Cloud’s Escalating Security Challenges
The article explores how rapid cloud adoption has expanded attack surfaces and created complex security challenges for organisations. It highlights the evolution from early pandemic-driven cloud uptake to highly interconnected, multi-cloud environments facing sophisticated, targeted threats. Attackers increasingly exploit cloud services such as Docker, Kubernetes, Redis, and Jupyter, using tactics that include cryptomining, credential theft, and automated spamming. The article emphasises the need for automated, scalable forensics and deeper data collection across cloud environments.
The European Union’s Plan for Cybersecurity in Space
This legal feature examines the EU’s proposed regulatory framework for cybersecurity in space operations, treating space as an extension of terrestrial technology environments. The proposal aims to unify standards, establish fair markets, and anticipate future risks as commercial space activity expands. The article explains the distinction between risk management and cybersecurity, outlines lifecycle risk requirements, and discusses controls for access rights, monitoring, logging, and authenticity.
NIS2 The History and Application of the NIS/NIS2 Regulations
This feature traces the evolution of operational technology (OT) cyber from early engineering systems to today’s regulatory environment. It describes how engineers, IT teams, and organisations struggled to communicate, secure systems, and manage risk as cyber threats increased. The article frames NIS and NIS2 as a response to ongoing failures in governance, skills shortages, and lack of preparedness, arguing that regulation became necessary to drive industry-wide improvements.
Project SINT - The Synthesis of HUMINT & OSINT in Combating Digital Financial Fraud
This article presents H2INT, a hybrid intelligence methodology combining human intelligence (HUMINT) and open-source intelligence (OSINT) to investigate and dismantle complex digital financial fraud networks. It argues that human analysts, paired with digital tools, can synchronise collection, analysis, and field operations, improving the targeting of organised cybercrime. The method emphasises adaptive intelligence, contextual behavioural understanding, and real-time collaborative processes.
Standards in the Digital Forensics Discipline
The article examines how standardisation strengthens digital forensics by increasing reliability, repeatability, and courtroom credibility. It traces the development of standards, discusses the role of key organisations, and highlights the difficulties of achieving interoperability across jurisdictions and disciplines. Scientific rigour and consistent processes are presented as necessary foundations for trustworthy digital evidence.
Fraudulent Website Takedown
This feature outlines a global, multi-phase process for identifying, preserving evidence of, and removing fraudulent websites. It emphasises legal compliance, jurisdictional complexities, and coordinated escalation from hosting providers to law enforcement. The process is designed to protect victims, maintain chain of evidence, and remediate threats without jeopardising investigations.
