Safe Harbor Review Means Business as Usual – For Now
September was a watershed month for companies in Europe wanting to share data with the US. The General Court of the European Union rejected a chall...
Category: Data Privacy
Will the Grok Breach Create GenAI Security Concerns?
A recent incident has raised concerns about how data is handled by GenAI tools. Is it time to ensure that your data doesn’t end up in their L...
As Optus Is Sued, What Went Wrong and What Lessons Can We Learn?
The wheels of justice move slowly sometimes. So it is in Australia, where the privacy regulator has finally filed civil penalty proceedings against...
Everything You Need to Know About the Data Use and Access Bill
The UK’s new Data Use and Access Bill (DUAA) received Royal Assent on 19 June 2025, marking a refresh to the country’s data protection ...
EU AI Act: The New Content Training Summary Template for GPAI Providers
What is the Content Training Summary Template? The European Commission recently released an explanatory notice and template to help providers of g...
If They Can Hit A Nuclear Agency, They Can Breach You: What the SharePoint Exploit Means For Your Business
The SharePoint exploit was used on high-profile victims including the US National Nuclear Security Administration, the Department of Homeland Secur...
Qantas Data Breach: Why Vendor Oversight Must Be a Compliance Priority
A recent Qantas data breach compromising the personal information of 5.7 million customers has highlighted the ongoing cybersecurity risk that thir...
British Companies Are Losing the Fight Against Ransomware: What Gives?
Just before the Easter bank holiday weekend, Marks & Spencer was plunged into one of the worst ransomware breaches the country has seen in rece...
Unlock Enhanced Privacy with the Windows 11 Upgrade
Support for Windows 10 officially ends on October 14th. As the end-of-life deadline draws nearer, organisations that haven’t already made the switc...
Everything You Need to Know About Phishing
Phishing remains among the most common cyberattacks used by threat actors. Most businesses have seen it in action: emails requesting an ‘urgent tas...
When a Cyber Attack Empties the Shelves: What to Do About Supply Chain Attacks
Consumers often see most cyber attacks as something that happens to other people, until it affects them directly. The theft of email addresses and ...
Cyber Incidents Are Testing the Resilience of Global Airlines
The next time you slowly amble down an aeroplane aisle, spare a thought for the incredible work that got you there, from aviation engineering throu...
How Nation-State Attacks are Shaping Cybersecurity
You might be able to defend yourself against attacks from hacktivists and even from organized criminal groups. But good luck chancing your arm agai...
Leadership Strategies for Balancing Security Workloads and Compliance Success
The pressure on today’s security and compliance teams is relentless. With escalating regulatory demands, evolving cyber threats, and constrai...
Verizon’s DBIR 2025 Versus Your Board: What They’re Missing
CISOs are increasingly invited to board meetings. A Splunk survey from January found that 83% participate somewhat often or most of the time, while...
Retail Under Fire: Would You Spot a Breach If It Happened Right Now?
Retailers and their suppliers are having a tough time in the UK right now. A string of major security breaches tied to ransomware actors has left s...
How To Tame Shadow AI
Remember shadow IT? It has a disruptive new sibling: shadow AI. As employees warm to the time-saving capabilities of generative AI models, theyR...
Future-Proofing Privacy Compliance: Strategies to Adapt to a Changing Landscape
More than five years after the EU General Data Protection Regulation (GDPR) came into force, the global privacy regulatory landscape is still evolv...
Cybersecurity and Privacy: NIST’s Framework Given Facelift
NIST recently announced plans to refresh its privacy framework and make it more of an organic offering and less static. Does this benefit practitio...
Learning from Oracle: What Not to Do After a Data Breach
The first half of this year has not been a happy one for Oracle or its customers. The company has suffered from two serious data breaches. This is ...
The Cyber Security and Resilience Bill: What You Need to Know
The road to cyber resilience for UK critical infrastructure (CNI) has been a long and winding one. The government’s NIS Regulations 2018 is w...
What CISA’s Cuts Mean for U.S. Cybersecurity, And How Organizations Can Adapt
The US government’s Cybersecurity and Infrastructure Security Agency (CISA) might not have been first on the chopping block when the Trump ad...
The Line Between Nation States and Cybercrime Is Blurring: That’s Bad News for CISOs
Everyone’s feeling more worried about geopolitical risk these days. That’s due largely to the chaos engulfing Washington, although glob...
