The “Cyber Without Insanity” Email
Free advice to help you protect your reputation from cyber criminals and your sanity from techie jargon.
Get a quick tip each day from Monday to Thursday, and a weekly wrap-up each Friday (which is also available as a podcast).
The email archive is below and you can sign up right here:
Cyber Without Insanity – The Daily Email Archive
Don’t focus on regulatory compliance
Don’t let your concerns about regulatory compliance distract you from the more urgent risk of a cyber attack
What has ‘Bank of Dave’ got to do with cybersecurity
While checking your regulatory compliance, make sure someone is also checking the locks on your doors and windows.
My Tech Stack. Supported by Ready Brek.
For some reason, I frequently get asked about my "tech stack" - People want to know what technology I use to write, record or present. So, here it is...
Cyber 321: 27th January 2023
Cyber 3-2-1: PayPal and Norton breaches, predictions of imminent cyber catastrophy, and taser-equipped drones. What more could you ask for?
Will this be on the test?
Just like at school, we focus on what we will be tested on. We should focus ono what the cyber attackers will test us on.
Regulation drives action
CEOs believe regulation drives an improvement in cyber resiliience. So, it’s an opportune time to introduce NIS2 and DORA.
Artificial Intelligence hits the headlines
How Artificial Intelligence is being ignored by colleges and leveraged by the bad guys.
A potential conflict of Interest
Why gathering data points about the health of your cybersecurity defences can lead to a conflict of interest, and ways to address this.
Cyber 321: 20th January 2023
Cyber 3-2-1: Attacks don’t just happen to valuable targets. Telling staff “Don’t click bad links” isn’t working. And why we need to worry about LockBit.
Accountability: What gets measured gets done.
What gets measured gets done
One way to make sure cybersecurity is being managed appropriately.
If you are accountable for cybersecurity, but rely on others to manage it on your behalf, how do you make sure they aren’t making a mess of it?
LastPass password resets: Your Plan B
OK, I get it – You won’t reset all of your passwords. So, focus on the most valuable ones.
Accountability
Let’s talk about accountability. The concept that even if you don’t do a thing, you are still accountable for the the thing.
Cyber 321: 13th January 2023
Cyber 3-2-1: This week, there’s one for everyone in the audience, including the board of directors and anyone who relies on an IT MSP to manage their cloud systems. The two numbers this week remind us why invoice fraud is so rampant – Because that’s where the money is! The thing to think about this week? Take two minutes to find out your cybersecurity score.
Ransomware attack: Why trust the criminals?
If you suffered a ransomware attack, what's your plan to avoid paying the ransom? And is this a plan or a presumption?
What has Mike Tyson got to do with cybersecurity?
What has Mike Tyson got to do with cybersecurity?
Ransomware attack: What’s your plan?
If you suffered a ransomware attack, what's your plan to avoid paying the ransom? And is this a plan or a presumption?
Ransomware attack: What’s your policy?
If you suffered a ransomware attack, would you pay the ransom? And has this policy been signed off by the exec team and board of directors?
Cyber 321: 6th January 2023
Cyber 3-2-1: Happy New Year. I know I’ve been talking a lot this week about how it’s not so happy for LastPass users, so I will not linger too much on that carnage for the moment. Instead, let’s talk about what Ukraine’s Cyber Police, the UK’s NCSC, and Ireland’s DPC have been up to while we’ve been eating too much chocolate.
LastPass Security Breach: Are Password Managers Bad for Your Cybersecurity?
Does the recent LastPass security breach prove that password managers are bad for your cybersecurity?
Sign up for the Cyber Without Insanity Email
Quick, daily tips that protect your reputation from cyber criminals and your sanity from techie jargon.
Not sure? You can read the archive here
Or trust the feedback from other subscribers:
“I’m loving these! True to your word they are easy to read”
“I love them, they have become a must-read.”
“Love the emails. I thought initially that daily might be too much but they are really useful bite-sized tips.”
“You know your sh**!”
“I’m really enjoying your emails. your emails are well written and engaging and I’m learning a lot about cyber security.”
“Great emails, and always really well written.”
“You’re a champion when it comes to the no-jargon plain English approach. Always clear and to the point.”