NHS ransomware

NHS Cyber Attack

10Cyber Attack, Cyber Security, Latest news, Ransomware

What is the NHS Cyber Attack?

Today (12th May 2017) news broke of a massive NHS Cyber Attack that has had catastrophic impact on our NHS, leading to a major incident being declared.

Operations have been delayed or cancelled, patients have delayed being discharged from or admitted to hospital, prescriptions have not been issued, A&E has been disrupted … the impact of the NHS cyber attacks continue and sadly there is a real risk that lives may be jeopardised.

Was the NHS Cyber Attack targeted?

According to the BBC News, the attack does not appear to have been limited to the UK with 70+ other countries impacted. A major ransomware attack has unfolded, impacting thousands of users.

More info

Complying To GDPR

What Are The Consequences Of Not Complying To GDPR?

00Business Risk, Cyber Attack, Cyber Security, Data breach, GDPR, IASME, ISO27001, Latest news, Risk Education, Risk Management

So what are the consequences of not complying to the EU General Data Protection Regulations ?

I recently wrote a blog ‘What is GDPR and why do you need it?’ to highlight the real meaning behind why data protection is changing.

What Are The Consequences Of Not Complying To The GDPR?

The UK Government and Information Commissioners Office (ICO) have declared that no new legislation will be introduced to cover the growing threat of cybercrime as this is a business owner responsibility to address.

What they will enforce though is legislation about the use of data… If data is protected then at least any cyber-attacks will mean that personal data is (or should be) protected and safe.

What Are The GDPR Fines Or Punishment?

So the focus is on the GDPR and the penalties for non-compliance are eye watering

  • Infringement of Articles 5, 6, 7 and 9 carries a penalty fine of up to €20M or up to 4% of total global revenue of the preceding year, whichever is greater.
  • Infringement of Articles 8,11, 25-39, 42 and 43 carries a penalty fine of up to €10M or up to 2% of total global revenue of the preceding year, whichever is greater

In summary, we know that the GDPR is coming, that it will become law in May 2018, that it is important, that it should not be ignored and that there will be some pain if we fall short.

You need to comply to the GDPR so the question is…

More info