So far, 2019 is looking very similar to last year. We’re only a month into the new year and already the headlines have been filled with news of data breaches, privacy leaks and credential stuffing attacks. And all this as GDPR regulators begin to flex their muscles by levying financial penalties. To stay clear of regulatory trouble and minimise cyber risk, IT teams should remember the best practice basics and layer up multiple connected threat defence tools. Continue reading →
We’ve been waiting some time for European GDPR regulators to flex their muscles since the legislation came into force at the end of May 2018. Well, now they have, after Google was handed a €50m (£44m) fine in France. Although this particular case revolved around privacy and transparency over how consumers’ information is used, rather than data security, it clearly serves as a warning notice for firms, wherever they are.
In light of the judgement, IT and data protection teams should be redoubling their compliance efforts. As we predicted in December, a maximum 4% fine is still on the cards for this year, and the next one could be for a major data breach. Continue reading →
Tens of thousands of technology enthusiasts are descending on Las Vegas for the annual CES show next week, many of them keen to see the latest innovations in connected gadgets. The Internet of Things (IoT) will have a bigger presence than ever at the event: a reflection of its increasingly important role in the corporate and consumer world. But as Trend Micro outlined in its 2019 predictions report, the IoT also represents a major security threat, which could impact manufacturers, service providers and end user organisations in a variety of ways.
As we start a new year, the only way to mitigate this risk is to work together across industry to improve security throughout the entire IoT ecosystem. Continue reading →
Consumer and enterprise security are usually treated as two discrete areas. But increasingly in 2019 we’ll see a convergence of threats. Ultimately, every employee is also a consumer — one who may work from a home filled with unsecured smart devices, exposing corporate systems and data to new threats.
The coming year therefore requires enterprise IT security teams to think more broadly about the risks facing their organisation, and ensure they have the policies and technologies in place to mitigate them. Continue reading →