This week, we discuss a record ICO fine for Equifax, cyber attacks on Bristol Airport and Smeg, and the sentencing of the creators of the Mirai botnet Hello and welcome to the IT Governance podcast for Friday, 21 September. Here …
Small organisations often try to claim exemption from the EU’s GDPR (General Data Protection Regulation) based on their size. In most cases this is in vain, but there is one requirement where they might be justified: the appointment of a …
Drafting detailed data protection policies and documentation is vital for improving security for your customers, stakeholders and brand because it shows your understanding and commitment to the PCI DSS (Payment Card Industry Data Security Standard). From policy, to procedure, to …
With stories of data breaches appearing daily, many organisations will be wondering when their time will come. The situation might seem hopeless, with cyber criminals outnumbering overworked and underfunded information security personnel, but there are plenty of ways you can …
If you’re among the seemingly small number of organisations that hasn’t yet suffered a data breach, you should be preparing for the inevitable. You can’t count on your cyber security defences to continue repelling attacks, because even the most secure …
Organisations usually spend most of their security budget on technologies intended to keep cyber criminals out of their systems, but this overlooks their biggest vulnerability: human error. More often than not, data breaches are caused by – or directly linked …
Another day, another cyber attack. This time it’s Bristol Airport. It has been reported that a speculative ransomware attack on the airport resulted in its information screens being taken offline, and flight information being written on whiteboards, although no flights …
New research from KPMG has found that 39% of UK CEOs “believe that becoming a victim of a cyber attack is now a case of ‘when’ and not ‘if’ for their organisation.” This is in contrast to CEOs from abroad, …
Over the past month or so, we’ve been discussing the threats associated with payment card breaches, and why it’s important to comply with the PCI DSS (Payment Card Industry Data Security Standard). In this week’s blog, we examine some recent …
Last week it was announced that the personal and financial details of 380,000 British Airways customers had been stolen by cyber criminals. The latest news reports claim that the cause of the data breach has been identified by a RiskIQ …
