Fox Red Risk
The Cyber Security and Data Protection Consultancy
Want to Learn More about Cyber Security & GDPR
-
Security Awareness is Dead. Long Live Security Activism!
At the end of 2019, I wrote an article "Security Awareness Dies - My 2020 Prediction" where I talk about how the way organisations go about awareness training is not a great return on investment. The core message was that information security professionals should think about awareness differently. We need to take the opportunity thatRead More -
2022 – Business Leaders don’t need our security predictions, they need these recommendations!
It's the beginning of the year and some bright spark in the marketing department has an idea for recycling last year's lead-generating article. Even though none of last year's predictions actually came true, how about we make some new predictions about what is going to happen in 2022. We can then show how our suiteRead More -
What would WW3 look like if it started now? – Thinking the unthinkable to aid better Risk Management.
When managing risk it's easy to dismiss certain events from happening because they seem too far removed from our perceived reality. The reality is however that our perception of what we think is far from reality can be vastly skewed. Humans tend to underestimate the likelihood of certain events occurring. For example, the risk ofRead More -
Business Leaders: Ransomware is actually all-around at Christmas!
It seems to me that ransomware is everywhere. More often than not, it's particularly undignified and highly newsworthy, but it's always there: headquarters and subsidiaries, major organisations and SMEs, charities and financial services, logistics, aviation, ransomware is our old friend. When ransomware hits a company without good security, as far as I know, none of the phoneRead More -
Know your enemy and yourself: MITRE ATT&CK and D3FEND
Sun Tzu, wrote in the Art of War: “If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victory gained you will also suffer a defeat. If you know neither the enemy nor yourself, you will succumb inRead More -
Small Business Security – Avoiding a common social engineering technique…for less than the price of a cup of coffee!
We all know about some social engineering techniques. Phishing for example is a technique that most people have heard of - but there are many others. For example, there is a pricing gimmick that attempts to persuade buyers that a product is not that expensive. The gimmick is to present the cost of the productRead More
