by Dr David Day | Nov 24, 2025 | Blog
For many UK organisations the hardest part of cybersecurity is not identifying risks, it is deciding what to fix first. Budgets are limited, regulators expect evidence of risk-based decisions, and the threat landscape shifts weekly. This guide sets out a practical,...
by Dr David Day | Nov 24, 2025 | Blog, In The Media, Podcast
Today I’m breaking down the Cloudflare outage that briefly knocked chunks of the internet sideways, and why incidents like this barely making the news should worry all of us. Cloudflare sits in front of millions of websites as DNS, DDoS protection, and a web firewall....
by Dr David Day | Nov 7, 2025 | Blog
Boards are asking tougher questions about security awareness budgets. UK organisations face persistent phishing, business email compromise and invoice fraud, yet many CISOs and IT leaders struggle to evidence that training is reducing real risk. This guide sets out a...
by Dr David Day | Oct 31, 2025 | Blog
Ransomware remains the most immediate and disruptive cyber threat to UK organisations. The National Cyber Security Centre’s Annual Review 2024 underlines sustained pressure on critical national infrastructure and the wider economy, along with maturing national...
by Dr David Day | Sep 16, 2025 | Blog
Cloud misconfiguration remains one of the most common and preventable causes of data breaches in the UK. From publicly exposed storage buckets to overly permissive identities and blind spots in logging, these issues create direct paths for attackers and compliance...
