One question we are often asked is the cost of ISO 27001 certification, and it is something that companies should bear in mind when considering whether to invest in the information security certification journey. ISO 27001 – Information Security, cybersecurity and privacy protection Let us first understand a little about the standard. The most recent …
It is interesting to note the number of searches for ISO 27001 pdf, or even the number of searches for a free version of the standard. This presents some interesting questions and considerations, not least those of ethics! Regardless of the fact that most ISO standards are derived by a group of volunteers, the copyright …
Over four years after the implementation of GDPR across Europe, three clear leaders have emerged in terms of the numbers of fines issued for breaches of Articles 32, 33 and 34. According to the GDPR Enforcement Tracker website, the most prolific regulators are: Romania – 47 fines Italy – 32 fines Spain – 32 fines …
Romania, Italy and Spain Lead the Way in GDPR Fines Read More »
Details are currently very limited, but it is clear that the delivery service Yodel is dealing with a serious cyber incident. It appears that disruption began some time over the weekend, with delays to deliveries and loss of parcel tracking for customers. Commentators believe that this is a ransomware attack, but this has not been …
The overriding message from this year’s Cyber Breaches Survey is that little has changed. The headline figure of organisations experiencing a cyber breach or attack remains exactly the same as last year at 39%. As normal, phishing attacks remain the most prevalent for of attack (83%). Digging down into a bit more detail there is …
Little has Changed in Latest UK Government Cyber Breaches Survey Read More »
To their great credit, the Irish Health Service Executive (HSE) has published the full post-incident report into last year’s Conti ransomware attack. Prepared for them by PwC, the report is a fascinating read and allows us all to learn from the HSE’s unfortunate experience. The initial infection took place on 18th March 2021, when a …
What Lessons can we learn from the Conti Ransomware Attack on the Irish HSE? Read More »
Whilst discussions of information security tend to focus on high-tech cyber attacks; the reality is that many data breaches are down to human error. Generally the biggest single cause of data breaches reported to the Information Commissioner’s Office is simply people sending information to the wrong people. Loss or theft of devices is another significant …
Possible Decrease in Lost Devices by UK Government Departments Read More »
Never let it be said that we don’t celebrate good news! Since April 2018, UK banks have had to report “Operational and Security Incidents” affecting personal and business current accounts to the Financial Conduct Authority (FCA) if they reach any of the following thresholds: 10% of transaction affected; 5000 payment service users affected; and/or 2 …
Some Good News in Latest Figures from the Financial Conduct Authority Read More »
According to figures published recently by the International Standards Organisation (ISO), there was another steep rise in the number of certifications globally to both ISO 222301 and ISO 27001 last year. As of the end of 2020, there were: 44 486 valid ISO 27001 certificate (up 22% on 2019); and 2205 valid ISO 22301 certificates …
Another Big Rise in ISO 22301 and ISO 27001 Certifications Read More »
