Luke Irwin Archive
The ISO 27001 Standard describes best practice for an ISMS and explains the requirements you need to meet, but it doesn’t show you how to implement them. In this blog, we explain in nine steps exactly what you need to …
We’ve come a long way since the panic and scepticism that accompanied the introduction of the GDPR (General Data Protection Regulation). Several high-profile fines and the continued warnings from regulators have led to a sharp uptick in the number of …
Those eager to get their hands on a PlayStation 5 are being warned about a fraudulent promotion that steals people’s sensitive data. Researchers at Kaspersky spotted the bogus email, which offers recipients the chance to win a console if they …
In March, we found 151 publicly disclosed data breaches and cyber attacks, making it by far the leakiest month we’ve recorded. By comparison, there were just 82 incidents in January and 118 in February. You can find the full list …
The GDPR (General Data Protection Regulation) is a complex piece of legislation that’s understandably hard to grasp. For those looking for advice on how to comply, we’ve provided a summary of the key GDPR requirements in this blog. 1. Lawful, …
There’s a lot to consider when starting your own business – and with almost all your resources focused on recouping your investment, it’s understandable that you might not consider information security a top priority. You might reason that spending money …
As the threat of ransomware has grown, more organisations have come to understand the importance of backups. Unfortunately, that hasn’t gone unnoticed by cyber criminals, who have responded by developing ransomware strains that seek out backups in addition to the …
Microsoft users are being warned about a phishing email that steals Office 365 login credentials. The scams are distinctive in that they contain a fake Google reCAPTCHA to create an added layer of legitimacy. A reCAPTCHA is a security mechanism …
The information security industry is full of jargon, but luckily most terms only crop up when you’re dealing with specific, technical topics. However, there’s one common but surprisingly complex phrase that often appears without further explanation: ‘cyber security incident’. You might assume it’s simply a euphemism for organisations that don’t want to say ‘we’ve suffered a data breach’. That’s kind of true, but it’s also a …
Cyber security threats are arguably the most significant dangers organisations face – but as we explain in this blog, the problem is worse for some sectors than others. After our sister company reviewed more than 1,000 publicly disclosed security incidents …
