Last Friday, Facebook announced that it has uncovered a bug that may have affect up to 6.8 million of its members. This bug gave third-party apps access to more users’ photos than they originally thought. The bug was found in software that used Facebook’s login to grant third-party apps access to a user’s photos on the platform. This bug was active for 12 days between 13 and 25 … [Read more...]
Ireland and the Network and Information Systems Directive
Minister Denis Naughten, has announced important new security requirements for critical national infrastructure in Ireland. Denis Naughten, Minister for Communications, Climate Action and Environment, spoke at the Data Summit on September 19th and announced important new national cybersecurity requirements. These requirements will apply to the network and information systems of critical national … [Read more...]
Free webinar: First steps to GDPR compliance
The GDPR (General Data Protection Regulation) has significantly reshaped the data protection landscape for organisations worldwide that collect and process EU residents’ personal data. The Regulation imposes fines of up to 4% of annual global turnover or €20 million (whichever is greater) for non-compliance. Data breaches are on the rise and affecting Irish organisations such as Eir, which … [Read more...]
The right penetration test for your organisation
Cyber attacks are easy to conduct. Botnets can be hired cheaply, hacking software is readily available, and even those without technical or practical knowledge can purchase attacks as a service. For the organisations that are hit, however, it’s a different story. Their systems can be crippled by attacks and they can face large fines and long-term reputational damage. Since the introduction of the … [Read more...]
5 steps to an effective ISO 27001 risk assessment
Risk assessments are one of the most important parts of an organisation’s ISO 27001 compliance project. It’s impossible to put expensive and time-consuming measures in place for every risk that you might face, so you should use the assessment stage to gauge your biggest priorities and allocate resources responsibly. Performing a risk assessment can be tricky, but this blog simplifies the process … [Read more...]
37,000 Eir customers affected by data breach
Eir, one of Ireland’s leading telecoms companies, announced last week that personal details of up to 37,000 customers were affected by a data breach. The company said that an unencrypted laptop was stolen on 12 August, containing customer and employee personal details, including names, email addresses and customer numbers. No financial details had been breached. According to Eir, the theft … [Read more...]
Final call: register for our upcoming webinar ‘How to implement an information security management system’
Increasingly stringent data security laws and regulations in Ireland and the rest of Europe – combined with a rapidly evolving cyber threat landscape – call for stronger, smarter and more robust data security solutions. Security teams are constantly challenged to protect the information their organisation holds and comply with a growing list of regulations requiring information security measures … [Read more...]
ISO 27001 Webinar – How to implement an ISMS
ISO/IEC 27001 certification demonstrates to existing and potential customers that an organisation has identified and implemented best-practice information security processes. ISO 27001 is the only auditable international standard that defines the requirements of an ISMS (information security management system). An information security management system (ISMS) is a set of policies, procedures and … [Read more...]