Spotlight on the Monetary Authority of Singapore’s Technology Risk Management Guidelines
As part of our ‘Spotlight on’ series, we have been delving into the topic of operational resilience and third-party risk management within financial institutions. In this installment, Simon Fieldhouse, global managing director – Software Resilience, offers his insight into the latest version of the Monetary Authority of Singapore’s Technology Risk Management (TRM) guidelines.
So you want to work in cyber security?
There are many different types of jobs in cyber security. In this blog, Sourya Biswas, Technical Director here at NCC Group, gives some pointers for the different areas people may want to consider when thinking of a career in cyber security.
Digital Operational Resilience Act (DORA) – 5 key challenges to prepare for
The EU’s Digital Operational Resilience Act (DORA) is expected to come into effect in 2023. DORA aims to simplify and update the rules on ICT risk management in the face of rapid technology adoption. Here we take a look at the key challenges organisations will face in order to comply.
News spotlight: Oil and gas pipelines a target for hackers – part one
Last week saw substantial cyber security developments for the oil and gas industries in the US. In the first of two articles, Damon Small, technical director at NCC group reacts to an advisory released by the CISA and FBI on a spear phishing and intrusion campaign carried out on 23 US oil and natural gas pipeline operators between 2011 to 2013 by Chinese state-sponsored hackers.
Executive Analysis: How to effectively respond to a ransomware attack in four key steps
In the latest issue of Insight Space, Lloyd Brough explains how to effectively respond to a ransomware attack in four key steps.
Virtual event playback: Is ransomware an exponential threat to society?
In our latest Big Three virtual event, Quentyn Taylor, Director of Information Security at Canon Europe, Keith McDevitt, Cyber Security Integrator at the Scottish Government and Katharina Sommer, Head of Public Affairs at NCC Group, joined Ade Clewlow, Senior Advisor at NCC Group to discuss the exponential threat of ransomware.
Microsoft Exchange: analysing the geopolitics
Christo Butcher, global lead for threat intelligence at NCC Group and Fox-IT, outlines the motivations behind the Microsoft Exchange attack and analyses the significance of Western authorities’ accusation of China as responsible.
Spyware for sale: what happens next?
When reports emerged of individuals being targeted by Pegasus spyware, it raised a host of ethical and moral questions around the impact of spyware and how it might affect the world in the future. Here, our global CTO, Ollie Whitehouse, explores what comes next.
Executive Viewpoint: Defending your organisation from ransomware
In this executive viewpoint, Tim Rawlins discusses how the ransomware threat landscape is becoming increasingly complex, and what you can do to defend your organisation.
Securing the connected cars of the future
As the autonomy of connected vehicles increases and systems become more complex, this leads to more software vulnerabilities. Andy Davis, Global Transport Practice Director at NCC Group, gives us his insight into securing the connected cars of the future.
"NCC Group excels in technical assessments and research capabilities" according to independent research firm
NCC Group has been recognised as a strong performer among European cybersecurity consulting providers by independent research company.
Honeypot research reveals the connected life might not be so sweet
Smart TVs, fridges, toothbrushes, heating, plugs, cameras, kettles – these are just a few of the connected devices that have made their way into our homes. But what are the security implications of introducing more of these smart devices into our homes? Our latest research with Which? and the Global Cyber Alliance delves into this.
NCC Conversations: What does Pride mean to you?
Throughout June, we’ve been discussing and exploring LGBTQIA+ Pride, as part of our NCC Conversations series and our ongoing commitment to inclusion and diversity.
“Knock, knock! It’s the Covid inspectors!”
As workforces return to the office, there are a number of physical security considerations organisations need to make. In this blog, Jan Hutchins explores new tactics that could be used to breach offices, and what businesses can to do to protect themselves.
A Whole New World
It is no secret that the physical security world has taken a back seat during the pandemic, but now, as we return to the work place, secure environments face a new challenge. Here, we explore some of the key things for organisations to consider with the return back to the office.
NCC Group adds Microsoft Azure Sentinel to its Managed Detection and Response (MDR) offering
Today we’re excited to announce a further development in our collaboration with Microsoft with the addition of Microsoft Azure Sentinel to our Managed Detection and Response (MDR) offering.
Research update: RM3 – Curiosities of the wildest banking malware
Recently, our Research and Intelligence Fusion Team (RIFT) published research findings on RM3, an advanced variant of the banking malware family known as Gozi, and uncovered Oceania as the top target for threat actor groups.
Webinar playback: are people your largest untapped resource for cyber resilience?
In our webinar ‘are people your largest untapped resource for cyber resilience?’ we discuss how we can create a more diverse and inclusive sector, address the cyber security skills gap, and make people more capable when it comes to cyber security.
NCC Group completes acquisition of Iron Mountain’s Intellectual Property Management (IPM) business
Global cyber security and software resilience business, NCC Group, has completed its acquisition of Iron Mountain’s Intellectual Property Management (IPM) business in a £156m deal providing immediate additional scale to the Group’s Software Resilience business in North America.
News spotlight: What can we learn from the US Colonial Pipeline ransomware attack?
On Friday 7th May, fuel supplies across North America were disrupted as the Colonial Pipeline, the major fuel pipeline connecting the East Coast, was attacked in the largest-known attack in US energy infrastructure. As the organisation’s systems begin to recover, Damon Small, technical director at NCC group, provides an overview of the attack and the lessons we can take from it.