As part of your ISO 27001 certification project, your organisation will need to prove its compliance with appropriate documentation. ISO 27001 says that you must document your information security risk assessment process. Key elements of the ISO 27001 risk assessment …
Cyber security awareness training is one of the most important steps an organisation can take to protect its systems. Sure, you need anti-malware tech and firewalls to prevent cyber attacks, and you definitely need to back up sensitive files in …
It’s easy to find advice online about how to spot phishing scams, but do you know how they work in the real world? Our ‘catches of the month’ feature provides examples of recent phishing scams, showing you the latest tactics …
The Labour Party’s campaign website has suffered a “sophisticated and large-scale” cyber attack, a spokesperson has said. Security procedures had “slowed down” some election campaign activities, but the party believes that no sensitive data was compromised. The incident has nonetheless …
All organisations need help complying with the GDPR (General Data Protection Regulation). You might not be able to bring in expert consultants, but there are software packages to help with the majority of your compliance requirements, from risk assessments to …
Throughout October, cyber security experts have been helping Europeans understand the importance of effective information security practices as part of Cyber Security Month. The campaign may be drawing to a close, but there is still plenty you can do to …
In a month where security experts across Europe were boosting awareness of cyber security, organisations had mixed results in their own data protection practices. On the one hand, the 421,103,896 data records that were confirmed to have been breached in …
Cyber security training is one of the most effective ways of improving your organisation’s defences against security incidents. It gives staff the wherewithal to avoid costly mistakes and establishes a strong cyber security culture in the office. Yet, according to …
One of cyber criminals’ favourite ways of hacking organisations is through brute-force or ‘password spraying’ attacks, which bombard targets with login attempts using lists of common passwords.. It’s so much easier to access a site or service using someone’s login …
If your organisation didn’t suffer a data breach last year, consider yourself one of the lucky few. The insurance firm Hiscox found that 61% of organisations were compromised in the past 12 months. This represents a 16-percentage-point increase over the …
