10 September 2021 12:41

Are vaccine passports giving a free pass to COVID-19 rule breakers?

We’ve been researching digital vaccine credential systems to gauge the extent to which user privacy is affected, and the degree of trust that users should place on these systems.

31 August 2021 15:50

NCC Group reveals threefold increase in targeted ransomware attacks in 2021

Analysis from NCC Group’s Research Intelligence and Fusion Team (RIFT) has highlighted the growing threat of ransomware around the world.

2 August 2021 14:00

Are dash cam users en-route to security risks?

We rely on dash cams to continuously record events that happen on the road, and to provide evidence in the event of road traffic incidents or accidents. But can we trust them to keep our data safe and secure? In our latest research with Which?, we put nine devices to the test and uncovered a number of issues.

30 July 2021 10:22

News spotlight: Oil and Gas pipelines a target for hackers – part two

Following our last oil and gas industry news spotlight on the advisory issued by the CISA and FBI on a spear phishing and intrusion campaign carried out between 2011 and 2013, Damon Small, technical director at NCC Group, reacts to a new directive that requires owners and operators of critical pipelines to implement specific measures to protect against ransomware and other prevailing threats.

28 July 2021 16:51

So you want to work in cyber security?

There are many different types of jobs in cyber security. In this blog, Sourya Biswas, Technical Director here at NCC Group, gives some pointers for the different areas people may want to consider when thinking of a career in cyber security.

28 July 2021 12:08

News spotlight: Oil and gas pipelines a target for hackers – part one

Last week saw substantial cyber security developments for the oil and gas industries in the US. In the first of two articles, Damon Small, technical director at NCC group reacts to an advisory released by the CISA and FBI on a spear phishing and intrusion campaign carried out on 23 US oil and natural gas pipeline operators between 2011 to 2013 by Chinese state-sponsored hackers.

23 July 2021 13:18

Virtual event playback: Is ransomware an exponential threat to society?

In our latest Big Three virtual event, Quentyn Taylor, Director of Information Security at Canon Europe, Keith McDevitt, Cyber Security Integrator at the Scottish Government and Katharina Sommer, Head of Public Affairs at NCC Group, joined Ade Clewlow, Senior Advisor at NCC Group to discuss the exponential threat of ransomware.

20 July 2021 17:35

Microsoft Exchange: analysing the geopolitics

Christo Butcher, global lead for threat intelligence at NCC Group and Fox-IT, outlines the motivations behind the Microsoft Exchange attack and analyses the significance of Western authorities’ accusation of China as responsible.

20 July 2021 16:19

Spyware for sale: what happens next?

When reports emerged of individuals being targeted by Pegasus spyware, it raised a host of ethical and moral questions around the impact of spyware and how it might affect the world in the future. Here, our global CTO, Ollie Whitehouse, explores what comes next.

2 July 2021 07:07

Honeypot research reveals the connected life might not be so sweet

Smart TVs, fridges, toothbrushes, heating, plugs, cameras, kettles – these are just a few of the connected devices that have made their way into our homes. But what are the security implications of introducing more of these smart devices into our homes? Our latest research with Which? and the Global Cyber Alliance delves into this.

29 June 2021 15:56

“Knock, knock! It’s the Covid inspectors!”

As workforces return to the office, there are a number of physical security considerations organisations need to make. In this blog, Jan Hutchins explores new tactics that could be used to breach offices, and what businesses can to do to protect themselves.

2 June 2021 14:40

NCC Group Q1 Threat Report Update: Exploits publicly available for 29% of critical vulnerabilities discovered

Our threat intelligence from Q1 of this year revealed that, of the more than 4,400 vulnerabilities that were disclosed* between January and March 2021, 72% had no patches available.