Latest news

Organisations paying off post-pandemic compliance debt in 2021, according to NCC Group

Organisations paying off post-pandemic compliance debt in 2021, according to NCC Group

Budget cuts, redundancies, delays to cyber resilience projects and increased remote working in the last 12 months could all have increased organisations’ risk of a cyber attack in 2021, according to new research into cyber security decision makers from NCC Group.

Royalty-free Shutterstock photo

NCC Group Europe's Danish entity accredited with Splunk Elite partner status.

NCC Group, a global leader in Managed Detection and Response, has had its Managed Services operations in Denmark and the Nordic Region recognised by Splunk who have granted the highest level of their partnership programme.

NCC Group Annual Research Report

NCC Group Annual Research Report

We’ve published our 2020 Annual Research Report, summarizing our security research findings from across the nearly 200 conference publications, blog posts, and tool releases published by our researchers between January 1, 2020 and December 31, 2020.

Spotlight on cyber security as a science

Spotlight on cyber security as a science

Evidence-based cyber resilience decisions can make a quantifiable difference when it comes to material improvements for the global business community, and for society as a whole. While we are still in the foothills of this becoming common practice, our global CTO, Ollie Whitehouse, explores the way that our approach to security is changing.

Cyber attack at wastewater treatment facility. Shutterstock: Royalty-free stock photo ID: 1488059408

Insight: Florida city’s water supply attack

Last week officials in a Florida City said that hackers had accessed its water supply and upped sodium hydroxide levels to extremely dangerous levels. NCC Group’s Damon Small and Jim McKenney take us through what happened and share recommendations on what organisations can do to help prevent such attacks.

Half Year Results for six months to 30 November 2020

Interim results for the six months ended 30 November 2020

Today NCC Group reports its half year results for the six months to 30 November 2020 ("the half year", "H1 2021", "the period").

Upcoming events

Shutterstock ID: 1458581246

nsec - Offensive Cloud Security

Event date 27 May 2021 - 28 May 2021

Social media

RT @DailySwig: UK cybersecurity spending is on the rise despite pandemic-induced budget cuts, according to a new report from @NCCGroupInfos…

@NCCGroupInfoSec

Happy #InternationalWomensDay! Here are just a few of the inspiring women that make the world safer and more secure… https://t.co/qFwa25mUiW

@NCCGroupplc

RT @NCCGroupInfosec: For those dealing with suspected Microsoft Exchange compromises we've published MD5, SHA1, SHA256 hashes & file lists…

@NCCGroupInfoSec

For those dealing with suspected Microsoft Exchange compromises we've published MD5, SHA1, SHA256 hashes & file lis… https://t.co/1lX8xFTRsh

@NCCGroupInfoSec

We prototyped a Windows Service Canary to help detect and respond to certain pre-ransomware trade craft. The ultimate goal being to alert and minimize the impact of ransomware deployments.

Deception Engineering: exploring the use of Windows Service Canaries against ransomware

Did you catch our Annual Research Report? We celebrated a whole year of incredible #research by @NCCGroupInfosec in… https://t.co/DH2eO5kw3e

@NCCGroupplc

Wubes is like Qubes but for Microsoft Windows. The idea is to leverage the Windows Sandbox technology to spawn applications in isolation. We currently support spawning a Windows Sandbox for the Firefox browser, with other applications easily added.

Wubes: Leveraging the Windows 10 Sandbox for Arbitrary Processes

Current Vendor: Gigaset Vendor URL: https://www.gigaset.com/es_es/gigaset-dx600a-isdn/ Versions affected: V41.00-175.00.00-SATURN-175.00 Systems Affected: DX600A Authors: Manuel Ginés - manuel.gines[at]nccgroup[dot]com Admin Service Weak Authentication CVE Identifier: CVE-2021-25309 Risk: 8.8 (High) - AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H AT Command Buffer Overflow CVE Identifier: CVE-2021-25306 Risk: 4.5 (Medium) - AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Summary According to the oficial documentation, the Gigaset DX600A is a high-end ISDN desktop … Continue reading Technical Advisory: Administrative Passcode Recovery and Authenticated Remote Buffer Overflow Vulnerabilities in Gigaset DX600A Handset (CVE-2021-25309, CVE-2021-25306) →

Technical Advisory: Administrative Passcode Recovery and Authenticated Remote Buffer Overflow Vulnerabilities in Gigaset DX600A Handset (CVE-2021-25309, CVE-2021-25306)

Our talk on Cybersecurity in Healthcare is kicking off soon! Will you be there? Find out how to join below. https://t.co/9C1YOxfxKA

@NCCGroupplc

Press contacts

NCC Group Press Office

NCC Group Press Office

Press contact All media enquires relating to NCC Group plc +44 7824 412 405
NCC Group - Financial Media Enquiries

NCC Group - Financial Media Enquiries

Press contact Maitland AMO Financial Results Media Enquiries +44 (0)20 7379 5151
Regional Press Office - North America

Regional Press Office - North America

Press contact +1 408 776 1400

NCC Group exists to make the world safer and more secure

In today’s threat landscape understanding the risks your organization and customers are exposed to is more important than ever.

Understanding the impact and what you can do to make your organization more resilient is key to protecting brand, reputation and sensitive customer information. Building a cyber-resilient organization can be a complex process but it’s not impossible.

With our knowledge, experience and global footprint, we are best placed to help businesses identify, assess, mitigate and respond to the risks they face.

NCC Group Newsroom
XYZ Building, 2 Hardman Boulevard, Spinningfield
M3 3AQ Manchester
United Kingdom