Tag Archive for: iso 27001

Email phishing scams increasing rapidly – what is the answer?

/in , ,

Almost everyone who has an email account will have received large numbers of unsolicited emails from an unknown sender requesting that the recipient “click here” to gain access to a website or service that offers something of interest or value. Some of these are laughably inept, and are so obviously scams that they can be deleted immediately. However, an increasing number are from criminals who purport to represent a reputable and trusted party, often cleverly formatted in a way that makes it very difficult to differentiate between the scam and the real thing.

In 2015, the last full year for which there is appropriate data, instances of phishing emails of this type rose by 21% in the UK, as reported in the media by Silicon.  As the article suggests, the organisations that have been falsely represented most often in the UK are BT, Apple and HMRC. The Apple emails in particular are very realistic. Clicking the link as requested will normally result in ransomware or some other form of malware being downloaded on to the recipient’s computer, leading to problems that can be very damaging and difficult to deal with.

Increasingly the criminals have turned their attention to banks and their clients, and social media services such as LinkedIn. Safe4 have recently worked with Investec, one of the financial sector’s most respected specialist banking and asset management service providers, to offer solutions to this ever-worsening problem. This involves using the Safe4 service to create a highly secure vault, into which clients can place their own important documents, and which can also be used as a means of distributing bank-generated documents to clients. It will thus become possible to inform clients that if any unsolicited email is received bearing the bank’s branding, it should be deleted immediately.

Investec, headquartered in Johannesburg, South Africa, also have a substantial presence in the UK and in other locations internationally. The Safe4 integration project was carried by the Investec Digital team in Johannesburg, who worked closely with the Safe4 developers in the UK and South Africa. Investec are no strangers to innovation, and are constantly seeking ways to improve their clients’ banking experience, and importantly to increase the level of protection offered to clients.

Safe4 offers a highly secure facility for distributing documents to any recipient outside the sender’s own IT domain. Using UK-located data centres only, accredited to the ISO 27001 international security standard, Safe4 has been independently ranked among the 0.8% most secure site on the internet, out of millions tested.

Contact us for more information on the Safe4 service, and for ideas on how using Safe4 can enhance the security of your communication with the outside world.

Does it matter where your cloud data is stored?

/in , ,

Many millions of people now are using online systems that are hosted in the cloud. However, do we all know what that means, or the location where our vital information is being held?

The dramatic rise in the use of social media in the last decade has meant that a vast amount of personal information is being stored in cloud-based platforms, not all of which regard personal security or privacy as their top priority.

A recent article on the BBC website helped to highlight this – click here to read the article. The uncertainty over the location where data is stored, and the privacy laws in the jurisdiction that governs the use of that data, gives rise to a potentially major concern.

For this reason, Safe4 decided back in 2010 that ALL data stored within its servers would be held securely in a UK location. Because Safe4 does not allow its service to be used for advertising or any other form of promotional activity, the content of stored data and documents is completely safe. Unlike several of the major providers named in the BBC article, the business model of Safe4 does not permit the penetration of “confidential” information in customers’ accounts so that it can generate advertisements to the user based on their content.

The hosting partner of Safe4 was selected using different criteria. Because we know our customers need to be able to trust us to keep their information safe, we chose to work with a world leader in the provision of highly secure services, with an excellent record of 24/7 availability and reliability. Using ISO 27001-accredited data centres in the UK only, Safe4 has built a reputation for high quality of service and security levels which are among the highest in the industry.

For more information on how Safe4 secure information delivery and storage services can assist your organisation, please contact us.

Proposed successor to Safe Harbor is “inadequate”

/in , ,

The EU has indicated that the replacement to the US – EU Safe Harbor data privacy arrangement, known as Privacy Shield, is inadequate, and does not offer sufficient protection for confidential data being shared by organisations who operate on both sides of the Atlantic. More detail is available: click here.

The risks associated with holding confidential information in jurisdictions that do not apply the same data privacy approach as the UK was the primary reason why Safe4 hosts all of its data in UK data centres only, accredited to the ISO 27001 security standard. Together with annual penetration testing performed under the UK Government’s CHECK scheme, and sophisticated encryption of all stored data, Safe4 offers a highly secure environment for the sharing and storage of confidential information.

For more information on the security measures taken by Safe4 to protect customers’ information, please contact us.

Health data services moving to the cloud?

/in , ,

Discussions over the suitability of the cloud for the storage and management of confidential information have grown in intensity in recent years, as the use of cloud-based resources has increased dramatically.

There has long been resistance to the use of cloud data services to handle clinical information relating to individuals’ health, based on concerns over the levels of security that cloud service providers offer, despite some cloud services being demonstrably more secure than many internally hosted systems. There is indeed an argument that maintaining health data relating to certain conditions in the cloud can help to save lives. This concept is being trialled internationally, with interesting results – click here for more information.

Safe4 provide cloud-based information management services for a number of organisations in the UK and internationally for whom security is of paramount importance – using only UK-located data centres accredited to the ISO 27001 security standard.  For more information on how using Safe4 might benefit your organisation, please contact us. We would welcome an opportunity to talk with you.