Will ISO 27701 be the new certification trend for GDPR?

ISO 27701 GDPR

The General Data Protection Regulation (GDPR) may have come into force in 2018 but 2019 was the dominating year for it. Last year, we saw companies put more effort into not only achieving GDPR compliance but into actively maintaining it. This is harder to do than it might seem — as just one mistake can result in a […]

What can we learn from 2019 data breaches

2019 breaches

We thought we would start 2020 by looking backwards. Specifically looking back at the biggest data breaches of 2019, seeing how many records were breached, getting a broad understanding of the nature of the attacks and then looking forward to seeing how we can learn lessons and protect our data assets better in the future. […]

Spear Phishing – Why you should “Fear the Spear”

SPEAR PHISHING, WHALING, BUSINESS EMAIL COMPROMISE AND CEO FRAUD IS ON THE RISE AND COSTING COMPANIES BILLIONS Have you heard of the acronym: FUD? It stands for ‘Fear, Uncertainty & Doubt.’ Unfortunately, the Information Security industry has a bit of a bad rep for selling their services off the back of FUD: “Don’t want the […]

Why Information Security Awareness Training is Important

a young male using the eRiskology Information Security Awareness elearning portal

Good information security awareness training can turn your workforce into the strongest line of defence instead of the ‘weakest link’.  Around 70 – 80% of all breaches can be attributed to the human element, yet companies often focus their resource of software-based security solutions. Where do we start? If you haven’t already found our post […]

ONE PRIVACY ‘CLUSTERZUCK’ AFTER ANOTHER.

A picture of Mark Zuckerberg with graffiti over it to look like a vampire. He has a bag of blood next to him what has the label "Personal Data"

If some weird decree came into force that dictated you could only write data privacy related blog posts about one company, then the company I would choose, hands down, every time would be Facebook. This time they’ve been caught out storing our passwords in plain text format and they’ve been doing it in the 100s […]

What’s the difference between Information Security and Cyber Security?

“Ah you want the Security Department, this is the Department of Security” I saw a headline the other day, the basic premise of which was suggesting that IT should take full responsibility for cyber security, removing the onus of it from users, thus allowing creatives to be more, well, creative. To be honest, I didn’t […]

Data Hack: Was Bezos a Bozo?

Picture of a clown with balloons with text on them that relate to the Bezos hacking events

We doubt it, he probably just needs some awareness training You’ve probably heard about Jeff Bezos’ personal and sensitive media being bandied about by the National Enquirer. No need for us to dwell on that, or comment on the US political machinations that could be behind it. Instead, prompted by an article by Rory Cellan-Jones […]

Don’t Go Chasing Information Security Unicorns

You may have noticed that unicorns are in the news a lot of late. Often, they are referred to in relation to Theresa May’s obviously unachievable Brexit ambitions but these are not the only unicorns in the, erm.. unicorn stable. In fact, they come in many different guises: There are the blockchain unicorns – fantastical […]

“You’ve reached O2, sorry we’re not available right now” – Why was the O2 network down?

A timely reminder with CIA – it’s not all about the C & I On Thursday, 6th December, users of the O2 mobile network suddenly found that they had no internet connection. In addition, and initially contrary to O2’s initial communications, many users found they had zero or sporadic voice connectivity as well. Everyone was asking the […]

Bed, Breakfast and a Breach – Marriott Data Breach

500 million customer records breached at Marriott Hotels

500 Million records in the Marriot Data Breach I imagine you have all now read with dismay but possibly not that much surprise at the latest ‘megahack’ over at Marriott Hotels. We’re not going to bombard you with more of the same. Instead, we thought this is a good opportunity to highlight a very unwelcome […]

Do NOT follow this link or you will be banned from the site!