July 23, 2020

Screen Scraping or Web Scraping is a technique commonly used by both legitimate business and cyber criminals to collect data from web pages.

Whilst screen scraping can be used perfectly legitimately, our research has found that cyber criminals use scraping in a variety o...

February 6, 2019

Ransomware is the extortion-driven malware epidemic sweeping the globe. There are a large and growing number of Ransomware programs all with variants being created on a daily basis in order to evade anti-malware tools. As with WannaCry, the designs may increasingly use...

April 17, 2018

"You can't write an entry about stress testing. People will think your article will be about regulatory control and the survival of companies, especially in the financial sector", said my colleague. It is!

Before the recession, the term 'Stress Test' was not a household...

August 16, 2017

I have been keeping up with the news on the IT outage at BA and noticed that it resonates with subject matter in a blog entry I wrote in February.

Many will know of the IT outage blamed in the press on power failure probably linked to human error at the British Airways d...

May 12, 2017

In the wake of the recent WCry Ransomware attacks on the NHS I have to ask whether I ammissing something; or has the cyber security world disappeared up the backside of complication?

Let me ask another question? Is it possible nowadays to adequately protect a system (or...

March 4, 2017

There are a growing number of cyber response companies beginning to hit the scene now in response to the sheer number and cost of breaches.

Recently. I read an interesting article by EY in the Business Times about the lack of suitably skilled IT security folk available t...

February 7, 2017

I commented on a recent LI post asking whether the rise in cyber breaches are as a result of insecurity due to failure of InfoSec community to adequately protect their organisations.

It's not the fault of security professionals per se. It is a result of the dynamics betw...

October 27, 2016

Supply chain risk is a popular subject of concern at the moment.

There have been a number of recent papers and studies undertaken surrounding supply chain complexity and risk assessments.

As one would expect, some of these are informative and worthwhile whilst others are...

September 11, 2016

I have been in many meetings and seminars over the past few years where I have been astounded at the response that CISOs, CIOs and IT Directors have given when a point has been raised that risk transfer might be of help.

The type of risk transfer generally being referred...

September 5, 2016

I regularly visit so many organisations and attend so many meetings where the overwhelming view of risk is that it is inversely proportional to control.

All of the other factors that make up scientifically derived risk through objective assessment are either implied (and...

Please reload

Please reload

Search by Tags
Please reload