As we wave goodbye to summer, we are hopefully getting back into our work routines, albeit that hybrid working be making things a little different for many. As we approach the last few months of 2021, we have focused this month’s newsletter on two of the key lessons learned over the pandemic; maintaining cyber security and having flexibility to operate outside your normal work environment.
Cyber Security Training
In last month’s newsletter we discussed how practical training can be extremely valuable in maintaining vigilance against hacking attacks. The UK’s NCSC has now launched a free online cyber security training package, “Top Tips for Staff”. This provides practical example-based training along with a summary infographic that you can download and share with your team. This tool provides a great refresher course, however if you would like help setting up a more in-depth programme, including pen testing, or need a cyber security audit, please don’t hesitate to get in contact with us – 020 8078 0810 or [email protected]
Zero-Click Hacking
You may have read the numerous recent articles, including this from Global News and this from the FT, about a “zero click hack” that was recently uncovered by Citizen Lab at the University of Toronto. Unlike the hacking attempts we are now more aware of, such as phishing emails and suspicious text messages, rather alarmingly, “zero-click” doesn’t need any action from the user for the device to be infected. This hack was discovered in an iMessage on a Saudi activist’s iPhone and prompted Apple to swiftly release a software patch to fix the flaw. The circumstances of this event do seem very specific so we probably shouldn’t lose too much sleep over the prospect of it happening to us, however it’s a very good reminder to ensure all security updates and software patches are implemented as soon as they become available. Oh… and if you haven’t yet done the Apple update, make sure you do! If you aren’t sure whether all your business mobile devices have been updated, we can talk you through our Mobile Device Management (MDM) solutions that provide an instant overview of their status.
Hope for the best, plan for the worst
With the best will in the world, we can’t always avoid some sort of issue occurring to disrupt our business functions. Even if you have taken as many preventative measures as you can to maintain your IT infrastructure and optimise your cyber security, something bad can happen… that’s why it’s critical to have a plan… a Business Continuity and Disaster Recovery plan that is. If you have prepared in advance, getting your critical systems and infrastructure back up and running to get back in business will be less stressful. If you would like some help setting up your BCDR plan do get in touch.