What is a penetration tester – and what can they do for your business?

Penetration testers, known informally as ‘pen testers’ or ‘ethical hackers’, play the role of hackers trying to break into your systems. Using a suite of tools, penetration testers can spot problems and offer advice on how to avoid attacks on everything from business apps to industrial control systems.  There are many reasons you might want to engage the services of …

ChatGPT-style tool with ‘no ethical boundaries’ is a vision of the future of cybersecurity

A new ChatGPT-style tool being marketed on cybercrime forums is custom-built for crime – with alarming abilities to draft convincing business email compromise (BEC) attacks. It’s not a surprising development, from our perspective at Stratia Cyber, but a vision of the future of the cybersecurity sector.  Paul Maxwell, founder and director of Stratia Cyber, says, ‘This is a view into …

Is your IT provider doing enough to protect your business?

By Paul Maxwell, Director, Stratia Cyber Over the years I have spoken to a lot of small businesses that use IT/Managed Service Providers (MSPs) to provide their IT services.  When I ask them about their information and cyber security, I get the same response, more often than not: “We don’t need cyber security, because we have outsourced our IT.” This …

SC Insights | Phishing and the legal sector

What’s the number one threat facing law firms? It’s ransomware, usually delivered in the form of an email phishing attack. In our new white paper this month, Stratia Cyber’s consultants, along with experts from the legal sector, look at why law firms are particularly tempting targets for cybercriminals – and how organisations can respond to the ransomware threat.  These attacks …

Why cybersecurity is an ESG issue (and how that can boost your business)

Cybersecurity and ESG have one important thing in common – they’re both about trust.  That’s why cybersecurity is increasingly seen as an ESG issue, coming either under the ‘social’ aspect, or cutting across all three – environmental, social and governance, depending on who you ask.  At Stratia Cyber, we believe cybersecurity is bound into every aspect of ESG, and that …

Why all ransomware attackers are now going after backups

Research has suggested that almost all ransomware attackers (93% to be precise) are also targeting backups of company data.  For cybercriminals, the move makes sense, as it vastly increases the likelihood that businesses will pay up.  In three-quarters of attacks, this tactic is successful, the research found, preventing victims from recovering at least some of their data. In a third …

Why law firms are targets for cybercriminals (and what to do about it)

For cybercriminals, law firms make highly attractive targets – with a shift towards new, digital ways of working enabling new ways for criminals to strike.  Ransomware, delivered by highly targeted phishing attacks, is the key threat. A 2022 report by the Solicitors Regulation Authority (SRA) in the UK found that 75% of law firms had been targeted by a cyber …

Infographic: Vendor certification and why it matters

Why DO so many cybersecurity vendors operate without the proper certification? It’s a big question – and was the subject of Stratia Cyber’s second webinar last month.  If you missed it, click here to read more. In our infographic (click here to view), we’ve digested the best insights from the three speakers – Paul Maxwell, Director at Stratia Cyber, Victoria …

Watch: Webinar – is your cybersecurity vendor certified?

Why DO so many cyber security vendors operate without the correct certification? It’s a big question and all too rarely discussed. Many vendors claim to align with ISO27001 or NCSC Cyber Essentials – but that isn’t the same as being certified.  Why does it matter – and what does it mean for customers? Watch our recorded webinar to find out …