What is World Backup Day?

Tony MasonCyber Security, Data Backup, Data Protection, Microsoft 365 Security

World Backup Day, established in 2011 by a Reddit Group, is celebrated annually by the backup and tech industry all over the world.  It serves as a crucial reminder for both businesses and individuals to safeguard their data. Highlighting the importance of protecting data and keeping systems and computers secure. It encourages the creation and maintenance of backup copies to … Read More

How Essential is an Incident Response Plan?

Tony MasonCyber Security, Penetration Testing

What is an Incident Response Plan?  An incident response plan is a comprehensive and structured approach to addressing and managing security incidents within an organisation. Particularly, it outlines the steps, roles, responsibilities, and procedures to follow in the event of a security breach or any other adverse event that may impact the organisation’s systems or data. What’s the Purpose of … Read More

Email Security Risk Remains High

Tony MasonCyber Security, Data Protection, Email Security

A recent email security survey by Egress highlighted that outbound email is a source of breaches for almost every organisation. 91% of the surveyed cybersecurity leaders stated that their organisaton had experienced security incidents by outbound email data loss within Microsoft 365 in the last 12 months. Causes of Outbound Email Security Incidents Overall, these incidents were the result of … Read More

Email Security Risk Remains High

Tony MasonCyber Security, Data Protection, Email Security, Microsoft 365 Security

Almost every organisation reports experiencing email security incidents. Unfortunately, legacy approaches to technology and training can’t keep pace with evolving threats. A recent survey by Egress highlighted that cybersecurity leaders remain vulnerable to both inbound phishing attacks and outbound data loss and exfiltration.  This is making them question the effectiveness of traditional approaches to email security. 94% of the 500 … Read More

KnowBe4’s ‘Security Essentials for the UK’ Course is now NCSC Certified

Tony MasonCyber Security, Security Awareness & Phishing

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, has announced that its Security Essentials for the United Kingdom course is now certified by the National Cyber Security Centre (NCSC). This coveted certification will lead to further security awareness training across the UK. NCSC Certification The NCSC’s certification programme is designed to assure high quality … Read More

Password Manager – The Good, The Bad & The Truth.

Tony MasonCyber Security, Data Protection, Password Management, Security Awareness & Phishing

As part of any security awareness training we cover passwords. We teach users how to choose secure passwords, with the right length and characters, pass phrases etc. However, the average person has to log on to over 170+ sites/services and usually only have 3 to 19 passwords. That means there are a lot of weak/shared passwords in use & some … Read More

5 Ways For Housing Associations to Level Up M365 Email Security

Tony MasonCyber Security, Data Protection, Email Security, Microsoft 365 Security, Security Awareness & Phishing

The newly published Email Security Risk Report reveals that 99% of Cybersecurity leaders are stressed about email security.  Plus 93% of organisations experiencing security incidents in the last 12 months.  It is easy to see why. For housing associations, the risk email poses to sensitive data is pervasive. They operate a complex infrastructure environment, and need to ensure employees are appropriately … Read More

Patch Management Explained: Best Practices & Benefits

Tony MasonCyber Security, Data Protection, Patch Management

All You Need To Know About Patch Management And Why Automated Patch Management Will Simplify Your Sysadmin’s Life – by ANDRA ANDRIOAIE. What is Patch Management? Patch management if the process of distributing and applying updates to software. These patches are frequently required to fix bugs in the software known as vulnerabilities. It entails the acquisition, review and deployment of … Read More

Zero Trust & ZTNA

Tony MasonCASB Cloud Application Security, Cyber Security, Data Protection, MFA, Web Security

Zero-Trust is a security framework of products or services that removes inherent trust from your organisation. Instead it requires strong, regular authentication/authorisation of all devices and users, together with context & policy adherence. Zero-Trust Network Access (ZTNA) is a term coined by Gartner. It uses the concept of ‘Zero Trust’ in the control of access to the company’s resources at … Read More