Latest news

A tablet showing medical information lies on a desk with medical instruments around it. Royalty-free stock photo ID: 572383276.

Future regulatory framework for medical devices in the UK

As the UK Medicines and Healthcare products Regulatory Agency (MRHA) request views on how medical devices could be regulated across the UK in the future, we share our thoughts on the key elements to consider.

Illustration depicting smart home technology and connected devices. Royalty-free stock illustration ID: 1662237379.

NCC Group welcomes UK Product Security and Telecommunications Infrastructure (PSTI) Bill

The UK Government has introduced the Product Security and Telecommunications Infrastructure (PSTI) Bill to Parliament, paving the way for new security requirements on ‘consumer connectable products’ to better protect UK home devices from hackers. We take a look into what may be in store.

Telecommunications signal transmitter, connecting radio towers together. Royalty-free stock vector ID: 1776126035.

How can telecoms organisations navigate the changing regulatory landscape?

We take a look at the UK Telecommunications (Security) Act 2021, which is set to be one of many new pieces of legislation and regulation being rolled out globally to help telecommunications providers become more resilient through increased cyber security.

Illustrated wireframe cityscape in futuristic style. Royalty-free stock vector ID: 1335323081.

NCC Group Monthly Threat Pulse – October 2021

NCC Group’s monthly Threat Pulse report, based on analysis from our Strategic Threat Intelligence team has identified 314 double-extortion ransomware victims around the world, a 65% increase on September’s victims.

Replicate & Recover from NCC Group: If all else fails, your business won't.

NCC Group launches Replicate & Recover to help customers plan for software failure, data loss and downtime

Replicate & Recover gives customers maximum resilience against disruption of critical third party , cloud-based software and applications.

Security: illustration of a lock inside a shield. Royalty-free stock vector ID: 1823373893.

NCC Group welcomes the UK NCSC annual review

We share our thoughts on the UK’s National Cyber Security Centre’s (NCSC) annual review for 2021, summarising the key threats facing today’s society.

Upcoming events

Real World Crypto

Real World Crypto

Event date 10 January 2022

Social media

Summary The Network Flow Analysis software (formerly known as CA Network Flow Analysis) is a network traffic monitoring solution, which is used to monitor and optimize the performance of network infrastructures. The “Interfaces” Section of the Network Flow Analysis web application made use of a Flash application, which performed SOAP requests. The Flash request was … Continue reading Technical Advisory – Authenticated SQL Injection in SOAP Request in Broadcom CA Network Flow Analysis (CVE-2021-44050) →

Technical Advisory – Authenticated SQL Injection in SOAP Request in Broadcom CA Network Flow Analysis (CVE-2021-44050)

tl;dr In our Research and Intelligence Fusion Team (RIFT) we applied an incremental anomaly detection model to detect suspicious TLS certificates. This model gives security operations teams the opportunity to detect suspicious behavior in real-time, despite the contained traffic being encrypted. This blogpost discusses the research that we performed and the model that we applied … Continue reading Encryption Does Not Equal Invisibility – Detecting Anomalous TLS Certificates with the Half-Space-Trees Algorithm →

Encryption Does Not Equal Invisibility – Detecting Anomalous TLS Certificates with the Half-Space-Trees Algorithm
We appeared in @threatpost, @DarkReading, @ZDNet and more this November. Find out what we’ve been talking about here: https://t.co/tg5xOnZny9 https://t.co/YATA6tfHEu

We appeared in @threatpost, @DarkReading, @ZDNet and more this November. Find out what we’ve been talking about here: https://t.co/tg5xOnZny9 https://t.co/YATA6tfHEu

@NCCGroupplc

Find out more about where we'll be presenting our #research this December on our research blog https://t.co/FVNn8S5PAm

@NCCGroupplc

For the past few months, NCC Group has been tracking very closely the operations of TA505 and the development of different projects (e.g. Clop) by them. During our research, we encountered a number of binary files that we have attributed to the developer(s) of ‘Grace’ (i.e. FlawedGrace), a remote administration tool (RAT) used exclusively by TA505

Tracking a P2P network related to TA505

This month, members of NCC Group will be presenting their work at the following conferences: Matt Lewis (NCC Group) & Mark McFadden, “Show me the numbers: Workshop on Analyzing IETF Data (AID)”, to be presented at the IETF Internet Architecture Board Workshop on Analyzing IETF Data 2021 (November 29 – December 1 2021) Michael Gough, … Continue reading Conference Talks – December 2021 →

Conference Talks – December 2021

RT @NCCGroupCareers: Three months in and halfway through, in our second update you can find out more about training, expectations, colleagu…

@NCCGroupplc

During the summer of 2021, Horizen Labs engaged NCC Group to conduct a cryptography review of Zendoo protocol’s proof verifier. This system generates and verifies modified Marlin proofs with a polynomial commitment scheme based on the hardness of the discrete logarithm problem in prime-order groups. The system also provides optimized batch verification of accumulated proofs. … Continue reading Public Report – Zendoo Proof Verifier Cryptography Review →

Public Report – Zendoo Proof Verifier Cryptography Review

We are sharing our thoughts on the Product Security and Telecommunications Infrastructure (PSTI) Bill that plans to pave the way for new security requirements on ‘consumer connectable products’ to better protect UK home devices from hackers: https://t.co/BLgaXGnIt5

@NCCGroupplc
Our latest Threat Pulse Report shows an increase in ransomware victims based in NA throughout October. Read the full analysis here: https://t.co/JpJIt4Ms3l https://t.co/NMa0Z6TrXn

Our latest Threat Pulse Report shows an increase in ransomware victims based in NA throughout October. Read the full analysis here: https://t.co/JpJIt4Ms3l https://t.co/NMa0Z6TrXn

@NCCGroupplc
Our latest Threat Pulse Report highlights an increase in #ransomware threat to businesses since September. Find out more about the analysis here: https://t.co/JpJIt4Ms3l https://t.co/CeIJYRVyeQ

Our latest Threat Pulse Report highlights an increase in #ransomware threat to businesses since September. Find out more about the analysis here: https://t.co/JpJIt4Ms3l https://t.co/CeIJYRVyeQ

@NCCGroupplc

Our monthly Threat Pulse report, based on analysis from our Strategic Threat Intelligence team, reveals the scale of the increasing ransomware threat facing businesses. You can learn more about the key findings on our newsroom here: https://t.co/zDYXxJHaMj

@NCCGroupplc

Press contacts

NCC Group Press Office

NCC Group Press Office

Press contact All media enquires relating to NCC Group plc +44 7824 412 405
NCC Group - Financial Media Enquiries

NCC Group - Financial Media Enquiries

Press contact Maitland AMO Financial Results Media Enquiries +44 (0)20 7379 5151
Regional Press Office - North America

Regional Press Office - North America

Press contact +1 408 776 1400

NCC Group exists to make the world safer and more secure

In today’s threat landscape understanding the risks organisations and customers are exposed to is more important than ever.

Understanding the impact and how to be more resilient is key to protecting brand, reputation and sensitive customer information. Building a cyber-resilient organization can be a complex process but it’s not impossible.

With our knowledge, experience and global footprint, we help assess, develop and manage cyber resilience posture.

NCC Group Newsroom
XYZ Building, 2 Hardman Boulevard, Spinningfield
M3 3AQ Manchester
United Kingdom
NCC Group customer website
NCC Group corporate website
NCC Group Cyberstore