Latest news

Royalty-free stock illustration ID: 1395082445

Research update: RM3 – Curiosities of the wildest banking malware

Recently, our Research and Intelligence Fusion Team (RIFT) published research findings on RM3, an advanced variant of the banking malware family known as Gozi, and uncovered Oceania as the top target for threat actor groups.

Text reads: 'are people your largest untapped resource for cyber resilience? Insight Space: cyber insights programme'.

Webinar playback: are people your largest untapped resource for cyber resilience?

In our webinar ‘are people your largest untapped resource for cyber resilience?’ we discuss how we can create a more diverse and inclusive sector, address the cyber security skills gap, and make people more capable when it comes to cyber security.

NCC Group completes IPM acquisition. Shutterstock_1187430754

NCC Group completes acquisition of Iron Mountain’s Intellectual Property Management (IPM) business

Global cyber security and software resilience business, NCC Group, has completed its acquisition of Iron Mountain’s Intellectual Property Management (IPM) business in a £156m deal providing immediate additional scale to the Group’s Software Resilience business in North America.

Image of an energy station with an overlay of icons of people that are interconnected with lines. (Royalty-free stock photo ID 1521445094)

News spotlight: What can we learn from the US Colonial Pipeline ransomware attack?

On Friday 7th May, fuel supplies across North America were disrupted as the Colonial Pipeline, the major fuel pipeline connecting the East Coast, was attacked in the largest-known attack in US energy infrastructure. As the organisation’s systems begin to recover, Damon Small, technical director at NCC group, provides an overview of the attack and the lessons we can take from it.

NCC Group Q1 Threat Report Update: Exploits publicly available for 29% of critical vulnerabilities discovered

NCC Group Q1 Threat Report Update: Exploits publicly available for 29% of critical vulnerabilities discovered

Our threat intelligence from Q1 of this year revealed that, of the more than 4,400 vulnerabilities that were disclosed* between January and March 2021, 72% had no patches available.

The Progress Pride flag flies on a flagpole in front of a sky background. (Royalty-free stock photo ID 1785493415)

Why we're changing our logos for Pride month

At NCC Group we are committed to creating an environment where all colleagues feel psychologically, emotionally, and physically safe to be their authentic selves. That means working to make our workplace more inclusive for our LGBTQIA+ colleagues.

Upcoming events

(WEBINAR) Whitebox pentesting: A faster, more accurate pentest for the enterprise

(WEBINAR) Whitebox pentesting: A faster, more accurate pentest for the enterprise

Event date 19 February 2021 – 19 August 2021

Webinar: Machine Learning in Cyber Security. What It Is and What It Isn't

Webinar: Machine Learning in Cyber Security. What It Is and What It Isn't

Event date 24 June 2021

Location Webinar

Don't miss NCC Group's very own presenting the Bad Active Directory (BAD) training at BlackHat on the 31st of July - 1st of August or from the 2nd - 3rd of August 2021!

BlackHat - Bad Active Directory (BAD) Training | NCC Group's Dhruv Verma, Michael Roberts, Xiang Wen Kuan

Event date 31 July 2021 – 3 August 2021

Location BlackHat

Social media

NCC Group co-signs the @EFF Statement on DMCA use against security researchers: https://t.co/O6dZQTHywG

@NCCGroupInfoSec

Today, NCC Group alongside a number of security firms and technology organizations co-signed a statement by the Electronic Frontier Foundation in opposition to the use of Section 1201 of the Digital Millennium Copyright Act against security researchers performing research in good faith, including when using third-party security testing tools.  We believe that the security of … Continue reading NCC Group co-signs the Electronic Frontier Foundation’s Statement on DMCA Use Against Security Researchers →

NCC Group co-signs the Electronic Frontier Foundation’s Statement on DMCA Use Against Security Researchers

RT @NCCGroupCareers: Work with purpose and passion as you help to make the world safer and more secure. Join our incredible team of cyber s…

@NCCGroupplc

RT @hardwear_io: 💪😎Big Guns from the #HardwareSecurity Industry are visiting us for the Virtual Panel Session at #hardwear_io USA Virtual C…

@NCCGroupInfoSec

Today we’re excited to announce a further development in our collaboration with #Microsoft with the addition of Mic… https://t.co/JsJUYlVlkJ

@NCCGroupplc

What's new on our #research blog? Find out here. #Cryptography #ZeroKnowledgeProofs #FinancialBlockchains https://t.co/wwbOvg4TpF

@NCCGroupplc

RT @NCCGroupInfosec: In this new post by @ParnianAlimi of NCC Group's Cryptography Services, learn about using zero-knowledge proofs and El…

@NCCGroupInfoSec

RT @NCCGroupInfosec: Blog: Handy guide to a new Fivehands ransomware variant - https://t.co/8gmBEMd76u by @MMatthews32 and William Backhouse

@NCCGroupInfoSec

In this new post by @ParnianAlimi of NCC Group's Cryptography Services, learn about using zero-knowledge proofs and… https://t.co/bYOdbhueTP

@NCCGroupInfoSec

Blog: Handy guide to a new Fivehands ransomware variant - https://t.co/8gmBEMd76u by @MMatthews32 and William Backhouse

@NCCGroupInfoSec

NCC Group’s Incident Response team observed a new variant of the FiveHands ransomware, deployed by an affiliate leveraging publicly available tools to progress their attack. This blog post aims to describe the developments in the ransomware variant and the techniques used by the affiliate.

Handy guide to a new Fivehands ransomware variant

The increased adoption of financial blockchains has fueled a lot of cryptography research in recent years. One area of high interest is transaction confidentiality which requires hiding investors’ account balances and transaction amounts, while enforcing compliance rules and performing validity checks on all activities. This blog post will look at the Zether [2] protocol, which … Continue reading On the Use of Pedersen Commitments for Confidential Payments →

On the Use of Pedersen Commitments for Confidential Payments

Press contacts

NCC Group Press Office

NCC Group Press Office

Press contact All media enquires relating to NCC Group plc +44 7824 412 405
NCC Group - Financial Media Enquiries

NCC Group - Financial Media Enquiries

Press contact Maitland AMO Financial Results Media Enquiries +44 (0)20 7379 5151
Regional Press Office - North America

Regional Press Office - North America

Press contact +1 408 776 1400

NCC Group exists to make the world safer and more secure

In today’s threat landscape understanding the risks organisations and customers are exposed to is more important than ever.

Understanding the impact and how to be more resilient is key to protecting brand, reputation and sensitive customer information. Building a cyber-resilient organization can be a complex process but it’s not impossible.

With our knowledge, experience and global footprint, we help assess, develop and manage cyber resilience posture.

NCC Group Newsroom
XYZ Building, 2 Hardman Boulevard, Spinningfield
M3 3AQ Manchester
United Kingdom