European Cyber Security Month 2019

European Cyber Security Month

European Cyber Security Month (ECSM) is an EU awareness campaign that promotes cyber security among citizens and organizations about the importance of information security and highlighting the simple steps that can be taken to protect their data, whether personal, financial and/or professional. The main goal being to raise awareness, change behaviour and provide resources to … Read more

The importance of off-site backups

Backup Media Rotation

There are as many different backup strategies as there are IT consultants, but all will agree that having multiple backups to different media types, and having an off-line or ‘cold’ backup is crucial for every business. Modern malware and viruses, and in particular ransomware, has the ability to seek out and permanently destroy any backup … Read more

Artificial Intelligence is now being used to scam businesses

Deepfakes

According to The Wall Street Journal, a UK energy company’s chief executive was tricked into paying €200,000 to a supplier because he believed his boss was instructing him to do so. But the company’s insurance firm said that a fraudster was using deepfake software to mimic the voice of the executive and request pay him … Read more

Aged debtors email scam

Aged Debtors Email Scam

A new email scam is targetting businesses indirectly by tricking finance personnel into handing over aged debtors reports. Here’s how the scam works. The scammer contacts the finance deparment of organisation ‘A’ from a spoofed email address pretending to be a manager or director within the same company, requesting a list of aged debtors. The … Read more

New Ransomware targets QNAP NAS Drives

QNAP NAS Drive

A new form of ransomware called eCh0raixis is targeting QNAP NAS Drives, exploiting vulnerabilities in the device and brute-forcing passwords to encrypt the contents. eCh0raix connects to a command-and-control server on the internet and then begins the encryption process, creating an AES-256 encryption key to lock the files with a .encrypt extension. Users are then … Read more

ICO issues £183 million GDPR fine to British Airways

British Airways

British Airways has been fined more than £183m by the Information Commissioner’s Office after hackers stole the personal data of half a million of the airline’s customers. The ICO said its investigation found that the incident involved customer details including login, payment card, name, address and travel booking information being harvested after being diverted to … Read more

New website extortion scam

Aged Debtors Email Scam

The latest email scam campaign is an email warning you that your website will be forced offline, and your online reputation ruined if you do not pay a ransom fee. The Scammers request a payment of over £2,000, and warn that they will do ‘tens of thousands of dollars’ worth of damage if you do … Read more

GDPR one year on

IT & GDPR Consultancy

It’s coming up on one year since the General Data Protection Regulation (GDPR) became law, and part of the compliance process for every organisation is to undertake regular reviews and have a continuous improvement policy. So now is a good time to review your GDPR processes, documentation, training and staff awareness. Some points you should … Read more

46% of UK businesses don’t trust their disaster recovery plan

Disaster Recovery Plan

Nearly half of businesses in the UK (46%) are not confident their business continuity plans are up to date, according to a report from Databarracks. The report says that organisations are being regularly exposed to potential business disruptions because of poor business continuity management. Business resiliency in the face of disruption starts with good governance … Read more