Over recent months and years, ransomware groups have been evolving their tactics. Three trends stand out: 1. Gangs are becoming more organised Ransomware groups are becoming far more organised – a trend started by LockBit – with gangs even conducting …
On 21 September, the PCI SSC (Payment Card Industry Security Standards Council) released a new PCI DSS (PCI Data Security Standard) self-assessment questionnaire: SAQ SPoC. Here’s what you need to know. What is SPoC? SPoC stands for ‘software-based PIN entry …
Enacted as part of DORA (the EU Digital Operational Resilience Act), the DORA Regulation (Regulation (EU) 2022/2554 on digital operational resilience for the financial sector) sets out cyber security and business continuity requirements for financial organisations and their third-party ICT (information …
A DORA Regulation overview – part 1: the cyber landscape and risk management Interviewer introduction I’ve been looking at the public data set on the ICO website , digging into the numbers. I wanted to find out whether the financial …
According to our research, the three biggest European data breaches to be publicly disclosed in October were: 1. Motel One suffers ALPHV/BlackCat ransomware attack The German hotel group Motel One – one of the biggest hotel chains in Europe – …
In today’s complex digital landscape, protecting your organisation and the data it processes is critical – both from an operational and a regulatory point of view. However, if you operate in multiple jurisdictions and are bound by various data protection …
In this blog, we look at some of the latest GDPR (General Data Protection Regulation) stories that have made the headlines recently. Address trader sues data protection authority The German address trader Acxiom has requested an interim injunction against the …
The independent fact-checking organisation Full Fact has issued a warning about online scams after deepfake videos apparently showing Elon Musk promoting an investment project on the BBC were found to be circulating on Facebook. Deepfakes are a type of synthetic …
Intrusive advertising is the bane of most users’ experiences of social media, but it has always seemed a necessary evil, the price you must pay to use many platforms. However, this might soon be coming to an end – albeit …
Welcome to our September 2023 review of cyber attacks and data breaches, in which we look at some of the most newsworthy security incidents across Europe. On the face of it, September was a quiet month in terms of cyber …