home.social

#cyberessentials — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #cyberessentials, aggregated by home.social.

  1. I laugh when I see organisations contorting themselves to comply with #cyberessentials (the governments own Cyber Security standard) whilst the cabinet and number 10 use Twitter, WhatsApp and personally owned devices apparently without a care in the world!

  2. I laugh when I see organisations contorting themselves to comply with #cyberessentials (the governments own Cyber Security standard) whilst the cabinet and number 10 use Twitter, WhatsApp and personally owned devices apparently without a care in the world!

  3. I laugh when I see organisations contorting themselves to comply with #cyberessentials (the governments own Cyber Security standard) whilst the cabinet and number 10 use Twitter, WhatsApp and personally owned devices apparently without a care in the world!

  4. I laugh when I see organisations contorting themselves to comply with #cyberessentials (the governments own Cyber Security standard) whilst the cabinet and number 10 use Twitter, WhatsApp and personally owned devices apparently without a care in the world!

  5. What does "digital sovereignty" actually mean -- and what doesn't it mean?
    We use the phrase a lot at @hauntedlighthouse. So here's our position, written down clearly.
    Jurisdiction. Audit trails. Knowing who can be compelled by a court order to hand over your data. Not nationalism. Not isolationism. Not a routing table with opinions.
    sovereignauditor.substack.com/
    #DigitalSovereignty #DataProtection #CLOUDACT #CyberEssentials #IsleOfMan #InfoSec #Privacy #GDPR

  6. What does "digital sovereignty" actually mean -- and what doesn't it mean?
    We use the phrase a lot at @hauntedlighthouse. So here's our position, written down clearly.
    Jurisdiction. Audit trails. Knowing who can be compelled by a court order to hand over your data. Not nationalism. Not isolationism. Not a routing table with opinions.
    sovereignauditor.substack.com/
    #DigitalSovereignty #DataProtection #CLOUDACT #CyberEssentials #IsleOfMan #InfoSec #Privacy #GDPR

  7. What does "digital sovereignty" actually mean -- and what doesn't it mean?
    We use the phrase a lot at @hauntedlighthouse. So here's our position, written down clearly.
    Jurisdiction. Audit trails. Knowing who can be compelled by a court order to hand over your data. Not nationalism. Not isolationism. Not a routing table with opinions.
    sovereignauditor.substack.com/
    #DigitalSovereignty #DataProtection #CLOUDACT #CyberEssentials #IsleOfMan #InfoSec #Privacy #GDPR

  8. What does "digital sovereignty" actually mean -- and what doesn't it mean?
    We use the phrase a lot at @hauntedlighthouse. So here's our position, written down clearly.
    Jurisdiction. Audit trails. Knowing who can be compelled by a court order to hand over your data. Not nationalism. Not isolationism. Not a routing table with opinions.
    sovereignauditor.substack.com/
    #DigitalSovereignty #DataProtection #CLOUDACT #CyberEssentials #IsleOfMan #InfoSec #Privacy #GDPR

  9. What does "digital sovereignty" actually mean -- and what doesn't it mean?
    We use the phrase a lot at @hauntedlighthouse. So here's our position, written down clearly.
    Jurisdiction. Audit trails. Knowing who can be compelled by a court order to hand over your data. Not nationalism. Not isolationism. Not a routing table with opinions.
    sovereignauditor.substack.com/
    #DigitalSovereignty #DataProtection #CLOUDACT #CyberEssentials #IsleOfMan #InfoSec #Privacy #GDPR

  10. MI5 is briefing CNI operators. The Technology Secretary says firms have months to prepare. On the Isle of Man, the biggest unaudited risk isn't your firewall -- it's your IT provider. The Island has been here before. open.substack.com/pub/sovereig
    #CyberSecurity #IsleOfMan #Mythos #CyberEssentials #DataProtection #NCSC #SovereignAuditor

  11. MI5 is briefing CNI operators. The Technology Secretary says firms have months to prepare. On the Isle of Man, the biggest unaudited risk isn't your firewall -- it's your IT provider. The Island has been here before. open.substack.com/pub/sovereig
    #CyberSecurity #IsleOfMan #Mythos #CyberEssentials #DataProtection #NCSC #SovereignAuditor

  12. MI5 is briefing CNI operators. The Technology Secretary says firms have months to prepare. On the Isle of Man, the biggest unaudited risk isn't your firewall -- it's your IT provider. The Island has been here before. open.substack.com/pub/sovereig
    #CyberSecurity #IsleOfMan #Mythos #CyberEssentials #DataProtection #NCSC #SovereignAuditor

  13. MI5 is briefing CNI operators. The Technology Secretary says firms have months to prepare. On the Isle of Man, the biggest unaudited risk isn't your firewall -- it's your IT provider. The Island has been here before. open.substack.com/pub/sovereig
    #CyberSecurity #IsleOfMan #Mythos #CyberEssentials #DataProtection #NCSC #SovereignAuditor

  14. We called out Anthropic's Cyber Verification Program this morning as opaque gatekeeping. Then we applied. Approval came in under an hour. A Cyber Essentials cert and three honest sentences about what you actually do was sufficient. If you do legitimate security work and haven't applied -- the barrier is lower than it looks. open.substack.com/pub/sovereig

    #CyberSecurity #CyberEssentials #Anthropic #Claude #AI #InfoSec #DataProtection #IsleOfMan

  15. We called out Anthropic's Cyber Verification Program this morning as opaque gatekeeping. Then we applied. Approval came in under an hour. A Cyber Essentials cert and three honest sentences about what you actually do was sufficient. If you do legitimate security work and haven't applied -- the barrier is lower than it looks. open.substack.com/pub/sovereig

    #CyberSecurity #CyberEssentials #Anthropic #Claude #AI #InfoSec #DataProtection #IsleOfMan

  16. We called out Anthropic's Cyber Verification Program this morning as opaque gatekeeping. Then we applied. Approval came in under an hour. A Cyber Essentials cert and three honest sentences about what you actually do was sufficient. If you do legitimate security work and haven't applied -- the barrier is lower than it looks. open.substack.com/pub/sovereig

    #CyberSecurity #CyberEssentials #Anthropic #Claude #AI #InfoSec #DataProtection #IsleOfMan

  17. We called out Anthropic's Cyber Verification Program this morning as opaque gatekeeping. Then we applied. Approval came in under an hour. A Cyber Essentials cert and three honest sentences about what you actually do was sufficient. If you do legitimate security work and haven't applied -- the barrier is lower than it looks. open.substack.com/pub/sovereig

    #CyberSecurity #CyberEssentials #Anthropic #Claude #AI #InfoSec #DataProtection #IsleOfMan

  18. We called out Anthropic's Cyber Verification Program this morning as opaque gatekeeping. Then we applied. Approval came in under an hour. A Cyber Essentials cert and three honest sentences about what you actually do was sufficient. If you do legitimate security work and haven't applied -- the barrier is lower than it looks. open.substack.com/pub/sovereig

    #CyberSecurity #CyberEssentials #Anthropic #Claude #AI #InfoSec #DataProtection #IsleOfMan

  19. Ireland's NCSC says defenders have the advantage. Their own director told the Oireachtas it's a race the frontier moves every week. Both true. Together they define a window. At Present -- on the Mythos moment and what "at present" actually means. open.substack.com/pub/sovereig
    #CyberSecurity #AIGovernance #Mythos #CyberEssentials #DataSovereignty

  20. Ireland's NCSC says defenders have the advantage. Their own director told the Oireachtas it's a race the frontier moves every week. Both true. Together they define a window. At Present -- on the Mythos moment and what "at present" actually means. open.substack.com/pub/sovereig
    #CyberSecurity #AIGovernance #Mythos #CyberEssentials #DataSovereignty

  21. Ireland's NCSC says defenders have the advantage. Their own director told the Oireachtas it's a race the frontier moves every week. Both true. Together they define a window. At Present -- on the Mythos moment and what "at present" actually means. open.substack.com/pub/sovereig
    #CyberSecurity #AIGovernance #Mythos #CyberEssentials #DataSovereignty

  22. Ireland's NCSC says defenders have the advantage. Their own director told the Oireachtas it's a race the frontier moves every week. Both true. Together they define a window. At Present -- on the Mythos moment and what "at present" actually means. open.substack.com/pub/sovereig
    #CyberSecurity #AIGovernance #Mythos #CyberEssentials #DataSovereignty

  23. Zero detections across 69 AV engines for a credential stealer delivered via a fake Windows Update site. WiX MSI, Electron wrapper, hidden Python runtime. Every layer legitimate. The evasion is architectural, not accidental. "We have AV" is not a compliance answer -- here's what is. sovereignauditor.substack.com/ #infosec #cybersecurity #CyberEssentials #patchmanagement

  24. Zero detections across 69 AV engines for a credential stealer delivered via a fake Windows Update site. WiX MSI, Electron wrapper, hidden Python runtime. Every layer legitimate. The evasion is architectural, not accidental. "We have AV" is not a compliance answer -- here's what is. sovereignauditor.substack.com/ #infosec #cybersecurity #CyberEssentials #patchmanagement

  25. Zero detections across 69 AV engines for a credential stealer delivered via a fake Windows Update site. WiX MSI, Electron wrapper, hidden Python runtime. Every layer legitimate. The evasion is architectural, not accidental. "We have AV" is not a compliance answer -- here's what is. sovereignauditor.substack.com/ #infosec #cybersecurity #CyberEssentials #patchmanagement

  26. Zero detections across 69 AV engines for a credential stealer delivered via a fake Windows Update site. WiX MSI, Electron wrapper, hidden Python runtime. Every layer legitimate. The evasion is architectural, not accidental. "We have AV" is not a compliance answer -- here's what is. sovereignauditor.substack.com/ #infosec #cybersecurity #CyberEssentials #patchmanagement

  27. The Haunted Lighthouse Limited has achieved Cyber Essentials certification (whole organisation scope).

    Assessed under the IASME scheme, aligned with the UK National Cyber Security Centre baseline controls. Sensible fundamentals: patch management, MFA, least privilege, secure configuration, and disciplined backup practices.

    Not glamorous, just solid security hygiene.

    The lighthouse is officially audited.

    #CyberEssentials #IASME #NCSC #CyberSecurity #InfoSec #SmallBusiness #PrivacyFirst

  28. The Haunted Lighthouse Limited has achieved Cyber Essentials certification (whole organisation scope).

    Assessed under the IASME scheme, aligned with the UK National Cyber Security Centre baseline controls. Sensible fundamentals: patch management, MFA, least privilege, secure configuration, and disciplined backup practices.

    Not glamorous, just solid security hygiene.

    The lighthouse is officially audited.

    #CyberEssentials #IASME #NCSC #CyberSecurity #InfoSec #SmallBusiness #PrivacyFirst

  29. The Haunted Lighthouse Limited has achieved Cyber Essentials certification (whole organisation scope).

    Assessed under the IASME scheme, aligned with the UK National Cyber Security Centre baseline controls. Sensible fundamentals: patch management, MFA, least privilege, secure configuration, and disciplined backup practices.

    Not glamorous, just solid security hygiene.

    The lighthouse is officially audited.

    #CyberEssentials #IASME #NCSC #CyberSecurity #InfoSec #SmallBusiness #PrivacyFirst

  30. The Haunted Lighthouse Limited has achieved Cyber Essentials certification (whole organisation scope).

    Assessed under the IASME scheme, aligned with the UK National Cyber Security Centre baseline controls. Sensible fundamentals: patch management, MFA, least privilege, secure configuration, and disciplined backup practices.

    Not glamorous, just solid security hygiene.

    The lighthouse is officially audited.

    #CyberEssentials #IASME #NCSC #CyberSecurity #InfoSec #SmallBusiness #PrivacyFirst

  31. Providing some helpful and constructive feedback on the UK's Cyber Essentials scheme, a set of controls to ensure organisation have a base level of IT security.

    That's right kids, full disk encryption for laptops in not considered a bare minimum of #infosec for #CyberEssentials.

  32. Providing some helpful and constructive feedback on the UK's Cyber Essentials scheme, a set of controls to ensure organisation have a base level of IT security.

    That's right kids, full disk encryption for laptops in not considered a bare minimum of #infosec for #CyberEssentials.

  33. Providing some helpful and constructive feedback on the UK's Cyber Essentials scheme, a set of controls to ensure organisation have a base level of IT security.

    That's right kids, full disk encryption for laptops in not considered a bare minimum of #infosec for #CyberEssentials.

  34. Providing some helpful and constructive feedback on the UK's Cyber Essentials scheme, a set of controls to ensure organisation have a base level of IT security.

    That's right kids, full disk encryption for laptops in not considered a bare minimum of #infosec for #CyberEssentials.