Search results

GCHQ warns that AI will increase the global cyber threat The UK’s national cyber security centre (NCSC), part of GCHQ, has warned that AI will likely increase the global ransomware threat over the next two years, and that organisations need to implement protective measures to combat this growing threat. Ransomw...

Cyber lessons we can all learn from the ICO’s reprimand of BNT Given the number of cyber-attacks currently taking place, it’s always interesting to see what triggers a regulator to take action. The ICO’s recent reprimand to My Media World Ltd t/a Brand New Tube (‘BNT’) illustrates that a lack of regular pen testing, ...

IoT cybersecurity regulation picks up pace The regulatory framework for securing IoT devices is attracting the attention of both UK and EU regulators. In the EU, its Member States have recently agreed a common position on the proposed Cyber Resilience Act (which will deal with cybersecurity requir...

Cyber supply chain risk and the insurance sector The Capita cyber attack in March 2023 and possible resulting data breach has highlighted again the potential vulnerability of firms to cyber risk via their third party suppliers. The incident was particularly high profile given the scale of Capita’s opera...

Post Capita and Zellis, how do you manage cyber supply chain risk? The recent Capita, MOVEit and Zellis cyber attacks are another reminder of the importance of considering supply chain risk as part of your cyber preparedness plans. Traditionally this has been a blind spot for many organisations. Few were monitoring their...

Does ChatGPT pose a cyber threat? The NCSC looks at the risks and how to stay safe It’s fair to say that ChatGPT has caught our attention – it is one of the fastest growing consumer applications ever, reaching 100 million users a mere two months after launch. It has generated headlines in the tabloid and tech press alike predicting its ...

Government pushes ahead with plans to strengthen UK’s cyber resilience and regulate more IT services Protecting critical services and infrastructure from cyber incidents is a key priority for legislators on both sides of the channel. We heard last month how the EU is expanding the scope of its Network and Information Systems (NIS) regime to cover new sec...

EU expands scope of its cyber rules as NIS 2 agreed The EU has agreed changes to its cybersecurity rules. On 22 November 2022, the “NIS 2 Directive” received approval from the European Parliament. Yesterday, the text was also adopted by the Council of the EU, clearing the path for this to become law. What ...

Are you on top of your cyber supply chain risk? If not, new NCSC guidance may help Is your organisation one of the mere 7% of businesses who review the cyber risks posed by your wider supply chain, or one of the 93% that don’t? If it’s the latter, the National Cyber Security Centre’s (NCSCs) new supply chain guidance may help. Designed ...

Managing cyber risks: key lessons from the Interserve decision This morning, the Information Commissioner’s Office (ICO) announced that it had fined Interserve Group Limited (Interserve) £4,400,000 for breaches of the UK GDPR which came to light following a May 2020 cyberattack. This is the fifth enforcement decision...