It’s possible that information security is not your first thought when you wake up in the morning. That’s probably a good thing. Though, at a time when we hear plenty about high-profile data breaches, fines being levied at international companies and the ongoing conversation about ‘surveillance capitalism’, it’s worth wondering: are we spending enough time thinking about security in our personal lives?
Read more

One of the greatest challenges when developing a secure culture within the work force is ensuring that employees are able and confident in applying knowledge gained through training. How can you ensure that your employees know how to best apply this knowledge should a security incident arise?
Read more

Every day we see headlines dominated by big name corporates falling prey to cyber-attacks yet we rarely hear about Small Enterprise cases where the danger is just as great and the consequences fatal. Micro-businesses (0-9 employees) represent 95% of all UK businesses, whilst small businesses (10-49 employees) account for less than 4% of businesses in the UK.
Read more

Posting, sharing, liking and commenting have become a routine in our daily lives, but we must be careful what we are broadcasting and to whom…
Read more

437 days since GDPR legislation came into effect and the business landscape at ground level seems arguably unchanged. Sales teams across the world still call and email uninvited, protected by a myriad of legal precedent that they can legitimately (albeit loosely) claim their communications and their reason for contacting you correspond to.
Read more

If you are a business owner, work in IT or handle customer or employee data there is a massive shake-up to data protection laws that you need to be aware of or risk unprecedented fines. For private individuals, this means increased rights and power over our personal data.
Read more

The recent cybersecurity attack on NHS Scotland’s Lanarkshire trust has been confirmed to be the result of ever-prevalent ransomware. Ransomware is a type of cyber-attack where your files and data on your computer are encrypted in such a way that they cannot be accessed without a special decryption key. This key is held only by the perpetrators of the ransomware, who will release the key only on payment of a ransom, often in anonymous cryptocurrencies like Bitcoin.
Read more

63% of data breaches in Verizon’s Data Breach Investigation[1] were the result of bad password practice. This report analysed a dataset covering more than 100,000 incidents across 82 countries in industries ranging from finance to mining. The frustrating thing about this statistic is that, even in our fast-paced world of rapidly expanding technological progress, the methods employed by most hackers...
Read more

Newsrooms around the world are finally coming to terms with the latest big hack, Yahoo, where a staggering 500 million accounts were compromised. If we simplify and assume each account was to registered to an individual then it is valid to state that this hack affected 11% of the Earth’s internet users.
Read more

In any professional project it is necessary to outline the way in which we assess both failure and success. Selecting a series of metrics provides an easily quantifiable method to carry out this assessment. The advantages of this are obvious, a solid metric reduces the complexity of the task...
Read more

It is a fact, universally acknowledged in the industry, that modern information security must turn its focus to the employees themselves to fully secure a business. Admittedly, some work has been done here – as of 2015, 72% of large organizations provided ongoing awareness training as did 63%[1] of small businesses – certainly there is room for improvement but the area is gaining traction.
Read more