Category Archives: Cloud security

Preventing Cyber-Physical Disaster: An IoT Masterclass at Infosecurity Europe

by Ross Baker

The Internet of Things (IoT) offers tremendous value to organisations, their customers and employees, driving business agility, productivity, cost reductions and much more. That’s why the total number of connected things is predicted to top 20 billion by 2020. Unfortunately, this IoT explosion also creates unique opportunities for cybercriminals. Of these, attacks which impact the physical world are arguably the most serious, potentially leading to costly service disruption and even loss of life.

That’s why we’ll be sharing some key best practice tips with attendees at Infosecurity Europe next month on how organisations can mitigate the risks of IoT-powered cyber-physical attacks. Continue reading

Picking Through Vendor FUD as Infosecurity Europe Approaches

by Bharat Mistry

We’ve hit a period of relative calm in the cybersecurity space over the past few weeks with no new reports of major breaches or threats. In fact, there have actually been a few positive news announcements of late, with UK organisations spending more on threat protection and seeing some decent results.

But as the annual Infosecurity Europe event next month draws nearer, perhaps we should remind ourselves that the industry is still filled with marketing claims which don’t necessarily tell the whole story. IT security buyers therefore need to focus their spending carefully if they want to maximise ROI. Continue reading

As DPO Vacancies Soar 700%, Time is Running Out to Craft a Coherent GDPR Strategy

by Bharat Mistry

New figures from jobs site Indeed this week reveal that vacancies for Data Protection Officers (DPOs) have soared by 709% in the two years since the EU General Data Protection Regulation (GDPR) was ratified two years back. It’s a shame that, with so long to prepare, organisations are only now wising up to the implications of the region-wide privacy law. Our own research has shown that many other areas of investment are also lacking.

What are needed most now are cool heads and a long-term, strategic approach to GDPR compliance. Racing to finish before the May 25 deadline could lead to mistakes and gaps which may cause more harm than good. Think of this as a continuous process, not a one-off Y2K-style effort. Continue reading

You Can’t Outsource Accountability: Uber Breach Highlights Firms’ Cloud Security Responsibilities

by Bharat Mistry

Consumers and cybersecurity professionals around the world have been stunned by Uber’s revelation that it paid hackers $100,000 to delete data on 57 million users stolen last year. There are many strands to the case, and more details are likely to emerge over time. But fundamentally it highlights the need for firms to secure their cloud environments as rigorously as anything on premise.

With the EU GDPR promising huge fines for firms that fail to suitably protect customer data, companies must realise that when it comes to the cloud, you simply can’t outsource accountability. Continue reading