ICO website still down after crypto-mining hack
12th February 2018 News
Subresource Integrity wasn't turned on
Over 4,000 websites - including a large number of UK Government and NHS websites - were compromised after a hack on a popular accessibility plugin.
GDPR: Encryption is not a “get out of jail free” card
1st February 2018 Comment
Go to jail. Go directly to Jail.
Another day and another e-mail or banner ad touting encryption as the 'solution' to all GDPR woes.
Will GDPR breed a new type of phish?
18th January 2018 Research
Fear and uncertainty: the tools of the social engineer
The uncertainty about the new rights of data subjects will open the door to identity phishing as social engineers leverage the fear of landmark fines.
The human factors of notifiable DP breaches
14th January 2018 Research
Understanding the human factors behind information security
Human factors are not studied in any great depth - yet over half of notifiable data protection breaches in the last two years have been the result of human error.
Cyber incidents for 2017 show Ransomware affect
13th January 2018 News
39% of cyber breaches from malware and phishing
In 2017, the ICO changed the way cyber incidents were reported to a more relevant format.
£400k fine for Carphone Warehouse from the Information Commissioner
10th January 2018 Comment
Every machine had the same root password shared by 30-40 people. Ish.
The sorry state of affairs at Carphone Warehouse simply highlights the complete lack of cyber awareness at board level.
