Skip to content
NCC Group 2021 Annual Research Report

News -

NCC Group 2021 Annual Research Report

Today we publish NCC Group’s 2021 Annual Research Report - a summary of our public-facing security research findings from across the over 237 conference publications, technical blog posts, advisories, and tool releases published by researchers at NCC Group between January 1 2021 and December 31 2021.

A product of thousands of dedicated research days, the Report brings together hundreds of research publications and conference presentations, including 139 research papers, whitepapers, technical blog posts and advisories, 31 new open source tools & code releases, as well as 68 conference presentations.

In 2021, NCC Group’s researchers hacked drones out of the sky; attacked machine learning systems; advised US Congressional staffers about open source and supply chain security; helped improve recommendations made by the NSA and CISA; exposed a number of unsafe smart devices used in the home; released user-centric mobile privacy analysis tooling; discovered new vulnerability classes, and found many critical vulnerabilities in high-impact systems.

Senior Vice President and Global Head of Research at NCC Group, Jennifer Fernick said: “As an industry, we face a reckoning in which I believe that in 2022, we need to elevate ourselves toward taking a more scientific and rigorous approach to the study of information security cause and effect, and let go of the unspoken agreements, copycat risk-mitigations, hearsay “best practices,” and other unacceptable industry norms.”

The report is available as both a blog post and downloadable PDF over on our Research blog here:




NCC Group Press Office

NCC Group Press Office

Press contact All media enquires relating to NCC Group plc +44 7976234970

Related content

NCC Group exists to make the world safer and more secure

In today’s threat landscape understanding the risks organisations and customers are exposed to is more important than ever.

Understanding the impact and how to be more resilient is key to protecting brand, reputation and sensitive customer information. Building a cyber-resilient organization can be a complex process but it’s not impossible.

With our knowledge, experience and global footprint, we help assess, develop and manage cyber resilience posture.

NCC Group Newsroom
XYZ Building, 2 Hardman Boulevard, Spinningfield
M3 3AQ Manchester
United Kingdom