cybersecurity Archives - Cybersecurity for Regulated Firms and Their Service Providers

Cyber 321: 11^th June 2021

By Sam Glynn|2021-06-11T09:13:22+00:00June 11th, 2021|Categories: cybersecurity|Tags: cost of an attack, cyber321, hiscox, ireland, professional services firms, staff training, statistics, white house|

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action. This week is dominated by the various findings of the Hiscox Cyber Readiness Report. For 50% of firms, could the cost of cybersecurity risk really be less than €3.5k per annum? In other news, the 5 key things the White House recommends you do to defend against ransomware, and the one thing they did not mention. And finally, why professional services firms are targeted by cyber criminals. This week’s action: Check my maths, and check your numbers.

Cyber 321: 4th June 2021

By Sam Glynn|2021-06-04T06:21:54+00:00June 4th, 2021|Categories: cybersecurity|Tags: android, cyber insurance, cyber321, data retention, hse, ransomware|

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including a major fire at one of Europe’s largest cloud providers, a decision by AXA in France to no longer cover ransomware payments, the ongoing cost and impact of the HSE attack, and a spyware attack on Android phones that is currently circulating in Ireland. This week’s action: Get rid of data you no longer need.

Cyber 321: 21st May 2021

By Sam Glynn|2021-05-21T10:47:23+00:00May 21st, 2021|Categories: cybersecurity|Tags: cyber321, extortion, hse, human defence, ransomware, staff training|

Cyber 3-2-1: In the aftermath of a cyber attack on Ireland’s healthcare system, it will be no surprise that this week’s Cyber 3-2-1 discusses the many aspects of this crime. Most importantly, the fact that this not the human’s fault. This week’s action: Review and restrict access to data.

Cyber 321: 14th May 2021

By Sam Glynn|2021-05-14T09:39:26+00:00May 14th, 2021|Categories: cybersecurity|Tags: business continuity, cyber321, gdpr, oil, operational resilience, plan b, police, special category data, victim|

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including how one cyber attack on one firm had significant knock-on effects across the US East Coast, how another attack on another firm became Finland’s biggest criminal case in history, and what it feels like to be a victim of a cyber crime. This week’s action: Plan B Planning

Cyber 321: 7th May 2021

By Sam Glynn|2021-05-07T07:18:49+00:00May 7th, 2021|Categories: cybersecurity|Tags: byod, cloud security, cyber321, itgovernance, phishing, ransomware, securethevillage, sophos, voicemail, zscaler|

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including BYOD may become Bring Your Own Disaster, fast vs slow when it comes to cloud adoption, and how paying the ransom is not a guarantee that you will get your data back. This week’s action: Ignore those voicemail email notifications.

Cyber 321: 30th APRIL 2021

By Sam Glynn|2021-04-30T07:51:06+00:00April 30th, 2021|Categories: cybersecurity|Tags: cyber321, law firms, mindset, pragmatic security controls, professional services firms, ransomware, rdp, remote access, risk management|

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including why professional services firms are now ransomware’s #1 target, another survey confirming that remote working is here to stay, and why good is better than perfect when designing security controls. This week’s action: Remote Desktop Protocol (RDP): Search for it in your firm, and remove or protect it.

Cyber 321: 23rd April 2021

By Sam Glynn|2021-04-23T08:36:36+00:00April 23rd, 2021|Categories: cybersecurity|Tags: 2FA, crisis PR, cyber essentials, cyber321, data breach, ISO27001, MFA, Microsoft, Money Mules, NIST, regtech, stolen credentials|

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including a risk and compliance firm suffers a cyber attack due to stolen credentials, why resistance is futile when it comes ISO27001, and you need to talk to your teenager about the facts of (online) life. This week’s action: Stop relying on passwords to protect your money, data and identity

Cyber 321: 15th April 2021

By Sam Glynn|2021-04-15T08:57:15+00:00April 15th, 2021|Categories: cybersecurity|Tags: cost of attacks, crisis PR, cyber321, events, fintech, insuretech, linkedin, phishing email, regtech, survey|

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including how some firms handle crisis PR when they are victims of an attack, and how the bad guys love the things we share online. This week’s action: Identify your buddies – The experts you will need if you are the victim of an attack.

Cyber 321: 8th April 2021

By Sam Glynn|2021-04-09T16:37:18+00:00April 9th, 2021|Categories: cybersecurity|Tags: cyber321|

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including the world’s biggest phonebook courtesy of Facebook, Irish colleges are the latest ransomware victims, and emerging evidence that the Rule of 1% is starting to apply in cyber attacks. This week’s action: Disaster recovery – As the name suggests, think about how you will recover from a disaster like a ransomware attack.

Cyber 321: 1st April 2021

By Sam Glynn|2021-04-01T05:35:24+00:00April 1st, 2021|Categories: cybersecurity|Tags: cyber321|

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including the increasing concern that large firms have about their smaller suppliers, a survey that reminds us of the prevalence and cost of phishing emails, and the best defences against phishing emails and ransomware. This week’s action: Tag external emails so your staff are less likely to be fooled by a phishing email.