Author Archives: andrej

Breach may cost EasyJet £18billion

Earlier this month, EasyJet reported a major security breach of their systems where the names, email addresses and travel details of approximately 9 million customers were accessed. More than 2,000 customers’ credit card details were also compromised. The breach was reported to the National Cyber Security Centre and the Information Commissioner’s Office (ICO). A law… Read More: Breach may cost EasyJet £18billion »

COVID-19 related scams are becoming rife

Advanced Persistent Threat (APT) groups and cyber criminals are looking to exploit the circumstances around the COVID-19 crisis. In particular, there has been a significant rise of scams pretending to be legitimate requests from official HM Government departments, targetting individuals and businesses. The aim is usually to obtain sensitive exploitable information such as logins, bank… Read More: COVID-19 related scams are becoming rife »

Collection #1 – just the first of massive email/password breaches

“I have a complex password so there is nothing to fear!” – Not so, if the website you access does not handle passwords with sufficient security so that they can be recovered when the website gets hacked. The so called Collection #1 contains over 773 million login credentials (usually email addresses and passwords) and yours… Read More: Collection #1 – just the first of massive email/password breaches »

Insider threat – are you taking it seriously?

Smaller organisations are often more vulnerable to the insider threat compared to larger ones. Inadequate or absent policies for protecting sensitive data and infrastructure, blurred lines of responsibility for information security and informal attitude to dealing with credentials such as administrative logins are some of the most common causes. The damage that can be caused… Read More: Insider threat – are you taking it seriously? »

Workforce cyber-awareness training mostly ineffective

In a US study by Experian and Ponemon Institute earlier this year, 55% of the polled companies experienced a security incident due to a malicious or negligent employee despite already having a a data protection and privacy training program in place. 60% of respondents believed that their employees were not knowledgeable or had no knowledge… Read More: Workforce cyber-awareness training mostly ineffective »

SMEs are still not taking cyber threats seriously

According to the latest research by Barclaycard, UK’s SMEs are failing to protect themselves from the growing threat of cyber crime. The research found that 48% of the surveyed businesses suffered at least one cyber attack in the past year and 10% experienced more than 4 attacks in the same period. Only 13% of the… Read More: SMEs are still not taking cyber threats seriously »