What Lessons Can We Learn from Recent GDPR Fines?

Since the GDPR was introduced in May 2018, the EU’s supervisory authorities have issued over €370 million in fines, although some of these fines are still pending. British Airways has been issued a record fine amounting to £183m (approximately 1.5% of global annual turnover) in relation to a data breach that was first disclosed on 6 September 2018. The breach resulted in the exposure of … [Read more...]

US Authorities Are Still Falling Victim to Ransomware Attacks

Ransomware attacks on both national and local authorities are on the rise, according to a recent report by Recorded Future. During the first quarter of 2019, there have been 21 reported attacks on Government agencies in the US – a number that is likely to rise as not all ransomware attacks are reported immediately. Only yesterday, Texas suffered a ransomware attack which affected 22 cities … [Read more...]

Six Office 365 Best Practices for Better Security

If you’re a small business or even an enterprise organization using Office 365, cyber-criminals, hackers and opportunist insiders could be targeting potential weaknesses in your security right now. To combat these threats, we’ve put together this list of six best practices to help you improve the security of your Office 365 environment. The best practices in this blog will primarily focus on … [Read more...]

Using Deception to Fight Cyber-Crime

Deception technologies, often referred to as Decoys, Honeypots, and Red Herrings, are assets that have been specifically setup to attract, deceive and discourage cyber-criminals. Such assets may include anything from servers, files, databases, applications, emails, user accounts, unused IP addresses, and so on. When these assets are accessed in some way, a real-time alert is sent to the … [Read more...]

What Steps Can UK Universities Take to Prevent a Data Breach?

Cyber-attacks on UK universities are on the rise, which shouldn’t come as a surprise to anyone. Universities hold vast amounts of sensitive data, and like most Government funded institutions, typically operate on a limited budget. A university may hold thousands of student records, with each record containing a wealth of Personally Identifiable Information (PII), such as names, ages, … [Read more...]

Why You Should Consider Sharing the Results of Your Security Audit with Your Employees

According to a recent survey by Syncsort, there are inconsistencies relating to how confident companies are about the strength of their cyber-security posture, and how well they actually fare when it comes to protecting their systems and data. 85% of the respondents expressed confidence in their ability to stave off cyber-security threats, while 41% admitted to suffering a security breach. … [Read more...]

Why CISOs and Lawyers Need to Work Together for GDPR Implementation

Despite the GDPR being over a year old, there still exists a gap between legal and technical that makes guidance more difficult to craft and implement. Despite the fact that the General Data Protection Regulation being probably the most famous compliance regulation in the world, many organizations are still struggling fully understand what’s required of them. An honest and frank look at the way … [Read more...]

Protecting Cities from Ransomware Attacks

Over the last 12 months, we have seen a large number of cities in the USA become the victim of sophisticated ransomware attacks, including New York, Washington, Atlanta, Maryland and more. Baltimore, the most recent victim in this wave of ransomware attacks, experienced their second attack in the last 12 months. Thousands of computers in Baltimore’s city government were completely frozen on the … [Read more...]

Universities Need to Do More to Protect Their Sensitive Data

A recent study carried out by VMware and Dell EMC, has confirmed that UK universities are struggling to keep their sensitive data safe. The study, which was conducted between November and December 2018, included 75 senior IT leaders at 68 universities. 49% of universities said that a cyber-attack is attempted on their institution daily or more than once a week, with 49% stating that their overall … [Read more...]

What is Group Policy (GPO) and What Role Does It Play in Data Security

First things first, what is Group Policy? Group Policy is a feature of Windows that facilitates a wide variety of advanced settings that network administrators can use to control the working environment of users and computer accounts in Active Directory. It essentially provides a centralized place for administrators to manage and configure operating systems, applications and users’ settings. Group … [Read more...]