hse Archives - Cybersecurity Without Insanity

Will this be on the test?

Just like at school, we focus on what we will be tested on. We should focus ono what the cyber attackers will test us on.

By SG|2023-01-26T10:25:09+00:00January 26th, 2023|Categories: cybersecurity|Tags: analogy, assessment, daily, dpc, hse, regulation, whathasthisgottodowithcyber|

Cyber 3-2-1: BNP Paribas blocks Russian staff from its global computer network, your website contact form could be the first step in a cyber attack, and the HSE is about to contact people who data was stolen in last year’s cyber attack. This week’s action: Remind staff that the first email is not the only one to look out for.

By Sam Glynn|2022-03-18T08:45:21+00:00March 18th, 2022|Categories: cybersecurity|Tags: cyber321, hse, office365, phishing email, ransomware, website|

Cyber 321: 17th December 2021

Cyber 3-2-1: A report explains why the HSE attack was not sophisticated. The UK’s NCSC explains why the most severe computer vulnerability in years may have identified this week. And I ask why so little of your security budget is invested in improving your defences against more than 90% of attacks. This week’s action: Security is not just about technology. It’s about humans. Invest in your human defences.

By Sam Glynn|2021-12-17T10:59:27+00:00December 17th, 2021|Categories: cybersecurity|Tags: apache, cyber ireland, cyber321, hse, log4j, qr codes, staff training, survey, uk ncsc|

Cyber 321: 3rd October 2021

Cyber 3-2-1: What can we learn from the HSE attack? When is 2FA worth Sweet FA? Why wouldn’t cyber attackers be too worried about 30 countries working together to tackle the scourge of ransomware? This week’s action: Check for updates.

By Sam Glynn|2022-02-10T11:42:24+00:00October 3rd, 2021|Categories: cybersecurity|Tags: chrome, conti, cyber321, hse, Multi-Factor Authentication, NIST, ransomware, updates, whitelisting|

Cyber 321: 24th September 2021

Cyber 3-2-1: It’s not as simple as “Windows 7 = bad / Windows 10 = good”, or “Password = bad / Passwordless = good”. But it certainly is as simple as “2FA = Good”. This week’s action: Test your backups

By Sam Glynn|2022-02-10T11:42:41+00:00September 24th, 2021|Categories: cybersecurity|Tags: cyber321, hse, Multi-Factor Authentication, password managers, passwordless, passwords, risk management, SEC, stolen credentials, Windows 7|

Cyber 321: 4th June 2021

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including a major fire at one of Europe’s largest cloud providers, a decision by AXA in France to no longer cover ransomware payments, the ongoing cost and impact of the HSE attack, and a spyware attack on Android phones that is currently circulating in Ireland. This week’s action: Get rid of data you no longer need.

By Sam Glynn|2021-06-04T06:21:54+01:00June 4th, 2021|Categories: cybersecurity|Tags: android, cyber insurance, cyber321, data retention, hse, ransomware|

Cyber 321: 21st May 2021

Cyber 3-2-1: In the aftermath of a cyber attack on Ireland’s healthcare system, it will be no surprise that this week’s Cyber 3-2-1 discusses the many aspects of this crime. Most importantly, the fact that this not the human’s fault. This week’s action: Review and restrict access to data.

By Sam Glynn|2021-07-31T07:26:46+01:00May 21st, 2021|Categories: cybersecurity|Tags: cyber321, extortion, hse, human defence, ransomware, staff training|

Will this be on the test?

Cyber 321: 18th March 2022

Cyber 321: 17th December 2021

Cyber 321: 3rd October 2021

Cyber 321: 24th September 2021

Cyber 321: 4th June 2021

Cyber 321: 21st May 2021