ICO and 8 identified areas of security risks
Information Commissioner's Office (ICO) has recently published its latest report following investigations into online systems containing personal data. This is useful read for any business, and business advisor, with an online presence that allows clients to transact business online whether buying, ordering or simply searching.
The report is full of examples of breaches and provides a further understanding of why Cyber Security must remain a key focus for all businesses.
Password rules is one good example
The ICO has identified eight important areas of computer security that have frequently arisen during investigations of data breaches. These areas are the focus of the report.
The eight areas are:
• Software updates
• SQL injection
• Unnecessary services
• Decommissioning of software or services
• Password storage
• Configuration of SSL and TLS
• Inappropriate locations for processing data
• Default credentials
For each area, the ICO provides advice on:
• what data protection problems might be caused; and
• good practice for avoiding those problems.
Yellowspring can help to further explain the issues and the precautions that should be in place, most of which are easy, and not costly, to establish. Please contact Maria West on 01268 494101 or email firstname.lastname@example.org.
The entire report is available at: