Five tips for managing data subject access requests under GDPR
“Information wants to be free”, was the old technology activist’s mantra – but someone has to pay the price. The catchphrase has taken on fresh meaning since the General Data Protection Regulation (GDPR) came along. It’s made people more aware they are entitled to copies of information about themselves, and it’s placing a heavy workload […]
Lessons learned from BA and Marriott data breaches
There’s been lots of talk about regulations with bite, a watchdog baring its teeth, and that ‘the gloves are off’ after the UK Information Commissioner’s Office one-two punch of a £184 million fine against British Airways, and £99 million against Marriott International announced a day later. It certainly looks like the ICO went for the […]
Security roundup: July 2019
Every month, we dig through cybersecurity and data protection research, trends, advice and news for our readers. This month: T&Cs, stronger security in Europe, and a birthday with bitter memories. Policing policies to protect privacy One of the greatest lies on the internet is “I have read the terms and conditions”. But maybe most people […]
BH Consulting archives: fake invoicing scams are a constant security risk
Trawling through archives can quickly turn bittersweet when it hits home how little has changed between past and present. Looking back through the posts on BHconsulting.ie, invoice redirect scams have featured regularly since 2015. Fast forward to 2019: An Garda Siochana warned that this fraud cost Irish businesses almost €4.5 million this year. The global […]
BH Consulting in the media: supply chain security still a concern
The Huawei controversy has raised fundamental questions around supply chain security, Brian Honan has told Infosecurity Magazine. In a video interview recorded at Infosecurity Europe 2019 conference in London, BH Consulting’s CEO said the issue of technology containing alleged backdoors to enable spying has led to “interesting conversations” in the security community. The question boils […]
Security roundup: June 2019
Every month, we dig through cybersecurity trends and advice for our readers. This edition: GDPR+1, the cost of cybercrime revealed, and a ransomware racket. If you notice this notice… If year one of GDPR has taught us anything, it’s that we can expect more data breach reports, which means more notifications. Most national supervisory authorities […]
Cybersecurity awareness training: a constant in a changing world
There are two schools of thought when it comes to users and cybersecurity. Some people working in the industry think of users as the weakest link. We prefer to see them as the first line of defence. Cybersecurity awareness training programmes can address staff shortcomings in knowledge, promote positive behaviour and equip non-experts with enough […]
Ransomware remains a risk, but here’s how you can avoid infection
It’s been a case of good news/bad news when it comes to ransomware recently. New figures from Microsoft suggest that Ireland had one of the lowest rates of infection in the world in 2018. But in early May, a sophisticated strain of ransomware called MegaCortex began spiking across Ireland, the US, Canada, Argentina, France, Indonesia […]
GDPR one year on
May 2019 marks the first anniversary since the General Data Protection Regulation came into force. What has changed in the world of privacy and data protection since then? BH Consulting looks at some of the developments around data breaches, and we briefly outline some of the high-profile cases that could impact on local interpretation of […]
Security roundup: May 2019
We round up interesting research and reporting about security and privacy from around the web. This month: password practice, GDPR birthday, c-suite risk, and further reading for security pros. Passwords: a good day to try hard No self-respecting security pro would use easy passwords, but could they say the same for their colleagues (i.e. everyone […]