15
Sep

General Data Protection Regulation

  • Simon Fraser

  • General

If you are a business owner, work in IT or handle customer or employee data there is a massive shake-up to data protection laws that you need to be aware of or risk unprecedented fines. For private individuals, this means increased rights and power over our personal data.
04
Sep

UK Government - a failure of attention and funding in cybersecurity?

  • Jamie Highfield

  • General

The recent cybersecurity attack on NHS Scotland’s Lanarkshire trust has been confirmed to be the result of ever-prevalent ransomware. Ransomware is a type of cyber-attack where your files and data on your computer are encrypted in such a way that they cannot be accessed without a special decryption key. This key is held only by the perpetrators of the ransomware, who will release the key only on payment of a ransom, often in anonymous cryptocurrencies like Bitcoin.
19
Jan

Passwords – Size Really Does Matter

  • Ray Williams

  • General

63% of data breaches in Verizon’s Data Breach Investigation[1] were the result of bad password practice. This report analysed a dataset covering more than 100,000 incidents across 82 countries in industries ranging from finance to mining. The frustrating thing about this statistic is that, even in our fast-paced world of rapidly expanding technological progress, the methods employed by most hackers...
18
Oct

Post Yahoo Hack – How can you defend your company?

  • Richard East

  • General

Newsrooms around the world are finally coming to terms with the latest big hack, Yahoo, where a staggering 500 million accounts were compromised. If we simplify and assume each account was to registered to an individual then it is valid to state that this hack affected 11% of the Earth’s internet users.
21
Sep

Metrics - Be Clever, Tread Carefully

  • Richard East

  • General

In any professional project it is necessary to outline the way in which we assess both failure and success. Selecting a series of metrics provides an easily quantifiable method to carry out this assessment. The advantages of this are obvious, a solid metric reduces the complexity of the task...
01
Sep

Information security awareness - not enough

  • Richard East

  • General

It is a fact, universally acknowledged in the industry, that modern information security must turn its focus to the employees themselves to fully secure a business. Admittedly, some work has been done here – as of 2015, 72% of large organizations provided ongoing awareness training as did 63%[1] of small businesses – certainly there is room for improvement but the area is gaining traction.

Notes to Editors

Hut Six is an information security company that specialises in cloud-based information security awareness training.

We believe that unmeasured or untested training is a wasted investment. To combat this, our training is comprised of interactive tutorials and real world scenarios that measure staff improvements and provide insight into areas of vulnerability across your organisation.