Consult MB Ltd

Here at Consult MB Ltd, despite COVID-19, we’re still doing OK serving our customer base in Somerset, Bristol and the South West. Elsewhere though, we hear cyber business is booming, unfortunately the wrong type of business. The “Hidden Costs of Cybercrime” report by McAfee says the global cost of cybercrime is now around one trillion US dollars, up 50% on their 2018 estimate. It comes as no surprise that the most costly types of cybercrime are: malware & spyware, phishing, ransomware, financial cybercrime and cryptocurrency theft.

The McAfee report also makes the sort of common sense recommendations that we endorse and can assist you in adopting. These include, implement basic security measures, provide awareness training and develop prevention and response plans. Please contact us if you’d like to learn more.

We’re a tad late on this one, but in October the NCSC issued a revamped cyber security guide for small businesses. It outlines five key aspects:

1. Backing up data
2. Protecting from malware
3. Keeping smartphones safe
4. Using strong passwords.
5. Avoiding phishing attacks

You can download your copy of the NCSC guide here.

Consult MB Ltd offers staff awareness training, based on NCSC guidance, to small-medium sized organisations throughout Bristol and the South West. Please contact us for more details.

Following the headline-dominating ransomware attack on Blackbaud earlier this year, the threat charities are under has never been more real. With employees increasingly working from home, ensuring charities are cyber secure is now more important than ever.

With this in mind, the IASME Consortium, the recognised partner for the Government-backed Cyber Essentials certification scheme, is launching a week-long campaign in November aimed at encouraging registered charities to improve their resilience to online threats.  Alongside their participating licensed partners, the IASME Consortium is offering discounted certifications on two of their schemes, Cyber Essentials and IASME Governance, which will help charities demonstrate that they have effective and recognised best practice and protections in place.

As a licensed certification body, Consult MB Ltd is pleased to be offering a discount on both certifications to charities for the week 2nd-6th November 2020. The discounted rates are as follows:

Cyber Essentials          – £225 plus VAT (a 25% discount)

IASME Governance     – £250 plus VAT (a 37.5% discount)

Through this campaign, we are hoping to raise awareness to charities of the cyber threats they may face and how they can combat them by putting the right procedures in place for their organisations. To find out more and to register your interest, please contact us directly for more information.

ImmuniWeb a company specialising in Artificial Intelligence in the security world have published a report “State of Cybersecurity Industry Exposure at Dark Web”. It’s a scary read. Leading global cyber security companies report some shocking figures about data leaks and information appearing on the Dark Web. What’s particularly concerning is the continued use of weak passwords, and identical passwords used across many different systems. A password of “password” was the most commonly found. Ho hum.

When we consider addressing cyber risk we often focus on mitigation. Sometimes we avoid the risk or simply accept the risk. Another option is to transfer the risk, and typically this means insurance. The National Cyber Security Centre (NCSC) has recently published some guidance for organisations thinking about cyber insurance. Whilst stressing that insurance will not prevent cyber security incidents…the NCSC make the point that some insurers will give discounts when you can demonstrate that you take cyber security seriously and have basic defences in place. Cyber Essentials and Cyber Essentials Plus certification are identified as evidence of this.

As a Cyber Essentials & Cyber Essentials Plus Certification Body we provide training, advice/consultancy and certification services across the whole of Somerset, Bristol, and surrounding areas. If you achieve Cyber Essentials with us you may be eligible for cyber liability insurance offered as part of the certification. Please check out the IASME Consortium (NCSC’s Cyber Essentials Partner) FAQ for more details.

In response to COVID-19, on July 13^th the NCSC added a “Home and Remote Working” exercise to their great free resource “Exercise in a Box”.

Like most of their other exercises, this 30-60 minute session is also a ‘table top’ exercise, based around discussions prompted by NCSC discussion points. The exercise is aimed at small to medium size businesses, you can check it out here: https://www.ncsc.gov.uk/information/exercise-in-a-box

As a Cyber Essentials, Cyber Essentials Plus, and IASME Governance certification body it is important that our customers know that we practise what we preach and that we meet or exceed the same standards that we expect from them. It’s equally important that we understand the effort and time it takes for small to medium size enterprises to achieve certification.

As such, we re-certify in both Cyber Essentials and IASME Governance every year. It’s not just a copy and paste of last year’s answers either! We strive to evolve and improve our security processes and incorporate the latest technical guidance and advice wherever possible.

Re-certification is a good time to review everything we do, and to remind ourselves that achieving the certification is a non-trivial task for both us and our customers.

The coronavirus lockdown presented many new challenges to small-to-medium sized organisation. Not least in the sudden change in the way we use IT with increased home working. As such, in April, Consult MB Ltd offered free external vulnerability scans to all local charities, and to the first 25 local businesses that requested it.

We’re pleased to announce that we’re extending the scheme for the next month, with free vulnerability scans for local charities and volunteer organisations. If you’re interested, please get in touch via our contact us page.

Effective security against the most common Internet based cyber threats just got clearer!

1 April 2020 marks the launch of The IASME Consortium becoming the National Cyber Security Centre Cyber Essentials Partner.  #CyberEssentials is a Government backed scheme which has proven to be popular and successful with organisations seeking to protect themselves against the most common online cyber threats. 

To deliver regional support to customers throughout the UK, IASME will continue to deliver the scheme via approved regional Certification Bodies (CBs).  Consult MB Ltd can announce that we continue into this new era as an IASME approved CB.

Consult MB Ltd supports clients throughout Somerset, Bristol, Gloucestershire and South Wales. We do venture further afield from time to time as well! For more information about, or to apply for, Cyber Essentials please have a look at our Cyber Essentials webpage.

NCSC have put out an updated blog concerning Cyber Essentials:

https://www.ncsc.gov.uk/blog-post/cyber-essentials-countdown-to-partnership-launch

and also updated their Cyber Essentials FAQ:

https://www.cyberessentials.ncsc.gov.uk/strengthening-developing-the-ce-scheme

Consult MB Ltd is pleased to confirm, in terms of both the new technical Pen Testing requirements, and the new quality requirements, that we are ready for the 1 April Cyber Essentials changes. Our customer base across Somerset, Bristol, and surrounding areas continues to grow as we provide cost effective cyber security solutions and Cyber Essentials/Plus certification to our clients.