Phil Huggins

I've taken some time recently to write up the Information Security Risk Universe I use for risk identification as an open framework for collaboration -> github.com/oracuk/oisru Comments, Issues and PRs welcome :)

🚨 UK Health Secretary @wesstreeting has rejected Donald Trump's claims linking paracetamol in pregnancy to autism, telling ITV's Lorraine there is "no evidence" for it. "Don’t pay any attention whatsoever to what Donald Trump says about medicine," he said. "Listen to British doctors, British scientists, the NHS." He added: "I trust doctors over President Trump, frankly, on this."

This is insane. AI capex might account for a larger share of GDP than basically any technology since the railroad. Basically it’s a mini-wartime economy, but the guns are chips and the tanks are databases

matangitonga.to/2025/06/20/ran… “I had a talk with our lady in the ICT department and she cried, I think she blamed herself and was afraid of the doctors. I assured her that this issue was bigger than us,” Dr ‘Akau’ola said. This quote feels very authentic.

Elizabeth Anscombe on the reception of her campaign against Truman's honorary degree among the different Oxford colleges (2/3) (which occasioned the infamous comment that "the women are up to something"):

Current vibes #Eurovision #ESC2025

It's #Eurovision today! But - song contest aside - #Eurovision itself was a pioneering (and often chaotic!) attempt to collaborate on new technology across Europe. And it only happened because of Queen Elizabeth ll. Let's look back at the birth of European broadcasting...

I published an open letter to NHS suppliers introducing our cyber security charter for suppliers to the NHS: digital.nhs.uk/cyber-and-data… Lots of work to come to embed these expectations across contractural terms, assurance processes and regulatory obligations.

"Cabinet Office focused on the Department of Health and Social Care (DHSC) as a positive example. It told us that DHSC had set a clear cyber security strategy for health and social care" " DHSC had started to improve its sector’s resilience." 2/2

The Parliamentary Accounts Committee report on Governemnt Cyber Resilience was published today here: publications.parliament.uk/pa/cm5901/cmse… 1/2

Government defences have not kept up with the severe and rapidly evolving cyber threat We've published our report into the Government's resilience against a cyberattack ⚠️ Read more 👇

🗓️ Scam Survivor Day is just around the corner on 8 May 2025! More than half of scam targets report stress or trauma. 👉 Learn more: BBB.org/ScamSurvivorDay @BBB_Institute #BBB #Scam #Fraud #ScamSurvivorDay #ScamAwareness #FraudPrevention #ConsumerProtection

Security vendors produce software like any other software company. It’s just that their products are often on privilege boundaries. Ask them if they have taken the Secure by Design pledge.

In cybersecurity, measuring what works is tough. But measuring what doesn’t work? That’s even tougher. Many vendors, and analysts, rely upon this fact.

America’s crisis is the UK’s opportunity. My ⁦@NewStatesman⁩ piece on why Keir Starmer should open the doors to the best and the brightest fleeing Donald Trump’s America. newstatesman.com/comment/2025/0…

@Dejan_Kosutic A fascinating piece of research. I would suggest a hypothesis that organisations whose management controls are relatively ineffective in managing cyber vulnerabilities are likely similarly ineffective in governing other areas likely leading to poorer performance.

*#Cybersecurity vulnerabilities and their #financial #impact* Firms with more exposed computer networks tend to underperform in the stock market, resulting in significant financial losses for their shareholders. These findings suggest that cybersecurity risks are not only a concern for IT departments, but also for financial stakeholders, investors, and the overall economy. advisera.co/fbd08552

The older I get the more I realize: • Silence is a response • Being unbothered is a skill • No is a full sentence • Most "urgent" things can wait • Respect > Attention • Apologies are empty without change • Movement is medicine • You're not for everyone, and that's fine

Privileged Access Workstations or 🐾 impose material cost and complexity on adversaries. We have published a new set of principles for PAWs. ncsc.gov.uk/blog-post/intr…

Really proud of this great piece of work by my team on the state of cyber security in adult social care: gov.uk/government/pub…

On this day in 1776, Edward Gibbon published the first volume of The Decline and Fall of the Roman Empire, a monumental work he would complete in six volumes by 1788. If you haven’t read all six (which I highly recommend you do), here are the main things you need to know! 🧵