InfoSec / Cyber

"A graphic announcing 'October is Cyber Security Awareness Month,' with text explaining the importance of creating a cyber emergency contact list in preparation for a cyber attack. It also includes a 'Cyber tip' to assess passwords, turn on MFA, and review critical accounts, especially email. A shield icon with a checkmark and a lightbulb icon are visible."

October 21. Hardware: Asset Management

In any organisation, and even for individuals with multiple devices, simply knowing what hardware and software you own is the foundational step for effective cybersecurity. This practice is known as asset management, and it's far more than just an inventory list; it's a critical component of risk management and security posture. You cannot protect what you do not know you have, or what state it's in.

Read more …

"A graphic announcing 'October is Cyber Security Awareness Month,' with text explaining the importance of creating a cyber emergency contact list in preparation for a cyber attack. It also includes a 'Cyber tip' to assess passwords, turn on MFA, and review critical accounts, especially email. A shield icon with a checkmark and a lightbulb icon are visible."

October 20. Hardware: Safe disposal

When upgrading your tech or getting rid of old devices, simply deleting files or formatting a hard drive is often not enough to truly erase your data. Safe disposal of hardware is a critical, yet frequently overlooked, aspect of cybersecurity. If sensitive personal or organisational information remains recoverable on old devices, it can easily fall into the wrong hands, leading to identity theft, financial fraud, or severe data breaches.

Read more …

"A graphic announcing 'October is Cyber Security Awareness Month,' with text explaining the importance of creating a cyber emergency contact list in preparation for a cyber attack. It also includes a 'Cyber tip' to assess passwords, turn on MFA, and review critical accounts, especially email. A shield icon with a checkmark and a lightbulb icon are visible."

October 19. Anti-virus/anti-malware

Anti-virus and anti-malware are essential tools that are designed to detect, prevent, and remove malicious software – collectively known as malware – that can infect your devices, compromise your data, and disrupt your operations. Just like your body needs an immune system to fight off infections, your digital devices need protection against cyber threats.

Read more …

"A graphic announcing 'October is Cyber Security Awareness Month,' with text explaining the importance of creating a cyber emergency contact list in preparation for a cyber attack. It also includes a 'Cyber tip' to assess passwords, turn on MFA, and review critical accounts, especially email. A shield icon with a checkmark and a lightbulb icon are visible."

October 18. Regular Updates: Patching Against Threats

In the fast-evolving world of cybersecurity, software, operating systems, and applications are constantly being refined, improved, and, crucially, secured. Regular updates, also known as patching, are not merely about gaining new features or improving performance; they are an absolutely critical cybersecurity practice. Neglecting updates is like leaving your digital doors wide open after a burglar has already identified the weak spots.

Read more …

"A graphic announcing 'October is Cyber Security Awareness Month,' with text explaining the importance of creating a cyber emergency contact list in preparation for a cyber attack. It also includes a 'Cyber tip' to assess passwords, turn on MFA, and review critical accounts, especially email. A shield icon with a checkmark and a lightbulb icon are visible."

October 17. Access Control: Managing User Privileges

In cybersecurity, access control for users is about ensuring that only authorised individuals can access specific systems, applications, and data, and only to the extent necessary for their role. This principle is often referred to as the "principle of least privilege"  – granting users the bare minimum permissions required to perform their job functions, and nothing more.

Read more …

"A graphic announcing 'October is Cyber Security Awareness Month,' with text explaining the importance of creating a cyber emergency contact list in preparation for a cyber attack. It also includes a 'Cyber tip' to assess passwords, turn on MFA, and review critical accounts, especially email. A shield icon with a checkmark and a lightbulb icon are visible."

October 11. Policies and Procedures: Cyber Blueprint

Cyber security has many levels; policies and procedures are about establishing clear rules, guidelines and processes that govern how information is handled within an organisation.  Well-defined policies and procedures serve as the blueprint for your cyber security program, ensuring consistent practices, reducing human error and providing a framework for accountability.

Read more …

"A graphic announcing 'October is Cyber Security Awareness Month,' with text explaining the importance of creating a cyber emergency contact list in preparation for a cyber attack. It also includes a 'Cyber tip' to assess passwords, turn on MFA, and review critical accounts, especially email. A shield icon with a checkmark and a lightbulb icon are visible."

October 10. Understanding Your Cyber Posture

Before you can effectively improve your cyber security, you must first understand where you are - Understand Your Cyber Posture. It involves a thorough evaluation of your existing security measures, identifying vulnerabilities, and understanding the risks you face.  You can't protect what you don't know you have or what weaknesses you might have hidden

Read more …

  1. October 9. A Guide for Education Providers
  2. October 8. How Can Your Organisation Prevent Ransomware Attacks?
  3. October 7: Under Attack: The Reality of Ransomware
  4. October 6: Cyber Action Plan and A Roadmap to Resilience
  5. October 5: Cyber Responsibilities - We're All in This Together
  6. October 4: When a Cyber Attack Hits
  7. October 3: Data Security, the Core of Protection
  8. October 2: Privacy Protection & Safeguarding Personal Data
  9. October 1: Welcome to Cyber Security Awareness Month!
  10. Nursery Cyber attack
  11. The NCSC Cyber Assessment Framework
  12. The Classroom's Dark Side: Cyber crime from the Classroom
  13. The Latest Cyber Threat: The "Murky Panda"
  14. Holiday Cheer or Cyber Fear? : Essential Pre-holiday Checks
  15. Social engineering + impersonation = Fraud ≡ cyber deception
  16. School cyber attack: Framlingham College, Suffolk
  17. Getting caught in the Scattered Spider web
  18. A Wake-Up Call for Cyber Vigilance - Danger in the Threat Landscape for Everyone
  19. World Password Day
  20. Apple removes its highest level data security tool from UK customers
  21. The role of Passkeys in Cyber Resilience and Cyber Security
  22. Ransomware-Resistant Backups
  23. Effectively communicating during a cyber incident
  24. Safeguarding Identity in Microsoft 365: Protecting the UK Education Sector Against Cyber Threats
  25. How does the recent global IT outage affect me?
  26. King's speech introduces new bills in relation to cyber security, smart data and digital information
  27. What's a Cyber Incident and what should we do?
  28. Free short cyber training for staff
  29. Children's mental health data leaked after a cyber attack
  30. Cyber Incident Review: The Benefits
  31. Cyber attack on a University
  32. Kent Councils Data Breach
  33. Phishing attacks targeting schools - alert from City of London Police
  34. Update on Advisory for Rhysida Ransomware
  35. The Crime in a Cyber Attack and a Data Breach
  36. NCSC Annual Review is published for 2023
  37. Learning from Data Breaches
  38. Windows 11 security ineffective against attacks on old devices
  39. International Counter Ransomware Initiative 2023 Joint Statement
  40. Resistant Cloud Backups
  41. Top Ten Cyber Security Misconfigurations
  42. ICO Reprimand: company suffered a ransomware attack
  43. The UK Online Safety Bill becomes an Act (Law)
  44. The importance of software updates (PaperCut vulnerability and Rhysida ransomware)
  45. Ransomware, extortion and the cyber crime ecosystem
  46. Schools under Cyber Attack: September 2023
  47. Cyber Resource: The Cyber Resilience Centre Group
  48. Email and Security: ICO recent guidance
  49. What to do in the event of a Cyber Attack
  50. Cyber Crime: AI Generated Phishing Attacks
  51. Cyber Attack: Exam Boards
  52. VICE SOCIETY - Ransomware attacks on schools
  53. Be Cyber Aware: USB Sticks
  54. Cyber Insurance in the Public Sector
  55. Types of Cyber Attacks: DDos Attack (Microsoft DDoS Attack in June)
  56. Cyber Attack: Manchester University
  57. Cyber Attack: Leytonstone School
  58. Be Cyber Aware: Firewalls
  59. Be Cyber Aware: Cyber attacks and transparency. A no blame culture
  60. Cyber Attack: Dorchester School
  61. Types of Cyber Attacks: Password Attacks
  62. Be Cyber Aware: Why regular software updates are important
  63. Cyber Security Breaches Survey 2023
  64. Cyber Attack: Wiltshire School
  65. Keeping your IT systems safe and secure
  66. Why we recommend using PIN codes on printers
  67. Types of Cyber Attacks: DDoS Attacks
  68. Types of Cyber Attacks: Phishing
  69. Types of Cyber Attacks: The Insider Threat
  70. Why your data is profitable to cyber criminals
  71. Types of malware and how they are linked to data protection
  72. A guide to multi-factor authentication
  73. How a school fought back after a cyberattack
  74. Types of Cyber Attacks - Credential Stuffing
  75. January Cyber update - How Can Schools Help Prevent Cyber Attacks?
  76. End of Windows 8.1 Support
  77. The Education sector now at highest risk of cyber attacks
  78. Cyber Attacks
  79. Emails – good practice and minimising the risk of a data breach

Search