October: Cyber Security Awareness Month 2024 Phishing. Understanding the Threat and How to Prevent It In today’s increasingly digital world, the education sector is a growing target for cybercriminals, especially through phishing attacks. With colleges, and universities holding sensitive data, such as personal information, financial records, and research data, they have become prime targets for […]
Category: Uncategorized
What is in store for Cyber Essentials and Cyber Essentials Plus in 2025 Cyber Essentials and Cyber Essentials Plus is a vital security framework for the Education sector, not only for ensuring basic security measures are in place but also for funding and contract requirements. In today’s digital world, the education sector is increasingly reliant […]
Categories
Keeping Hackers at Bay
October: Cyber Security Awareness Month 2024 Keeping Hackers at Bay: The Power of Strong Passwords and MFA Passwords Creating strong passwords is one of the most effective ways to protect your online accounts and personal information from cyber threats. Passwords should be long, strong, and unique. You should be aiming for at least 12 – […]
Categories
Strengthening Cyber Defences
October: Cyber Security Awareness Month 2024 Why Security Awareness and Training is Essential Cyber threats are growing in frequency and sophistication, making it crucial for organisations to prioritise security awareness and training. While technology such as firewalls, antivirus software, and intrusion detection systems are important, they are not foolproof. Human error remains the leading cause […]
Categories
MFA for Cyber Essentials
Cyber Essentials and Multi-factor Authentication (MFA) What is MFA? Multi-factor authentication (MFA) is an authentication process that necessitates users to provide evidence of their identity through the submission of multiple verification methods, commonly known as “factors.” This approach ensures both the user’s identity and the legitimacy of their credential access. Two-factor authentication (2FA) is […]
Author: Jon Hunt, Cyber security service delivery manager The National Cyber Security Centre (NCSC) describes the seriousness of the recently identified Log4j vulnerability very succinctly: “Last week, a vulnerability was found in Log4j, an open-source logging library commonly used by apps and services across the internet. If left unfixed, attackers can break into systems, steal […]
Author: Tracy Matthews, cyber security assessment manager, Jisc Expert support to gain cyber essentials certification Jisc’s Cyber Essentials service is a trusted way to obtain and renew your cyber essentials certificate. Cyber Essentials is a government-backed certification that will help your organisation provide protection against the most common cyber attacks. Give your stakeholders confidence in […]
By Clare Stonebridge, Network Security Services Manager, Jisc, 12 July 2021 There’s never a ‘good’ time to suffer a cyber attack, but there are certainly a few dates in the year when the financial and reputational effects of a website or email failure will be more damaging than others. One of those key periods is approaching […]
Categories
GEANT webinar on DDoS attacks
Between the 8th and 17th of February 2021 GEANT are running a series of webinars on DDoS attacks, including Introduction to DDoS attacks Details of specific attacks Detecting attacks Mitigating attacks Participation is free of charge to all NRENs and their constituents. The courses are aimed at network and system administrators, as well as security […]
Many organizations want to check that their suppliers and partners are managing information security risk, and possession of an ISO 27001 certificate is often the preferred way to evidence this. If you are reliant upon the assurances that an ISO certificate can provide, checking that the certificate is valid is an important but not particularly […]