Michael Hill
UK Editor
Michael Hill is the UK editor of CSO Online. He has spent the past five-plus years covering various aspects of the cybersecurity industry, with particular interest in the ever-evolving role of the human-related elements of information security. A keen storyteller with a passion for the publishing process, he enjoys working creatively to produce media that has the biggest possible impact on the audience.
UK ICO reprimands 7 organisations for failing to adhere to UK GDPR Subject Access Request laws
The Ministry of Defence, Home Office and Virgin Media among the organisations which have failed to respond to Subject Access Request in time, if at all.
22 notable government cybersecurity initiatives in 2022
Countries across the globe are taking on cybersecurity threats. Here are the most notable initiatives they've introduced in 2022.
UK organizations, Ukraine's allies warned of potential "massive" cyberattacks by Russia
UK National Cyber Security Centre CEO Lindy Cameron reflects on Russia’s recent cyber activity as Ukraine warns its allies to prepare for cyberattacks targeting critical infrastructure.
US CISA/NSA release new OT/ICS security guidance, reveal 5 steps threat actors take to compromise assets
Advisory from the Cybersecurity and Infrastructure Security Agency and the National Security Agency outlines steps to protect operational technology and industrial control systems.
UK NCSC publishes new cybersecurity guidance for online retailers
UK online retailers can now benefit from tailored cybersecurity guidance on improving customer authentication and removing malicious websites.
Palo Alto adds software composition analysis to Prisma Cloud to boost open-source security
Palo Alto Networks has added a new SCA solution to Prisma Cloud to help developers safely use open-source software components. The vendor has also introduced a software bill of materials.
Uber links cyberattack to LAPSUS$, says sensitive user data remains protected
Attacker likely bought employee account credentials on the dark web and then escalated privileges to access internal tools.
Uber responding to “cybersecurity incident” following reports of significant data breach
Uber says it is in contact with law enforcement following reports of a significant data beach of its network.
The 12 biggest data breach fines, penalties, and settlements so far
Hacks and data thefts, enabled by weak security, cover-ups or avoidable mistakes have cost these companies a total of nearly $4.4 billion and counting.
8 notable open-source security initiatives of 2022
Vendors, collectives and governments are contributing to improve the security of open-source code, software, and development amid organizations’ increasing use of open-source resources.
UK bus giant Go-Ahead battles ongoing cyberattack, reports incident to ICO
UK transport giant Go-Ahead says it is managing a cybersecurity incident after detecting unauthorised activity on its network.