IT Governance

SEPTEMBER 20, 2018

The situation might seem hopeless, with cyber criminals outnumbering overworked and underfunded information security personnel, but there are plenty of ways you can improve your defences, even on a tight budget. Our blog provides daily updates on all things information security-related. Green papers. Green papers.

Data breaches 71

Data breaches GDPR Security awareness Paper 71

AIIM

JANUARY 9, 2019

Webinar: Join us on January 16th (replay available for download after live date) for a free webinar on data security: Top Tips to Bridge the Gap Between Security Awareness and Security Action. eBook: Get an executive guide to managing your information risk: Bridging the Gap Between Security Awareness and Action.

Data Privacy 97

Data Privacy Privacy Security awareness Information Security 97

Hunton Privacy

DECEMBER 30, 2021

put in place security measures sufficient to reduce risks and vulnerabilities. put in place security measures sufficient to reduce risks and vulnerabilities. On December 15, 2021, the New Jersey Acting Attorney General Andrew J. RCCA disputed these allegations, but agreed to settle the matter.

Data breaches 101

Data breaches Privacy Security awareness Risk 101

IT Governance

MARCH 30, 2021

Two in five businesses reported a cyber attack or data breach in the past 12 months, according to the UK government’s Cyber Security Breaches Survey 2021. The study suggests that the threat has increased as a result of COVID-19, with security teams finding it harder to implement and manage defence mechanisms.

Data breaches 120

Data breaches Phishing Security awareness GDPR 120

Getting Information Done

APRIL 18, 2017

Ultimately, the chief information security officer (CISO) needs to understand the information footprint across systems, determine the value/risk of loss, and protect against cyberattacks through the deployment of control activities, which are commensurate with the value/risk of these information systems.

Government 53

Government Cybersecurity Insurance Information governance 53

IT Governance

OCTOBER 1, 2019

October is National Cyber Security Awareness Month , where people are encouraged to brush up on their everyday information security practices. With an estimated 2 million cyber attacks last year costing victims £36 billion, there is a lot to be gained from tightening up the way you handle sensitive information.

Security 86

Security Security awareness Passwords Risk 86

IT Governance

MARCH 15, 2019

Earlier this month we caught up with Geraint Williams, CISO for GRC International Group plc, to find out more about information security and how he raises awareness within the workplace. How can you increase employee awareness? For more information on these services, please get in touch with the GRC eLearning team.

Education 74

Education Security awareness Information Security Risk 74

IT Governance

OCTOBER 24, 2019

It should address: Information security : This details the organisation’s security strategy in relation to the storage, processing and transmission of credit card data. It provides a detailed outline of information security responsibilities for all staff, contractors, partners and third parties that access the CDE.

Security awareness 66

Security awareness Information Security Risk Data breaches 66

KnowBe4

APRIL 4, 2023

But, according to security researchers at Abnormal Security, cybercriminals are becoming brazen and are taking their shots at very large prizes. According to Abnormal Security, nearly every aspect of the request looked legitimate. The email attaches a legitimate-looking payoff letter complete with loan details.

Phishing 83

Phishing Security awareness Cybersecurity Education 83

IT Governance

JANUARY 1, 2019

It demands adequate security measures and has been widely publicised, as it has the potential to levy large fines against non-compliant organisations. For example, you might know that you need to improve your staff awareness programme, but you might not know how to do that. Fortunately, IT Governance is here to help.

Data breaches 109

Data breaches GDPR Information Security Risk 109

IT Governance

JANUARY 29, 2019

This is by far one of the biggest weaknesses in any organisation (along with writing passwords down), which is especially frustrating when you consider how simple effective password security can be. You can find out what those measures entail by reading our free guide: Nine ways to improve your security awareness programme.

Data breaches 97

Data breaches Security awareness Passwords Risk 97

IT Governance

OCTOBER 8, 2018

For example, you might know that you need to improve your staff awareness programme, but you might not know how to do that. Fortunately, IT Governance is here to help. This blog summarises six tools that are essential for helping you comply with the GDPR, focusing specifically on the prevention of and response to security incidents.

Data breaches 109

Data breaches GDPR Information Security Risk 109

IT Governance

MARCH 29, 2019

A recent report has found that just 15% of IT decision makers in small organisations “completely agree” that their employees have a good understanding of cyber security, and 20% believe their employees don’t care about cyber security at all. The post Do your employees care about cyber security? Other key findings.

Security 101

Security Security awareness Risk Information Security 101

Security Affairs

MARCH 19, 2022

. “AvosLocker is a Ransomware as a Service (RaaS) affiliate-based group that has targeted victims across multiple critical infrastructure sectors in the United States including, but not limited to, the Financial Services, Critical Manufacturing, and Government Facilities sectors. Focus on cyber security awareness and training.

Ransomware 98

Ransomware Passwords Encryption Financial Services 98

IT Governance

JANUARY 22, 2018

Most organisations are aware of the catastrophic damage that extreme cyber attacks can cause, but few have put in place appropriate measures to defend and respond to such incidents, according to a new report from PwC. 48% said they don’t have an employee security awareness training programme.

Security awareness 99

Security awareness Information Security Manufacturing Data breaches 99

Security Affairs

DECEMBER 21, 2020

“In July and August 2020, government operatives used NSO Group ’s Pegasus spyware to hack 36 personal phones belonging to journalists, producers, anchors, and executives at Al Jazeera. The personal phone of a journalist at London-based Al Araby TV was also hacked.” ” reads the report published by the researchers.

Government 130

Government Security awareness Sales Education 130

IT Governance

OCTOBER 18, 2018

We caught up with Graham Day author of October’s book of the month, Security in the Digital World , to find out more. This must-have guide features simple explanations, examples and advice to help you be security-aware online in the digital age. And so are the threats and risks of being online.

Security 63

Security Security awareness Information Security Risk 63

IT Governance

MAY 1, 2018

This must-have guide features simple explanations, examples and advice to help you become security-aware in a developing digital world. Discussion Podcast Episode 13 – Security in the Digital World, Parental Security: “Cyber bullying is a serious issue as the victims cannot seek security or protection in their own home.”

Security 75

Security Security awareness Information Security Government 75

IT Governance

JULY 3, 2019

It also found that only 40% of organisations have full visibility into email threats, meaning those organisations are being targeted regularly and simply aren’t aware of the scale of the threat. These courses should be repeated annually to refresh employees’ memories and maintain a workplace culture that prioritises cyber security.

Phishing 68

Phishing Security awareness Education Risk 68

IT Governance

MARCH 6, 2018

The government is a well-known target for cyber criminals, but according to a new report, the problem is more significant than many people thought. The report also found that: 56% of councils that were breached said they didn’t report the incident; 75% said they don’t provide mandatory cyber security awareness training; and.

Data breaches 65

Data breaches Information Security Security awareness Privacy 65

Security Affairs

FEBRUARY 28, 2024

Key Findings from the “Email Security in 2024” Report In an exhaustive review, VIPRE processed 7.2 Protection Achievements The VIPRE Email Security Link Isolation feature, akin to URL sandboxing, showcased its efficacy by securing over 41.9 billion emails globally, identifying approximately 950.39

Security 119

Security Phishing Communications Financial Services 119

IT Governance

MARCH 19, 2018

This must-have guide features simple explanations, examples and advice to help you become security-aware in a developing digital world. Discussion Podcast Episode 8 – Security in the Digital World, The Internet: “ When you use the Internet you are potentially creating a path for an attacker to get into your personal space.”

Security 70

Security Security awareness Passwords Information Security 70

IT Governance

NOVEMBER 21, 2019

UK organisations are overlooking the importance of cyber security staff awareness training, instead investing in expensive and unnecessary technologies, a VMware and Forbes Insight study has found. For example, layering one anti-malware solution on top of another will not make an organisation significantly more secure.

Security 73

Security Information Security Government Security awareness 73

Security Affairs

NOVEMBER 11, 2021

A served used by the SunWater statutory Queensland (Australia) Government-owned water supplier was compromised and threat actors remained undetected for nine longs, the annual financial audit report published by the Queensland Audit Office revealed. It seems that attackers did not exfiltrate sensitive data from the compromised server.

Passwords 89

Passwords Security awareness Authentication Government 89

The Last Watchdog

JUNE 21, 2020

Numerous strains of this destructive code have been the front-page news in global computer security chronicles for almost a decade now, with jaw-dropping ups and dramatic downs accompanying its progress. inch diskettes. None of these early threats went pro. The FBI-themed ransomware was one of the most prolific infections at the time.

Ransomware 243

Ransomware Encryption Privacy Security awareness 243

IT Governance

APRIL 9, 2018

This must-have guide features simple explanations, examples and advice to help you become security-aware in a developing digital world. Thank you for listening to the IT Governance discussion podcast. Instructions will be sent to the winner via email. Click here to find out more about this book.

Security 69

Security Security awareness Information Security Government 69

IT Governance

MARCH 26, 2018

This must-have guide features simple explanations, examples and advice to help you become security-aware in a developing digital world. Thank you for listening to the IT Governance discussion podcast. However, hackers are now targeting home networks as much as commercial entities or public bodies.”

Security 53

Security Security awareness Government Information Security 53

IT Governance

OCTOBER 17, 2018

We’re all guilty of making mistakes – it’s human nature – but employees need to understand the most important elements of information security, and non-technical staff need to be made familiar with security awareness policies and procedures. Cyber attack/criminal hacker. Insider threat.

Data breaches 106

Data breaches Ransomware Security awareness Insurance 106

IT Governance

OCTOBER 23, 2018

Organisations are being warned about data breaches in the media, regulators are demanding improved information security and the public is getting more vocal when organisations make mistakes. You may well think that staying secure and pacifying all these groups is an expensive and seemingly impossible task.

Data breaches 102

Data breaches Security Phishing Information Security 102

IT Governance

APRIL 23, 2018

This must-have guide features simple explanations, examples and advice to help you become security-aware in a developing digital world. Discussion Podcast Episode 12 – Security in the Digital World, Social Networking Security: “Every social networking application has security settings that must be assessed before being applied.”

Security 56

Security Security awareness Information Security Government 56

IT Governance

APRIL 16, 2018

This week’s extract is taken from Graham Day’s book Security in the Digital World. This must-have guide features simple explanations, examples and advice to help you become security-aware in a developing digital world. The impressive security functions of iPhones tend to be overlooked, or not fully understood by users.

Security 60

Security Security awareness Privacy Information Security 60

IT Governance

FEBRUARY 14, 2019

This week, we discuss a data breach at Mumsnet, no data breach at OkCupid, and a lawsuit against Apple for implementing security measures. Hello, and welcome to the IT Governance podcast for Thursday, 14 February 2019. Here are this week’s stories. Since then there have been no further incidents.”. It’s not available on OkCupid.

Data breaches 75

Data breaches Passwords Authentication Data migration 75

IT Governance

JULY 29, 2019

According to the research, 52% of users receive training no more than twice per year, and 6% of users have never received security awareness training. Afraid of losing their data, information-holders wouldn’t think twice before paying what criminals demand. Take control of your employees’ security behaviour . The result?

Phishing 94

Phishing Ransomware Security awareness Data breaches 94

IT Governance

DECEMBER 27, 2017

Organisations that accept card payments are responsible for the security of customers’ payment information and must comply with the Payment Card Industry Data Security Standard (PCI DSS). Key to PCI DSS compliance is identifying and securing the points where cardholder information could be compromised.

Compliance 81

Compliance GDPR Security awareness Paper 81

IT Governance

NOVEMBER 16, 2018

This week, we discuss a Bank of England cyber resilience exercise, the latest cyber security news from the US Office of Personnel Management, the highlights of this month’s Patch Tuesday, and a surprising admission by a Japanese cyber security minister. Hello and welcome to the IT Governance podcast for Friday, 16 November.

Encryption 58

Encryption Risk Passwords Government 58

IT Governance

FEBRUARY 22, 2018

Hello and welcome to the IT Governance podcast for Friday, 23 February 2018. Cyber security reports are a bit like the proverbial London omnibus: you seem to wait for ages, then several come along at once. Until next time you can keep up with the latest information security news on our blog. Here are this week’s stories.

Mining 66

Mining GDPR Risk Security awareness 66

IT Governance

NOVEMBER 1, 2018

Besides, isn’t it IT’s job to keep you and your organisation secure? Yes, some elements of cyber security are complicated and IT is responsible for a lot of the things that keep you safe, but there are simple steps that everybody can follow to protect themselves and their organisation. Create unique passwords for your work accounts.

Passwords 103

Passwords Security Paper Data breaches 103