Risk management consultancy Assent is pleased to announce it has been awarded Cyber Essentials Certification for a third consecutive year. As an Information Security and Cyber Security consultancy, we understand too well the importance of ensuring organisations implement robust technological…
Cybercriminals are well versed in finding prime targets to execute their attacks – and small businesses are considered ripe for the picking. Many SMEs consider themselves to be safe since they employ a ‘security-by-obscurity’ policy – they feel like since…
More changes are coming to EU privacy laws – how is your organisation going to prepare? What is the ePrivacy Regulation? The ePrivacy regulation governs the use of electronic communications within the EU – and will ultimately replace The Privacy…
43% of cyberattacks target small to medium businesses, according to SCORE. With regards to malicious software – Macro-malware and ransomware were found to comprise a significant portion of these attacks. Even to this day many businesses lack employee awareness training…
One year after the requirements of the General Data Protection Regulations (GDPR) came into force the UK regulator, has issued two multi-million pound fines. GDPR updated the 20-year-old Data Protection Act for today’s data environment and increased the maximum fines…
What is a USB Drop Simulation? A simulated USB drop attack is where you place a USB stick with tracking software installed in a commonly travelled area in the workplace, and see if employees follow company policy by handing it…
Defeating Encryption: Are popular messaging apps REALLY that secure? Texting has become a large part of all our lives – in fact, texting is the most prevalent form of communication for under 50’s. We trust in the security of these…
PLEASE NOTE: ISO 27001:2013 was revised in 2022. The new standard has 93 controls, 11 of which are new. Read more about the new ISO 27001:2022 Standard: What Has Changed in ISO 27002:2022? ISO 27001:2022 Consultants. Unlike other management system…
Although many computing activities are now handled in the cloud by a service provider, the Physical Security of information is still an important part of ISO 27001, the international standard for information security. The Confidentiality, Integrity and Availability of data…
