staff awareness Archives - Cybersecurity Without Insanity

Cyber 321: 20th January 2023

By Sam Glynn|2023-01-20T10:28:14+00:00January 20th, 2023|Categories: cybersecurity|Tags: cost of attacks, cyber321, dora, Multi-Factor Authentication, phishing, ransomware, staff awareness|

Cyber 3-2-1: Attacks don’t just happen to valuable targets. Telling staff “Don’t click bad links” isn’t working. And why we need to worry about LockBit.

One way to make sure cybersecurity is being managed appropriately.

By Sam Glynn|2023-01-18T08:06:05+00:00January 18th, 2023|Categories: cybersecurity|Tags: accountability, board of directors, daily, Multi-Factor Authentication, senior executives, software updates, staff awareness|

If you are accountable for cybersecurity, but rely on others to manage it on your behalf, how do you make sure they aren’t making a mess of it?

Cyber 321: 13th January 2023

By Sam Glynn|2023-01-13T10:16:37+00:00January 13th, 2023|Categories: cybersecurity|Tags: accountability, board of directors, cloud, cost of attacks, cyber321, IT MSP, Multi-Factor Authentication, payment fraud, phishing, senior executives, staff awareness, third party risk management|

Cyber 3-2-1: This week, there’s one for everyone in the audience, including the board of directors and anyone who relies on an IT MSP to manage their cloud systems. The two numbers this week remind us why invoice fraud is so rampant – Because that’s where the money is! The thing to think about this week? Take two minutes to find out your cybersecurity score.

Cyber 321: 6th January 2023

By Sam Glynn|2023-01-06T08:08:41+00:00January 6th, 2023|Categories: cybersecurity|Tags: cyber321, data protection, LastPass, Multi-Factor Authentication, password manager, passwords, phishing, staff awareness, third party risk management|

Cyber 3-2-1: Happy New Year. I know I’ve been talking a lot this week about how it’s not so happy for LastPass users, so I will not linger too much on that carnage for the moment. Instead, let’s talk about what Ukraine’s Cyber Police, the UK’s NCSC, and Ireland’s DPC have been up to while we’ve been eating too much chocolate.

Cyber 321: 16th December 2022

By Sam Glynn|2022-12-15T12:18:48+00:00December 16th, 2022|Categories: cybersecurity|Tags: cost of attacks, cyber321, data protection, incident response, Multi-Factor Authentication, passwords, phishing, risk management, staff awareness|

Cyber 3-2-1: An outsourced HR provider reports a breach 60 days after it was identified, the European Commission agrees a new directive to oblige service providers to do better, and what the data protection regulators can tell us about security.

Don’t forget about Anthony

By SG|2022-12-15T09:07:02+00:00December 15th, 2022|Categories: cybersecurity|Tags: daily, data breach, data protection, staff awareness|

How our colleague could be exposing the organisation to a data protection risk.

What a breach at the Teaching Council teaches us about email auto-forwarding?

By SG|2022-12-14T07:16:06+00:00December 14th, 2022|Categories: cybersecurity|Tags: cost of attacks, daily, data breach, data protection, dpc, example, gdpr, Multi-Factor Authentication, payment fraud, phishing, staff awareness, supply chain risk|

Email auto-forwarding: What can we learn from a breach at the Teaching Council?

FBI warns about the dangers of email auto-forwarding

By Sam Glynn|2022-12-13T09:16:10+00:00December 13th, 2022|Categories: cybersecurity|Tags: cost of attacks, daily, Multi-Factor Authentication, payment fraud, phishing, staff awareness, supply chain risk|

Don’t believe me that email auto-forwarding is a risk? Would you believe the FBI?

Cyber 321: 9th December 2022

By Sam Glynn|2022-12-09T10:27:01+00:00December 9th, 2022|Categories: cybersecurity|Tags: cyber321, frameworks, image, Multi-Factor Authentication, phishing, ransomware, risk management, software updates, staff awareness|

Cyber 3-2-1: Cyber criminals favour ZIP files, RAR files, and PayPal; Even the big firms are moving to the cloud; and CISA demomstrates how one security layer may not be enough to protect us.

Cyber 321: 2nd December 2022

By Sam Glynn|2022-12-02T09:14:19+00:00December 2nd, 2022|Categories: cybersecurity|Tags: cyber321, Multi-Factor Authentication, payment fraud, phishing, ransomware, software updates, staff awareness|

Cyber 3-2-1: Microsoft and Proofpoint remind us of the value of some simple security measures. The problem with Android security patches. And why the theft of millions of phone numbers from WhatsApp may get our attention, but our local laptop repair shop may be a more immediate concern.