The “Cyber Without Insanity” Email

Free advice to help you protect your reputation from cyber criminals and your sanity from techie jargon.

Get a quick tip each day from Monday to Thursday, and a weekly wrap-up each Friday (which is also available as a podcast).

The email archive is below and you can sign up right here:

Cyber Without Insanity – The Daily Email Archive

Don’t focus on regulatory compliance

Sam Glynn2023-01-31T08:39:32+00:00January 31st, 2023|Tags: accountability, analogy, assessment, board of directors, daily, home security, regulatory compliance, risk management, senior executives|

Don’t let your concerns about regulatory compliance distract you from the more urgent risk of a cyber attack

What has ‘Bank of Dave’ got to do with cybersecurity

Sam Glynn2023-01-30T11:37:18+00:00January 30th, 2023|Tags: analogy, assessment, daily, home security, regulatory compliance, risk management, whathasthisgottodowithcyber|

While checking your regulatory compliance, make sure someone is also checking the locks on your doors and windows.

My Tech Stack. Supported by Ready Brek.

SG2023-01-29T08:28:25+00:00January 29th, 2023|Tags: image, whathasthisgottodowithcyber|

For some reason, I frequently get asked about my "tech stack" - People want to know what technology I use to write, record or present. So, here it is...

Cyber 321: 27th January 2023

Sam Glynn2023-01-26T07:54:48+00:00January 27th, 2023|Tags: accountability, assessment, board of directors, central bank, cost of attacks, cyber insurance, cyber321, ethics, incident response, Multi-Factor Authentication, passwords, payment fraud, ransomware, regulatory compliance, risk management, senior executives|

Cyber 3-2-1: PayPal and Norton breaches, predictions of imminent cyber catastrophy, and taser-equipped drones. What more could you ask for?

Will this be on the test?

SG2023-01-26T10:25:09+00:00January 26th, 2023|Tags: analogy, assessment, daily, dpc, hse, regulation, whathasthisgottodowithcyber|

Just like at school, we focus on what we will be tested on. We should focus ono what the cyber attackers will test us on.

Regulation drives action

Sam Glynn2023-01-25T10:52:39+00:00January 25th, 2023|Tags: accountability, assessment, daily, dora, gdpr, image, nis2, regulation, regulatory compliance|

CEOs believe regulation drives an improvement in cyber resiliience. So, it’s an opportune time to introduce NIS2 and DORA.

Artificial Intelligence hits the headlines

Sam Glynn2023-01-24T10:28:12+00:00January 24th, 2023|Tags: artificial intelligence, Cyber Through Crappy Graphics, daily, image, risk management, whathasthisgottodowithcyber|

How Artificial Intelligence is being ignored by colleges and leveraged by the bad guys.

A potential conflict of Interest

Sam Glynn2023-01-23T10:51:43+00:00January 23rd, 2023|Tags: accountability, assessment, daily, evidence, managed service provider, senior executives|

Why gathering data points about the health of your cybersecurity defences can lead to a conflict of interest, and ways to address this.

Cyber 321: 20th January 2023

Sam Glynn2023-01-20T10:28:14+00:00January 20th, 2023|Tags: cost of attacks, cyber321, dora, Multi-Factor Authentication, phishing, ransomware, staff awareness|

Cyber 3-2-1: Attacks don’t just happen to valuable targets. Telling staff “Don’t click bad links” isn’t working. And why we need to worry about LockBit.

Accountability: What gets measured gets done.

Sam Glynn2023-01-18T07:57:37+00:00January 19th, 2023|Tags: accountability, analogy, board of directors, daily, managed service provider, senior executives|

What gets measured gets done

One way to make sure cybersecurity is being managed appropriately.

Sam Glynn2023-01-18T08:06:05+00:00January 18th, 2023|Tags: accountability, board of directors, daily, Multi-Factor Authentication, senior executives, software updates, staff awareness|

If you are accountable for cybersecurity, but rely on others to manage it on your behalf, how do you make sure they aren’t making a mess of it?

LastPass password resets: Your Plan B

Sam Glynn2023-01-17T09:04:26+00:00January 17th, 2023|Tags: daily, image, incident response, LastPass, mindset, passwords, risk management|

OK, I get it – You won’t reset all of your passwords. So, focus on the most valuable ones.

Accountability

Sam Glynn2023-01-16T08:56:09+00:00January 16th, 2023|Tags: accountability, analogy, board of directors, daily, mindset, senior executives|

Let’s talk about accountability. The concept that even if you don’t do a thing, you are still accountable for the the thing.

Cyber 321: 13th January 2023

Sam Glynn2023-01-13T10:16:37+00:00January 13th, 2023|Tags: accountability, board of directors, cloud, cost of attacks, cyber321, IT MSP, Multi-Factor Authentication, payment fraud, phishing, senior executives, staff awareness, third party risk management|

Cyber 3-2-1: This week, there’s one for everyone in the audience, including the board of directors and anyone who relies on an IT MSP to manage their cloud systems. The two numbers this week remind us why invoice fraud is so rampant – Because that’s where the money is! The thing to think about this week? Take two minutes to find out your cybersecurity score.

Ransomware attack: Why trust the criminals?

SG2023-01-12T08:16:04+00:00January 12th, 2023|Tags: backups, business continuity, business impact assessment, daily, disaster recovery, incident response, ransomware|

If you suffered a ransomware attack, what's your plan to avoid paying the ransom? And is this a plan or a presumption?

What has Mike Tyson got to do with cybersecurity?

Sam Glynn2023-01-11T07:50:09+00:00January 11th, 2023|Tags: business continuity, daily, incident response, ransomware, whathasthisgottodowithcyber|

What has Mike Tyson got to do with cybersecurity?

Ransomware attack: What’s your plan?

Sam Glynn2023-01-10T10:14:30+00:00January 10th, 2023|Tags: backups, business continuity, business impact assessment, daily, disaster recovery, incident response, ransomware|

If you suffered a ransomware attack, what's your plan to avoid paying the ransom? And is this a plan or a presumption?

Ransomware attack: What’s your policy?

Sam Glynn2023-01-09T08:53:53+00:00January 9th, 2023|Tags: accountability, backups, board of directors, business continuity, daily, incident response, ransomware, senior executives|

If you suffered a ransomware attack, would you pay the ransom? And has this policy been signed off by the exec team and board of directors?

Cyber 321: 6th January 2023

Sam Glynn2023-01-06T08:08:41+00:00January 6th, 2023|Tags: cyber321, data protection, LastPass, Multi-Factor Authentication, password manager, passwords, phishing, staff awareness, third party risk management|

Cyber 3-2-1: Happy New Year. I know I’ve been talking a lot this week about how it’s not so happy for LastPass users, so I will not linger too much on that carnage for the moment. Instead, let’s talk about what Ukraine’s Cyber Police, the UK’s NCSC, and Ireland’s DPC have been up to while we’ve been eating too much chocolate.

LastPass Security Breach: Are Password Managers Bad for Your Cybersecurity?

Sam Glynn2023-01-05T08:22:36+00:00January 5th, 2023|Tags: daily, LastPass, password managers, passwords|

Does the recent LastPass security breach prove that password managers are bad for your cybersecurity?

Sign up for the Cyber Without Insanity Email

Quick, daily tips that protect your reputation from cyber criminals and your sanity from techie jargon.

Not sure? You can read the archive here

Or trust the feedback from other subscribers:

“I’m loving these! True to your word they are easy to read”

“I love them, they have become a must-read.”

“Love the emails. I thought initially that daily might be too much but they are really useful bite-sized tips.”

“You know your sh**!”

“I’m really enjoying your emails. your emails are well written and engaging and I’m learning a lot about cyber security.”

“Great emails, and always really well written.”

“You’re a champion when it comes to the no-jargon plain English approach. Always clear and to the point.”