Insights

Cyber crime is often misunderstood as the work of lone hackers operating in isolation. In reality,  cybercriminal activity more closely resembles a structured business ecosystem, with clearly defined roles, supply chains, and even performance expectations. Many cybercriminal gangs operate with the same level of organisation as legitimate enterprises, distributing responsibilities across specialised functions to maximise efficiency, reduce risk, and scale operations.

First emerging in online forums in the early 2010s, the Dead Internet Theory suggested that genuine human interaction on the internet had peaked, with bots, algorithms, and automated systems beginning to dominate online activity.

Endpoint Detection and Response (EDR) remains a foundational element of modern cybersecurity. It provides deep visibility into activity occurring on endpoints such as laptops, servers, and workstations, allowing security teams to detect suspicious behaviour, investigate incidents, and respond to threats more effectively than with traditional antivirus tools.

International Digital Cleanup Day on 21 March is often framed as a reminder to clear out old photos or tidy up personal inboxes. For business leaders, however, it should prompt a far more serious conversation. The unmanaged accumulation of corporate data has quietly become a source of risk rather than value.

Modern cyber attacks are rarely isolated incidents. More often, they form part of sustained campaigns conducted by persistent threat actors. Once attackers successfully compromise an environment, they frequently return, either because they still have access or because the weaknesses that enabled the breach remain exploitable. Like any criminals, they tend to favour the path of least resistance. If an organisation’s defences appear weak or poorly monitored, it becomes a more attractive target than one with stronger security controls and visible detection capabilities.

Studies show that around 80% of SMEs have experienced a cyber incident, yet many still lack dedicated security expertise or in-house capability. At the same time, regulators, insurers and customers are placing increasing pressure on small and medium-sized businesses to demonstrate basic security controls and preparedness.

Phishing remains one of the most pervasive and effective threats in the cybersecurity landscape. Despite the proliferation of advanced malware, ransomware and cloud-native exploits, phishing continues to outpace many other attack types because it targets human behaviour rather than technical vulnerabilities.

From April 2026, the Cyber Essentials (CE) and Cyber Essentials Plus (CE+) schemes will be strengthened to reflect the realities of today’s threat landscape. These updates are not cosmetic. They introduce tougher assessment standards, clearer scoping rules and more explicit technical expectations, particularly around identity security, patching and resilience against ransomware.

Today’s threat actors rarely try to break in anymore. Instead they find ways to simply log in. Identity has become the primary attack surface, and artificial intelligence is accelerating this shift faster than most organisations can respond.

Adversary-in-the-middle attacks surged 146% in the past year according to Microsoft's Digital Defense Report. What is AiTM and why is it on the rise?

When a cyber incident hits, the first question organisations often ask is “who’s responsible?”. However, the more important question is “who is accountable?”.

As cyber threats continue to grow in volume, speed and sophistication, organisations face a big challenge. How do you achieve round-the-clock security coverage that is globally consistent, yet locally relevant to your business, your region and your regulatory environment?