Going beyond regulation

The cyber-security landscape is plagued by the fact that cyber-criminals seem to be permanently one step ahead and rather than addressing the problem, it seems that regulation is, in some cases, compounding the problem. Understandably, many organisations are opting to define security policies based on regulatory requirements, however the result is that their security postures […]

“Weeping Angel, Hidden documents”: CIA leaks, professional hackers and upcoming challenges in data protection

Recently, the world was rocked by the release of official documents released from the CIA’s private collection. It was WikiLeaks’s most thorough collection of official documents yet: the vigilante group leaked roughly 9000 documents stolen from the CIA’s specialist digital team. Analysis of the documents revealed that they were designed as a record of new […]

Online retailer left customers’ financial details vulnerable to cyber attack

An online building products supplier has been fined £55,000 by the Information Commissioner’s Office (ICO) after the firm failed to protect its customers’ personal information. Construction Materials Online Ltd (CMO) was unaware its website contained a coding error which left it vulnerable to attack. On 6 May 2014 an attacker used a common hacking technique […]

GDPR: the contact centre conundrum

The majority of us are unaware of how much of our personal data is now collected and used.  Traditionally, it was collected directly from us, for example when we filled in a form, and given with complete knowledge and explicit permission.  Increasingly, organisations use data that has not been consciously provided by us. Our personal data might […]