Findings from the Comptroller and Auditor General from the NHS wannaCry Ransomware infection in 2017 Some interesting points “On Friday 12 May 2017 a global ransomware attack, known as WannaCry, affected more than 200,000 computers in at least 100 countries. In the UK, the attack particularly affected the NHS, although it was not the specific […]
Category Archives: Security
Delivering a number of CCISO Programs over the next few weeks
I dont normally publish course details here and I have been a bit too busy unfortunately for writing informational posts, this together with the enquiries I have been getting recently for CISO programs I thought this would be good to do….. so here it is I have a busy couple of weeks ahead delivering […]
WannaCry Ransomware
WannaCry ransomware — also known as WCry, Wana Decrypt0r, WannaCrypt, and WanaCrypt0r! With the ongoing attack which started last week and after receiving several calls and mails over the weekend for some advice on how best to protect against ransomware, I thought I would put together some advice. Backup With any form of Ransomware, the […]
Passwords – Are they the weakest link? How can we create better, more secure passwords
What are passwords used for? Passwords are combined usually with usernames to validate (authenticate) that a user is who they claim to be, although other forms (factors) of authentication exist passwords are the most common used method, this is generally due to their ease of use from both user and administrator point of view and […]
With the recent LastPass Vulnerability – Should we use Password Managers at all?
We all must be aware of the risks of using passwords……. Or are we! We are constantly told / or tell (depending on our role) users what to do and not to do, things like: Use separate passwords for each secure site Change them regularly is what we all advise Use easy to remember but […]
2016 Cyber Threat Report
2016 Cyber Threat Summary ENISA has just released their 2016 Threat Landscape report illustrating the top cyber threats encountered in 2016. This report can be found at https://www.enisa.europa.eu/news/enisa-news/enisa-threat-landscape-2016-report-cyber-threats-becoming-top-priority The report identifies the main threats with Malware again topping the list of threats Malware has been top of all cyber threat reports for several years, 2016 was […]
The flood of Vulnerable Internet Connected devices allows massive DDoS attacks on Dyn DNS Provider
The flood of Vulnerable Internet Connected devices allows massive DDoS attacks on Dyn DNS Provider! What does IoT really mean? IoT stands for Internet of Things, over the last decade, the amount and methods with which we connect to internet services have changed, broadband has become more widely available this, together with decreased connection […]
5 Steps to Staying Secure Online
October is Security / Cyber Security Awareness Month so I thought that I would spend a little time lowering the level to some general security awareness stuff. Introduction & Cyber Awareness in General Cyber attacks are on the increase, new strains of ransomware seem to be coming out weekly, we hear of new threats and vulnerabilities […]
Pokémon Go – Some Concerns explained
Pokémon Go, obviously a concern with users wandering around focused on devices, but are there other concerns? Abstract: In the following article, we look briefly at the concerns regarding application like Pokémon Go with regards to general safety and Privacy, we identify that guidance by the Data Protection Commission is soon to arrive and that […]
Enterprise Risk Management – an overview
Enterprise Risk Management (ERM) is fundamental for any organisation. Before any organisation can protect their assets, they must identify them and their potential risks and vulnerabilities. There are a number of frameworks which can be used in risk identification and assessment, one such framework is the NIST’s (National Institute of Standards and Technology) Special Publication […]