The Gaming Boardroom

Author: Steve Tyler

Enhancing Financial Knowledge Through High School Education: The Effect of Mandated Economics and Personal Finance Courses

Steve Tyler Leave a comment

Enhancing Financial Knowledge Through High School Education: The Effect of Mandated Economics and Personal Finance Courses Summary This peer-reviewed study (Quadria & Jahan, Journal of Consumer Affairs, 2025) uses National Financial Capability Study data and state policy records to estimate the impact of mandated high-school economics and personal finance courses on subjective financial knowledge (SFK) […]

Read More →

Common Cyber Attacks: Reducing the Impact

Steve Tyler Leave a comment

Common Cyber Attacks: Reducing the Impact Article Date: 2022-03-10T09:10:16+00:00 Summary Common Cyber Attacks: Reducing The Impact explains what typical cyber attacks look like and why every organisation should put basic security controls and processes in place. It’s a concise companion to the NCSC’s 10 Steps to Cyber Security and focuses on practical, affordable defences rather […]

Read More →

Malware analysis report on SparrowDoor malware

Steve Tyler Leave a comment

Malware analysis report on SparrowDoor malware Summary The NCSC provides a technical analysis of a SparrowDoor malware variant discovered on a UK network in 2021. This variant extends the previously reported sample (ESET, Sept 2021) with additional capabilities. SparrowDoor acts as a persistent loader and backdoor, using XOR encoding for its command-and-control channel beneath HTTPS. […]

Read More →

‘WannaCry’ ransomware: guidance updates

Steve Tyler Leave a comment

‘WannaCry’ ransomware: guidance updates Summary The NCSC published and then updated guidance on the WannaCry ransomware outbreak aimed at enterprise administrators and home users/small businesses. The guidance provides immediate mitigation steps, balancing simplicity with accuracy to avoid spreading misinformation. Updates were driven by public feedback and collaboration with other teams to ensure advice is applicable […]

Read More →

Using MSPs to administer your cloud services

Steve Tyler Leave a comment

Using MSPs to administer your cloud services Summary The NCSC explains the security trade-offs when organisations outsource cloud administration to Managed Service Providers (MSPs). While MSPs bring expertise, scale and operational efficiencies, delegating administrative access increases your attack surface because MSP systems and credentials can be attractive targets for attackers. The guidance recommends treating MSPs […]

Read More →

To SOC or not to SOC ?

Steve Tyler Leave a comment

To SOC or not to SOC ? Summary This NCSC blog explores whether teams launching digital services truly need a traditional Security Operations Centre (SOC) or whether cloud-native design and operational changes can reduce or replace that need. It explains how SOCs work, why they were historically mandated (GPG13), and how the move to cloud […]

Read More →

Logging Made Easy with CISA

Steve Tyler Leave a comment

Logging Made Easy with CISA Summary The US Cybersecurity and Infrastructure Security Agency (CISA) has relaunched an updated version of Logging Made Easy (LME). The National Cyber Security Centre (NCSC) had previously retired support for LME but announced CISA would relaunch a refreshed edition for existing and new users. The new release is intended as […]

Read More →

Why vulnerabilities are like buses

Steve Tyler Leave a comment

Why vulnerabilities are like buses Summary The NCSC outlines a growing pattern where a high-profile, mass-exploited vulnerability in a product is frequently followed by additional critical flaws in the same product being found and exploited. Organisations often rush to apply emergency patches for the initial issue, only to face further exploitation when subsequent vulnerabilities are […]

Read More →

Zero Trust migration: where do I start?

Steve Tyler Leave a comment

Zero Trust migration: where do I start? Summary This NCSC blog explains practical first steps for migrating to a zero trust architecture. It assumes you have already decided zero trust fits your business goals and covers how to begin: discovery (inventory of users, devices, services and data), identity consolidation and multi-factor authentication, device management and […]

Read More →

Copyright © 2026 The Gaming Boardroom. All rights reserved.