

National Cyber Security Centre CEO Lindy Cameron, in her maiden speech in the role, warns of challenges ahead for the UK and sets out the future agenda for cyber Continue Reading
Feature 25 Mar 2021

The 3-2-1 backup rule: Has cloud made it obsolete?

The 3-2-1 backup rule was made for small-scale use in the pre-cloud era when tape still ruled. Is it relevant in the 2020s, or can we repurpose its fundamental principles? Continue Reading
News 24 Mar 2021

Oil giant Shell hit through Accellion FTA breach

Energy firm discloses cyber attack through Accellion File Transfer Appliance Continue Reading
News 24 Mar 2021

Apparent drop in cyber incidents highlights underlying problems

UK organisations report fewer cyber security incidents, but the headline data masks more serious issues, according to a report Continue Reading
News 24 Mar 2021

Cyber criminals forging Covid-19 vaccine certificates

Vaccine passports and certificates are gaining mainstream traction, which means cyber criminals are also on the bandwagon Continue Reading
News 23 Mar 2021

NCSC beefs up support for education sector after spate of attacks

Refreshed guidance from the NCSC recommends a defence-in-depth strategy as schools and universities face a renewed wave of cyber attacks Continue Reading
Opinion 23 Mar 2021

Security Think Tank: Attacks on CNI – an evolving frontier in warfare

In the light of increasing cyber attacks on critical national infrastructure, what are the immediate risks to industrial control systems and other operational technology, and what steps can be taken to address them? Continue Reading
News 22 Mar 2021

$50m ransomware demand on Acer is highest ever

Record-breaking double-extortion cyber attack saw REvil gang exfiltrate financial data from Taiwan-based PC manufacturer Continue Reading
News 22 Mar 2021

Unionised drivers call on Microsoft to suspend Uber’s Face API licences

Unionised private hire drivers in the UK are calling for Microsoft to suspend Uber’s licences to use its Face API technology after claims the ride-hailing firm’s ID-checking system has led to drivers losing their jobs and having licences revoked Continue Reading
Opinion 22 Mar 2021

Security Think Tank: Back to square one – ground-up CNI protection

In the light of increasing cyber attacks on critical national infrastructure, what are the immediate risks to industrial control systems and other operational technology, and what steps can be taken to address them? Continue Reading
News 22 Mar 2021

CIO interview: Juliette Atkinson, IT director, Bradford University

Bradford University’s IT director took a different route than most to get into IT leadership Continue Reading
News 18 Mar 2021

Vaccine passports cannot put basic rights at risk, warns BCS

BCS warns of challenges to come as the government presses on with its plans for Covid-19 vaccine passports Continue Reading
Opinion 17 Mar 2021

Security Think Tank: Take a realistic perspective on CNI cyber attacks

In light of increasing cyber attacks on critical national infrastructure, what are the immediate risks to industrial control systems and other operational technology, and what steps can be taken to address them? Continue Reading
News 17 Mar 2021

Average ransomware cost triples, says report

The average amount paid out by ransomware victims has grown almost threefold to more than $300,000 per incident, according to a report Continue Reading
News 17 Mar 2021

Digital Green Certificate proposed for travel in Europe

Digital Green Certificates will supposedly help re-establish freedom of movement within the European Union Continue Reading
Opinion 17 Mar 2021

Security Think Tank: CNI operators must focus on core issues

In the light of increasing cyber attacks on critical national infrastructure, what are the immediate risks to industrial control systems and other operational technology, and what steps can be taken to address them? Continue Reading
News 17 Mar 2021

Cyber sector welcomes PM’s defence review

Security commentators approve of measures to improve the UK’s cyber resilience, strengthen its R&D and skills base, lead on the development of new technology and promote a free, open, peaceful and secure global internet Continue Reading
News 16 Mar 2021

MoD partners playing fast and loose with confidential data

Clear spike in data breach incidents at defence partners may reflect better reporting standards, claims MoD Continue Reading
News 16 Mar 2021

Banks still lack tech skills at the top

Banks have made progress in adding IT knowledge in their boardrooms, but they need more as digital transformation accelerates Continue Reading
News 16 Mar 2021

Unusual DearCry ransomware uses ‘rare’ approach to encryption

Hybrid approach to encryption used by DearCry bears similarities to WannaCry Continue Reading
News 16 Mar 2021

Microsoft releases one-click ProxyLogon mitigation tool

Microsoft’s mitigation tool is designed to help customers without dedicated security or IT teams navigate fixing their vulnerable Exchange servers Continue Reading
News 16 Mar 2021

Government calls for input into Covid-19 vaccine passports

Evidence gathering exercise will inform the development of the UK’s proposed Covid-19 vaccine passport scheme Continue Reading
News 15 Mar 2021

Microsoft Exchange ProxyLogon attacks spike 10 times in four days

Exploitations of the Microsoft Exchange ProxyLogon vulnerabilities have increased tenfold in just four days Continue Reading
Opinion 15 Mar 2021

Security Think Tank: CNI operators are in an unenviable position

In the light of increasing cyber attacks on critical national infrastructure, what are the immediate risks to industrial control systems and other operational technology, and what steps can be taken to address them? Continue Reading
News 12 Mar 2021

NCSC issues emergency alert on Microsoft Exchange patch

UK’s national cyber agency calls on organisations affected by the ProxyLogon vulnerabilities to patch their Microsoft Exchange Servers immediately Continue Reading
News 12 Mar 2021

IR35 private sector reforms: IT contractors ‘growing reluctant’ to work for ‘blanket banning’ firms

IT-focused staffing company Ellis Recruitment Group shares its take on how the contracting market is responding to the private sector firms enforcing blanket bans Continue Reading
Feature 12 Mar 2021

Does email security need a human solution or a tech solution?

People spend a lot of time using email systems, but many do not realise that this makes them attractive targets for cyber criminals. With education and technology, businesses can tackle this problem head-on Continue Reading
News 12 Mar 2021

Web founder calls for ubiquitous, safe internet access for young people

Internet access has a direct correlation to GDP. On the 32nd birthday of the world wide web, its founder calls for improvements to safe access Continue Reading
News 12 Mar 2021

DearCry ransomware targets vulnerable Exchange servers

As predicted, ransomware gangs have started to target vulnerable instances of Microsoft Exchange Server, making patching an even greater priority Continue Reading
News 12 Mar 2021

Brewer Molson Coors targeted in cyber attack

Cyber criminals have disrupted beer production at Molson Coors, one of the world’s largest brewers Continue Reading
Opinion 12 Mar 2021

Security Think Tank: US security efforts may centre on collaboration

As US president Joe Biden sets out his agenda for the next four years, we consider the opportunities for renewed international collaboration on cyber security, what aspects of cyber Biden should focus on, and ask how the industry can make its voice heard Continue Reading
News 11 Mar 2021

UK digital regulators set out plans to strengthen cooperation

Digital Regulation Cooperation Forum outlines plans for the coming year, marking a shift towards a more collaborative regulatory approach Continue Reading
News 11 Mar 2021

Attack on surveillance cameras a warning over security, ethics

The attack on a video surveillance startup by a hacktivist group raises questions not just over cyber security, but the use and extent of surveillance technology Continue Reading
Opinion 11 Mar 2021

Data-driven innovation needs trustworthy governance

The pandemic has given us a glimpse of what data-driven technology can do for society – and we cannot go back to the status quo Continue Reading
News 11 Mar 2021

Norwegian government falls victim to Microsoft attacks

Norway’s parliament, the Storting, suffers second major cyber incident in a year as threat groups capitalise on vulnerable Microsoft Exchange Servers Continue Reading
E-Zine 11 Mar 2021

CW Europe: Nordic tech startups create blueprint for post-Covid working environment

Business can learn lessons from Nordic tech startups to prepare employees to return to the office after Covid restrictions end. Also read why Netherlands police need a training ‘roadmap’ to get them up to speed to tackle cyber crime. Continue Reading
News 10 Mar 2021

Met Police chooses Capgemini as strategic IT infrastructure services provider

Capgemini has a history of providing the force with day-to-day technology services, and will now deliver its infrastructure services under the Pegasus programme Continue Reading
News 10 Mar 2021

Patch Tuesday overshadowed by Microsoft Exchange attacks

Microsoft’s March Patch Tuesday update drops amid ongoing fall-out from widespread Exchange attacks Continue Reading
News 10 Mar 2021

Police crack world’s largest cryptophone network as criminals swap EncroChat for Sky ECC

Belgian and Dutch police have breached the encryption of users of Sky ECC, the world’s largest cryptophone network. There are significant parallels with the international police operation against the EncroChat cryptophone network which led to hundreds of arrests Continue Reading
Opinion 09 Mar 2021

Why your business needs SOC as a service

Security in the digital era demands that businesses monitor their entire IT estate and resolve all alerts, but for many organisations the most effective way of doing that is SOCaaS Continue Reading
Opinion 09 Mar 2021

Gartner: Three tips to avoid cloud service suspension

As recent events have shown, public cloud providers have the power to terminate cloud contracts, and seemingly legitimate businesses may be at risk Continue Reading
News 09 Mar 2021

EBA restores services after Microsoft Exchange attack

European Banking Authority was breached through vulnerabilities in Microsoft Exchange Server, but is now back online Continue Reading
News 09 Mar 2021

Private equity house buys McAfee enterprise business

Deal to sell off enterprise unit will see McAfee become a pure-play consumer organisation Continue Reading
News 08 Mar 2021

US teases retaliation over state-backed cyber attacks

Consequences for alleged perpetrators of the SolarWinds attack are expected within the next few weeks Continue Reading
News 05 Mar 2021

Williams F1 car launch disrupted by data leak

Williams Formula One team forced to pull augmented reality app it had planned to use to launch its 2021 car at the last minute after an apparent cyber attack Continue Reading
News 05 Mar 2021

Mandiant: MS Exchange bugs first exploited in January

Analysis from technical teams at FireEye’s Mandiant tracked activity exploiting newly disclosed vulnerabilities in Microsoft Exchange Server more than a month ago Continue Reading
News 05 Mar 2021

Clarification needed on IT ‘super-deduction’ allowance

Chancellor announces that companies investing in qualifying new plant and machinery assets will be able to claim a ‘super-deduction’ allowance Continue Reading
Feature 05 Mar 2021

Dealing with the challenge of beg bounties

The rise of so-called beg bounties is becoming a challenge for security teams, and can be a drain on time and resources. But what is a beg bounty, and how does it differ from a bug bounty? Continue Reading
News 05 Mar 2021

Innovation underpinned by trustworthy governance, says CDEI

Public support for greater use of digital technologies such as AI depends on how much trust people have in its governance, says report Continue Reading
News 04 Mar 2021

Okta picks up Auth0 for $6.5bn

Multibillion-dollar acquisition a vote of confidence in future of identity and access management services Continue Reading
News 04 Mar 2021

Microsoft Exchange CVEs more widely exploited than thought

US CISA issues emergency guidance as impact of four newly disclosed Microsoft Exchange vulnerabilities becomes clearer Continue Reading
News 04 Mar 2021

IR35 private sector reforms: HMRC under fire over ‘omission’ of employers’ NI from webinar guidance

HM Revenue & Customs confirms it has corrected a calculation error in a recent educational IR35 webinar that saw it fail to factor in employers’ NI in examples of how payments should be made between end-clients, agencies and PSCs post-April 2021 Continue Reading
News 04 Mar 2021

Qualys caught up in Accellion FTA breach

Security services supplier confirms that some of its data was stolen via vulnerabilities in Accellion’s file transfer product Continue Reading
News 03 Mar 2021

Emergency patch addresses MS Exchange Server zero-days

Microsoft releases an emergency patch to address multiple zero-day exploits directed at on-premise installations of Exchange Server Continue Reading
News 02 Mar 2021

EU seeking pan-European Covid-19 passport solution

The European Union’s proposal could see the creation of a Covid-19 vaccine passport to enable travel across the EU Continue Reading
News 02 Mar 2021

Goldman Sachs CEO comments highlight need for home working balance

The remote working revolution has been prominent in the banking sector and organisations have a balancing act to perform once the pandemic passes Continue Reading
News 01 Mar 2021

Digital secretary Dowden outlines UK post-Brexit data approach

The UK government is searching for a new information commissioner with an updated remit to use data to support growth and innovation, and plans on reaching new international data partnerships Continue Reading
News 01 Mar 2021

Covid accelerates Bradford University remote working project

Pandemic injected fuel into university’s existing project to introduce remote working Continue Reading
News 25 Feb 2021

NCSC Cyber Action Plan emphasises SME security

NCSC self-assessment tool launched to help sole traders and micro-businesses tackle their cyber security challenges Continue Reading
News 25 Feb 2021

GCHQ sets out rules of the road for AI in cyber

A paper produced by GCHQ shows how the intelligence agency can use artificial intelligence responsibly as a tool to protect the UK’s national security Continue Reading
News 25 Feb 2021

Tech-enabled hybrid working enables HSBC to cut 40% of its global office space

Bank is making huge reductions in the amount of office space it uses through a global hybrid-working policy Continue Reading
News 25 Feb 2021

MHRA and other agencies to offer new resources for scam victims

New landing page resources will replace .uk domains suspended for criminal activity to help members of the public access appropriate guidance Continue Reading
News 25 Feb 2021

IR35 private sector reforms: What IT contractors need to know

Computer Weekly asks contracting experts to answer questions about PSC bans, compliant umbrella companies and challenging status determinations, with the latest IR35 reforms coming into place Continue Reading
News 24 Feb 2021

Vaccine passports prove an ethical minefield

Privacy campaigners warn that vaccine passports may turn out to be discriminatory and invasive, while technologists agree careful consideration must be given to their design Continue Reading
News 24 Feb 2021

Is Clubhouse safe, and should CISOs stop its use?

With more concerns being raised over the privacy and security of social media app Clubhouse, we consider whether security teams should consider restricting or stopping employees from using it Continue Reading
News 24 Feb 2021

Internet companies should provide real-time data on disinformation, Lords told

Fact-checking experts tell House of Lords inquiry that upcoming Online Safety Bill should force internet companies to provide real-time information on suspected disinformation, and warn against over-reliance on AI-powered algorithms to moderate content Continue Reading
News 24 Feb 2021

Businesses forced to ask IT service providers for help during pandemic

IT service providers have been approached by long-time enterprise customers asking for price cuts due to the impact of the pandemic Continue Reading
News 24 Feb 2021

Bombardier is latest victim of Accellion supply chain attack

Canadian aviation company joins the growing list of Accellion breach victims Continue Reading
News 24 Feb 2021

Warning on security risk from virtual events platforms

Vulnerabilities found in virtual events platforms could form part of a variant supply chain attack Continue Reading
News 23 Feb 2021

XDR makes cyber a Stroll in the park for Aston Martin F1

Aston Martin Cognizant Formula One team will run SentinelOne’s Singularity XDR platform under the bonnet Continue Reading
News 23 Feb 2021

AI powers reputational damage insurance policy

Reputational damage has an immediate impact on a company’s share price, and brand loyalty built over many years can be lost in an instant Continue Reading
News 23 Feb 2021

CyberScotland offers centralised security resource hub

Newly launched partnership brings together security resources for individuals and organisations across Scotland Continue Reading
News 22 Feb 2021

Microphones, smartphones, laptops among items stolen from BBC

A total of 105 devices have been stolen from the BBC in the past two years, some of which may have been spirited away by remote workers Continue Reading
News 22 Feb 2021

Pandemic has exposed fractures in cyber fraud strategy

RUSI report urges a bolder and more coordinated response to cyber-enabled fraud as the pandemic lays bear the scale of the problem Continue Reading
News 19 Feb 2021

European Commission proposes UK data adequacy agreement

The publication of two draft data adequacy decisions brings the UK closer to a final positive decision, which will enable the continued free flow of data between the EU and the UK if green-lit by member states Continue Reading

8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32

CIO

Big tech invests billions in AI data centers globally
President Joe Biden throws his support behind Microsoft to build an AI data center in Racine, Wis., as big tech companies invest ...
2024 US election guide: Where candidates stand on tech
The next U.S. president will set the tone on issues such as AI regulation, data privacy and climate tech. Where do prominent ...
5 tips for better communication about digital transformation
CIOs and IT leaders must communicate effectively with stakeholders to bring about a successful digital transformation. Learn how ...

Mandiant: Ransomware investigations up 20% in 2023
The cybersecurity company observed a sharp rise in activity on data leak sites in 2023 as well as an increase in ransomware ...
Hugging Face tokens exposed, attack scope unknown
After detecting unauthorized access on its Spaces platform, Hugging Face disclosed that customer secrets might have been exposed ...
Snowflake: No evidence of platform breach
Snowflake on Saturday issued a joint statement with third-party investigators Mandiant and CrowdStrike denying reports that its ...

Subnet use cases and considerations for network performance
Network administrators create subnets to split networks and optimize performance. Other reasons for subnetting include traffic ...
Lessons from deploying private 5G
Enterprises that have deployed private 5G cite both technical and business benefits, but they might not be what organizations ...
How network engineers can prepare for the future with AI
The rapid rise of AI has left some professionals feeling unprepared. GenAI is beneficial to networks, but engineers must have the...

Lessons in AI from Dell Technologies World 2024
A main focus of the Dell Technologies World 2024 conference was AI and how it impacts infrastructure environments. Dell ...
Dell exec looks back at history when considering AI's future
In this Q&A, Dell's Matt Baker lays out how its AI Factory is designed for faster AI adoption, why there are so many chatbots and...
7 considerations for data center site selection
An incredible amount of research must go into data center site selection. If the location does not fit company demands, the data ...

Data Management

Managing databases in a hybrid cloud: 10 key considerations
To manage hybrid cloud database environments, consider business and application goals, consistency, configuration management, ...
Evaluate and choose from the top 10 data profiling tools
Any effective data quality process needs data profiling. Evaluate key criteria to select which of the top 10 data profiling tools...
10 best practices for managing data in microservices
Data architects managing loosely coupled microservices applications need to make the right decisions about databases, data ...

Close