Insight

Modern digital transformations have been fuelled by APIs, altering how many businesses and organizations run. However, the recent innovation and digital transformation wave have also opened up new attack surfaces for cybercriminals. Companies are forced to respond to an increase in API threats, but they quickly learn that traditional, static methods of API security are ineffective. Machine learning (ML) and artificial intelligence (AI) become helpful allies in stopping API attacks. The topic of whether to...

In today's digital age, where organisations heavily rely on technology and data, ensuring strong Cyber Security practices is paramount, and one often overlooked aspect, is the departure of staff members. The departure of an employee can introduce vulnerabilities and risks if not handled properly. Establishing a well-defined process for staff departures is crucial not only for maintaining operational continuity but also for safeguarding sensitive information from potential cyber threats. Chris White, member of International Cyber...

In an age dominated by digital technologies and the constant evolution of information technology (IT), businesses are ceaselessly exploring innovative avenues to streamline operations and curtail costs. Among the emerging trends, the integration of solar power into IT infrastructure stands out as a transformative force. Energy Efficiency and the Bottom Line Conventional data centres, pivotal components of contemporary IT infrastructure, have earned a reputation as voracious consumers of energy. The monumental computational prowess required to...

In the fast-paced world of gaming, the allure of achieving the next level, unlocking a new weapon, or solving an intricate puzzle can be irresistible. Just as irresistible, though, is the allure of cybercriminals seeking easy targets in the vast digital playground of the gaming world. With the UK and US gaming markets being amongst the largest and most lucrative, the need for gamers to understand cybersecurity has never been greater. This article provides resources...

BizDevOps in a nutshell Many organisations claim to be data-centric and data-driven. Making informed decisions based on what their organisation’s data is telling them. But how many organisations can truly say they have an effective and operational Data Management framework in place? The good news is that it is relatively easy to remove the toil and burden with automation and implementing a Data Model program to improve the accuracy and quality of the underlying data....

A few years ago, DLP was a hot security buzzword and a relevant single offering. Now, it’s been swallowed up as part of other, beefier solutions that offer a buffet instead of an entrée. However, to understand where to find DLP today and what exactly it’s doing, it helps to get a sense of the whole picture. Let’s review the rise, decline and – reincarnation? - of the Data Loss Prevention category. Where DLP Started...

As the world moves increasingly online, risk management professionals and business owners must continue to invest in the prevention of cyber threats. It’s surprising, to see just how many businesses have plans in place for all sorts of things such as fire, flood and COVID-related issues, yet don't have any action plans in place should a cyber attack occur.  What happens in the minutes, hours and days after an attack is crucial. This is where...

Cybersecurity is a matter of national and international security and should be prioritised as such. This is particularly important when it comes to protecting Critical National Infrastructure (CNI) and the services that UK citizens rely on in their daily lives, as the consequences of disruption to these services has the potential to be devastating. With the world more digitised and interconnected than ever, a significant attack on CNI could lead to physical harm or even...

The Open Web Application Security Project (OWASP),  a non-profit foundation devoted to web application security, recently released the 2023 OWASP API Security Top 10 list. The list aims to raise awareness about the most common API security risks plaguing organisations and how to defend against them.   The 2023 list provides an update to the original list, published in 2019. Since that time, API security threats have accelerated and evolved, which has been reflected in...

One of the most difficult problems for security professionals to grapple with is defending against dangers that come from within an organisation. Unfortunately, protecting against insider threats is often more complicated than traditional threat prevention. There are many different ways that an insider threat can manifest, making it necessary to approach the issue from a variety of angles in order to adequately address the risk. While this is a daunting task for security teams, it...