ISMS.online Blog

Compliance Matters

Keeping you up-to-date on the world of information security and compliance.

Cyber security 23 August 2024

Summer Reads: ISMS.online’s Top 5 Most Read Blogs of 2024

2024 has been a significant year for developments in security standards and regulations. The EU Artificial Intelligence (AI) Act came into force on...

Christie Rae

Data Privacy 22 August 2024

Businesses Urged to Track ‘Fast-Evolving’ AI Regulations

Artificial Intelligence (AI) is transforming the information technology sector at a dizzying rate. AI has transformed applications, including data ...

John Leyden

Data Privacy 20 August 2024

The ICO is Reviewing its Approach to Public Sector Fines: What Should it Decide?

Data breach fines are on the rise. According to the ISMS.online State of Information Security Report 2024, the average fine amount responding busin...

Phil Muncaster

Cyber security 15 August 2024

The Chevron Deference is Dead. Now What?

This summer saw the end of a 40-year legal doctrine that promises to have significant ramifications for cybersecurity—and many other sectors. What ...

Danny Bradbury

Cyber security 14 August 2024

Information Security Management in ISO 27001: Your People Are Your Power

It’s widely accepted that information security management is a responsibility that spans entire businesses. It falls not to a sole informatio...

Christie Rae

Cyber security 13 August 2024

The CrowdStrike Outage: A Case for Reinforcing Incident Response with ISO 27001

In July 2024, a botched software update by CrowdStrike led to a significant global IT outage, affecting numerous organisations, including airlines,...

Rene Millman

Data Privacy 8 August 2024

Is Negotiation Your Best Strategy When It Comes To Ransomware?

Rather than just paying a fee to get out of a ransomware predicament, could you negotiate your way out with the proper steps and skills? Dan Raywoo...

Dan Raywood

Cyber security 7 August 2024

How Much Does Cybercrime Really Cost UK Businesses?

Cybercrime poses an ongoing threat to UK businesses. With many organisations reliant on a digital supply chain and using cloud-based platforms to s...

Christie Rae

Cyber security 6 August 2024

What Are Infostealers and Why Should My Business Be Concerned?

In June this year, a mass extortion campaign against customers of data cloud specialist Snowflake was discovered. According to reports, victims wer...

Phil Muncaster

Cyber security 1 August 2024

From RSA to SolarWinds: Lessons Learned from a Decade of Supply Chain Breaches

Over the past decade, supply chain attacks have become one of the leading causes of breaches. Connections into a network bring exploitable vulnerab...

Dan Raywood

Cyber security 30 July 2024

dora how businesses can prepare for the implementation

How Businesses Can Prepare For The Implementation of DORA

Financial institutions and IT service providers have just six months to comply with the European Union’s Digital Operational Resilience Act (...

Nicholas Fearn

Certification 25 July 2024

Unlock Your Competitive Advantage with ISO 27001

Businesses can access more sensitive customer data than ever. Consequently, they must take appropriate steps to protect that information or risk fi...

Christie Rae

Cyber security 24 July 2024

Essential Cybersecurity and Data Privacy Takeaways from the King’s Speech

King Charles III’s speech at the opening of the UK Parliament last week outlined critical legislative measures the new government intends to ...

Rebecca Harper

Cyber security 23 July 2024

Federal Government Moves to Shore Up Critical National Security

The Colonial Pipeline attack in 2021 was a turning point for critical infrastructure in the U.S. When a ransomware attack on a pipeline operator...

Danny Bradbury

Cyber security 18 July 2024

As NIS2 Approaches, How Can Organisations Mitigate Life-Threatening Cyber-Attacks?

NIS2 will be transposed into law across all EU member states in three months. It mandates enhanced baseline security, incident response, supply cha...

Phil Muncaster

Cyber security 16 July 2024

Avoiding the Next MediSecure: Cybersecurity Lessons for Businesses

The MediSecure cybersecurity catastrophe serves as a stark wake-up call for businesses: neglect digital defences at your peril or risk becoming the...

Rene Millman

Cyber security 11 July 2024

CMMC Explained: Unpacking the U.S. Defense Community’s New Cybersecurity Goals

Cybersecurity has become a critical concern in the defence industry, with increasing threats targeting sensitive information and critical infrastru...

Danny Bradbury

« Prev
1
…
9
10
11
12
13
…
26
Next »