Alex

A few free or relatively cheap tools come to mind when thinking about what we use at our startup. Free/Freemium - Web filtering - Cloudflare Zero Trust - helps protect your internet browsing from malware and phishing, basic plan is free for less than 50 employees - Security awareness - SafeStack - Has both generic security awareness training and lab based secure code training, free tier for...

My current top 3 Last Week in Security - https://blog.badsectorlabs.com/ - Weekly rundown of recent newsworthy cyber security events, techniques, and tools Krebs on Security - https://krebsonsecurity.com/ - Detailed insights on a the biggest threats Have I Been Pwnd - https://www.troyhunt.com/tag/hav... - Security insights and stories about handling data breaches

Easy to use and adds some extra fun to the football rounds. Been using the app with some mates for the premier league and am keen to have a crack for the world cup too. Keep up the good work!!!

User privacy and data security should be through about from the beginning. It's much easier to build in security and privacy focused processes and tech at the start than it will be to retrofit later on. But as Steven alluded to in his earlier comment, the reality is that you might be able to only do what you can afford to do or have time to do. The risk in what you store should be a good...

Yes please

This will sound a bit strange and far fetched because it's coming from the compliance side of my brain. Have you heard of the Cloud Security Alliance's CAIQ-Lite? It's a heavily trimmed down (78 questions is about as short as these things come) list of security based questions designed for companies to vet new vendors. It's also free to download and use as...

I'm not a founder/maker myself (hope to be one day), but work for a very young startup. We've tried to build in good security practices from the beginning. Code reviews, open source code scanning, public vuln scanners, regular patching, scrutinising dependencies, group discussions about new high risk features, bug bashes, a security email alias for notifications, free secure code training,...