Information Assurance
Safeguarding critical infrastructure: SCADA testing
The world would be a very different place without industrial automation and Supervisory Control and Data Acquisition (SCADA) systems serve as the backbone.
What is an IT Health Check?
An IT Health Check is an annual assessment required for public sector organisations using the government’s Public Services Network (PSN).
Mitigating the risks of public IP addresses
You’ve heard of IP Addresses, you might even know what they are, but if you need to get a penetration test for your website or web application, why is your cyber security consultant asking about these as well? When it comes to penetration testing your web applications, it’s important to include your public IP addresses in the scope and here’s why.
What is password hygiene and why is it important?
Back in 2019, the National Cyber Security Centre shared some of the alarming password practices that came out of research they did into cyber security in the UK.
What is Infrastructure Testing?
Infrastructure Testing is an aspect of penetration testing that is often overlooked by organisations who are looking at improving their cyber security.
What is zero trust?
Three years ago, the UK’s National Cyber Security Centre recommended that, in new IT deployments especially those with connections to the cloud, a zero trust approach should be adopted.
‘Tis the season that we’re all more vulnerable to cyber attacks
It’s that glorious time of year; we’re spending time with loved ones, going to parties, exchanging gifts and probably taking some time off work.
Cyber security as risk management
Many of our first conversations with our clients involve our cyber security consultants aiming to simplify things a bit.
Is my organisation doing cyber security correctly?
A question we often hear from our clients is, “are we on the right track?” Of course, when it comes to digital/cyber risk there is no simple answer for this, there never is.
How much data is your organisation leaking without realising it?
Have your friends and colleagues had their COVID-19 vaccine jab yet? Well, don’t worry about waiting for them to tell you because you can find out from the NHS Digital booking website directly…sort of.
IMO’s 2021 Cyber Security Regulations are dead ahead
Malicious cyber activity targeting or affecting the maritime sector has soared in 2020 and, with the end of the year fast approaching, so too is the impending deadline for compliance with the International Maritime Organisation’s (IMO) cyber security regulations.
Cyber security in the healthcare sector
The UK Healthcare sector is currently regarded as the most at-risk sector to cyber attacks. This follows a report by data security provider Clearswift which revealed that last year in the UK, 67% of healthcare organisations experienced a cyber security incident.
Keeping an eye on COVID-19 cyber security risks
As the world deals with the COVID-19 pandemic, cyber security issues may have taken a backseat for both individuals and companies.
Cyber security and remote working
Hybrid working or full remote working arrangements are the norm now, so here are some suggestions for keeping your organisation running smoothly.
What’s the difference between a vulnerability assessment and a penetration test?
We often get enquiries asking for a penetration test, but really the enquirer wants a vulnerability assessment (also referred to as a vulnerability scan).
How your IT department can get the most out of penetration testing
When arriving on site to undertake penetration testing, one very quickly gets a sense of how the local IT staff work.
Common mistakes when engaging a penetration testing consultant
FACT: In 9 out of 10 internal penetration tests we undertake, we are able to achieve a complete compromise of the network due to simple configuration mistakes.
How a hacker will access your network
It has become rather cliché to say that data is now more valuable than oil, but for many organisations, it’s absolutely true.
6 things you will learn about your organisation from a penetration test
A penetration test will help you understand your technical vulnerabilities. But, that’s not all.
What is a Red Team?
‘Red team’ activities are concerned with offensive security exercises e. g.
