04.03.10 - Survey says 89 per cent of firms not compliant with PCI-DSS
PCI-compliance survey shows smaller firms on road to PCI-compliance ruin
01.03.10 - Wyndham Hotel group hacked over three-month period to leave customer credit card data compromised
Guests of Wyndham Hotels may have had their card details compromised following intervention by a hacker in late January.
11.02.10 - PCI DSS regulations should not be written off as being unsuitable, as an understanding of the terms and options are often ignored
Credit card companies should be encouraged to work with smaller vendors when it comes to compliance, but it is too soon to write off PCI regulations.
08.02.10 - Early flood warning phone service automatic sign-up
Half a million homes and businesses in England and Wales at risk of flooding are to be automatically signed up to an early warning phone service.
03.02.10 - Teachers union hit by data loss of almost 7,000 personal details, as ICO finds it to be in breach of the Data Protection Act
Around 7,000 members of a teachers union have been hit by a data breach following the loss of personal details on a laptop and USB stick.
03.02.10 - Memory stick that contained personal details of disabled people lost by Wigan Metropolitan Borough Council staff
memory stick that contains sensitive and confidential information of more than 200 disabled residents has been reported lost in Wigan
02.02.10 - Conficker virus hits Manchester Police computers
Greater Manchester Police (GMP) has been cut off from a national criminal database for more than three days because of a computer virus.
28.01.10 - CCTV monitoring website launch delayed by review
A website which planned to pay members of the public cash prizes for monitoring commercial CCTV footage online has had its launch delayed.
28.01.10 - Climate e-mails row university 'breached data laws'
A university unit involved in a row over stolen e-mails on climate research breached rules by withholding data, the Information Commissioner's Office says.
25.01.10 - Ministry of Defence reveals 16 information leaks in the last 18 months due to social networking use
A joint investigation has led to revelations that Ministry of Defence staff and military personnel leaked secret information 16 times on social networking websites and internet forums in the last 18 months.
23.01.10 - UK terrorist threat level raised to 'severe'
The UK terror threat level is being raised from "substantial" to "severe", Home Secretary Alan Johnson has said.
18.01.10 - Lancashire County Council found in breach of Data Protection Act
The Information Commissioner’s Office (ICO) has found Lancashire County Council in breach of the Data Protection Act after social work records containing sensitive personal data relating to several individuals were found in a filing cabinet purchased second-hand by a member of the public.
13.01.10 - ICO wins backing for £500k data breach fines
Ministry of Justice agrees on maximum amount organisations can be fined
23.12.09 - MBNA confirms data loss after laptop containing personal details of thousands of customers was stolen from vendor
A laptop containing personal details of thousands of MBNA credit card customers has been stolen.
22.12.09 - Failures on DNS control led to Twitter redirection
Shortcomings in security or making sure that the domain namer server (DNS) services were secure caused the Twitter redirection on Friday morning.
15.12.09 - 32.6m passwords may have been compromised in RockYou hack
RockYou, which provides widgets popular with MySpace and Facebook users, has been hacked and 32.6m users are being urged to change their passwords
14.12.09 - New laptop loss report from the Ministry of Defence, as it confirms the encryption key was also taken
A laptop was stolen from the Ministry of Defence along with an encryption key in November.
30.11.09 - Lost Royal Navy memory stick reportedly contained information on manoeuvres and UK personnel
A memory stick that contained ‘restricted' information on naval manoeuvres and personnel around the UK was reported missing last week
30.11.09 - Shredded patient records deliver a gift-wrapped data breach
A Leicestershire businesswoman discovered shredded records of NHS patients, with some information still showing, in packaging material used to protect gift boxes.
23.11.09 - Managing and monitoring the privileged
Trusted and high-level stakeholders may be offered privileged network access, but this may not be well managed or monitored.
20.11.09 - Hackers target leading climate research unit
The e-mail system of one of the world's leading climate research units has been breached by hackers.
20.11.09 - Laptop containing 600 patient records stolen from Scottish Ambulance Service
The data, which was unencrypted but password protected, includes the patients' names, addresses and details of their treatment.
18.11.09 - PCI DSS compliance is a safety net for everyone
The information security standard ensures the safety of data – and must be put in place, says Peter Jackson
17.11.09 - T-Mobile staff sold personal data
Staff at mobile phone company T-Mobile passed on millions of records from thousands of customers to third party brokers, the firm has confirmed.
16.11.09 - Voters' details on stolen laptop
Personal data on more than 14,000 voters has gone missing from the offices of a council in Hertfordshire.
16.11.09 - Hundreds of records breached in Hull
More than 350 patients in Hull have had their electronic medical records accessed by a member of NHS Hull's staff who should not have had access to them.
13.11.09 - Mental health data stolen from NHS trust
Data not properly protected by NHS authorities
11.11.09 - MoJ proposes £500,000 data breach fine
The Ministry of Justice has proposed to set a maximum £500,000 penalty for breaching the Data Protection Act
11.11.09 - Lax security will cost firms dear, ICO warns
Negligent companies can expect hefty fines, says data watchdog
04.11.09 - Rural Payments Agency data loss impact could have been minimised with software
The Rural Payments Agency (RPA) data loss could have been avoided by not using backup tape.
30.10.09 - Considerations should be made for security of smartphone device and not just the data transfer
Reports of smartphones being phished should lead to correct security of devices by IT departments.
30.10.09 - The Rural Payments Agency experiences major data loss as DEFRA denies whistleblower claims
The Rural Payments Agency (RPA) has reportedly lost confidential data belonging to anyone who has ever claimed a single farm payment.
29.10.09 - RPA lost farmers’ personal data, Benn admits
The Rural Payments Agency has lost CDs and tapes containing farmers’ personal data, including bank details, Defra Secretary Hilary Benn has admitted.
20.10.09 - Online retailers come bottom in data security survey
Banks command most trust, but all sectors need to raise their game, says study
28.10.09 - Firms lower security despite cost of breaches
UK medium to large companies each lost an average of £16,000 through security breaches and yet nearly two thirds have cut or frozen IT security budgets, research has revealed.
26.10.09 - Stolen laptops biggest danger as extent of UK data losses revealed
UK CIOs reported 356 data loss incidents last year, a Freedom of Information (FOI) request by a software supplier has revealed.
25.10.09 - Hackers target Guardian jobs site
Half million people may have details compromised despite technicians interrupting 'sophisticated' attack on recruitment site
23.10.09 - Zurich Insurance reports loss of details of 51,000 customers
The UK branch of Zurich Insurance has reported the loss of a back-up data tape in South Africa that contained the details of 51,000 general insurance customers.
23.10.09 - A lack of convergence could lead to data breaches
Failure to converge physical and IT security could result in further data breaches.
23.10.09 - Education curriculum should implement security across all levels
Security skills need to become embedded in the school education system.
21.10.09 - Privileged users threaten IT security, study reveals
Bad practice in managing privileged IT users is threatening the security of European organisations, a study has revealed.
20.10.09 - TV show exposes offshore data risks
Medical records for sale in India
19.10.09 - Millions tricked by 'scareware'
Online criminals are making millions of pounds by convincing computer users to download fake anti-virus software, internet security experts have claimed.
16.10.09 - Major attack targets Microsoft Outlook Web Access
Websense warns of highly targeted assault
15.10.09 - Businesses cannot rely on software suppliers for security
This month's huge Microsoft Patch Tuesday security update proves the limits of the software company's programme for secure software development, claims data security firm Imperva.
15.10.09 - Risk of cyber attack high as firms cut IT budgets, say researchers
UK companies are putting themselves at risk of cyber attack by cutting IT budgets in the recession, say researchers.
14.10.09 - Businesses encouraged to restrict the sharing of login details
Companies that allow the sharing of login details are facing a huge security time bomb.
12.10.09 - Victims of identity fraud rise by a third, as it becomes a primary concern among consumers
The number of victims of identity fraud has risen by a third so far this year in comparison with this time last year.
12.09.10 - CIFAS warns of dramatic rise in ID fraud
Research finds internet users ripe for impersonating
07.10.09 - Online banking fraud rises again
MasterCard SecureCode and Verified by Visa proving succesful but malware attacks on banking customers rise
28.09.09 - Government covers up Valuation Office security failures
The government has restricted circulation of an auditor's report into information security failures at the Valuation Office Agency (VOA), the body that assesses property values for tax purposes.
25.09.09 - Security education and training should be done as soon as possible to instruct new staff on policy
Education and policy teaching for new employees should be taught in the first few weeks of them starting.
24.09.09 - Data routing mistakes could cost companies dearly
Badly configured data routing is causing company security to be compromised.
24.09.09 - Requests made for a PCI DSS compliance logo for accredited merchants to display
Calls have been made for a compliance logo to be created for Payment Card Industry Data Security Standard (PCI DSS) accredited companies to display.
24.09.09 - West Midlands Ambulance Service NHS Trust employs secure USB sticks for data transfer
BlockMaster is to supply West Midlands Ambulance Service NHS Trust with over 300 SafeSticks.
24.09.09 Banking security managers expect fraud to increase as most have experienced a data loss
Almost three quarters of security managers at financial institutions have experienced an insider data theft in the last 12 months.
23.09.09 - Companies are not taking regulatory controls seriously as Imperva makes recommendations for PCI changes
Companies are still struggling with data security despite regulatory rulings.
23.09.09 - Companies fail to secure or backup data as time cited as the main concern
Over a quarter of small and medium enterprises (SMEs) are not backing up company data, while a third have conceded that they failed to secure data.
22.09.09 - Security advisor hits out at hiring of hackers into British Intelligence positions
The hiring of alleged hackers has been criticised after British intelligence services hired 50 computer-savvy hackers to work in the Cyber Operations Command
21.09.09 - Government property tax agency fails IT security checks
Valuation Office Agency, which runs a database holding details of 800,000 homes, has not met "minimum standards" for security
21.09.09 - Civil servant jailed for accessing DWP systems for fraud
A civil servant was imprisoned on Friday (18.09.09) for accessing 2,500 Department for Work and Pensions (DWP) records and diverting other people's tax credit claims to his own bank accounts.
18.09.09 - Thieves take Digital Britain PCs
Computers owned by the UK's Digital Inclusion Team, charged with getting millions of Britons online, have been stolen in a burglary.
04.09.09 - Ealing Council facing £501,000 fine after its network was hit by a virus that crippled it for weeks
Ealing Council was hit by a virus in May that crippled its network for several weeks.
04.09.09 - Brits fail to consider password security as they select memorable logins and share details with friends and family
People are using simple passwords and admit that at least one other person knows what it is.
04.09.09 -
Companies struggle with PCI DSS requirements
If you are struggling to achieve compliance with the Payment Card Industry Data Security Standard (PCI DSS) requirements, you are not alone.
31.08.09 - UK Parliament Website Hacked
A hacker broke into the database of the UK Parliament website by exploiting an SQL injection vulnerability. The incident reveals very poor and questionable password security practices on behalf of the website administration.
28.08.09 - Ability to crack mobile phone encryption described as worrying
The ability to crack standard GSM cell phone A5/1 encryption has been described as worrying as it could have a profound impact on the mobile phone industry.
27.08.09 - Researchers crack WPA encryption in 60 seconds
Japanese researchers claim to have found a way to break the Wi-Fi Protected Access (WPA) encryption system used in wireless routers in just 60 seconds.
26.08.09 - Insider incidents are becoming more frequent and often overshadow the need for protection
Accidental security incidents by company insiders are happening more frequently.
26.08.09 - Home Office admits full extent of USB data loss
Over 370,000 records were lost by PA Consulting last year
25.08.09 - Information Commissioner's Office urges the encryption of smartphones
The Information Commissioner's Office has urged the encryption of smartphones.
20.08.09 - Radisson Hotel chain hit by data breach
The Radisson Hotel chain has suffered a data breach with customer credit card numbers possibly accessed.
17.08.09 - U.S. Man 'stole 130m card numbers'
US prosecutors have charged a man with stealing data relating to 130 million credit and debit cards.
10.08.09 - Business continuity should be considered when preparing against attack
Companies have a responsibility to ensure that their systems are not compromised or solicited in denial-of-service attacks.
05.08.09 - Staff who viewed personal information were simply victims of 'natural curiosity'
Nine members of staff at local authorities have been sacked for looking at the personal records of friends and celebrities on the government's National Identity Scheme.
03.08.09 - KPMG to provide digital strategy for NHS
The Department of Health has commissioned management consultants KPMG to report on a vision for a digital strategy for the NHS.
30.07.09 - MI5 website hacked
The website of MI5 was breached by hackers when a search engine related to it was penetrated.
29.07.09 - 'Crimeware as a service' set to increase over the next two years
The growth of ‘crimeware as a service' will see criminal gangs work with insiders to infiltrate and attack organisations.
27.07.09 - Network Solutions suffers crippling data breach
Web hosting firm admits 570,000 credit card holders could be affected.
24.07.09 - ICO to get fining power next year
The Information Commissioner's Office will have new powers to fine government organisations for serious data breaches from next year
24.07.09 - MoD admits to fourfold rise in data breaches
The government's information security reputation suffered another blow this week, after the Ministry of Defence revealed that serious data breaches have risen fourfold over the past year.
23.07.09 - Information Commissioner takes action against Highland Council after two laptops are stolen
The Information Commissioner's Office (ICO) has taken action against a local authority that lost two laptops. Despite both being stored in a locked office and being password protected.
22.07.09 - HSBC fined £3m for data breaches
Three HSBC firms have been fined more than £3m for failing to adequately protect customers' confidential details from being lost or stolen.
20.07.09 - Call made for security education for NHS as personal details are lost on unencrypted devices
The security industry should come together to educate NHS trusts and other organisations on simple measures to protect data.
20.07.09 - UK terror threat level is reduced
The UK terror threat level has been lowered from "severe" to "substantial", the Home Office has said.
17.07.09 - BT Wins MoD communications contract
BT has won a contract with the MoD worth over £99 million to support communications in military bases.
15.07.09 - Five trusts breach data protection law
The Information Commissioner’s Office has issued further warnings to NHS bodies about the importance of protecting data, after revealing that another five trusts have breached the Data Protection Act.
14.07.09 -Business-aware cyber criminals causing havoc
The latest security threat report from Cisco shows that criminals are targeting enterprises in ever more sophisticated ways.
10.07.09 - NHS computers hit by viruses as patient data is put at risk
More than 8,000 NHS computers have been hit by computer viruses over the last year.
09.07.09 - UK data breach incidents on the rise
Seven in ten UK organisations experienced a data breach incident over the last year, up from 60 per cent in the previous year.
08.07.09 - Firms told to prepare as swine flu cases mount
CBI has urged them to consider contingency measures such as remote working
06.07.09 - PCI standard accused of being ambiguous and not achieving its aims
The PCI DSS has been accused of not yet accomplishing what it originally set out to achieve.
06.07.09 - BT assists Metropolitan Police in security enquiries
BT has secured a prestigious deal to provide officers and staff at London's Metropolitan Police Service with new identity and access management services
01.07.09 - ID databases go ahead, despite u-turn on ID cards
ID cards will no longer be compulsory, but anyone applying for a British passport will added to the national identity card database, the government disclosed yesterday.
25.06.09 - PCI DSS standards to face open comment
The PCI Security Standards Council (PCI SSC) is looking for feedback on its payment industry guidelines and plans to roll out an online tool to make providing input easier.
25.06.09 - Cyber-security strategy launched
Britons face a growing online threat from criminals, terrorists and hostile states, according to the UK's first cyber security strategy.
25.06.09 - EU agency to manage IT for security and justice
The European Commission is setting up a new agency to oversee all the its large-scale IT systems operated by its freedom, security and justice operation.
24.06.09 - Survey: CISOs worried about insiders, data breaches
Eighty per cent of CISOs believe their company's own employees and contractors are the greatest threat to company data, according to a new study conducted by security vendor NetWitness and audit and information security training company MIS Training Institute.
23.06.09 - Manchester council breaches Data Protection Act
Manchester City Council has lost two unencrypted laptops containing personal details on at least 1,754 employees at local schools.
19.06.09 - Personal data exposed on website
Personal data including the signatures of recipients has been exposed to those tracking deliveries on the Parcelforce website, the BBC has discovered.
18.06.09 - Bord Gáis customer details stolen
THOUSANDS of Bord Gáis customers have been advised to check their bank statements for illegal transactions after account numbers and other personal details of 75,000 people were contained in stolen laptops.
17.06.09 - Companies blind to printer security risks
40 per cent of staff have seen sensitive documents abandoned on the print tray
16.06.09 - Inquiry after HSE laptops are stolen
The Health Service Executive and gardaí are investigating the theft of 15 laptops from HSE offices in Roscommon town.
15.06.09 - UK cyber security centre to launch
The Prime Minister Gordon Brown will announce the launch of a national cyber security centre later this month.
12.06.09 - Businesses should look to a more creative method of access security
A more radical approach to access security is required for organisations and businesses.
11.06.09 - Survey reveals culture of IT admin snooping
Over a third of IT staff have used their administration rights to access privileged information about employees, customers and their company for personal reasons, according to a recent survey by Cyber-Ark.
10.06.09 - UK councils encouraged to keep CoCo standards up to date despite the deadline delay
Councils in the UK have been warned not to ignore the Government's Code of Connection (CoCo) standards.
09.06.09 - T-Mobile plays down hacking attack
Mobile phone service provider T-Mobile has been hit by a supposed hacker attack with customer details advertised for sale online.
05.06.09 - Three quarters of security departments believe that they are susceptible to hacking
Almost three quarters of IT professionals believe that their software applications are vulnerable to hacking.
03.06.09 - Personal Data Guardianship Code has been described as inconsistent as new British standard on data protection introduced
The Personal Data Guardianship Code has been described as inconsistent and muddled.
William Malcolm, a specialist in data protection law at Pinsent Masons, claimed on Out-Law.com, claimed that its high-level guidance on the data life-span, stewardship and accountability 'is helpful but very much echoes existing guidance from the Information Commissioner's Office and Government'.
28.05.09 - Pension details of 109,000 stolen
A laptop computer with details of 109,000 members of six pension schemes has been stolen from offices in Marlow in Buckinghamshire.
28.05.09 - Information Commissioner instructs NHS to improve data protection as rumours made that patients may have control over their records
The NHS has been criticised by the Information Commissioner over its data protection failings.
17.5.09 - Thirty-two MoD PCs went walkabout in first 131 days of 2009
Statistics from the UK's Ministry of Defence show that a total of 28 laptops and four desktop PCs have been lost or stolen in the period of January 1 to May 11 this year.
07.05.09 - Missile plans, banking details and NHS records found on old hard drives in investigation
Information for missile defence, banking details and NHS rcords found on old hard drives
06.05.09 - Social engineering attack allowed consultant to access company's data room and steal passwords
A company has been hit by a mystery shopper attack where it was the victim of a 'social engineering' exercise.
06.05.09 - Government revises DNA database plans
Nearly 1m records could be expunged from DNA database
06.05.09 - Home secretary pushes ahead with ID cards
High street to play a vital role in application process as Manchester citizens become first to be able to apply for cards
02.05.09 - Welsh businesses’ emergency plans for dealing with swine flu
Businesses are on stand-by to implement their emergency plans should swine flu strike Wales
27.04.09 - Plan to monitor all internet use
Communications companies are being asked to record all internet contacts between people to modernise police surveillance tactics in the UK.
27.04.09 - Swine flu: time to review business continuity plans
Businesses were urged to review their business continuity plans amid warnings that a swine flu could lead to absenteeism rates of up to 40% if a pandemic takes hold.
21.04.09 - Minister sorry over train papers
Culture Secretary Andy Burnham has apologised "unreservedly" after leaving confidential papers on a train.
21.04.09 - Government faces call for IT security review
Nearly 2,000 items of IT equipment lost or stolen since 1997, claims MP.
17.04.09 - British Council breached Data Protection Act
Disks will be encrypted after Information Commissioner Ruling
17.04.09 - Criminal record checks go online
Agencies will be able to submit multiple requests at once and receive results electronically
08.04.09 - Terror raids follow files blunder
Twelve men have been arrested in the North West of England after Britain's most senior counter terrorism police officer sparked a security alert
02.04.09 - Half of councils fail to hit security deadline
Government Connect programme falls further behind schedule
31.3.09 - Google Cache Reveals 19,000 UK Cardholders' Details
Google's cache feature has apparently revealed the credit card details of more than 19,000 UK residents which were accidentally released by cybercriminals and spidered by Google's bots.
30.03.09 - Airlines maintaining focus on IT security
But some struggling to achieve compliance deadlines
27.03.09 - Parliament hit by Conficker virus
But patches have been available for the high-profile worm since November
24.03.09 - Nuclear terror threat increased
There is an increased risk terrorists could get hold of chemical, biological and nuclear weapons to attack the UK, the Home Office has said. (source: news.bbc.co.uk)
24.03.09 - Call to shut down Street View
A formal complaint about Google's Street View has been sent to the Information Commissioner (ICO). Drawn up by privacy campaigners, it cites more than 200 reports from members of the public identifiable via the service. (source: news.bbc.co.uk)
23.03.09 - Call to scrap illegal databases
A quarter of all government databases are illegal and should be scrapped or redesigned, according to a report. (source: news.bbc.co.uk)
17.03.09 - Visa says RBS Worldpay and Heartland not PCI compliant
Visa has taken the Royal Bank of Scotland Group's RBS Worldpay and US payments processor Heartland Payment Systems off its list of Payment Card Industry Data Security Standard (PCI DSS) compliant service providers. (source: www.itpro.co.uk)
10.03.09 - USB drive lost by Lothian and Borders Police was not encrypted
A USB drive is missing from Lothian and Borders Police with ddtails of hundreds of police investigations. (source: www.itpro.co.uk)
06.03.09 - ICO raps health trust over stolen laptops
The Information Commissioner's Office (ICO) has taken out an enforcement action against an NHS health trust after it breached its own security procedures. (source: www.computing.co.uk)
06.03.09 - Firm "Sold workers’ secret data"
A company that allegedly sold workers' personal details, including union activities, to building firms is to be prosecuted by the information watchdog. (source: news.bbc.co.uk)
25.02.09 - ID cards database breached by nosey council staff
Staff at 30 local authorities have been responsible for "serious security breaches" in the government database that will form the core of the national ID cards programme. (source: www.computerweekly.com)
24.02.09 - Ex-employees walking out the door with corporate data
Symantec research finds more than half of laid-off workers take corporate data with them. (source: www.computing.co.uk)
11.02.09 - Data security breaches increased in last three months
Companies and government bodies have reported a significant increase in the number of data breaches in the past three months, according to the latest figures from the Information Commissioner's Office (ICO). (source: www.computing.co.uk)
04.02.09 - Minister holds 'burglary summit'
Home Secretary Jacqui Smith is holding a "burglary summit" for England and Wales amid fears more homes will be broken into because of the recession. (source: news.bbc.co.uk)
04.02.09 - Government departments breach Data Protection Act principles
Government departments are still failing to implement basic security procedures and are in breach of the Data Protection Act, according to new data discovered under the Freedom of Information Act. (source: searchsecurity.techtarget.co.uk)
03.02.09 - Snow throws spotlight on business continuity plans
The heaviest snowfall since 1991 has seen the UK's transport infrastructure grind to a halt, testing continuity plans and technology to allow staff to work from home. (source: www.itpro.co.uk)
