DataSecurityExpert.co.uk - All Things Graeme Batsman

Service Offerings

Cyber security training
Product reviews
Blog or article writing
SME & UHNWI cyber security

View more details here or email me.

Chapter Author

"Chpt. 4: How to Defend"

Contact Graeme

Journalists, students or potential clients:
graeme@datasecurityexpert.co.uk

Something private to say?
PGP public key

No AI Used Here

Diving inside a semi or targeted email phishing campaign

Details: Category: Blog; Published: 04 April 2026

Both emails arrived within four days of each other and, unlike the generic phishing messages from “eBay” or “PayPal,” more effort went into these. Either the content was AI-generated or a real person did somewhat more careful reading into my website.

Why is it different? Normally the email says your password is expiring or that there has been suspicious activity on your account and asks you to click a link. These two emails are talking about something I may actually be interested in offering. Mass-market messages address you as “Dear Sir/Madam.”

Let’s look at the differences and red flags:

Inquiry in the subject line – In British English, "inquiry" refers to a legal investigation. However, in American English, it is the correct word. This can or cannot be deemed as a mistake in the English language depending on the location received.
Hi Graeme in the subject line – This is not the appropriate place to greet me.
I tried calling in the email body – I did not receive a call or voicemail, and my website does not list a phone number.
Your teams in the email body – If they had read my website correctly, they would have seen that it is just me.
Elizabeth Lee – This name does not appear in search engines or on LinkedIn as an employee.
Kelsostrategy.us – This domain is different from kelso.com.
Kelsostrategy.us – was registered on 21st March and used to re-direct to kelso.com.
Kelso – is a bona fide business and is a private equity firm based in Mid-Manhattan and may not be the correct organization to approach me for training.
1000 Main Street – 1000 Main Street is the listed whois address, but there is no apartment block at the address listed on Google Maps.
Teams/Calendar/Kelso/Elizabeth – This is not a URL and the actual URL is a Microsoft Azure Blob
Michael - is mentioned in the body but is not cc’ed on the email.

We need more babies to reverse low birth rates… but where are the jobs for them in the future?

Details: Category: Private Thoughts; Published: 23 February 2026

From time to time, we hear about low birth rates in the United Kingdom, Europe, Japan and beyond. According to the Office for National Statistics, the 2024 figure was 1.41 children per woman. Even lower were Spain and Malta with a joint 1.1. In Hungary, Spain and Malta in 2023, the figure was 1.5, which can be read at https://data.worldbank.org/indicator/SP.DYN.TFRT.IN?locations=EU&most_recent_value_desc=false.

In October, Mr Musk appeared in a headline story titled: "Elon Musk Issues Birth Rate Warning: ‘Mass Extinction’". Mr Orban, back in February of last year, offered giant tax breaks to increase birth rates, and Hungary is above average in statistics. In September of 2024, Greece started to offer something similar. It is clear that many countries are trying to increase birth rates; however, I see a flaw in this cause: skilled jobs in the next 5, 10, 15 years.

High birth rates are generally caused by two things: poverty and/or religious populations. Take the Philippines, for instance, with a birth rate of 1.92 and a high percentage of young/unmarried births. Poverty, education and the power of the Catholic church could be partly to blame for this. Divorce and abortion are not permitted in 2026.

Low birth rates could be related to better education around female empowerment, contraceptives, permitted abortions, and physical infertility. Or is it down to the items listed below?

Collins Aerospace, Harrods, M&S, Co-Op and Jaguar Land Rover – Don’t say social engineering is impossible to prevent, try to mitigate it with these tips

Details: Category: Cyber Security (Personal); Published: 19 November 2025

2025 has been a bad year so far for job hunters with a bad economy and jobs market in many Western countries but a good year for hackers. All of these names are household brands apart from Collins Aerospace. The latter is a very large firm and has defence contractor offerings, but we have not heard of them since it is not for consumers.

There are always speculation and “leaks” from staff or contractors (incident response firms maybe) telling how the bad guys got in. Many sources say social engineering via phone, email, Teams or via their supply chain. No, this is not zero days seen in Stuxnet or unseen malware at all. Just some online research and good acting or writing skills against staff or to staff at supply chains.

Many folk say users are the weakest link and are stupid which is unfair. Even a well trained general employee or seasoned cyber security bod (informal for body) will fall for something in time. Take a solicitor for instance, he/she has a specialist topic in law and is great at that. He/she is not good at IT and less so at cyber security awareness. A cyber security bod is not good at law, so it is unfair to put employees down.

Four defences I will cover in this article which still lack in low level detail. No, I will not be covering “normal” items like SIEM/SOAR/patching/EDR/XDR etc. Not to say these are not needed.