Visitors – you just can’t trust them

Keeping your server in your office keeps your data safe, right? Just make sure the firewall is working and you’re golden. Because if it’s inside your physical perimeter, it’s protected, isn’t it? Well… It depends on your visitor policies. Your what? All that boring stuff to do with signing people in, showing them to meeting … Continue reading Visitors – you just can’t trust them →

6 rules to avoid disaster: a practical guide to phishing and spear-phishing

A chain is only as strong as its weakest link. Are you that link? Hackers don’t come in through the firewall. They come in, most of the time, through a much easier route: the staff. How? By exploiting basic psychology, and being prepared to do a little research. The easiest way to get someone’s password … Continue reading 6 rules to avoid disaster: a practical guide to phishing and spear-phishing →

How good is your physical security?

There’s a great story I heard from a security trainer once, which I’ve shamelessly stolen and use in my own courses: A US corporation decides to introduce an ID badge policy, requiring all staff to wear their badges visibly at all times, and to challenge anyone seen walking around without a badge. Badges are issued, … Continue reading How good is your physical security? →