The Framework Convention on AI is Coming: What Does it Mean for Your Organisation?
The speed at which AI innovation is moving has caught many by surprise. In some countries, lawmakers are struggling to keep up, oscillating between...
Author: Phil Muncaster
When Ransomware Strikes at Night, How Can Your Organisation Stay Safe?
Ransomware is the cybersecurity story of the past decade. But over that time, adversary tactics, techniques, and procedures (TTPs) have continued t...
Why Higher Education Needs to Build IT as Well as Cyber Resilience
As guardians of highly sensitive personal information and world-class research, the UK’s higher education (HE) institutions are popular targe...
Why Managers Matter to Cybersecurity
Managers play a unique role in their organisation—solving problems, managing risk and interfacing between senior leadership and rank-and-file emplo...
What’s in a Breach? How to Minimise Incidents and Costs
As elsewhere, data breach costs in the UK continue to rise. The latest (19th) edition of the IBM Cost of a Data Breach report puts the figure at $4...
The CocoaPods Saga: Has Open Source Broken Apple’s Security Model?
Open-source dependencies have become a growing source of risk for organisations of all shapes and sizes. Log4j, xz Utils and other high-profile sto...
The ICO is Reviewing its Approach to Public Sector Fines: What Should it Decide?
Data breach fines are on the rise. According to the ISMS.online State of Information Security Report 2024, the average fine amount responding busin...
What Are Infostealers and Why Should My Business Be Concerned?
In June this year, a mass extortion campaign against customers of data cloud specialist Snowflake was discovered. According to reports, victims wer...
As NIS2 Approaches, How Can Organisations Mitigate Life-Threatening Cyber-Attacks?
NIS2 will be transposed into law across all EU member states in three months. It mandates enhanced baseline security, incident response, supply cha...
Trends in Security and Compliance: Five Takeaways From Infosecurity Europe 2024
Every year, the cybersecurity industry comes together at Europe’s largest industry event: Infosecurity Europe. The scale of the show—at Londo...
Half-Year Review: The Key Security and Compliance Challenges of 2024 So Far
In April, the government told us that half of UK businesses had suffered a breach over the previous 12 months, rising to even higher for medium (70...
The UK’s Universities Are Under Attack: Here’s How They Respond
The UK’s universities are being assailed from all sides. A report last year revealed that dozens of institutions had accepted at least £122m-156m f...
How a New Model for Mobile Security Could Benefit High-Risk Firms
There’s more computing power in a single smartphone today than was available to mission control during the Apollo 11 moon landing. That’s the kind ...
What the Latest Verizon Data Breach Report Tells Us About the Threat Landscape
Industry trends come and go. but one staple of the cybersecurity landscape over the past 17 years has been the Verizon Data Breach Investigations R...
Here’s Everything That’s Wrong with Cybersecurity in the UK Today
For a useful annual snapshot into the security posture of UK businesses, look no further than the government’s Cyber security breaches survey. It p...
How Financial Services Firms Should Respond to an IMF Cyber-Threat Warning
Financial services organisations have long been a target for threat actors. Whether they’re financially motivated groups looking for customers’ per...
What Security Teams Can Learn from the xz Utils Attack
On Good Friday, Microsoft developer Andres Freund dropped an Easter bombshell. Whilst troubleshooting some innocuous-looking performance issues on ...
How Could a New Digital Trust Framework Help Your Business?
Digital trust is the foundation on which modern organisations are built. It could be trust between employee and employer, between one organisation ...
The Cost of Insider Threats is Exploding: Here’s How to Manage Them
There’s a growing problem at the heart of enterprise cybersecurity posture. It’s not shadowy cyber-criminals or state-backed hacktivists. It’s not ...
Perimeter-Based Attacks Are Making a Comeback: Here’s How to Stay Safe
We’re used to hearing how the traditional network perimeter is dead. That the advent of cloud apps, home working and ubiquitous mobile devices has ...
How Will the EU’s First Cybersecurity Certification Scheme Impact Your Business?
In the digital world, trust is hard won and easily lost. Part of the reason for this is the lack of a universally understood and credible security ...
What Does the UK Government’s Cyber-Governance Code of Practice Mean for Your Business?
There was a time when cybersecurity was very much viewed as a technology function. No longer. Governments and regulators across the globe are incre...
Compliance Professionals Are Stretched Too Thin: Here’s What Needs to Change
Privacy and data protection were catapulted into mainstream consciousness with the advent of the GDPR in 2018. Since then, consumers have demanded ...
