Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Latest Posts

The Billion Dollar Cost of Cybercrime: Lessons from the LockBit Takedown

The recent LockBit group take down has shown the world at large the cost of cybercrime. Initially it was reported that just over $100 million had been gathered through the nefarious acts of this particular group but, as I suspected, that initial figure was just a drop in the ocean. It turns out that the real figure was in excess of $1 billion dollars over the last four years, and I still suspect this may be more.

Cybersecurity trends for 2024: Your Priorities for the Coming Year

Over the last few weeks I have been catching up with a number of my cybersecurity contacts, primarily engaging with them for new content on our increasingly popular Razorwire podcast. During these conversations, as tends to happen during at this time of year, one of the things I have discussed with these professionals is what are (in their view) some key cybersecurity trends for 2024?

DORA Legislation - The Countdown is On

By James Rees, MD, Razorthorn Security A big requirement that all European based organisations (or organisations that want to deal with the EU) must be aware of is the new DORA legislation coming in to effect in January 2025, and with just a year to implement your strategies, it’s worthwhile reviewing how you measure up now so that you have the time to ensure you comply before the deadline.

Interview With James Rees, MD of Razorthorn Security

In SafetyDetectives‘ recent interview with James Rees, the Managing Director of Razorthorn Security, he provided insights into the company’s unique approach to cybersecurity consultancy and its evolution in response to the changing landscape. Established 17 years ago during a period of upheaval in the information security field, Razorthorn Security prioritizes customer satisfaction, fostering a customer-centric approach that has contributed to a high client retention rate.

Securing the Weakest Link: A Guide to Third Party Cyber Resilience

We live in a business world where vast amounts of our critical services are delivered to us as a service. The world of on premise solutions has all but disappeared – sure, there are still some systems that operate on premise but these days, more key services are delivered to users and organisations as a service solution. This has increased profitability, allowed small companies to gain access to software and systems that previously were out of reach and has dealt a significant blow to piracy.

Driving Change: Updating Defence in Depth for 2023 and Beyond

Here we are, at the end of 2023. It’s high time for updating defence in depth strategies across all organisations, and let me tell you why. We’re all aware of the uptick in high profile cyber attacks and compromises, across all sectors. Ransomware specifically has caused more economic loss and pain for the business world than any other information security event previously, and attacks are speeding up at a steady rate with larger and larger targets and ransoms being asked.

CISOs in the Spotlight: Lessons from the SolarWinds SEC Action

Unless you have been hiding under a rock the last few weeks, you will know about the SEC taking action against the SolarWinds CISO in a landmark case that is going to change the way CISOs undertake their jobs in the future. The SEC’s action against the SolarWinds CISO is a wakeup call for all CISOs.

The Power of Continuous Penetration Testing

As organisations continue to become more reliant on technology, cyber security threats become more frequent and sophisticated. With more and more data being stored online, it’s crucial that organisations protect their systems and data from cyber attacks. Penetration testing is an effective way to identify vulnerabilities and weaknesses in an organisation’s cyber security defences, but traditional penetration testing has limitations.