Homepage

Portfolio

Services

Gallery

About

Clients

Testimonials

Blog

Contact

Terms and conditions

Privacy Policy

Changelog
Karuso portfolio Webflow template

Template's Overview

Email us

Call us

powered by weflow

Made by metrik

Know your data

Last week I was reviewing Gurpreet Thathy’s (GT) report following a client infrastructure review. One of the points that jumped out at me, a point that I’ve seen often in other similar reports, was regarding the amount of data retained by organisations (org’s) and individuals. With storage devices being relatively cheap and the evolution of cloud storage, businesses and individuals should carefully consider what they retain and how they secure it. I followed up on this point with GT, and he provided 3 points org’s/individuals can do (internally or with assistance from a third-party provider) to improve their data storage.

  1. Do you need to store data? Conduct a data audit to understand the infrastructure and how data is stored and accessed. On the most recent audit, one of the first things GT noticed was that the client was holding/storing almost everything (dating back years). We let the client know that we needed to reduce the amount of ‘stored data’, and the first step was determining what they needed to keep. Retaining old data is an unnecessary risk, especially when not required. Reviewing and auditing also assist with complying with regulatory requirements.
  1. Who has access to this data? The client’s infrastructure had controlled access and audit logs on who logged into which share/cloud space and an audit log on files accessed by which users; however, some shares were identified as outdated/unnecessary. Although some of it was taken offline, you could still access these files without restrictions and audit logs. It’s important to remember that access restrictions are only effective if the system uses reliable authentication measures.
  1. Raise Awareness. Unauthorised access to systems from internal and external parties is on the rise. It’s not just about protecting yourself from external threats but also about raising awareness about accessing documents internally, which you shouldn’t. During several recent forensic investigations, when investigating computers and other computer peripherals, post the audit, our clients have requested us to brief the client’s employees, and most of them say – ‘they didn’t know files were restricted,’ or ‘I didn’t know we couldn’t take files home.’ As org’s, we should educate employees about what they can and cannot do and the risks involved.

Security and awareness are paramount when storing data. Whether you as a business or individual keep employee data or the data of others, you should audit your data and understand how it is accessed, where it is stored and who accesses this data and should follow best practices. Doing this will ensure that you lower your risk of a security incident.

Valkyrie Updates

News

Stay informed with the latest insights, expertise and innovations in the world of security with Valkyrie’s news, reports and white papers

July 26, 2024

Action Needed to Combat Online Exploitation

The alarming rise in online child grooming crimes has reached a record high, highlighting an urgent need to protect children online. Valkyrie’s Director of Cyber and Electronic Countermeasures, Gurpreet Thathy, has been working in this field since 2008 and was involved in Operation Notarise in 2014, investigating and tackling organised grooming gangs. Even back then, […]
July 18, 2024

Exciting News: Quantum Group Acquires Forensic Control!

Quantum Group, the Parent Company of Valkyrie, is thrilled to announce the acquisition of Forensic Control. Forensic Control, a leading specialist in cyber security and digital forensics, is renowned for making the complex world of cyber security clear and manageable. This strategic acquisition not only strengthens our existing service portfolio but also expands our capabilities […]
July 12, 2024

Total Protection

Valkyrie’s Director of Cyber Security and Electronic Countermeasures, Gurpreet Thathy, has been engaged in a variety of tasks over the past few weeks. These include training sessions in Scotland, cyber assessments in Devon, and TSCM and forensic work in London and Birmingham. However, yesterday, Gurpreet joined our esteemed colleague, Neal Gozzett of Monan Gozzett LLP, […]
July 05, 2024

Safeguarding Personal Information Post-Incident

With the increasing integration of technology into our daily lives, personal security breaches have become alarmingly common. Where it was once standard to have separate devices for personal and work use, it is now the norm to rely on a single device for everything. This convenience is offset by the potentially devastating consequences of a […]
June 21, 2024

Wi-Fi Jammers and Unauthorised Surveillance

Criminals are increasingly using sophisticated technology to target victims. Staying aware of these trends is essential to ensuring your security, that of your family, and that of your property. A particularly concerning development involves using Wi-Fi jammers to deactivate home security systems and mobile phones. These devices block the radio signals used for communication, posing […]

RF Jammers
June 14, 2024

Valkyrie update

Over the past few weeks, the Valkyrie team has tackled a variety of challenging and unique projects that required our full range of investigative and security expertise. One recent highlight was a comprehensive surveillance training program. The team relocated from London for three weeks to deliver intensive training on covert surveillance techniques, covering theoretical, practical, […]

Email us

security@valkyrie.co.uk

(Response within 24 hours)

Call us

+44 (0)20 7499 9323

(24/7 - 365 days a year)

Visit us

15 Belgrave Square, London
SW1X 8PS, UK

(0900 to 1700 Monday - Friday)

© 2024
|

Made by