Ethical hackers working through HackerOne programmes discovered more than 65,000 software vulnerabilities in 2022 – 21% up on 2021 – and over 120,000 customer vulnerabilities, with reports for vulnerability types introduced by digital transformation projects skyrocketing as misconfiguration vulnerabilities grew by 150% and improper authorisation vulnerabilities grew by 45%. This is according to HackerOne’s […]

The London Stock Exchange Group (LSEG) will spend at least £2.3bn on Microsoft cloud services as part of a 10-year deal to transform its data and analytics business. Microsoft has also bought 4% equity in the London Stock Exchange group as part of the agreement, which will see the exchange’s data and analytics business […]

Microsoft has rounded off 2022 with a typically light Patch Tuesday for December, with a total of 52 patches addressing six critical vulnerabilities and two zero-days of lesser severity. The two zero-day bugs are tracked as CVE-2022-44698, a security feature bypass vulnerability in Windows SmartScreen, which carries a CVSS score of 5.4 and is […]

Registers of Scotland, or RoS, is one of the longest established public records services in Britain and Ireland, with land data held in its Register of Sasines – sasine being an ancient term to describe how property was held and transferred in feudal times – dating back centuries. The Register of Sasines as it […]

The year 2022 has been unabating in the number of high-profile breaches and cyber criminal gangs, on top of nation-state actors, participating in geopolitical conflicts. Companies across industries, including those in energy, tech and telecoms, continue to be breached. With many countries relaxing lockdown rules following the Covid-19 pandemic, and as more millennials and […]

What is the AS/400 (IBM iSeries, AS/400e, eServer iSeries/400, Power Systems)? The IBM Application System/400 — or AS/400 — is a family of midrange computers that was released in 1988, succeeding both System/36 and System/38 platforms. The first generation of AS/400 was based on a 48-bit complex instruction set computer (CISC) and ran the OS/400 […]

The European Union (EU) – United States (US) Data Privacy Framework has taken a step closer to reality after the European Commission (EC) issued a draft data adequacy decision – ruling that the US ensures an adequate level of protection for personal data transferred from the EU to US companies – and began the […]

The role of the chief information security officer (CISO) is in a state of flux, with changing dynamics such as increasing levels of risk and threat, more stringent regulation and compliance, making a once niche role crucial to the modern-day enterprise, and altering the fundamental nature of the job. That is according to a […]

What is ISO 27001? ISO 27001, formally known as ISO/IEC 27001:2022, is an information security standard created by the International Organization for Standardization (ISO), which provides a framework and guidelines for establishing, implementing and managing an information security management system (ISMS). According to its documentation, ISO 27001 was developed to “provide a model for establishing, […]

Finland has launched a voucher-based scheme to help companies embrace best practice systems to reinforce their IT network and information security defences. The Information Security Voucher (ISV) scheme was rolled out on 12 December by the Ministry of Transport and Communications (MTC) in collaboration with the National Cyber Security Centre (NCSC). The scheme offers […]