minerva

So we saw a few significant cyber security incidents last week. One was Avis Car Rental. News suggests this occurred using a business application across 3 – 6 August, when the company blocked the attacker from systems. Attacker stole personal information (names, but other sensitive data is undisclosed) and warning people to remain vigilant. Also, […]

What is the world’s number one asset? Yes, it’s data.  In today’s digital landscape, businesses of all sizes rely heavily on technology to streamline operations, enhance efficiency and very much dependent on data. However, this increased reliance on digital infrastructure also exposes companies to the ever-growing threat of cyberattacks.  I have met a lot of

PCI DSS applies to any merchants or service providers that process, store or transmit cardholder data (CHD); or could impact the security of CHD.  Examples of processing include any retailers taking payments at tills, mortgage brokers or accountants taking online payments, organisations with customer support taking telephone payments etc. Examples of organisations who may impact

The Payment Card Industry Data Security Standard (#PCIDSS) is a set of security standards that are designed to protect credit and debit card transactions against fraud and data breaches. Any business that accepts card payments must comply with the PCI DSS requirements. PCI DSS has been around for some time now. I was not there when

The hospitality sector is a crucial part of the global economy, with millions of people traveling and staying in hotels, resorts, and other hospitality establishments every year. However, as technology continues to evolve and data becomes more valuable, the sector faces new and complex data security challenges. Let’s review the three top data security challenges

I have assessed many types of business from different industries and different sizes. Some, I have been called in because the worst has happened, or perhaps they have been informed they need to get compliant (win business, regulator found them etc.). It is amazing how many small medium businesses have not done a thing about

“Trust, but verify” is a Russian proverb made famous by former US President Ronald Reagan. The concept should be simple, that is: How to define trust Decide on the level of security to apply to a situation It is not so simple to do. Many organisations can be complex. Systems even more complex. One task of a security

Let’s harden our perimeters and harden our systems, put great password controls and have put in lots of technology to help with logging/monitoring. Cyber, cyber, cyber… “#Cyber” is all the rage right now. When it comes to security, many businesses focus on the IT side. You have heard me say before in my other articles and I will

The number 1 asset is… The number 1 asset is not gold, oil or silver, it’s data. No data. No business. It is really that simple in today’s modern world. Now people generally think about electronic data, but this also includes data on paper. There is nothing wrong with data on piles of paper per se, but

There is a lot of pressure for those responsible for protecting the information and assets within an organisation. These could be those who wear the Chief Information Security Officer (#CISO), Chief Information Officer (#CIO), or similar security role. Often the case, security is just passed to a non-security person called the IT Manager or Chief