The challenges of actively managing information security are growing, and every business, regardless of size, should pro-actively protect their systems and the data held within. But how do customers know that your information security practices are fit for purpose?

Even the best intentions do not guarantee sound security practices for businesses. The only way for customers to judge the internal processes of your business is by checking for accreditation such as ISO 27001. In fact, 71% of respondents to a 2016 survey by IT Governance Ltd said that they had fielded a question about ISO 27001 accreditation.

HTL Support is delighted to announce that it will be exhibiting at The Business Show, London, on May 16th and 17th.

Our professional and friendly team is looking forward to welcoming visitors, and learning about the areas in which they most need IT support, as well as demonstrating the latest software solutions that can provide a competitive edge to businesses throughout London. Find our stand at exhibitor number 110.

DDoS attacks are typically designed to inundate servers and entire networks by consuming computing resources through large volumes of traffic, connections, or requests. And so, because cloud infrastructures are assumed to be backed by a large assemblage of such resources, many people believe their servers are less susceptible to these types of attacks if they’re hosted in the cloud. But that’s not entirely true.

If your servers are hosted in a multitenant environment along with a bunch of other servers belonging to other organisations (which is usually the case in a public cloud), your servers could be at risk of collateral damage. If those other servers (note: not yours) are bombarded by a DDoS attack and your cloud service provider (CSP) attempts to absorb the attack, your own servers, which share the same underlying infrastructure with those other servers, could also suffer.

Only two months left before GDPR is implemented any eligible organisation not following the regulations could suffer colossal penalties, as much as four percent of the company's annual turnover or 20,000,000 Euro’s whichever is the Greater!

Does GDPR applies to you?

Only half of UK businesses are even aware of GDPR, whilst a solitary three percent are prepared for the upcoming Cut-off date. Many large organisations such as eBay, Yahoo and Adobe have had data breaches. Therefore many companies assume that the new regulations only apply to companies dealing with personal data -unfortunately this is not the case!

HTL Support's Business Briefing event on 23 February was a resounding success and offered delegates real insight into the EU General Data Protection Regulation legislation and its likely effects on the IT sector. Demand for the event was far in excess of available places and is an indication of just how relevant the impact of GDPR is to anyone working in IT.

Love it or hate it, IT departments cannot prevent users from engaging with Wi-Fi networks; the convenience factor is simply too high. The IT security risks are real, however, whether your users are roaming – or using Wi-Fi where you have some control over internet security, such as the office space. It is also an evolving threat, with the gold standard of Wi-Fi security, WPA2, losing its shine. In this article, we discuss the next generation of Wi-Fi security, WPA3, and the measures you should currently be taking to boost your company’s Wi-Fi security.

With the losses associated to cybercrime expected to hit around $6 trillion by 2021, security has become a top priority of many businesses. These companies diligently implement compliance initiatives in hopes that they can ensure security within their organisations. But here’s the thing: achieving compliance doesn’t necessarily mean that your business is fundamentally secure.

Last year, Verizon published a report that revealed a major eye-opener regarding compliance. According to that report, 45% of PCI DSS certified customers needed remediation. Meaning that these businesses still needed to improve their security controls in order to be considered secure as per PCI DSS.

It’s important to note that these businesses actually already passed a previous compliance audit. In fact, they were certified to be fully PCI DSS compliant. In other words, they had already spent a considerable amount of time, attention, and money establishing IT security controls that met PCI DSS requirements.

The cyber threat landscape continues to evolve and in order to maximise your cyber security budgets and position resources where they are most needed, you need to know what threats are most likely to make an impact in the near future. To help you, we’ve put together a list of what we believe are going to be the top 4 cyber threats in the UK. 

There is one area on which everyone concentrates when it comes to getting the most out of an IT budget: squeezing the supplier. Though getting commodity items at the best prices and achieving the most value out of the services and IT support costs you pay for is important, there are many other areas where careful consideration can result in far more optimal IT spending.

Deloitte’s 2016-2017 CIO survey found that, on average across all industries, expenditure on IT packages, staff, and services accounts for 3.28% of a company’s turnover, with businesses in professional services industries commonly managing annual IT budgets of 6% of overall turnover. The importance of optimal spending is clearly very high. Here we outline a few of the top areas we think your business should focus on.

Let’s say you’ve already invested a fortune on network security. How do you determine that investment’s effectiveness in preventing a data leak or withstanding a deliberate cyber attack? Your best option would be to conduct a penetration test or pen test.