Top 5 tips for self-certification to the EU-US Data Privacy Framework
Rules on transferring personal data between the EU and the US don’t just apply to the social media and technology giants. If your organisation is a US legal entity, or an EU-based organisation with a US parent, and it sends personal data to the United States, you now have the option to participate in the […]
Security Roundup December 2023
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Cloudy outlook for security? Cloud technology use is growing, but are organisations’ taking precautions to secure these services? Datadog’s latest annual report uncovered common weak security practices from analysing thousands of organisations using platforms like AWS, Microsoft Azure and Google […]
IRISSCON 2023: OT, AI, and human empathy
In front of its largest ever attendance, the annual Irish cybersecurity conference IRISSCON tackled some big themes. Among them were: attacks against critical infrastructure, increasing regulation, the need for empathy from security pros, and – naturally – AI. From the off, 2023 struck a more downbeat tone than last year’s edition. The first keynote speaker […]
Security Roundup November 2023
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Scamalot: police point to ongoing online fraud… It may be the low-hanging fruit of the security profession, but every now and again it’s worth re-familiarising ourselves with how scams work. Tom Whipple, a journalist with The Times, has an excellent […]
Security Roundup October 2023
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Ransomware an ongoing threat to industry as crime gangs organise Malware-based cyber-attacks are the most prominent threat to industry, Europol says. The agency’s spotlight report examines ‘crime-as-a-service’, lifting the cover on ransomware groups’ business structures. A companion to Europol’s IOCTA 2023 report, it […]
Why the Language of Cybersecurity Awareness Needs to be More Accessible
European Cybersecurity Month is upon us, and that can be a good hook for awareness-raising campaigns. But are the messages hitting home as effectively as they could? Several experts believe we need to take a fresh look at the language we use in security. Otherwise, we risk failing to help messages reach, and resonate with, […]
Hacker on the road: Experiences from DEF CON 31
In the heart of the scorching Nevada desert, every August heralds an event that beckons hackers, law enforcement officers, and cybersecurity consultants from all around the world: Hacker Summer Camp. This unique gathering is a convergence of minds, an exchange of knowledge, and a celebration of the ever-evolving world of cybersecurity. This year, I was […]
Security Roundup September 2023
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Longer is stronger: why password length matters How long is your password? If it’s only six characters long, made up of numbers, symbols and a mix of upper and lowercase letters, a hacker can guess it almost immediately. But […]
How to Secure Your Business Social Media Accounts
When we think about social media, we think about the nice side of it: staying in touch with friends and family, getting updates about our interests – but the more active we are on it, the more risk we’re exposed to. The more exposed we are in the online space, the more potential there is […]
Security Roundup August 2023
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Shedding the light of the law on cybercrime methods Today’s cybercrime landscape involves criminals operating across borders as business-like syndicates, says Europol. The agency’s ninth Internet Organised Crime Assessment (IOCTA) 2023 report gives a law enforcement perspective on current […]