After a vulnerability in Apache Struts led to serious breaches at Equifax and laid the credit reporting agency low last autumn, organisations should have scrambled to bolster security.
Don't keep secret or sensitive information in plain text; ensure regular patching; deploy 'least-privilege' to staff; use 2FA and secure password protocols; plan for what to do in the event of a breach and don't try to cover them up.
In a month from now, the UK will welcome GDPR which will give the ICO more powers to defend consumer interests and issue fines of up to £17 million or four percent of global turnover on organisations in the event of data breaches.
Unsurprisingly, online security breaches can severely undermine the trust that a consumer places in a brand, with over 76 percent of UK consumers stating that they have a more negative opinion of a brand following a security breach.
It's vital that multi-factor authentication systems become the industry standard for securing both customer and internal IT accounts. By replacing the outdated password-username combination, most hackers are outfoxed.
The individual, or people, behind the BrickerBot malware attacks have decided to hang up their mouse and keyboard after claiming to have locked more than 10 million supposedly unsecure Internet of Things devices.
Three-quarters of breaches are down to outsiders and a quarter to insiders, and 73 percent are conducted for financial reasons with half involving organised crime says latest Verizon report.
Data Privacy Day 2017 is here, and we're reminded once again of the need to raise awareness and promote privacy and data protection best practices.
Guidelines to payment service providers, supplied by the European Central Bank, call for reporting of a breach within two hours compared to the EU GDPR requirement for reporting within 72 hours.
The latest In Case You Missed It (ICYMI) looks at BT outage; Euro CNI vulnerable; 4 rail attacks; Polish telco breached; ransomware uses cloud
The latest In Case You Missed It (ICYMI) looks at WhatsApp malware; Cerber Ransomware; LinkedIn loses 117m credentials; Screen lock scammers; GDPR countdown. Note: UK Holiday 30 May.
While security spending continues to increase at a dizzying speed, breaches are increasing even faster, said Gemalto's Joe Pindar this morning at IP Expo. What are we to do?
Sarb Sembhi, Thomas Naylor, Thomas Whipp and Matt Holland joined forces at SC Congress to teach a willing audience how to respond to a breach.
ICYMI: McAfee security manager, cybersec salaries, Conficker worm, embedded XP; JD Wetherspoon breach
The latest In Case You Missed It (ICYMI) looks at McAfee security manager failure; 2016 cybersec salaries up; Conficker in 20% of attacks; Embedded XP end-of-life; Wetherspoon breach took 15 mins.
Norman Shaw looks at the latest data breaches, their causes, what the Safe Harbour ruling could mean for data protection and what you should be doing now to protect your company and yourself.
A survey by PricewaterhouseCoopers (PwC) claimed that incidents of cyber-security breach have climbed a record 117 percent during the year in India.
The report surveyed 398 full-time health care workers to measure the security complications and flaws facing healthcare in the US.
Firms are shifting their cyber-security spend away from traditional 'prevent and protect' approaches towards 'detect and respond' operations.
Due to the complexities of IT security, achieving clarity on cyber-insurance policies is going to be a growing challenge says Rowland Johnson
With phishing attacks still the most common way for cyber-attackers to break organisational security, the race is on to identify ways to prevent or blunt the impact of these attacks.
Most successful cyber-attacks in 2014 used known vulnerabilities that were at least a year old, and the top 10 CVEs accounted for almost 97 percent of the exploits reports Verizon.
Russia behind cyber-attack on White House - hackers have been in the system for months.
Two new studies reveal that despite a third of UK businesses suffering a breach in the last year, most organisations severely overestimate their readiness to respond to an incident.