People News, Articles and Updates

Gwent Police sat on data breach exposure for a year before informing ICO

Gwent Police failed to inform up to 450 people that hackers may have accessed their confidential information after it found that an online tool that allowed citizens to report incidents to the Police was exposed to hackers.

The people problem — security's biggest blind spot

How organisations can turn their biggest security threat — people — into their best security asset. But relying on people as the first and best line of defence requires well-trained professionals and there is a shortage.

Playing Defence - Nuclear Posture Review allows nuclear response to cyber

Calls from around the United States pour into the White House Situation Room reporting power plants shutting down across the Northeast and Midwest, causing massive black outs affecting tens of millions of people.

US post snail mail alerts to help secure Informed Delivery service

Having recently introduced a new "Informed Delivery" service that could allow snoops to read scanned images of another person's or business' mail, the US Postal Service is reportedly now sending out snail mail notifications.

SC Congress 2018: More must be done to improve infosec diversity

A greater range of candidates could tackle cyber skills shortage. The cyber-security industry is facing a skills gap and bringing in under-represented groups of people could help fill those key roles.

Study shows which phishing attacks most successful

People are very predictable when it comes to designing phishing attacks that appeal to a potential victims with people most likely to click on messages concerning money.

Securing your company culture

Mike Simmonds, managing director, Axial Systems believes employee attitude is as important as technology when securing data.

Skills in security: Fighting the shortage - closing the gap

The talent shortage is widening. But, Kate O'Flaherty asks, what specific skills is the industry lacking and how can it fill the gap?

How educational psychology can change the face of cyber-security training

Training that doesn't take into account the way humans learn and consume knowledge is never going to work.The way cyber-security is taught in workplaces is that it's usually anything but academic.

SC Awards Europe - entry deadline on Thursday

Judging starts next month for the SC Awards Europe 2018 - the leading Awards for the cyber-security industry. Closing date for entries is Thursday 25 January - late entries until Thursday 8 February.

Developments in machine learning: we've come a long way, but have far to go

AI driven applications rely on machine learning to make decisions but they cannot yet think for themselves though that is coming. Neural networks and expert systems may be inspired by the human brain, but there is little comparison.

Free - Latest 'Cybersecurity for Dummies' book now available

The book "Cybersecurity for Dummies," is now available free electronically and in print. It is designed to give all employees a practical understanding of cyber-security basics.

Staying secure amid the cyber-skills shortage

Without skilled and trained staff to analyse security threats and keep the organisational infrastructure protected, even the best security tools in the world wouldn't be fully effective, making businesses 'sitting ducks' for cyber-criminals.

How organisations can thrive in the time of phishing attacks

Phishing, smishing and other types of malware are not going anywhere and the risks are only going to rise as mobile becomes a primary device for employees. Companies need to get ahead of the issue rather than responding.

The secure state of security: closing the security skills gap

Developers aren't choosing to ignore security issues - they don't have the skills or resources to create secure code due to a critical deficit in developer security training, especially how to manage vulnerable components effectively.

Chief data officers crucial to future-proof businesses & win public trust

Dr Jamie Graves at ZoneFox explains why Chief Data Officers are crucial for future-proofing businesses and winning back the public's trust.

New Categories announced. Entries invited NOW for SC Awards Europe 2018!

Check out the New Categories and get going on your entry now to be in with a chance of winning at the cyber-security industry's most prestigious Awards - then book your ticket for the gala Awards night presentations.

The security risks of ghost users: 1 in 4 accounts are inactive

Some 26 percent of all accounts surveyed were of 'stale enabled users'; accounts - and 90 percent in one case.The risk is two-fold: ex-employee with unauthorised access, and the account can be hijacked by an external hacker.

How women can play a bigger part in cyber-security - to everyone's benefit

Book Review: In Security. Jane Frankland shares her experience of being female in what is still a male-dominated sector, while advising other women and the businesses that employ them how to harness their talent and skills.

Equifax board picks former Broadcom exec for tech committee

Two months after revelations that an Equifax breach had exposed information on 145.5 million US consumers, the company has added Scott A McGregor, former CEO of Broadcom Corp. to the board and to its technology committee.

The cause of recent cyber-attacks: complacency.

When it comes to cyber-security, the problem is that while businesses and IT leaders are prioritising cyber-security investment, the investment in that security has always been responsive, rather than preventative says Steve Inglessis.

How your business can survive the cyber-security skills crisis

More than two thirds of companies struggle to recruit the staff necessary to defend themselves; the Center for Cyber Safety and Education suggests a workforce gap of 1.8 million by 2022. What can be done asks Jay Coley.

Email security: a technological problem with a technological solution

Email fraud can only be solved using technology to improve what is, and always has been, an inherently unsafe communication method says Nick Yarham. Remove threats & halt fraudulent attempts before they reach the end user.

Closing the skills gap to secure the future - invest in people

Doug Wylie says organisations must invest in security skills now, to secure their systems for their future, noting companies have invested in tech for a workforce not trained how to securely operate and maintain these systems.

Equifax CEO departs, following CSO & CIO; breaches truly a board issue

Equifax CEO Richard Smith has abruptly retired following a massive breach that exposed the data of 143 million US consumers and thousands in Canada and the UK, and cast the company's security practices into question.

Are SOCs failing? People-centric security is key in attack detection

In order for an organisation to see a clear return on its SOC investment - an investment that can currently see millions spent and effectively nothing gained - it needs to ask where its efforts are best focused says Luke Jennings

Tier one incident expected, Government cyber-specs likely - NCSC

We can expect to see a cyber-security incident at a category one level within the next few years. The government specifying what it will buy is an effective way of changing the market - Ian Levy, technical director, NCSC

InfoSec 2017: "If security doesn't work for people, it doesn't work"

People are now officially the strongest link in cyber-security and this people-centric approach demands that vendors make their tech easier to use, and organisations implement policies that people will choose to follow.

MI5 deputy director general Jeremy Fleming appointed director of GCHQ

Jeremy Fleming, deputy director general of MI5, has been appointed to succeed Robert Hannigan as director GCHQ today.