The UK government's plan to finally rewrite the 1990 Computer Misuse Act to provide much-needed legal protections for ethical hackers is welcome, but now we need firm action.

Malicious prompt injections to manipulate GenAI large language models are being wrongly compared to classical SQL injection attacks. In reality, prompt injection may be a far worse problem, says the UK's NCSC.

A growing body of research suggests that the use of live facial recognition is reshaping police perceptions of suspicion in ways that undermine supposed human-in-the-loop protections

How does a self-service internal developer platform enable organisations to improve their DevOps workflows?

Exploitation of an RCE flaw in a widely used open source library is spreading quickly, with China-backed threat actors in the driving seat

Data, automation and artificial intelligence are driving the regulator to take new approaches to its work and how it supports the pensions industry, leading to improved experiences for everyone in the UK who has a pension

An unspecified IT issue affecting Edinburgh Airport’s air traffic control services provider has led to flight delays and cancellations

A change to web application firewall policies at Cloudflare caused problems across the internet less than three weeks after another major outage at the service, but no cyber attack is suspected

As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026.

Three west London councils hit by a cyber attack continue to investigate as services remain disrupted nearly two weeks on

With 2024 seeing surges in security funding cuts, lay-offs and hiring freezes, 2025 brought some relief for cyber pros, but constrained budgets are leaving security teams short-staffed

The Home Office has formally opened a 10-week consultation on a legal framework for police use of facial recognition technologies, and will consider extending any new rules to police deployments of other biometric and inferential technologies

The cyber security industry will experience immense change due to AI by 2030, so both employers and professionals need to grasp the nettle, and quickly, if they are to have the right skills and experience in place to succeed

Russia is deploying hybrid warfare against Europe as western nations supply critical IT and telecoms equipment to Ukraine’s front line

National Police investigation into Post Office scandal uses IT infrastructure provided by Fujitsu

As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year, and ahead to 2026.

Campaigners celebrate as security minister Dan Jarvis commits to amending the outdated Computer Misuse Act to protect security professionals from prosecution

A protective service jointly developed by the NCSC and BT has disrupted over a billion potential cyber incidents by stopping members of the public from clicking through to dangerous websites

The UK government’s national security strategy is falling short on online matters, according to the independent reviewer of terrorism

Florence Mottay moved from mathematics to software engineering, and is now leading security at Zalando, a high-tech online fashion retailer