‘Function Creep’: A very real risk that every DPO should be aware of
Nobody wants to sign up to marketing with your local supermarket expecting the latest deals on food to then find out, they have expanded into
Blogs
Cookies: Total €210 million fine for Google & Facebook
CNIL (the Data Protection Regulator in France) has fined Google & Facebook for non-compliance with Data Protection legislation related to the use of cookies and
Log4j vulnerability – CVE-2021-44228
Log4j is a fast and flexible logging framework. It essentially allows developers to control which log statements are output with arbitrary granularity. What is the
Microsoft’s new Open-Source nature is a breath of fresh air
Today’s cyber threats and exploits don’t follow a system or schema. They are heavily customised, built to be executed on any system regardless of O/S or function – and that makes them more deadlier than ever for an organisation’s digital platform.
9/11 – Twenty Years on
The advances in technology since then can now allow an attacker to achieve wide reaching consequences without having to be physically present at the target. The combination of cyber-attacks and physical attacks place even greater demand on security professionals to manage the risk.
When the September 11 attacks were carried out, terror groups had a minimal online presence. Changes in technology have allowed these groups to embrace the anonymity the internet can provide to further their activity.
GDPR – The Cyber Criminal’s Friend
Since GDPR came in there have been a few changes in the cyber landscape and one significant change is the rise of ransomware. It is simply everywhere. When you first look you may be forgiven for thinking that it is particularly prevalent in the USA. And yes, that is partly true, but the reason for that is that by US law, a company must declare when they have had a data breach. Since 2002, the US Data Breach Notification Laws state that a company has 10 days to notify the authorities of a data breach. That, from a mapping point of view, is what makes the US look like a hotspot.
Construction Industry – Threat Assessment August 2021
The construction industry may not appear to be an obvious target for cybercrime. The industry has an image of being a physical world industry with no connections to the digital one. If only that was true. The construction industry is being sought out by threat actors as the next easy target. In 2020 the average cost of the data breach within the construction industry was $4.99 million US dollars.
Automating malware analysis with Cuckoo Sandbox
Malware is an ever-present but constantly changing threat in the cyber security world.
EU Adopts ‘Adequacy’ decision allowing data to continue flowing freely to the UK
Good news followed the weekend, as the European Commission approved plans to recognise the United Kingdom’s data protection regime as ‘adequate’.
Ransomware – Do I need Cyber Insurance
Ransomware incidents continue to feature in the international as well as IT industry press, with recent high profile victims being JBS Foods, Fujifilm, Colonial Pipeline, Ireland’s Health Service Executive, and AXA Insurance. Less well publicised are the many smaller organisations that are held to cyber ransom.
Categories
Latest Insights
Cyber Security: What to Expect in 2023
December 7, 2022
We share 10 insights from a number of Bridewell’s cyber security experts on what you can expect from the world of cyber security in 2023.
Growing Business Awards 2022: Bridewell Win ‘Growing Business of the Year’
November 24, 2022
Bridewell is proud to have won ‘Santander Growing Business of the Year: Turnover £10m – £25m’ at this year’s Growing Business Awards. Amongst a strong
Going to the World Cup? Be Cautious of Qatari Apps
November 18, 2022
Becky Nicholson Senior Data Privacy Consultant Becky is part of the team at Bridewell which delivers General Data Protection Regulation (GDPR) and Data Privacy services
