Will the UK’s AI Growth Plans Also “Mainline” Cyber Threats?
The UK has, for over a decade, been an economic underachiever. Since the financial crisis of 2008-9, productivity has barely risen, increasing the ...
Author: Phil Muncaster
The UK’s CNI Providers Are Struggling: 2025 Will Be a Critical Year for Cyber
The UK’s critical national infrastructure (CNI) is named so for a reason. However, the large volumes of sensitive data that providers store, their ...
The EU Cyber Solidarity Act Is Coming: Here’s What it Means
The EU is not short on cybersecurity legislation. Over the past year, it has introduced laws covering smart devices, AI safety, financial services,...
Securing Open Source in 2025 and Beyond: A Roadmap for Progress
It’s been over three years since Log4Shell, a critical vulnerability in a little-known open-source library, was discovered. With a CVSS score...
Five Cybersecurity and Compliance Trends to Watch in 2025
The past 12 months have once again taught us that while technology continues to advance at sometimes blinding speed, many of the macro trends in se...
A Year in Compliance: Five Key Trends from 2024
It’s been another year full of incidents for security and compliance teams. Buffeted by ransomware attacks, supply chain and open source threats, i...
Quantum Is Coming: Here’s What the Data Protection Regulator Says
A new technological development is coming in the ongoing arms race between network defenders and their adversaries, which could dramatically disrup...
How to Comply with the New EU Cyber Resilience Act
UK regulation rarely steals a march on the EU. Yet that is precisely what happened in April 2024 when the UK’s Product Security and Telecommu...
Routers Under Attack: How Companies Can Protect Their Gateway to the Internet
Modems and routers aren’t the most glamorous of connected technologies. In fact, their ubiquity means that most organisations forget theyR...
What You Need to Know About the New Australia Cyber Security Act
The digital world is an increasingly dangerous place for Australian organisations. A string of high-profile data breaches and ransomware attacks ov...
Initial Access Brokers: The Indispensable Link in the Cybercrime Supply Chain
This year is on track to be a record-breaker for ransomware groups. Blockchain analysis reveals that “inflows” to cryptocurrency addresses associat...
The Framework Convention on AI is Coming: What Does it Mean for Your Organisation?
The speed at which AI innovation is moving has caught many by surprise. In some countries, lawmakers are struggling to keep up, oscillating between...
When Ransomware Strikes at Night, How Can Your Organisation Stay Safe?
Ransomware is the cybersecurity story of the past decade. But over that time, adversary tactics, techniques, and procedures (TTPs) have continued t...
Why Higher Education Needs to Build IT as Well as Cyber Resilience
As guardians of highly sensitive personal information and world-class research, the UK’s higher education (HE) institutions are popular targe...
Why Managers Matter to Cybersecurity
Managers play a unique role in their organisation—solving problems, managing risk and interfacing between senior leadership and rank-and-file emplo...
What’s in a Breach? How to Minimise Incidents and Costs
As elsewhere, data breach costs in the UK continue to rise. The latest (19th) edition of the IBM Cost of a Data Breach report puts the figure at $4...
The CocoaPods Saga: Has Open Source Broken Apple’s Security Model?
Open-source dependencies have become a growing source of risk for organisations of all shapes and sizes. Log4j, xz Utils and other high-profile sto...
The ICO is Reviewing its Approach to Public Sector Fines: What Should it Decide?
Data breach fines are on the rise. According to the ISMS.online State of Information Security Report 2024, the average fine amount responding busin...
What Are Infostealers and Why Should My Business Be Concerned?
In June this year, a mass extortion campaign against customers of data cloud specialist Snowflake was discovered. According to reports, victims wer...
As NIS2 Approaches, How Can Organisations Mitigate Life-Threatening Cyber-Attacks?
NIS2 will be transposed into law across all EU member states in three months. It mandates enhanced baseline security, incident response, supply cha...
Trends in Security and Compliance: Five Takeaways From Infosecurity Europe 2024
Every year, the cybersecurity industry comes together at Europe’s largest industry event: Infosecurity Europe. The scale of the show—at Londo...
Half-Year Review: The Key Security and Compliance Challenges of 2024 So Far
In April, the government told us that half of UK businesses had suffered a breach over the previous 12 months, rising to even higher for medium (70...
The UK’s Universities Are Under Attack: Here’s How They Respond
The UK’s universities are being assailed from all sides. A report last year revealed that dozens of institutions had accepted at least £122m-156m f...
