Security Roundup June 2020
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Follow the money: financial motives figure highly in breaches, finds Verizon DBIR Not even a pandemic could stop the publication of the 2020 Verizon Data Breach Investigations Report. Widely respected as an independent source of security information, some highlights from […]
Security Roundup June 2020
Infosec eye Curated advice, guidance, learning and trends in security and privacy, as chosen by our consultants. Follow the money: financial motives figure highly in breaches, finds Verizon DBIR Not even a pandemic could stop the publication of the 2020 Verizon Data Breach Investigations Report. Widely respected as an independent source of security information, some […]
Gauging the GDPR journey over the first two years
This week marks the second anniversary of the EU GDPR coming into force. Reflecting on what has changed since May 2018, it seems to me that although we have traveled well, we are not quite at our destination. There needs to be regulations on the one hand, which we have by definition, and consumer awareness […]
Security Roundup May 2020
Cybersecurity trends from across the globe, with an eye on the future of security and privacy, as chosen by our consultants. Works hard for the money: funding concerns for EU data protection regulators Are Europe’s data protection authorities sufficiently well funded to defend themselves in court against the technology industry’s heavy hitters? A report by Brave into regulators’ budgets […]
How ISO 27001 & ISO 27701 can help in managing GDPR compliance risk post Brexit
As we know, the UK left the European Union on 31 January and has now entered an 11-month transition period. In the meantime, the UK effectively remains in the EU’s customs union and single market and continues to obey EU rules. One of the many areas this affects is data protection. EU-based data controllers like […]
Here’s why now is a good time to check your Business Continuity Plan
A Business Continuity Plan, or “BCP”, is often spoken of in hypothetical terms. We think about a range of potential scenarios and ask the question: “what would happen if…?” Those of us lucky enough to still be working are experiencing some of these scenarios in real time. In the previous blog, we looked at the […]
Adapting cybersecurity to a new world of work
Unprecedented times have left many businesses unprepared, implementing new and untried working patterns in haste which introduces unexpected risks. Working from home has become the default option for many organisations that have been fortunate enough to adapt and continue, but not by choice. It’s helped them to keep operating as best they can, but it […]
Do we have a social responsibility to ‘trade’ the privacy of our COVID19 status?
The debate regarding privacy during COVID19 rages on. Do we trade the privacy of our data, in order to provide a stopgap for COVID19 restrictions (until a vaccine is available)? The law will tell us what the GDPR allows, what CCPA allows, what HIPPA allows, what the constitution allows etc. However, privacy (I know I […]
Security Roundup April 2020
Cybersecurity trends and advice from around the web. No restriction on cybercrime during COVID-19 There’s a fascinating debate raging around digital privacy during COVID-19 that’s part philosophical, part practical. Have we any other choice than to (temporarily) relax our privacy concerns if it helps to fight a pandemic? In any other circumstances, some of the […]
How to manage privacy and security concerns over Zoom
Zoom has become one of the de facto tools of choice as we’re now all working from home during the COVID-19 pandemic. As usage has surged over the past few weeks, more people are asking questions about its confidentiality and security practices. In this blog, I outline some of the main risks, and give advice […]