Earlier this month, EasyJet reported a major security breach of their systems where the names, email addresses and travel details of approximately 9 million customers were accessed. More than 2,000 customers’ credit card details were also compromised. The breach was reported to the National Cyber Security Centre and the Information Commissioner’s Office (ICO). A law… Read More »
The COVID-19 lockdown forced large numbers to work from home. If your organisation is one them, you should have a policy and a process in place to make sure that home workers can carry on doing their job securely. Even if a home worker has a work provided laptop or other IT equipment, it will… Read More »
Advanced Persistent Threat (APT) groups and cyber criminals are looking to exploit the circumstances around the COVID-19 crisis. In particular, there has been a significant rise of scams pretending to be legitimate requests from official HM Government departments, targetting individuals and businesses. The aim is usually to obtain sensitive exploitable information such as logins, bank… Read More »
“I have a complex password so there is nothing to fear!” – Not so, if the website you access does not handle passwords with sufficient security so that they can be recovered when the website gets hacked. The so called Collection #1 contains over 773 million login credentials (usually email addresses and passwords) and yours… Read More »
Smaller organisations are often more vulnerable to the insider threat compared to larger ones. Inadequate or absent policies for protecting sensitive data and infrastructure, blurred lines of responsibility for information security and informal attitude to dealing with credentials such as administrative logins are some of the most common causes. The damage that can be caused… Read More »
Despite the fact that nearly 20% of all British SMBs were affected by a cyber attack in the past year, only 29% will be spending more than £1,000 on cyber security in the next 12 months. This is inadequate for all but the smallest of organisations, especially in view of the potential cost of a… Read More »
In a US study by Experian and Ponemon Institute earlier this year, 55% of the polled companies experienced a security incident due to a malicious or negligent employee despite already having a a data protection and privacy training program in place. 60% of respondents believed that their employees were not knowledgeable or had no knowledge… Read More »
An article in the Bournemouth Echo reports that the cost of fraud and cyber crime in Dorset was £8 million in the year ending June 2016. The data was sourced from the national statistics reported by Get Safe Online and the National Fraud Intelligence Bureau released on 20 October 2016. The statistics only include the crime… Read More »
According to the latest research by Barclaycard, UK’s SMEs are failing to protect themselves from the growing threat of cyber crime. The research found that 48% of the surveyed businesses suffered at least one cyber attack in the past year and 10% experienced more than 4 attacks in the same period. Only 13% of the… Read More »
The 5th of May is the World Password Day – a promotion of good password security organised by Intel and sponsored by many other IT industry heavyweights. If you are a manager, director or owner of a small business, you could do a lot worse than going to the website of World Password Day and… Read More »