Conferencing & Collaboration, Broadcast AV, Command and Control, Digital Signage, Learning Solutions, and 2 more

Thoughts on the British Library Cyber attack

“There are only two types of companies: those that have been hacked and those that will be hacked”
Go to the profile of Benedict Onodu. CTS.MBCS
Benedict Onodu. CTS.MBCS
AV Governance. Risk and Compliance (GRC) Consultant, Experian
Thoughts on the British Library Cyber attack
Like
Go to the profile of Chris Lavelle
Go to the profile of Molver Technology S.A.

Share this post

Choose a social network to share with.

Share with...

This is a representation of how your post may appear on social media. The actual post will vary between social networks

This one hit closer to home.

“There are only two types of companies: those that have been hacked and those that will be hacked” -Robert S Mueller III, executive director of the FBI and special counsel into Russian interference with election (s) in the US. A combination of weak internal vulnerability management and the threat actor’s growing viciousness and ingenuity, supported by an abundance of AI tools and resources are contributing to an unprecedented increase in successful cyber-attacks.

It doesn’t always make the headlines but most successful cyberattacks depend on human element and our natural tendency for errors or ill-motive. In its 2022 Data Breach Investigation Report, Verizon states that 82% of breaches involve the human element.

In the current landscape, baseline cybersecurity hygiene and best-practices such as Multi-Factor Authentication (MFA) or system default password change and other configuration designed around the human intervention would only introduce avoidable vulnerabilities leading to costly incidents. Manual system security configuration could be automated, if possible, to reduce human error and potential misconfiguration. No investment in technology will produce desired outcomes on a sustained basis if the system fails to process valuable date safely.

However, your staff, who must interact with data and the system through which they are processed, are the missing link in Information Security. They must be equipped with education and the capacity to take responsibility for data and information they handle through continuous education and awareness.

An Information Security policy which does not prioritise user education and awareness as a foundational tenant needed a rejig.

#avixa #cyberawareness #avtweeps #iso27001 #nist #cyberdefense

Go to the profile of Benedict Onodu. CTS.MBCS
Benedict Onodu. CTS.MBCS (He/Him)
AV Governance. Risk and Compliance (GRC) Consultant, Experian

A CTS with more than 20 years in Pro AV.With credentials including ISO 27001 Practitioner, CompTIA Security+, AVIXA CTS, and service as a member of the AVIXA Standards Steering Committee, I bring a multidisciplinary perspective that spans security governance, systems engineering, AV risk, and operational resilience. I understand AI as a socio‑technical system, where risks extend across architecture, data flows, user behaviour, and integrated AV/UC environments. 

i've led the design and optimisation of secure collaboration environments — from Microsoft Teams to enterprise meeting rooms and hybrid working platforms — supporting high‑stakes spaces such as Board meetings, AGMs, and multi‑site collaboration.

I am now expanding my leadership into AI governance and responsible technology, developing capability in ISO/IEC 42001 (AIMS) and the NIST AI RMF to help organisations operationalise AI safely, ethically, and at scale

Please sign in or register for FREE

If you are a registered user on AVIXA Xchange, please sign in

Sign In Register

  • Xchange Advocates are recognized AV/IT industry thought leaders and influencers. We invite you to connect with them and follow their activity across the community as they offer valuable insights and expertise while advocating for and building awareness of the AV industry.

    Meet the Advocates

Recommended Content

Sustainability in AV, AI in AV, Conferencing & Collaboration, Broadcast AV, Digital Signage, Business of AV, Technology Managers' Forum, IT and Networked AV, Jobs, Xchange Community Chat, CTS Holders Group, InfoComm, ISE, Integrate, AV Marketers, InfoComm India, Sustainable AV , AV/IT Buyers, AV Education for The Next Generation, Xchange Advocate Room, InfoComm América Latina, AVIXA Standards Forum

When Screens Watch Back: What AV Manufacturers Must Get Right About AI‑Enabled Digital Signage

When Screens Watch Back: What AV Manufacturers Must Get Right About AI‑Enabled Digital Signage
Copyright © 2026 AVIXA 11242 Waples Mill Road, Fairfax, VA 22030 All rights reserved. Built with Zapnito

Cookies

We and selected partners, use cookies or similar technologies as specified in the cookie policy and privacy policy.

You can consent to the use of such technologies by closing this notice.

Cookie Control

Customise your preferences for any tracking technology

The following allows you to customize your consent preferences for any tracking technology used to help us achieve the features and activities described below. To learn more about how these trackers help us and how they work, refer to the cookie policy. You may review and change your preferences at any time.

See the full cookie policy See the full privacy policy
More information

These trackers are used for activities that are strictly necessary to operate or deliver the service you requested from us and, therefore, do not require you to consent.

More information

These trackers help us to deliver personalized marketing content and to operate, serve and track ads.

More information

These trackers help us to deliver personalized marketing content to you based on your behaviour and to operate, serve and track social advertising.

More information

These trackers help us to measure traffic and analyze your behaviour with the goal of improving our service.

More information

These trackers help us to provide a personalized user experience by improving the quality of your preference management options, and by enabling the interaction with external networks and platforms.