QR codes are handy. And hazardous.
QR codes are handy. But a recent article in the Mail on Sunday shows us why they are hazardous.
Don’t click on online ads
Cyber attackers are now advertising on Google. Don’t click on ads.
DORA will be a nightmare. But it is already a necessity.
DORA is going be a nightmare. But an incident with one IT provider last week shows us why it’s necessary.
Cyber 321: 3rd February 2023
Cyber 3-2-1: What have traffic lights, JD Sports, and Microsoft OneNote got in common? They all star in this week’s Cyber 3-2-1. Also this week, reminders as to why regulators are so keen for us to get better at third-party risk management, especially when it comes to our IT service providers.
What has Groundhog Day got to do with cybersecurity?
If we don’t implement some simple defences, we don’t need Punxsutawney Phil to tell us that unsophisticated cyber attacks will continue to succeed.
MFA: Why use an Authenticator App?
MFA using SMS text messages may be worth Sweet FA
Don’t focus on regulatory compliance
Don’t let your concerns about regulatory compliance distract you from the more urgent risk of a cyber attack
What has ‘Bank of Dave’ got to do with cybersecurity
While checking your regulatory compliance, make sure someone is also checking the locks on your doors and windows.
My Tech Stack. Supported by Ready Brek.
For some reason, I frequently get asked about my "tech stack" - People want to know what technology I use to write, record or present. So, here it is...
Cyber 321: 27th January 2023
Cyber 3-2-1: PayPal and Norton breaches, predictions of imminent cyber catastrophy, and taser-equipped drones. What more could you ask for?
Will this be on the test?
Just like at school, we focus on what we will be tested on. We should focus ono what the cyber attackers will test us on.
Regulation drives action
CEOs believe regulation drives an improvement in cyber resiliience. So, it’s an opportune time to introduce NIS2 and DORA.
Artificial Intelligence hits the headlines
How Artificial Intelligence is being ignored by colleges and leveraged by the bad guys.
A potential conflict of Interest
Why gathering data points about the health of your cybersecurity defences can lead to a conflict of interest, and ways to address this.
Cyber 321: 20th January 2023
Cyber 3-2-1: Attacks don’t just happen to valuable targets. Telling staff “Don’t click bad links” isn’t working. And why we need to worry about LockBit.
Accountability: What gets measured gets done.
What gets measured gets done
One way to make sure cybersecurity is being managed appropriately.
If you are accountable for cybersecurity, but rely on others to manage it on your behalf, how do you make sure they aren’t making a mess of it?
LastPass password resets: Your Plan B
OK, I get it – You won’t reset all of your passwords. So, focus on the most valuable ones.
Let’s talk about accountability. The concept that even if you don’t do a thing, you are still accountable for the the thing.
Cyber 321: 13th January 2023
Cyber 3-2-1: This week, there’s one for everyone in the audience, including the board of directors and anyone who relies on an IT MSP to manage their cloud systems. The two numbers this week remind us why invoice fraud is so rampant – Because that’s where the money is! The thing to think about this week? Take two minutes to find out your cybersecurity score.
Sign up for the Cyber Without Insanity Newsletter
A weekly newsletter (plus 2 mid-week tips) to help you protect your reputation from cyber criminals and your sanity from techie jargon.
Not sure? You can read previous issues here
Here’s what my subscribers think:
“I’m loving these! True to your word they are easy to read”
“I love them, they have become a must-read.”
“Love the emails… they are really useful bite-sized tips.”
“I’m really enjoying your emails. They are well written and engaging and I’m learning a lot about cyber security.”
“Great emails, and always really well written.”
“You’re a champion when it comes to the no-jargon plain English approach. Always clear and to the point.”
“You have a wonderful tone of voice. It’s a great read for the content, and also for your turn of phrase.”