Cyber 321: 6th August 2021

By |2021-08-06T06:40:35+00:00August 6th, 2021|Categories: cybersecurity|Tags: , , , , , |

Cyber 3-2-1: How one business took 24 years to build and 24 hours to destroy, what the EU’s Agency for Cybersecurity has to say about supply chain attacks, why you should ask more questions about the security of your IT service providers, and why you should expect to be asked similar questions by your clients. This week’s action: Ask questions. Seek evidence.

Cyber 321: 30th July 2021

By |2021-07-30T06:44:55+00:00July 30th, 2021|Categories: cybersecurity|Tags: , , , , , , |

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including how ransomware is not just about backups, how Connecticut is incentivising firms to improve their cybersecurity defences, and why Human Intelligence still beats the tech. This week’s action: Hug your staff.

Cyber 321: 23rd July 2021

By |2022-02-10T11:51:25+00:00July 23rd, 2021|Categories: cybersecurity|Tags: , , , , , , , , , |

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including why cybersecurity influences the valuation of a fintech, how cyber attackers are after your cryptocurrency, the steps recommended by NIST to reduce the risk of ransomware, the reward offered by the US government for information about cyberattackers and terrorists, and the ongoing problem of password reuse. This week’s action: Find out why passwords are like your toothbrush.

Cyber 321: 14th July 2021

By |2022-02-10T11:44:44+00:00July 14th, 2021|Categories: cybersecurity|Tags: , , , , |

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action. This week, my focus is on firms that sell software or services to other organisations. You need to realise what the cybercriminals already know and what your prospects (and their regulators) are becoming increasingly concerned about: You are the perfect stepping stone into your clients’ computer systems and you could be the weakest link in your their cybersecurity defences. It was demonstrated in the WannaCry attack of 2017, the SolarWinds attack of 2020, and this month’s Kaseya attack that has impacted up to 1500 businesses. This week’s action: Recognise that your suppliers are a risk to you, and you are a risk to your clients.

Cyber 321: 2nd July 2021

By |2022-02-10T11:51:36+00:00July 2nd, 2021|Categories: cybersecurity|Tags: , , , , , , , |

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including how multi-factor authentication is not foolproof, how ransomware negotiation is a growing cottage industry, how the EU and the US are hoping to share more information about cyber-attacks, how one gang laundered $500 million before being captured, and how 30 million Dell devices need an update. This week’s action: Verify links, app access and browser plugins

Cyber 321: 18th June 2021

By |2021-06-18T09:59:19+00:00June 18th, 2021|Categories: cybersecurity|Tags: , , , , , , , |

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including how a framework like NIST CSF or CIS Controls can turbo-charge your security efforts, how our teenagers are ending up with convictions for money laundering and supporting terrorism, and how the FBI fooled 800 criminals into telling them all about their drug deals and other criminal activities. This week’s action: Tell your family to protect their bank accounts.

Cyber 321: 4th June 2021

By |2021-06-04T06:21:54+00:00June 4th, 2021|Categories: cybersecurity|Tags: , , , , , |

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including a major fire at one of Europe’s largest cloud providers, a decision by AXA in France to no longer cover ransomware payments, the ongoing cost and impact of the HSE attack, and a spyware attack on Android phones that is currently circulating in Ireland. This week’s action: Get rid of data you no longer need.

Cyber 321: 7th May 2021

By |2021-05-07T07:18:49+00:00May 7th, 2021|Categories: cybersecurity|Tags: , , , , , , , , , |

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including BYOD may become Bring Your Own Disaster, fast vs slow when it comes to cloud adoption, and how paying the ransom is not a guarantee that you will get your data back. This week’s action: Ignore those voicemail email notifications.

Cyber 321: 30th APRIL 2021

By |2021-04-30T07:51:06+00:00April 30th, 2021|Categories: cybersecurity|Tags: , , , , , , , , |

Cyber 3-2-1: Plain English cybersecurity advice in 3 articles, 2 statistics and 1 action, including why professional services firms are now ransomware’s #1 target, another survey confirming that remote working is here to stay, and why good is better than perfect when designing security controls. This week’s action: Remote Desktop Protocol (RDP): Search for it in your firm, and remove or protect it.

Go to Top