From the Editor

Whether you work at a small company or run a major corporation, cybersecurity is an issue you need to address. Gone are the days of leaving such concerns up to the IT department; in a world where attacks range from major international incidents to individually targeted scams, everyone needs to be aware of  the risks, and know how to do their bit to minimise them.

But not everyone is an IT expert, and you shouldn’t have to complete a degree in computer science to know what you need to do to keep yourself and your organisation safe.

Which is where our magazine, Verdict Encrypt, comes in. This is not a publication just for cybersecurity professionals – although there is plenty here for them, too – it is a magazine where everyone can gain insight into the challenges, trends and issues surrounding cybersecurity. We provide valuable, actionable knowledge without assuming you’re already an expert, and in a world where the user is almost always the weakest link in a company’s cybersecurity efforts, that is a pretty important role.

So to kick off issue one of Verdict Encrypt, we’re taking a wide-ranging look at the topic, from high-level concerns to real organisational lessons. We hear from former FBI executive assistant director Shawn Henry about the emerging challenges of cyber warfare, discover what the current sentiment around cybersecurity is in companies around the world and find out how businesses who have been the subject of an attack changed their IT practices in its wake.

If an attack does happen, a company’s reputation can be severely impacted. But there is a considerable amount than can be done to avoid this. We look at how responsible crisis management can go a long way in maintaining reputation, and what companies can do when the worst happens.

Earlier this year, the healthcare sector in particular was rocked by the WannaCry ransomware incident. We look at how and why this sector is so uniquely vulnerable, and consider what steps can be taken to mitigate the risk.

Attacks are not always wide-ranging. The so-called email prankster made headlines in August when he successfully conned major political players into believing he was their colleague. But this type of action – known as spear phishing – can also be much more sinister. We look at this lesser known attack type, and what can be learned from the prankster’s antics.

And that’s just the start. You’ll find far more cybersecurity insight and knowledge over the following pages of Verdict Encrypt, the new bi-monthly magazine on cybersecurity.

Lucy Ingham