Small and medium-sized enterprises (SMEs) throughout the UK are losing £3.4bn every year as a result of inadequate and unfit-for-purpose cyber security measures, with more than 30% of businesses having no form of security protections in place whatsoever, and over a quarter being targeted multiple times every year, according to a report produced by Vodafone…
UK SMEs losing over £3bn a year to cyber incidents Read More »
Over 80% of global companies are now using AI to improve business operations. AI has also become a feature of individuals’ daily lives as we interact with chatbots, voice assistants, or predictive search technologies. But as AI diffusion grows, so too do the risks associated with its misuse – particularly by nation state actors engaged…
How CISOs can counter the threat of nation state espionage Read More »
The software security landscape is at an interesting juncture. As Jen Easterly, the former director of the Cybersecurity and Infrastructure Security Agency (CISA), pointed out, there is a lesson to be drawn from the automotive industry of the 1960s. Its approach to improving car safety by building better designs – including seatbelts, crumple zones, and…
Secure software procurement in 2025: A call for accountability Read More »
The Digital Operational Resilience Act (DORA) came into force on 16 January 2023. Following a two-year implementation period, from 17 January 2025, financial organisations must fully comply with the new regulation, which aims to ensure they remain resilient to severe operational digital disruption. The act covers a number of aspects of cyber resiliency, auditability, and…
Misusing artificial intelligence (AI) can have some very clear and expensive consequences. Movie studio Lionsgate recently joined a long list of organisations discovering that quotations and citations from generative AI (GenAI) systems need to be verified like any other source; Microsoft is being sued by a German journalist after Bing Copilot suggested he had committed crimes…
Navigating the practicalities of AI regulation and legislation Read More »
Threats have been more sophisticated, unpredictable and harder to pin down. Attackers don’t just exploit technical weaknesses – they target human behaviour, organisational blind spots, and even regulatory loopholes. From spear phishing and deepfake fraud to misinformation generated by artificial intelligence (AI), cyber criminals are using emerging technologies to launch attacks with precision and ease.…
CISOs: Don’t rely solely on technical defences in 2025 Read More »
Recent years have seen a general cost-cutting in organisations caused by economic pressures. Many organisations have seen a fall in customer demand due to the cost-of-living crisis, as well as inflationary pressures affecting costs. Higher interest rates, increasing organisations’ cost of capital, are another factor. There’s also a sense of fatigue associated with spending on…
Overcoming the cyber paradox: Shrinking budgets – growing threats Read More »
The UK government has issued a draft of its strategic priorities for Ofcom under the Online Safety Act (OSA), which the regulator will have to consider when it starts enforcing the new rules from spring 2025. Passed in October 2023, the obligations placed on digital platforms by the OSA mean they must prevent children from…
Government issues strategic priorities for online safety regulator Ofcom Read More »
The Chinese state threat actor most famously known as Volt Typhoon is staging a significant comeback after its botnet infrastructure was disrupted in a US-led takedown at the beginning of February 2024. Volt Typhoon’s malicious botnet comprised hundreds of Cisco and Netgear small and home office (SOHO) routers that had reached end-of-life (EOL) status and…
China’s Volt Typhoon rebuilds botnet in wake of takedown Read More »
With the European Union’s (EU) NIS2 regulations now in full effect, IT leaders across the region report that they are struggling to secure budget to support their compliance efforts, with 95% reporting they are being forced to dip into funds reserved for other things. This is according to a Censuswide study of EMEA IT leaders…
EMEA businesses siphoning budgets to hit NIS2 goals Read More »
