Infosecurity Opinions
Past and Present Tactics of Ransomware Attacks
Choosing the ransomware delivery mechanism is mostly a question of money.
What Does Data Loss Mean for Your Business?
Businesses need to get serious about data protection if they don’t want to be exposed to significant risks.
Understanding the Strengths and Weaknesses of Biometrics
Significant advances have now made biometric authentication a truly viable and secure alternative to traditional forms of security.
Securing Smart Devices Requires Smarter Partnerships
While there are few IoT device vendors focused on adding security, this presents a big opportunity for manufacturers willing to be proactive in implementing and educating the market about the need for stronger security.
The Evolution of Corporate Authentication
While it’s easy to feel overconfident if you’ve been lucky enough to avoid this type of problem, complacency can harm your business.
Key Questions any CEO Should ask Before Moving to the Cloud
As your organization makes the move to the cloud, managing security risks should be on the top of your list.
Fighting on Today's Front Lines
The overall impression is that data breaches are the result of enemy nation states, hacktivists, organized crime, and other evil forces,
Believe It: Cybersecurity is Getting Better, Not Worse
We’ve become beholden to our own fear, uncertainty, doubt – which basically says that cybersecurity has never been worse.
To Mitigate Phishing Risk, Let Employees 'Fail Forward'
Learning from mistakes is vital to a strong anti-phishing program.
'Zero Trust' Security Will Make A Comeback in 2018
Zero trust controls will allow careful scrutiny of how to raise cybersecurity defenses.
Is Your Social Media Strategy More Of A Cybersecurity Faux Pas?
You can’t stop staff members using social media, but you can effectively train and continuously educate them about the hazards.
Is The NCSC Doing Enough to Protect us from Today's Cyber Threats?
How successful has the NCSC been to date? What else can be done to safeguard the UK against a relentless cybersecurity onslaught?
The Most Important Part of Least Privilege Tactics
If a cyber-criminal manages to get their hands on an employee’s legitimate but limited login credentials, their ability to do any damage is greatly reduced.
The Case of Disappearing Vulnerabilities
While the practice of identifying vulnerabilities is basically sound, the SaaS vendor cannot rely on public databases of vulnerabilities.
Solving the Human Problem: A Progressive Security Strategy to Phishing
A realistic anti-phishing goal is not to focus on a click-through rate but to track the rate at which employees report phishing emails to their IT or security teams.
ICOs: No Credibility Without Better Security
Without good protection, ICOs will continue to reside on the sidelines. With solid security, they could become a major player.
Inactive Accounts: The Key to Your Company's Sensitive Data
Most organizations focus on protecting current users, but ghost users are a huge and often overlooked threat.
People Do What You Inspect, Not What You Expect
How can companies solve problems related to configuration and patching more effectively?
Are UK Companies Better Prepared than US Counterparts for GDPR?
Among both UK and US privacy professionals, more than 60% of respondents have not begun their GDPR implementation.
Why Phishing Alone is Not Enough Awareness Training
Phishing simulations have become synonymous with security awareness training, they’re not.
