Cyber Security Archive

CyRiM’s (Cyber Risk Management Project) chilling report, Global infection by contagious malware , describes a scenario in which a well-resourced, motivated and malicious cyber team creates a self-replicating worm that encrypts all devices and wipes backups. I recently commented on what …

Everyone now knows that a personal data breach may lead to an ICO (Information Commissioner’s Office) investigation, financial penalties and/or other regulatory action. But what about the commercial consequences? It’s long been a standard observation that data breaches lead to …

There is a trend among organisations that suffer data breaches – such as Eurostar, which has just identified a major data breach – to downplay their impact by saying things like ‘while usernames and passwords were compromised, the good news …

The Court of Appeal has upheld the lower court decision that supermarket chain Morrisons is vicariously liable for a data breach by an employee. The detail of this decision is interesting. The Court found that, as Morrisons had instructed the …

Ransomware is a fact of life, right? Sooner or later, a member of staff is going to click a malicious link or visit a dodgy website, and a ransomware product will download and install itself. There are three ways you …

You’ll remember that Yahoo suffered a significant data breach (affecting about 3 billion user accounts) in 2013, but didn’t get around to telling anyone until 2016. The costs of that breach are now becoming clear: $350 million reduction in the …

Although it is largely expected that Internet giants like Facebook deal rapaciously with users’ personal data, it is astonishing that a publicly funded institution such as the NHS should decide to ignore the recommendations of its own CIO on the …