Practical, Cost Effective and award-winning

Business Continuity, Crisis Management & Information Security Solutions

Phone:

0800 035 1231 (Mon to Fri 9am – 5pm)

36B Market Street, New Mills

Derbyshire, SK22 4AA, United Kingdom

The Information Commissioner's Office (ICO) has today issued a notice of its intention to fine British Airways £183.39M for infringements of GDPR.  The proposed record-breaking fine relates to a well-publicised cyber incident in 2018, wherein user traffic to the British Airways website was diverted to a fraudulent site.  Personal data of approximately 500,000 customers were affected [...]

According to a recent report by Forrester Research, ransomware attacks on businesses are up 500% on last year!  The report also states that many firms have felt obliged to pay ransoms, as attackers have become more sophisticated in targeting backups; indeed it states that paying a ransom can ‘be a valid recovery option based on [...]

Our daily blog series for Business Continuity Awareness Week (BCAW) 2019 continues with an update on information security.... Based on information from four of the five recognised accreditation bodies (CREST, IASME, APMG and QG Management Systems), there has been another big increase in the number of organisations achieving certification under the UK Government’s Cyber Essentials and [...]

I don't know how it happens, but you can usually rely on one or more big news stories during Business Continuity Awareness Week (BCAW); most spectacularly the Wannacry attack on the eve of BCAW 2017.  This year, two days into BCAW, we have the announcement of the WhatsApp surveillance attack.  Whilst, in some ways, the [...]

A recent academic study by Daniele Bianchi and Onur Kemal Tosun analysed the market reaction to 41 deliberate (ie criminal) security breaches that occurred in large US firms between 2004 and 2016.  The authors found that firms experiencing such a security breach experienced a loss in value of between 1 and 1.5% over a period [...]

Regular readers may remember that back in November 2016 we blogged about a cyber attack on Tesco Bank in which money was taken from 20 000 customers and all on-line banking was suspended. At the time, Tesco Bank were seen to have managed some aspects of the incident very well: the fraud was detected promptly [...]

Building on her previous studies over the last twenty years, Deborah Pretty of Pentland Analytics has recently published new research looking at "Reputational Risk in the Cyber Age".  The study analyses a sample of 125 reputational risk events over the last ten years including: The Samsung Galaxy Note7 recall; The Volkswagen emissions scandal; and Cyber-attacks [...]

The Information Commissioner's Office (ICO) published its report for the year 2017/18 last month, containing a useful update on the prevalence of information security issues. Firstly, the ICO reported that the number of data protection concerns raised had risen to 21019 (up 15% from last year).  In a similar pattern to last year, 32% of [...]

The Business Continuity Institute (BCI) recently published its 2018 Cyber Resilience Report.  In many ways this year's report confirms the findings of the previous reports in 2016 and 2017: 66% of organisations experienced at least one "cyber security incident" in the last 12 months (64% in 2017); 11% of organisations experienced more than 20 incidents [...]

Last week was a very busy week for the ICO - and nothing to do with GDPR.... First came the announcement on 12th June that Yahoo! UK Services Ltd was being fined £250 000 for the massive data breach in 2014 (disclosed in 2016) affecting 500 million users globally.  Specifically, the ICO's investigation focused on [...]