Here’s Everything That’s Wrong with Cybersecurity in the UK Today
For a useful annual snapshot into the security posture of UK businesses, look no further than the government’s Cyber security breaches survey. It p...
Author: Phil Muncaster
How Financial Services Firms Should Respond to an IMF Cyber-Threat Warning
Financial services organisations have long been a target for threat actors. Whether they’re financially motivated groups looking for customers’ per...
What Security Teams Can Learn from the xz Utils Attack
On Good Friday, Microsoft developer Andres Freund dropped an Easter bombshell. Whilst troubleshooting some innocuous-looking performance issues on ...
How Could a New Digital Trust Framework Help Your Business?
Digital trust is the foundation on which modern organisations are built. It could be trust between employee and employer, between one organisation ...
The Cost of Insider Threats is Exploding: Here’s How to Manage Them
There’s a growing problem at the heart of enterprise cybersecurity posture. It’s not shadowy cyber-criminals or state-backed hacktivists. It’s not ...
Perimeter-Based Attacks Are Making a Comeback: Here’s How to Stay Safe
We’re used to hearing how the traditional network perimeter is dead. That the advent of cloud apps, home working and ubiquitous mobile devices has ...
How Will the EU’s First Cybersecurity Certification Scheme Impact Your Business?
In the digital world, trust is hard won and easily lost. Part of the reason for this is the lack of a universally understood and credible security ...
What Does the UK Government’s Cyber-Governance Code of Practice Mean for Your Business?
There was a time when cybersecurity was very much viewed as a technology function. No longer. Governments and regulators across the globe are incre...
Compliance Professionals Are Stretched Too Thin: Here’s What Needs to Change
Privacy and data protection were catapulted into mainstream consciousness with the advent of the GDPR in 2018. Since then, consumers have demanded ...
The WEF Global Risks Report 2024: Key Takeaways
IT and business leaders should be well aware by now of the risks that cyber-related threats pose to the organisation. They also understand at a hig...
What Businesses Can Learn From 23andMe’s Breach Response
Every business and IT leader dreads the day they’re forced to respond to a serious data breach. Those unfortunate to experience such an incident sh...
Get Ready for a New UK Datacentre Security Regulation
The UK’s economy is increasingly digital-centric. According to the government, data contributed nearly 7% to GDP in 2022, and three-quarters of all...
What Does the Australian Cyber Security Strategy Mean for Your Business?
The Australian government is not short of ambition. On launching its new Cyber Security Strategy 2023-2030 in November, it claimed the document wou...
Are You Ready for the UK’s New IoT Security Act?
The UK market for connected technologies has been flooded with insecure kits for years. That’s bad news for consumers and businesses, as compromise...
How an ISMS Can Help Developers Follow the NCSC’s New Secure AI Guidelines
The EU is undoubtedly the current global leader when it comes to AI regulation. However flawed its new AI Act may be, it represents a significant a...
The 10 Biggest Compliance Moments Of 2023: Our Pick Of A Landmark Year
There’s been plenty to keep UK cybersecurity and compliance professionals busy over the past 12 months. From long-awaited industry regulation...
A Year in Compliance: Five Lessons Learned from 2023
Security and compliance leaders ended 2023 as they began it, overwhelmed with the volume and complexity of new rules and regulations. Some will app...
Mind the Gap: Closing the Yawning Chasm Between Executive Thoughts and Deeds
Humans don’t always say what they mean. And even if they do, their actions don’t always tally with what they say. This is particularly a problem fo...
Watch, Wait and Pray: The Potential Impact of Updates to the Investigatory Powers Act
When it comes to technology regulation, the British government seems to be lurching from one controversy to another. Fresh from a battle with Big T...
The Cyber-Mercenaries Are Coming: It’s Time To Protect Your Execs From Prying Eyes
Back in mid-September, US government security agency CISA ordered all federal agencies to patch two zero-day vulnerabilities in OS, iPadOS and macO...
Why It’s Time to Unlock the Benefits of the UK-US Data Bridge
In late September, the UK government announced a new adequacy agreement with the US designed to enable more seamless cross-border data flows. In th...
NIST’s Cybersecurity Framework 2.0: What’s New And How To Get Started
Cyber-risk management cannot live in a vacuum. And while high-level best practices might remain largely the same over a period of years, both the t...
Why It’s Time To Start Planning For The EU AI Act
Few technologies have the potential to worry regulators and delight businesses quite like artificial intelligence (AI). It’s been around for years ...
