#SecurityFailings

UK Electoral Commission slapped for basic cybersecurity fails

by

July 31, 2024 at 04:36AM The UK’s Electoral Commission faced a formal reprimand for security failings that led to a cyberattack stealing personal data from 40 million voters. The attack went unnoticed for 13 months due to ineffective patching, default passwords, and weak password management. The ICO noted improvements made post-incident but emphasized the need … Read more

NCSC CTO: Broken market must be fixed to usher in new tech

by

May 16, 2024 at 05:42AM NCSC CTO Ollie Whitehouse spoke at CYBERUK, criticizing the tech market for contributing to cybersecurity issues. He highlighted the increase in vulnerabilities, emphasized the need to address technical debt, and advocated for holding vendors accountable for security failings. He urged for reform in the market and emphasized the importance of … Read more