Would you believe them, if you received an email or phone call from someone making that claim? What if they were really, really convincing? Probably not, but what if they appeared to be your boss, or your boss’s boss, and asked you to do something that was, basically, your job? Unbelievably, within hours of agreeing […]
CEO Fraud – “This is the President speaking.” Read More »
You can almost feel it happening, can’t you? Every time there is an introduction of, or a change to some regulation or another, the vultures of the legal, security consulting, and even security product vendors spin up their marketing machines to invent new promises on how they will ‘guide you through the pending minefield’. The
Privacy Shield (ex. Safe Harbor), Here Come the Vultures! Read More »
The term ‘ransomware’ refers to a type of malware that’s purpose is to infect a victim’s technology and then extort money from them by holding it hostage, demanding the purchase of an unlock code or antidote in order to restore access. The ransomware will often display a message pretending to be some form of law
Hand over the BitCoin if you ever want to see your precious Data again… Read More »
I’ve been busy assessing a Microsoft Azure environment as of late, for PCI DSS purposes. So. I go here to download their AoC: https://azure.microsoft.com/en-gb/support/trust-center/compliance/pci-dss/ The date of the AoC is December 31, 2014, and a number of requirements have been “Not Tested”, identified as “N/A” and Compensating Controls have been applied. I guess that’s fair
Is Microsoft Azure PCI DSS Compliant? Lessons in due diligence…. Read More »
Chris Phillips, Head of Physical Security at 2-sec, talks to us about cyber terrorism and the development of cyber attacks aimed at UK businesses. Chris explains why companies need penetration testing as part of a robust cyber security system. Chris explains how the terrorist threat to UK businesses has changed over the past few years.
Dr Emma Philpott met up with 2-sec CEO Tim Holman at the recent Infosec Expo at Olympia in London. Emma is CEO of the IASME Consortium as well as Founder and Manager of the UK Cyber Security Forum. Emma spoke to Tim about IASME (the information assurance management standard for small companies) as well as
PENETRATION TESTING Cyber-crime costs UK businesses up to £22 bn each year (source: The Cost of Cybercrime, the Cabinet Office). The number of cyber-attacks is also increasing year on year, and both small and larger businesses are being targeted by criminals for their sensitive data and supplier and client information. Penetration testing is the key
We’ve all done it – sloped off to the nearest coffee shop with laptop/iPad in hand, ordered a huge caramel one shot latte with cream, munched on a few biscuits, and then happily settled down to work or surf using the free public Wi-Fi for an hour or so. Do you ever give a thought
How Safe and Secure is Public Wi-Fi? Read More »
As a small to medium sized business owner you need to juggle cash flow, credit control, human resources, sales and IT management with fewer resources and a smaller budget than most of the large corporate organisations. If you accept credit card payments, you know you probably have to be PCI DSS v3.0 compliant but lack
PCI DSS Compliance – ESSENTIAL tips for SMEs Read More »
