IT for consulting and business services

Companies in the consulting and business services industries often have specialist needs that require effective use of IT. Law firms, consultancies, accountants, recruitment firms and other advisory services use innovative technology to deliver business benefits, and you can read our news and analysis of the key trends and what they mean to you

News 01 Feb 2023
Cloud security top risk to enterprises in 2023, says study

A PwC study finds senior executives expect cyber attacks on cloud services to increase significantly this year Continue Reading
News 01 Feb 2023
UK Cyber Council and ISACA launch audit, assurance programme

The UK Cyber Security Council has teamed up with ISACA to partner on a new audit and assurance programme for security pros Continue Reading

News 03 Mar 2022

Boardroom does not see ransomware as a priority

Less than a quarter of company directors think ransomware is a top priority for their security teams, according to Egress Continue Reading
News 02 Mar 2022

Gothenburg University makes breakthrough in energy efficient computers

Swedish and Japanese universities make advancement in the development of computers that can work as energy efficiently as a brain Continue Reading
News 02 Mar 2022

Middle East IT spending to recover to at least pre-pandemic levels

Middle East IT leaders expect budgets to increase this year, with spending to match or exceed pre-Covid levels Continue Reading
News 28 Feb 2022

Ukraine cyber attacks seen spiking, but no destructive cyber war yet

While cyber attacks linked to Russia’s war on Ukraine are taking place, they are having little impact beyond the region Continue Reading
News 24 Feb 2022

KnowBe4 cyber drama tackles Colonial Pipeline in fourth season

KnowBe4’s ongoing cyber security training drama, The Inside Man, reaches its fourth season with a plot drawing inspiration from one of the most impactful cyber attacks of 2021 Continue Reading
News 24 Feb 2022

Security organisations form Nonprofit Cyber coalition

Founding members of the Nonprofit Cyber coalition pledge to enhance joint action on cyber security around the world Continue Reading
News 24 Feb 2022

Russia behind dangerous Cyclops Blink malware

Joint NCSC CISA advisory attributes a dangerous malware, dubbed Cyclops Blink, to Russia’s Sandworm APT, likely a GRU unit, with WatchGuard users at particular risk Continue Reading
News 23 Feb 2022

Microsoft extends Defender umbrella to Google Cloud Platform

Redmond says extending Defender for Cloud native capabilities to the Google Cloud Platform will help simplify security for organisations pursuing multicloud strategies by eliminating the gaps where the bad guys can get in Continue Reading
News 23 Feb 2022

Backups ‘no longer effective’ for stopping ransomware attacks

Traditional methods of mitigating ransomware are less efficacious thanks to the rise in double and triple extortion techniques Continue Reading
News 23 Feb 2022

No imminent cyber threat to UK from Russia

Intelligence officials say they have no evidence or indication that Russian cyber attackers are preparing offensive assaults on infrastructure or organisations in Britain Continue Reading
News 22 Feb 2022

UK organisations swift to chide phishing victims

While UK organisations are doing better at security training, many are quick to punish employees who fall victim to phishing attacks, whether real or simulated Continue Reading
Opinion 22 Feb 2022

Security Think Tank: Good training is all about context

In-house or outsourced? What makes a good security training programme, and what questions should buyers ask when procuring training as a service? Continue Reading
News 18 Feb 2022

UK organisations untroubled by Trickbot surge

A surge in Trickbot infections is targeting some of the world’s most prominent brands, but UK organisations seem thankfully unaffected Continue Reading
News 16 Feb 2022

2021 another record year for UK cyber investment

Total revenue generated by the UK’s cyber sector was up 14% last year, and UK-registered security firms raised over £1bn in investment Continue Reading
News 16 Feb 2022

CIO interview: Steve Williams, M&A lead and IT director, Waterstons

Steve Williams is applying decades of CIO experience to the advice he gives businesses during major mergers and acquisitions Continue Reading
News 16 Feb 2022

Nordic countries lack a unified approach to AI

Nordic countries need to work together on a pan-regional artificial intelligence strategy Continue Reading
News 15 Feb 2022

China emerges as leader in vulnerability exploitation

Threat actors linked to China are emerging as a significant force in the weaponisation of newly discovered CVEs Continue Reading
News 11 Feb 2022

Why security professionals should pay attention to what Russia is doing

Even though the average organisation is an unlikely target for a Russian state cyber attack, here's why security teams still need to watch what Russian threat groups are up to Continue Reading
Opinion 10 Feb 2022

Phishing tests are a useful exercise, but don’t overdo it

The vast majority of cyber attacks start with a phish, so it’s not surprising that phishing tests form part of cyber training plans. But sometimes these tests go too far. Cyberis’ Gemma Moore looks at how to avoid the pitfalls Continue Reading
News 09 Feb 2022

Linux-based clouds an open door for attackers, says VMware

Its prevalence as a cloud operating system means Linux is becoming a meal ticket for malicious actors, but the security industry does not seem to have cottoned on to this yet, says VMware Continue Reading
News 09 Feb 2022

Ransomware ever more sophisticated and impactful, warns NCSC

UK’s National Cyber Security Centre teams up with US and Australian partners in a joint advisory warning organisations of the increasing sophistication exhibited by criminal ransomware gangs Continue Reading
News 09 Feb 2022

Microsoft stomps on 48 bugs in February Patch Tuesday update

It’s a light Patch Tuesday for February 2022, as Microsoft issues fixes for just 48 CVEs, including a solitary zero-day Continue Reading
News 08 Feb 2022

Microsoft to start blocking macros to thwart malware

Microsoft is making changes to web macro permissions across multiple Office apps to help improve user security Continue Reading
News 08 Feb 2022

The Security Interviews: Building the UK’s future cyber ecosystem

As the government lays out the next iteration of its Cyber Security Strategy, we speak to Plexal and Lorca’s Saj Huq about his work building a cyber ecosystem to support the UK’s future ambitions Continue Reading
News 07 Feb 2022

Umbrella IT contractors urged to seize on court ruling to reclaim withheld holiday pay

The outcome of a court ruling concerning a holiday pay dispute between Pimlico Plumbers and one of its former employees could have costly implications for the umbrella company sector, it is claimed Continue Reading
News 03 Feb 2022

UAE chooses Accenture to develop national payments platform

Consortium led by Accenture to build new payments infrastructure in the United Arab Emirates Continue Reading
Opinion 02 Feb 2022

Security Think Tank: How to build a human firewall

In-house or outsourced? What makes a good security training programme, and what questions should buyers ask when procuring training as a service? Continue Reading
News 02 Feb 2022

Zero-trust to soar in 2022, but dogged by implementation challenges

IT leaders are keen to invest in zero-trust, but face issues around a lack of expertise, and selling the concept into the C-suite Continue Reading
Feature 02 Feb 2022

What neurodivergent people really think of working in cyber security

Many firms are filling cyber security skills gaps by hiring neurodivergent talent – but more support is needed for neurodivergent cyber security professionals, writes autistic tech journalist Nicholas Fearn Continue Reading
News 02 Feb 2022

Saudi Arabia to invest billions of dollars in technology and startups

Saudi Arabia announces $6.4bn investment in its tech sector as part of plans to diversify its economy Continue Reading
News 01 Feb 2022

Check Point buys Spectral to safeguard cloud development

Check Point’s latest acquisition of Israel-based startup Spectral expands its developer-centric security toolset Continue Reading
Opinion 31 Jan 2022

Understand your cyber training ‘need’ before committing to a programme

In-house or outsourced? What makes a good security training programme, and what questions should buyers ask when procuring training-as-a-service? Continue Reading
News 28 Jan 2022

Cyber skills gap affecting data privacy practice, finds ISACA

Organisations are struggling to fill both legal and technical privacy roles, with potentially damaging consequences, according to a report Continue Reading
News 27 Jan 2022

CISOs must get out in front of Ukraine cyber crisis, says NCSC

The National Cyber Security Centre is urging UK organisations to take steps to bolster their cyber security resilience in response to the ongoing Ukraine crisis Continue Reading
News 27 Jan 2022

Novel phishing campaign highlights need for MFA, says Microsoft

Microsoft details a new multi-stage phishing campaign that only affects victims without multifactor authentication in place Continue Reading
News 27 Jan 2022

Nightmare Log4Shell scenario averted by prompt, professional action

Prompt and professional community response to the Log4Shell disclosure means the dangerous and widespread vulnerability has not been exploited to the extent many had feared Continue Reading
Opinion 27 Jan 2022

Security Think Tank: Focus on ‘nudging’ to build effective cyber training

In-house or outsourced? What makes a good security training programme, and what questions should buyers ask when procuring training-as-a-service? Continue Reading
News 26 Jan 2022

More intel emerges on WhisperGate malware that hit Ukraine

Security experts have been poring over the WhisperGate malware with which alleged Russia-backed entities targeted Ukrainian government websites Continue Reading
News 26 Jan 2022

PwnKit bug endangers Linux distributions worldwide

Qualys researchers share intel on a memory corruption vulnerability in a program installed by default on every major Linux distribution Continue Reading
News 25 Jan 2022

Prepare, but don’t panic, over supposed Russian cyber threat

A fresh alert from the US Department of Homeland Security may have IT security teams jumpy over the possibility that their organisations could be targeted by Russian state actors Continue Reading
News 20 Jan 2022

MoonBounce firmware bootkit shows advances in malicious implants

MoonBounce firmware bootkit shows evident technical improvements over others, making it a more dangerous threat to organisations. It is being used by Chinese state-backed actors Continue Reading
News 20 Jan 2022

Delayed pay: Umbrella company cyber attacks disrupt salary payments to thousands of contractors

Thousands of contractors across the UK are anxiously waiting to see if their payroll cycles will be disrupted for a second week, after two of the umbrella industry's biggest players were targeted by cyber criminals Continue Reading
News 19 Jan 2022

Danish digitisation partnership delivers plan to government

Public-private collaboration submits plan setting out “how Denmark can take advantage of the opportunities presented by digitisation moving forward into the future” Continue Reading
News 19 Jan 2022

Twelve million jobs to be lost to automation in Europe by 2040

Millions of current jobs in Europe will be carried out by robots as software robots automate processes Continue Reading
News 14 Jan 2022

Microsoft veteran turns her attention to levelling up IT industry for women

Diversity goes beyond balancing the internal workforce and should include working with partners that also have diversity as a core objective, says Gavriella Schuster Continue Reading
News 12 Jan 2022

Microsoft fixes six zero-days in January Patch Tuesday update

A larger than of late Patch Tuesday update from Microsoft comes as defenders continue to grapple with Log4Shell Continue Reading
News 12 Jan 2022

Dutch cyber volunteers receive major funding boost

The Dutch Institute for Vulnerability Disclosure has received a $100,000 donation to expand the scope of its work Continue Reading
News 11 Jan 2022

Almost half of Log4j downloads still dangerously exposed

Whether by error or design is unclear, but a great many IT teams are still exposing themselves by downloading outdated, insecure versions of Apache Log4j Continue Reading
Feature 07 Jan 2022

New supercomputer opens doors for researchers in Sweden

More than twice as powerful as its predecessor, a new supercomputer ushers in new opportunities for researchers who rely on artificial intelligence and machine learning Continue Reading
News 06 Jan 2022

How far has Saudi Arabia come with open data?

While clearly on the right path, Saudi Arabia still has a lot to do before it reaps the full benefits of open data Continue Reading
News 05 Jan 2022

Google buys Siemplify in first phase of cyber investment

Once integrated into Google Cloud, Siemplify’s platform will serve as the basis for deeper security development at Google Continue Reading
News 24 Dec 2021

Top 10 IR35 stories of 2021

The extension of the IR35 reforms to the private sector in April 2021 has provided Computer Weekly with lots to write about this year Continue Reading
Opinion 23 Dec 2021

Vulnerabilities to fraud are increasing across the board

As the pandemic continues to affect how we work, socialise, shop and conduct business, so it has increased opportunities for digital fraud and cyber crime. Jason Lane-Sellers explores the latest LexisNexis Risk Solutions ‘Cybercrime report’ Continue Reading
Feature 22 Dec 2021

Is the IT sector beset by fear-mongering?

The arms race between hackers and security teams has led to a plethora of new technologies, but it can be hard to differentiate between sensible cyber purchases and those that are promoted by exaggerating risk Continue Reading
Opinion 22 Dec 2021

A trial relying on computer evidence should start with a trial of the computer evidence

Learning from the Post Office Horizon scandal - the most widespread miscarriage of justice in recent British legal history Continue Reading
News 21 Dec 2021

IT services spending recovery to get renewals boost in 2022

IT services and BPO deals worth $18.5bn globally up for renewal next year, adding fuel to already-expected high growth Continue Reading
Opinion 20 Dec 2021

Security Think Tank: Reframing CISO-boardroom relations

Security learning is a career-long process, so as 2021 draws to a close, participants in the Computer Weekly Security Think Tank sum up the most important cyber lessons they’ve taken away from the past 12 months Continue Reading
News 15 Dec 2021

After Log4j, December Patch Tuesday piles on the pressure

December’s Patch Tuesday update from Microsoft contains several critical CVEs, but this month all attention is focused on the fall-out from Log4Shell, and burn-out is becoming a real issue Continue Reading
News 15 Dec 2021

UK government to take ‘whole-of-society’ approach to cyber

Second iteration of the UK’s National Cyber Strategy broadens its focus to build a ‘whole-of-society’ security posture Continue Reading
News 14 Dec 2021

Almost half of networks probed for Log4Shell weaknesses

Close to half of corporate networks have already been actively targeted by individuals seeking to exploit the critical Log4Shell Apache bug Continue Reading
News 13 Dec 2021

What is Log4Shell, and why are we panicking about it?

It’s been described as a ‘design failure of catastrophic proportions’ that threatens the very fabric of the digital world. Find out what the Log4j2 Log4Shell panic is all about, and what you should do about it Continue Reading
News 10 Dec 2021

SMEs dominate list of 200 fastest growing tech companies

List of 200 fastest growing companies in the public sector is made up primarily of small and medium-sized enterprises, which collectively earned £936m from government contracts in the past fiscal year Continue Reading
News 10 Dec 2021

Channelling Nordic startup innovation towards global survival

Nordic startup innovation offers global organisations the green light towards sustainability Continue Reading
News 10 Dec 2021

Loan charge: Tax experts call on chancellor for simpler, more affordable policy settlement terms

A group of tax barristers and accounting experts are calling on Rishi Sunak to force HMRC to revise its loan charge settlement terms Continue Reading
News 09 Dec 2021

What are the challenges associated with the MITRE ATT&CK framework?

Businesses sometimes struggle to use the MITRE ATT&CK framework effectively. Learn more about some of the challenges, and how to overcome them Continue Reading
News 08 Dec 2021

2021 another record-breaker for vulnerability disclosure

More than 50 CVEs were logged every day in 2021, more than at any time since records began, while ethical hackers continue to prove their value Continue Reading
Opinion 07 Dec 2021

Security Think Tank: Attackers leveraging the supply chain

Security learning is a career-long process, so as 2021 draws to a close, participants in the Computer Weekly Security Think Tank sum up the most important cyber lessons they have taken away from the past 12 months Continue Reading
News 06 Dec 2021

IT Priorities 2022: Pandemic’s long tail for cyber buyers

Pandemic response has been top of mind for cyber leaders these past 18 months, and as Covid-19 turns two, the TechTarget/Computer Weekly IT Priorities 2022 study shows buyers are still focused on how Covid has upended the workplace Continue Reading
News 03 Dec 2021

IR35: Government consultation on umbrella companies fuels regulation hopes

The government has embarked on a consultation to understand better how the umbrella market works, which is a move that has been cautiously welcomed by contracting market stakeholders Continue Reading
Opinion 02 Dec 2021

Security Think Tank: Think people, processes and systems

Security learning is a career-long process, so as 2021 draws to a close, participants in the Computer Weekly Security Think Tank sum up the most important cyber lessons they’ve taken away from the past 12 months Continue Reading
Feature 01 Dec 2021

Swedish researchers are patiently developing a useful quantum computer

By 2028, the Wallenberg Centre for Quantum Technology in Sweden expects to have a useful quantum computer Continue Reading
News 30 Nov 2021

HP patches bugs in over 150 printer models

More than 150 HP multifunction printers are at risk of compromise through a series of newly disclosed vulnerabilities, one of them wormable Continue Reading
News 29 Nov 2021

Three latest trends and developments around the Mitre ATT&CK framework

Framework is set to receive important updates to help organisations and businesses evolve their cyber security. Learn more about what it offers Continue Reading
News 22 Nov 2021

Upcoming holidays prompt ransomware warning from authorities

Ransomware gangs know how calendars work, and may target their attacks around major holidays to take advantage of more people being off work, according to a new alert Continue Reading
News 15 Nov 2021

UK government proposes new rules for digital supply chain security

Proposals could see IT service providers legally required to adhere to the NCSC’s Cyber Assessment Framework, among other things Continue Reading
E-Zine 11 Nov 2021

CW Benelux: Dutch IT company rips up the HR rule book for better work-life balance

One Dutch tech firm has used learnings from the pandemic to rip up its HR rule book and implement an official work-from-home policy. In fact, Infolearn has gone further than hybrid working, with a personal mobility budget for staff and a four-day working week, all with retention of full-time salary. Also in this issue, read how Dutch education administrators appear to be underestimating the threat of cyber crime. Continue Reading
Feature 10 Nov 2021

Digital surveillance of remote workers may increase enterprise risk

From productivity tools to security threats, we explore how digital surveillance is forcing remote workers towards shadow IT Continue Reading
Feature 10 Nov 2021

How to manage endpoint security in a hybrid work environment

The future of the workplace is clearly hybrid, but this has untold implications around endpoint security. How can businesses overcome these? Continue Reading
Opinion 03 Nov 2021

Security Think Tank: SASE – marketing buzz or the future of security?

SASE architectures promise to prevent multiple types of cyber attacks, but deciding whether SASE is right for your organisation will require understanding whether SASE is a fit for your use cases in IT Continue Reading
News 26 Oct 2021

CIO interview: Dal Virdi, IT director, Shakespeare Martineau

The law firm is increasingly digitising its business and readying its infrastructure for future merger and acquisition activity Continue Reading
News 15 Oct 2021

Global IT outsourcing sees record spending and no sign of slowing

Cloud services are being taken up by enterprises rapidly as they accelerate digital transformations Continue Reading
News 14 Oct 2021

FCSA clarifies anti-tax avoidance stance of offshore Charter change for umbrella firms

The Freelancer and Contractor Services Association (FCSA) has published a revised version of its membership Charter to reinforce its commitment to ensuring its members do not operate offshore tax avoidance schemes Continue Reading
News 06 Oct 2021

US lawmakers propose ransomware reporting rules

Former presidential candidate Elizabeth Warren lends her support to a bill that would require corporate ransomware victims to disclose more information about their attacks to the authorities Continue Reading
News 05 Oct 2021

CIO interview: Lisa Heneghan, chief digital officer, KPMG

KPMG UK’s digital leader says that in her 25-year career she has never known a more exciting time to work in IT Continue Reading
News 28 Sep 2021

Dutch IT firm transforms HR policy built on lessons from pandemic

Software firm rips up human resources rule book and replaces it with a hybrid working policy Continue Reading
News 27 Sep 2021

CIO interview: Jon Braithwaite, CIO, Compass Group UK & Ireland

FTSE 100 catering services company is undergoing a widespread overhaul of its technology and improving the digital offering to customers Continue Reading
News 24 Sep 2021

IR35 reforms: HMRC confirms compliance checks under way in financial services, oil and gas sectors

Less than six months after the roll-out of the IR35 reforms to the private sector, HMRC has confirmed it has started writing letters to companies requesting details of their compliance procedures Continue Reading
News 24 Sep 2021

London publishes guidelines for ethical use of smart city tech

Latest draft of the ‘Emerging Technology Charter for London’ encourages local authorities, public services and technology companies to improve how they implement technology in the capital Continue Reading
News 23 Sep 2021

Fresh alert over Conti ransomware surge

Conti ransomware crew appears increasingly active, prompting fresh warnings from the US authorities Continue Reading
News 21 Sep 2021

BlackMatter gang ramps up attacks on multiple victims

A wave of new BlackMatter ransomware attacks is hitting organisations around the world, even as the US authorities mull new sanctions on ransom payment infrastructure Continue Reading
News 16 Sep 2021

Bitdefender launches free REvil ransomware decryptor

Working alongside law enforcement partners, Bitdefender has developed and released a tool to help REvil victims recover their data for free Continue Reading
News 09 Sep 2021

UK GDPR faces changes under planned reforms

DCMS is launching a major consultation on proposed changes to the UK’s data protection regime, under which several key elements of the GDPR are likely to change Continue Reading
News 01 Sep 2021

University of Sunderland applies technology through robot dog

Students will apply technologies such as artificial intelligence to robotic dog as part of their learning Continue Reading
News 27 Aug 2021

Are proposed data protection changes a threat to UK citizens’ privacy?

Though changes are as-yet undefined pending an upcoming consultation, concerns are already being expressed over the government’s plan to liberalise data protection laws in the service of innovation and growth Continue Reading
News 26 Aug 2021

Tech giants commit to Biden's cyber security action plan

Some of the world’s most prominent tech giants have made a series of commitments to enhance the US’ national cyber security posture following a high-profile meeting with president Biden Continue Reading
News 26 Aug 2021

Government unveils post-Brexit data flow proposals

The government will pursue data partnerships with countries including Australia, South Korea and the US as part of a post-Brexit data regime that may also see substantial changes to the UK’s data protection law Continue Reading
News 26 Aug 2021

NZ privacy lead John Edwards named new information commissioner

DCMS has named John Edwards, currently New Zealand privacy commissioner, to succeed Elizabeth Denham as UK information commissioner Continue Reading
News 25 Aug 2021

UK loses £1.3bn to fraud and cyber crime so far this year

New figures from the National Fraud Intelligence Bureau show a threefold spike in reported financial losses to fraud and cyber crime in the first six months of 2021 Continue Reading
News 24 Aug 2021

Half of MS Exchange servers at risk in ProxyShell debacle

Up to 50% of MS Exchange users in the UK are exposed to three vulnerabilities that are now being actively exploited Continue Reading
News 20 Aug 2021

Swedish IT industry braced for China’s response to Huawei 5G ban

Swedish IT and communications equipment suppliers fear economic backlash from China following Huawei ban Continue Reading

1
2
3
4
5
6
7
8
9
10
11

CIO

Capital One machine learning strategy taps MLOps
The financial services company harnesses ML for several use cases and aims to deploy the technology at scale through standardized...
Calif. climate bill to require business carbon emissions data
The Climate Corporate Data Accountability Act introduced in California would require businesses to report their scope 1, 2 and 3 ...
5 ways Web 3.0 will impact digital marketing
If Web 3.0 can provide greater privacy, more marketing reach and better targeting, the World Wide Web's latest iteration could ...

Security

What reverse shell attacks are and how to prevent them
Attackers use reverse shells to covertly attack an organization's environment. Discover what a reverse shell is and how to ...
How to use BeEF, the Browser Exploitation Framework
The open source BeEF pen testing tool can be used by red and blue teams alike to hook web browsers and use them as beachheads to ...
Risk & Repeat: The FBI's Hive ransomware takedown
This podcast episode discusses the law enforcement operation that led to the infiltration and takedown of the Hive network and ...

Networking

The features of multi-cloud networking architecture
Enterprises are looking for multi-cloud networking features that include programmability, security integration and end-to-end ...
Industry outlook on MEF's new zero-trust, SASE standards
MEF recently released new zero-trust and SASE standards. Standardizations can help with interoperability, but are they necessary ...
Compare 6 major network certifications for 2023
Network certifications can span networking fundamentals to product-specific knowledge. Evaluate six certifications, and weigh ...

Data Center

Intel revenue drops again; company to speed up next-gen chips
Dogged by stalled PC sales and tighter IT spending, Intel once again reported down revenues. CEO Pat Gelsinger highlighted ...
Use ISO 50001:2018 as a guide for green data centers
Data centers use a lot of energy, and it can be difficult to navigate how to reduce energy use. ISO 50001:2018 provides guidance ...
Everything you need to know about Linux man pages
Admins who aren't familiar with a command can use Linux man pages for better understanding. This tutorial outlines how to access ...

Data Management

ESG predicts 2023 shifts for DataOps, data management
Organizations are using cloud technologies and DataOps to access real-time data insights and decision-making in 2023, according ...
Data lake vs. data warehouse: Key differences explained
Data lakes and data warehouses are both commonly used in enterprises. Here are the main differences between them to help you ...
Data management trends: Convergence and more money
The past year focused heavily on data intelligence, lakehouse development and observability as vendors innovated to help ...

Close