The latest findings from PwC’s Global State of Information Security Survey 2018are out and they don’t bode well for GDPR compliance. In fact, many UK organisations polled don’t even know how many attacks they suffered last year or how they occurred, while board-level involvement in cybersecurity strategy remains minimal. These findings chime with those of a major piece of Trend Micro research into the forthcoming European data protection regulation.
To overcome these challenges, UK firms need to refocus their efforts around cybersecurity best practice, starting with a layered approach to threat protection blending multiple techniques at endpoint, gateway, datacentre and network levels. Continue reading →
If 2014 was the year of the targeted attack, 2015 is already proving just as prolific for cybercriminals. Barely a week goes by without hearing about yet another major data breach of sensitive IP or customer information. The latest data makes for pretty depressing reading for IT leaders: if we’re to believe it, virtually every organisation in the UK has now been hacked at one time or another. But it should also be a wake-up call that determined attackers have the tools, the persistence and the technique to get inside your network.
With this in mind, it’s more important than ever that IT bosses adapt their strategic thinking. They need to accept that they have probably been breached, and work instead towards locating an attack and responding effectively in order to mitigate risk. Continue reading →