Author

David Halliday

Browsing

It doubtless goes without saying that home working increases potential cyber security risks. This is especially the case when users are being permitted to use their own devices (BYOD) and use public networks for access. The UK NCSC has issued best practice guidance on home working which focuses on management of security at several levels Authentication: any enablement of remote access exposes systems to credential driven security risks. Password strength must be maintained, defunct accounts…

On 10 January 2018, the UK ICO issued a fine to Carphone Warehouse amounting to £400,000, close to the maximum (of £500,000) under its current powers within the current (pre-GDPR) law. Carphone Warehouse’s computer systems, which contained significant amounts of personal data including customer and employee records as well as historic transaction details, had been the subject of an external cyber-attack.The ICO focussed on what it saw as a series of basic errors which a…