Why Red Teaming is Critical for Cybersecurity: Lessons Learned from Real-World Attack Simulations
Organisations have a continuing problem in a world where technology is everywhere, changing our lives and interactions; updating their defences against bad actors who exploit the ever-evolving tech ecosystem. To fully realise the potential of the digital age, cybersecurity must be integrated into every aspect of modern life. Cybersecurity, rather than being a separate notion, […]
TikTok Banned on UK Government Phones
TikTok, the social media app that took the world by storm with its addictive short-form videos, has been in the news lately for all the wrong reasons. The app, which is owned by Chinese company ByteDance, has been accused of compromising user privacy and security by collecting and sharing data without users’ knowledge or consent. […]
WFH or returning to the office – one clear requirement
WFH OR RETURN TO THE OFFICE – ONE CLEAR REQUIREMENT The pandemic has caused a huge shift in the way we work. But as the UK continues to lift its Covid measures, whether your staff remain at home, come back to a desk-bound role, or mix and match dependent on need, space and […]
Redundant QSAs: Working Smart, Side-Stepping the Rabbit Hole & Streamlining
Are your QSAs wasting your time (and money)? Your QSA shouldn’t just be ensuring you are PCI DSS compliant. They should be side-stepping the potential rabbit hole, creating a value-added service, and making their roles (sort of) redundant. The result? Control reduction (does 240 to 21 sound acceptable?) The benefit? You save money, time and […]
We (nearly) got Phished: How Staff Complacency & Misconceptions are your BIGGEST Threat
Don’t be fooled – long gone are the days where phishing scams were clumsy, clunky, and oddly written, suggesting that you transfer money or claim your free prize. Now, the oh-so-sophisticated scams make us feel safe and looked after. They often gently request an update of information and, seemingly, nothing more. However, we are still […]
Recruit-A-Criminal!
We’re currently recruiting within the business, it’s a positive sign, it means that we are growing and able to take on even more clients. We’re hoping that the new recruit will add a new dimension to us by introducing their own thoughts and experiences. This is what we hope. Hope. I hate “hope”. Hope isn’t […]
Cyber Criminals, Furlough and the PCI DSS
The UK went into lockdown on March 23rd 2020 and the government introduced to us a new word “furlough”. Of course, 99.9% of us had never heard of this before but many welcomed the fact that they would be able to sit at home on 80% of their wage. It was also on this momentous day that the wizened old man, Woodstradamus, made his prediction that cyber criminals wouldn’t be furloughed and they would carry on doing what they do. Only it wasn’t that bold of a prediction, it was actually like betting on the Harlem
1984 or Greater Good?
I’m not going to use the “U” word. I refuse to. It’s already overused so I’ll go with: we are in exceptional times and, after 7 weeks, I guess, we’re all at a point where we’d all like to get back to how things were as quickly as possible. A Pipe dream, perhaps. To proceed and work […]
Keep Safe
Many of us are having home working thrust upon us due to the pandemic which has led to changes for everybody. This means more pressure upon an already creaking IT department which means that security is not featured as poignantly on the to do list as it usually is. Unfortunately, cyber criminals and opportunists are […]
United We Stand, Divided We Fall
Tonight’s one of those nights where I’m burning the candle at both ends but before I sign off and hit the hay, I’ve had the thought “who will get breached tonight?”. Let’s be honest, there’s always somebody and when it’s a high-profile case the jungle drums start beating and platforms such as LinkedIn are awash […]