After a short discussion on twitter last week about phishing testing I thought I’d write a short piece on why I think it’s valuable and how we do it. You can read the twitter thread here – as you’ll see it started with the question...
I wrote a short post recently with some guidance for start-ups – if you read it you’ll notice I assume that any start-up will be making use of cloud services, rather than trying to build and host infrastructure internally. It’s not just start-ups using...
So, what is it you do? I’m often asked by people outside the cyber security industry what is it, in fact, that I do. A reasonable question, and my usual answer is ‘stuff, for people’. Partly that is a hangover from the government days, and partly because consultancy is...
So you’re a start-up and you’re worried about security. Well, caring about cyber security is a good thing, and doing so right at the beginning means you can start right now and ensure you maintain the good practice as you grow. Retro-fitting good security is...
If you follow me on twitter, or read the blog here, you’ll know that I am very keen on security monitoring. Effective security monitoring means that you can spot bad stuff when it happens and take action promptly to remediate the problem, and importantly, limit...
Back in the old days, when I first started working in this sector, cyber security had a different name – we called it IT security. Now you may or may not like the ‘cyber’ moniker (plenty of my colleagues really dislike it!) but it does...
I tweeted some thoughts on the news of the UK’s new cyber force, and thought I’d follow up with a short blog. The short background is that the UK government has announced a new £250 million joint MOD-GCHQ cyber force. The purpose of this is...
Ransomware is a particularly unpleasant, and very prevalent, form of cyber criminality. It’s called ransomware because you, the victim, are literally held to ransom. All files stored on your computer are encrypted, and the criminals will only provide the key to decrypt when you pay...
If you’ve been paying any attention at all to the news in the last couple of weeks, you’ll be aware that British Airways had a significant and embarrassing problem with their website. You can read about it here, with quotes from me! I, and most...
The year is 2018 and cyber security is not a new topic. So why is it that every day hacking makes the front page? Why are we doing so badly with what is, at this point, not a new problem? There have been a couple of...