Security teams face a number of challenges. The growing extent and complexity of the technology environment that businesses utilise, the limitations of human capabilities to choose good passwords or avoid clicking on links, the increasing sophistication of attacks and attackers and the burgeoning regulations under which they operate.
Read More
In the UK, the National Cyber Security Centre (NCSC) runs an information assurance scheme called Cyber Essentials. Our blog post series looks at each of the framework’s five controls and offers practical hints and tips on how you can meet the security requirements and obtain Cyber Essentials certification., This week we look at patch management.
Read More
The MITRE Corporation released ATT&CK (Adversarial Tactics, Techniques and Common Knowledge) in 2013. It is a list of adversarial exploits and techniques that provide a knowledge base for security teams to defend themselves against the most complex and advanced persistent threats (APTs). This blog post gives an overview of the framework.
Read More
When Scouts founder, Robert Baden-Powell, announced the organisation’s motto, “Be Prepared” in 1907, a member of the audience shouted, “Prepared for what?” Baden-Powell’s reply was simple. “Why, for any old thing,” he said.
In cyber security, this sentiment underlies everything we do to defend ourselves from hackers and criminals, since we know our adversaries are relentless. Cyber crime is now the number one threat businesses face and it’s not going away any time soon. But the question many executives are asking is, what does preparedness look like and how does it apply to their business? Let’s explore this and see what advice is out there to show organisations how to “Be Prepared”.
Read More
In the UK, the National Cyber Security Centre (NCSC) runs an information assurance scheme called Cyber Essentials. Our blog post series looks at each of the framework’s five focus areas and offers practical hints and tips on security requirements and value to organisations wishing to follow its advice.
Read More
In the UK, the National Cyber Security Centre (NCSC) runs an information assurance scheme called Cyber Essentials. Our blog post series looks at each of the framework’s five focus areas and offers practical hints and tips on security requirements and value to organisations wishing to follow its advice.
Read More
In the UK, the National Cyber Security Centre (NCSC) runs an information assurance scheme called Cyber Essentials. Our blog post series looks at each of the framework’s five focus areas and offers practical hints and tips on security requirements and value to organisations wishing to follow its advice.
Read More
In the UK, the National Cyber Security Centre (NCSC) runs an information assurance scheme called Cyber Essentials. Our blog post series looks at each of the framework’s five focus areas and offers practical hints and tips on security requirements and value to organisations wishing to follow its advice.
Read More
In the UK, the National Cyber Security Centre (NCSC) runs an information assurance scheme called Cyber Essentials. It encourages organisations to adopt good practice in information security that will improve cyber resilience. It is an integral part of government and defence supply chain requirements that involve handling information – so anyone who wants to work with the public sector will find it is a requirement of those contracts. For other industries, Cyber Essentials provides tangible benefits if organisations choose to use it.
Read More
The Australian Parliament hack, dubbed Australia’s “first national cyber crisis” by the Australian Signals Directorate, shows us all too clearly the risks associated with a targeted cyber breach. When valuable information is accessed the damage can be irreversible. This is particularly true for any country’s critical infrastructure sector. The enduring question remains, realistically what can organisations do to fend off the advances from sophisticated, targeted attacks?
Read More