The Wannacrypt (or Wannacry) ransomware attack, which started on Friday 12th May 2017, did much to open up the conversation about IT security in general and hacking in particular.
The story may have started out by being framed as an attack on the NHS. However, over the following days it grew to encompass a much broader narrative from which a number of other strands have emerged. These really shine a light into the darker corners of IT security and make for some interesting talking points.
Here are some of them, substantiated by supporting facts gleaned from the wider context of the Wannacrypt attack.
In a world where WikiLeaks liberally publishes secret documents and the existence of the PRISM mass surveillance program has been revealed by Edward Snowden, then perhaps none of this should surprise us. But it does make you think…
Some might say that if governments’ spy on everyone to help prevent atrocities like 9/11 in 2001 in the US, or 7/7 in 2005 in the UK, then that’s a price worth paying. Maybe there is a point there. On the flip side, some might find surrendering privacy for security an unacceptable trade off.
Whatever your view, in this case, the carelessness of government agencies with their ‘secret’ IT security hole discoveries and cyber weapons technology is creating an enormous amount of disruption and inconvenience for businesses, not to mention hitting profitability and damaging reputations.
Perhaps if there was a consensus from the business community, then one strong message to the cyberspooks might be: Please lock up your cyber weapons properly and stop them falling into the wrong hands!
The essential takeaway for most businesses is that when it comes to information security, there is no room for complacency. IT security practice, needs to be exemplary – by both in-house IT teams implementing security solutions and system users’.
The GDPR information security standard requires all businesses to comply and for those that need to sharpen up, the new standard represents a chance to start with a clean slate.
GDPR, came into force on the 25th of May 2018. We have a significant program of consulting in place to help businesses comply with the new information security standard.
There is no quick fix to compliance, and firms and public bodies need to get ahead of the curve. There are considerable financial penalties for non-compliance of up to €20m or 4% of group annual global turnover. To get started on the journey towards better data security today, simply get in touch.
For more than 20 years, Paralogic has been on the side of small business, providing IT support and services they can rely on. We’re thrilled, therefore, to be named among the best British MSPs, cementing…Read More
The European Union’s General Data Protection Regulation (GDPR) is the most significant shake up of information security for many years. Despite the toughening of rules and the harsh treatment of companies by regulators and the…Read More