The Channel logo

Articles about Compliance

Broke - empty pockets

Microsoft compliance police to NHS: We want your money

Microsoft is playing hardball with the NHS, threatening trusts and authorities with drastically increased software payments over claimed licence violations. The tough talking comes more than a year after an organisational shift began across the NHS (April '13) saw some Primary Care Trusts and strategic health authorities …
Paul Kunert, 27 Jun 2014
Cash on scales. Pic: Images Money, Flickr

Oracle swaps around its licence police bods' top ranks

Oracle’s mighty software enforcement unit is now under new management in the UK, Israel and Ireland. Caroline Crowe-Woolley has been appointed senior manager head of UKII region License Management Services (LMS), taking over from Mike Duncan. Duncan had occupied the LMS spot since January 2013. Also gone is head of LMS UK …
Gavin Clarke, 06 Oct 2015

Salesforce unleashes red-tape-as-a-service for regulation-heavy users

Salesforce has launched its slightly-more-secure-software-as-a-service for organisations in industries compelled to wrap themselves in red tape. The Salesforce1 service, dubbed "Shield", offers encryption, monitoring, and archiving for the platform's apps. Salesforce says the platform includes field audit trail, platform …
Team Register, 15 Jul 2015
Breakwater at Portland Harbour

Companies need answer to Safe Harbour worries, says minister

The move to strike down Safe Harbour has created worrying uncertainty for companies, the Conservative minister for intellectual property, Baroness Neville-Rolfe, has said. Responding to a Parliamentary question on the European Court of Justice’s judgement last month on the Schrems v Data Protection Commissioner case, Neville- …
Kat Hall, 04 Nov 2015

Silicon Valley freeze-out: EU watchdog tells firms clock is ticking to limit data transfers

Companies have been put on notice by Brussel's top privacy bod, who has warned them that the transfer of EU citizens' data to the US must be limited – and this must happen soon. It comes several weeks after a landmark decision in the European Court of Justice nullified the questionable US-EU Safe Harbour Agreement. "No one …
Kelly Fiveash, 24 Oct 2015
AWS Snowball appliance

Disk boxes, security tools, etc: What Amazon announced at its AWS shindig on Wednesday

Amazon Web Services (AWS) kicked off its annual re:Invent conference on Wednesday with the introduction of a handful of new additions to its cloud computing service. The rollout includes a tool to test apps for security flaws, plus a business intelligence (BI) service, and a new way to physically toss data into Amazon's cloud …
Shaun Nichols, 08 Oct 2015
management management3

EMC and VMware doing the old in-out shows the board is on the job

Comment The finance, storage and virtualisation communities have all been abuzz in recent days, following industry chatter that EMC might buy back the shares in VMware it doesn't already own – or that VMware might buy EMC. Both suggestions have been met with many sharp intakes of breath as pundits contemplate these financial …
Simon Sharwood, 06 Aug 2015

Fujitsu: We started the cloud party, honest

Fujitsu Forum 2015 Fujitsu has outlined a timetable for its hybrid IT digital platform after inking a deal to acquire French-based fluffy white services outfit UShareSoft. Some components of the digital business platform MetaArc are already available, including an Internet of Things, big data, mobility solutions and app dev. Head of Fujitsu’s …
Paul Kunert, 17 Nov 2015
management governance3

E-commerce enterprises gently told to update those protocols ... or else

A revamp in payment card industry regulations due out later this month will penalise e-commerce enterprises that rely on outdated crypto protocols. The PCI Security Standards Council updated standard – PCI DSS 3.1 – mandates that businesses move away from SSL onto more modern TLS protocols. The council is introducing the …
John Leyden, 07 Apr 2015
A blade server from the UV2 super

Amazon now renting physical servers you can cuddle and love

This is different from hosting how exactly? Amazon Web Services has flicked the switch on “EC2 Dedicated Hosts” - a new cloud service that offers “physical servers fully dedicated for your use.” The new service applies to over 30 variations of the instance types in the M4, C3, C4, G2, R3, D2, and I2 instance types and can run …
Simon Sharwood, 24 Nov 2015

Blue Coat acquires the cloud-crypto monkeys at Perspecsys

Controversial and suspicious netsec outfit Blue Coat Systems has acquired Perspecsys, for the want of some weight in its cloud security portfolio. Recently bought by Bain, Blue Coat reckons the acquisition (on undisclosed terms) establishes it as "a leader in the Cloud Access Security Broker segment". Cloud-crypto outfit …

IBM tightens Passport Advantage licensing terms

IBM software customers should be on their guard following changes to the fine print of the giant’s Passport Advantage program. IBM reworded part of Passport Advantage late last year, The Reg has learned, putting more onus on the customer than ever before to keep clear and accurate records of their software use. The changes mean …
Gavin Clarke, 07 Apr 2015

Anything AWS can do: Microsoft announces UK data centre region for Azure cloud

Microsoft's CEO has announced it will build a UK data centre for its Azure cloud - just days after a similar announcement from AWS CTO Werner Vogels. It seems the race is on. Azure will have cloud services based in the UK "beginning in 2016" said Nadella's slide, whereas Vogels stated that the AWS installation will be online " …
Tim Anderson, 10 Nov 2015

Ingram Micro feasts on European old-mobe specialists

First Ingram Micro dug deep to acquire handset seller Brightpoint and now it is buying up companies to deal with the devices in middle age and at the end of their life. The tech wholesaler has subsumed CANAI Group, which specialises in trade-ins, reuse, recycling and global redistribution. High Wycombe-based CANAI runs a …
Paul Kunert, 23 Jun 2015
HMRC photo,

Online VAT fraud: Calls for government crackdown grow louder

Calls to crack down on companies selling goods online in the UK without declaring VAT have gathered pace, with a peer and another high profile individual now voicing their concerns that the practice is damaging UK business. The Register has previously reported on the seemingly growing number of sellers based outside Europe who …
Kat Hall, 08 Oct 2015
Microsoft CEO Satya Nadella

Microsoft chief Satya drops an S bomb in Windows 10, cloud talk

Microsoft claims it really does care about privacy and securing the cloud and Windows 10, promising to build cybersecurity teams and investing in the area. A new Cyber Defense Operations Center will bring together security response experts from across the technology giant in a new “state-of-the-art” facility. The unit will be …
John Leyden, 17 Nov 2015

Can't stop Home Depot-style card pwning, but suppliers will feel PCI regulation pain

Third-party providers will face more stringent regulations as part of a revamp in payment card industry regulations due to go into full effect in the new year. The new Payment Card Industry Data Security Standard 3.0 (PCI 3.0) will be mandatory for all businesses that store, process or transmit payment card information beginning …
John Leyden, 17 Dec 2014
Boats storm girl photo via Nikolina Mrakovic

Microsoft's top lawyer: I have a cunning plan ... to rescue sunk safe harbor agreement

Microsoft president and chief legal officer Brad Smith has presented a new safe harbor pact to replace the agreement struck down earlier this month by the European Court of Justice (ECJ). The ECJ ruled that transferring Europeans' private information in and out of America is no longer allowed because America's privacy laws …
Iain Thomson, 21 Oct 2015

Hortonworks dismisses reports of Hadoop droop

Hadoop-pusher Hortonworks has dismissed reports by analyst house Gartner that the big data market is "yet to take off". Earlier this year Gartner reported that the market will remain sluggish for the next few years, with fewer businesses planning to begin Hadoop deployments in the next two years than the entire number of those …
Kat Hall, 09 Oct 2015

TalkTalk CEO admits security fail, says hacker emailed ransom demand

Dido Harding, the chief executive of TalkTalk, has confessed her company should have done more to protect its customers' personal information, and has confirmed a seemingly related blackmail attempt. Harding told BBC News that she had personally received an email which included a ransom demand from "an individual or a group, …

Three-way EU Big Data privacy wrestling match kicks off

The EU will take a big step towards finalising measures to protect its citizens' privacy today, as negotiators from member states, the European Commission, and the European Parliament will come together for the first time to thrash out an agreement on the EU’s planned data protection law. The Parliament agreed its position on …
Jennifer Baker, 24 Jun 2015

WD and HGST: We tried to merge our two drive makers, MOFCOM said NO, NO, NO

Analysis Although WD’s acquisition of HGST was approved over two years ago, Chinese regulatory authority MOFCOM is still preventing the full integration of their respective drive-making ops. The Ministry of Commerce of the People’s Republic of China (MOFCOM) has always maintained it was not keen to see WD and its HGST subsidiary move …
Chris Mellor, 10 Dec 2014

Sage Pay anti-POODLE upgrade REDUCED security - briefly

Online payment service Sage Pay has been fingered for temporarily reducing its security while revamping its site security. Security consultant Paul Moore noticed that the Sage Pay website was briefly running a weak cipher last week. The issue was quickly corrected after Moore went public with his concerns on Tuesday. He …
John Leyden, 04 Feb 2015
Man in an orange jumpsuit clutches prison bars. Image by Shutterstock

UK SMEs with weak security risk procurement exclusion – survey

SMEs need to take cyber security seriously or face being frozen out of the procurement process, according to a new survey from management consultants KPMG. In a poll of UK procurement managers, nearly all (94 per cent) agreed that the cyber security standards of their supplier are important when awarding a contract to an SME. …
John Leyden, 03 Nov 2015

Safe harbour ruling: RELAX, Facebook and Google will be FINE!

The European Court of Justice’s decision to rule the EU-US safe harbour agreement invalid is causing panic among some companies dependent on keeping data flows going ... but Google and Facebook are probably prepared for it. Much to the satisfaction of those who have long condemned US data collection policies, the landmark …
Jennifer Baker, 06 Oct 2015
graph up

Feds seek 'compliance program' for US kit reseller

Two men have been charged with fencing stolen EMC equipment and wire fraud offences relating to almost a million dollars of nicked hardware. A US equipment reseller firm allegedly implicated in fencing of stolen kit also faces a landmark suspended-sentence "compliance program". Kevin Kelly, 33, of North Carolina and Mark …
John Oates, 09 Dec 2010

Merry Xmas, Neohapsis, here's your Cisco-dollars

Cisco is beefing up its security intelligence-gathering, snapping up privately-held advisory Neohapsis for an undisclosed sum. Neohapsis is a Chicago-based security advisory and bug archivist outfit, and will boost Cisco's risk management, compliance, cloud, application, mobile and infrastructure security offerings, according to …

Docker shocker: It's got a commercial product, and is ready to SELL IT

DockerCon 2015 The themes of Docker's past conferences has been increasing adoption of the container tech, but the theme of this year's DockerCon was moving beyond experimentation and into production deployment. By extension, it was also about how Docker plans to make money. The startup is well-heeled, having received enough venture cash in …
Neil McAllister, 24 Jun 2015

Oracle plugs socket numbers on DIY Standard Edition

Oracle is clamping down on uses of its entry-level Standard Edition database by throttling threads. Larry Ellison's giant has cut by half the number of sockets users are allowed to run with Database Standard Edition (SE2), released at the start of this month. SE2 users are now restricted to just two sockets, down …
Gavin Clarke, 07 Sep 2015

Windows Server 2003 support deadline is TOMORROW – but thousands don't care

Tomorrow marks the end of support for Windows Server 2003 but plenty of customers, of all shapes and sizes, weighed up the cost versus the risk factors and will continue to make do with their dusty old boxes. From 14 July, Microsoft will not issue any further security patches or firmware upgrades, and buying custom support is …
Paul Kunert, 13 Jul 2015
Mist and condensation, image via Shutterstock

Stay Misty for Me: G-Cloud’s transparency called into question

Comment The cash flowing through the G-Cloud is rising exponentially, increasing by £400m last year alone to total a very nice £600m. But while the cloudy framework's flexibility and choice is proving increasingly popular with buyers and sellers, it's worth examining what that money is – and isn't – being spent on. In fact, only a …
Kat Hall, 09 Jul 2015

$125m VC war chest awaits NTT Com Security's outgoing boss

The hedge fund that outgoing NTT Com Security overlord Simon Church is joining has $125m to splash on new investments in cyber defence and data services. Church, who provided consultancy for C5 Capital since its inception last year, and was made an advisory board member in April, is to become an "exec in residence" at the equity …
Paul Kunert, 24 Jun 2015
management regulation2

Slurp data in a Eurozone country? Play by their DPA's rules – EU court

Europe’s highest court ruled Thursday that if a company is operating in a particular country and targeting residents of that country for business, then it IS subject to that country’s data protection rules. The Weltimmo case hinged on the question of jurisdiction for data protection issues. Weltimmo is a Slovakian company …
Jennifer Baker, 01 Oct 2015

Microsoft creates its own movie moment with fancy privacy manifesto

Microsoft has published what can only be described as a privacy manifesto. The unusual online screed comes complete with interactive graphics, including a recording of the FISA court's voicemail, and appears geared at pitching Microsoft as the protector of people's global data. Written by president and chief legal officer …
Kieren McCarthy, 13 Nov 2015

Microsoft unwraps new auto data-protection in Office 365 tools

Microsoft is expanding its Data Loss Prevention (DLP) tools. DLP is a way of tagging content to mark it as sensitive data and subject to policy, such as a rule that states “data must be encrypted” or “may not be shared outside the organisation”. DLP is already available for email in Exchange, Outlook and Office 365, and is now …
Tim Anderson, 28 Oct 2014
NSA parody T-shirt

Naughty NSA was so drunk on data it forgot collection rules

Declassified documents from America's Foreign Intelligence Surveillance Court (FISC) shows that even the NSA didn't know the limits of what it was supposed to collect, and overstepped its authorisations for years. The documents were released to the Electronic Privacy Information Centre in response to an FOI request, and record …

Oracle brews PERPETUAL, all-you-can-eat database licence

Exclusive Oracle customers could soon be the beneficiaries of an unlimited, all-you-can-eat licence for its core database, with the giant understood to be readying a deal that would grant use of its database in perpetuity at a flat rate. Oracle’s prospective licence is being referred to as the Perpetual User License Agreement (PULA). …
Gavin Clarke, 07 Aug 2015
HMRC photo,

IT contractors raise alarm over HMRC mulling 'one-month' nudge onto payrolls

Freelance IT workers in the UK have expressed concern about claims that the government plans to force contractors onto the payroll of their clients after just one month of service. It was reported over the weekend that Chancellor of the Exchequer George Osborne would crack down on personal service firms during his spending …
Kelly Fiveash, 12 Nov 2015
Funnel of cash. Credit: via SXC –

Symantec: Look at our Q4 numbers ... no, not those ones

The road to separation continues to be anything but smooth for Symantec’s security operation, particularly on the consumer front, as it again suffered from sales shrinkage, unlike the breakaway storage biz. In the last set of full year numbers from the firm, sales fell three per cent to $6.5bn, including a four per cent slip in …
Paul Kunert, 15 May 2015
Pair of pliers with other tools

Belden buys Tripwire for $710m: Will keep network burglars out of Internet of Things things

Signal transmission firm Belden has agreed to buy security tools firm Tripwire for $710m in cash. The deal, announced Monday, is expected to close in the first quarter of 2015, subject to customary closing conditions. Tripwire's security and compliance products, such as Tripwire Enterprise, will be further developed and …
John Leyden, 10 Dec 2014
Boats storm girl photo via Nikolina Mrakovic

Don't panic, biz bods: A guide to data in the post-Safe Harbor world

The Safe Harbor agreement this week suddenly became of interest to a lot more IT managers than had previously given a stuff about it. But what is Safe Harbor, exactly? The Safe Harbor agreement between the US and the EEA - which comprises the member states of the EU plus Iceland, Norway and Liechtenstein – dating from 2000, …
Dave Cartwright, 09 Oct 2015

Dixons Carphone still has 7.5k Windows XP EPOS systems

Dixons Carphone is still using thousands of EPOS tills running on Windows XP more than a year after Microsoft’s extended support expired, The Register has learned. This is not the Embedded flavour of the OS (though even these would present a heightened risk of attack, say security experts) but 7,000-plus bog standard XP …
Paul Kunert, 18 Aug 2015
Fight sticker

Oracle users open can of whup-ass on licensing policies

Businesses view relations with Oracle as “hostile” and are “filled with deep-rooted mistrust”, according to a six month end-user survey on software compliance conducted by the Campaign for Clear Licensing (CCL). The not-for-profit organ probed (PDF) 100 hard-pressed IT and software asset managers, licensing specialists and tech …
Paul Kunert, 03 Nov 2014
Panic button

Chaos at TalkTalk: Data was 'secure', not all encrypted, we took site down, were DDoSed

Chaos reigns at TalkTalk as the telco appears to be claiming that a distributed denial of service (DDoS) attack led to customer data being compromised – despite that being technically infeasible. A contradictory series of claims in a TalkTalk statement published this morning has suggested the company does not understand the …

UK NHS IT supplier CSC coughs up $190m fine, three execs in the dock

Computer Science Corporation has paid its $190m (£122m) fine, levied by US watchdog the Securities and Exchange Commission over charges the Virginia-headquartered biz fudged its financial reports. And now some senior executives have agreed to hand back millions of dollars in pay and bonuses as a result of the SEC's probings. …
Iain Thomson, 05 Jun 2015
Roughly 150kg of gold

EMC coughs up the readies for cloud management software supplier

EMC is buying Virtustream in a seemingly billion-dollar-level transaction, as part of an effort to build a managed cloud services business. Virtustream sells xStream cloud management software for public, private and hybrid clouds, Infrastructure-as-a-Service (IaaS) and managed services to its customers. It says its xStream …
Chris Mellor, 26 May 2015

VMware sued, accused of ripping off Linux kernel source code

Linux kernel developer Christoph Hellwig has sued VMware in Hamburg, Germany, over alleged violations of the GNU General Public License. Hellwig's suit, which is backed by New York-based advocacy group the Software Freedom Conservancy, alleges that VMware's proprietary ESXi hypervisor products use portions of the code that …
Neil McAllister, 05 Mar 2015

Microsoft's message for Win Server 2003 users: FLEE FOR YOUR LIVES

With 160 days to go before extended support for Windows Server 2003 reaches the end of the line, Microsoft has popped up with some scaremongering tactics helpful advice. Come 14 July, any businesses running the 12-year-old OS will need to cough a princely sum to receive custom support from Microsoft as no more security patches …
Paul Kunert, 04 Feb 2015
Landfill. Pic: Bill McChesney

And so it begins... Cleaning up HMRC's £10.7bn Aspire mess

HMRC is to follow the lead set by the Met Police by setting up a private company to run elements of the tech estate that currently fall under the scope of the failing multi-billion pound Aspire contract. This is the first step HMRC is taking to replace Aspire – the largest single tech contract in UK public sector, which it is …
Paul Kunert, 05 Aug 2015
Fight sticker

NHS delivers swift kick to Microsoft's wallet over fee demands

Exclusive Microsoft is finding out that it doesn't always pay to play nasty with large government customers: NHS procurement bosses are telling authorities and bodies to hold firm against a wave of licensing compliance threats. As exclusively revealed by The Channel last week, Microsoft wrote to all 160 healthcare bodies across England in …
Paul Kunert, 03 Jul 2014



Tom Whipp

Insurance industry insider tells all
Crypto fingers
Kids on wall. Pic: US Army/Capt Emily Skolozynski


Better to play nicely than try to muscle in on territory
Microsoft:Decoded partner of the year 2015. Pic: Dominic Connor

Dominic Connor

Advertising oddness and what MS really wants you to know


Michael Dell. Pic by Joi Ito
Cool Texas dude is just your average billionaire
The Seeing Eye by Valerie Everett, Flickr, CC2.0
Follow the money – or, at least, our projections
Boats storm girl photo via Nikolina Mrakovic
The puppets from Team America: World Police gather at a bar for drinks.