If you had to explain it to someone outside cybersecurity, they wouldn’t believe you, but organisations including one of the world’s biggest banks and largest defence contractors have been compromised because they were too slow …
Something is broken in the land of email Everyone relies on email, and organisations probably even more than individuals. Marketing and Communications teams in particular are hugely reliant on email to reach their audience. But …
This is the trope which just won’t die. Despite some great work from people like EmmaW and the Socio-Technical Group at the NCSC, the ISACA and Angela Sasse’s team at UCL, the list of vendors …
The challenge Cyber security is always a careful balancing act between usability and security, and there are consequences to allowing the seesaw to swing too far one way or the other. Developing people focused cyber …
As an industry we’re not particularly good at talking to people about cyber security in a way which is helpful for them, rather than in a way that either triggers a visceral reaction, a sale …
Often driven more by regulation and legislation than by any real desire to change behaviour, information security policies are seen by author and reader alike as a tick box exercise. Organisations either forget or don’t …
Back in 2019 we made a family decision to move from Cambridgeshire to the South West of England. We were drawn to the beaches and the moors, but particularly to Totnes in South Devon because …
We’ve got it all wrong Over the past few weeks I’ve spent quite a bit of time on Data Loss Prevention (DLP) in Microsoft 365, improving our DLP policies to stop specific data types from …
One of the things which still annoys me after 20+ years in IT is when I hear an organisation wanted to do something, but the outcome was “security says no“. This behaviour causes business and …
