Spotlight on NIS2 and NIS: Regulating the cyber security of critical infrastructure across the EU & the UK
Mick Flitcroft, Global Lead for Government Compliance Services, NCC Group, explores the similarities and differences between the UK and EU’s approach to regulating the cyber security of critical infrastructure and what they mean in practice
Securityincident in je OT omgeving? Zo ben je optimaal voorbereid.
Operationele Technologie (OT) is hard- en software die zorgt voor de aansturing en monitoring van industriële systemen. Dit zie je bijvoorbeeld terug in de maakindustrie, de zware industrie en bij kritieke infrastructuur. Denk aan de hardware die nodig is voor het aansturen van een brug of sluis, maar ook een MRI scanner behoort tot de OT appliances.
DDoS attacks on the rise - an anomaly or a resurgence?
Distributed Denial of Service (DDoS) attacks have been the subject of much discussion across the security community with the number of attacks on the rise. We take a look at what this could mean for organisations and whether a resurgence is on the cards.
The scale and threat of Ransomware: UK Parliament Committee invites NCC Group’s Ollie Whitehouse to give evidence
This week, NCC Group’s Global CTO, Ollie Whitehouse was called as an expert witness to the UK Parliament Joint Committee on the National Security Strategy’s inquiry into ransomware.
What does the EU-US Trans-Atlantic Data Privacy Framework mean for organisations?
Stephen Bailey, Global Privacy Services practice lead at NCC Group shares a useful summary of the new European Union & United States data privacy network – the Trans-Atlantic Data Privacy Framework and what it means for organisations and individuals.
NCC Group Monthly Threat Pulse – October 2022
Analysis from NCC Group’s NCC Group’s Global Threat Intelligence team has revealed a decrease in ransomware attacks in October, but a sharp rise in DDoS attacks with the highest number of incidents observed this year.
My Path to Progression: Campaign Manager to Global Standards and Support Officer
Through our Path to Progression blog series, we’re sharing colleague stories about how individuals have developed, changed and grown their career within NCC Group. In today's blog post, we spoke to Stephanie Lynch-Ozanar to hear more about how she made the move from a Campaign Manager to becoming a Global Standards and Support Officer.
Cooperation essential for the Dutch Cyber Security Strategy
On 10 October, the Dutch government published the Dutch Cybersecurity Strategy (NLCS) 2022-2028, which builds on the Dutch Cybersecurity Agenda published in 2018. This strategy not only describes the ambitions for a digitally secure society, but also sets out the NLCS Action Plan 2022-2028. Many of the actions laid down in the plan can only be taken up together with stakeholders from both the publ
Welcoming the EU Cyber Resilience Act: a more secure digital future for Europe
Jameson Hyde, Technical Director at NCC Group, shares thoughts on proposals for the EU Cyber Resilience Act and what they mean for the increased security and safety of our connected future.
Spotlight on APRA’s Operational Risk Management Standard
The financial sector is evolving at pace as organisations onboard new tech, and while exciting, these changes come with an increased risk of supplier failure, service deterioration and concentration risk. The latest in a series of new regulations is the Australian Prudential Regulation Authority’s (APRA) standard, released in October 2022.
NCC Group welcomes UK NCSC’s Annual Review 2022
The UK’s National Cyber Security Centre (NCSC) has released its annual review for 2022 – identifying the five key cybersecurity threats, risks and vulnerabilities currently facing the UK.
My Path to Progression: Legal Advisor to Forensic Investigator
Through our Path to Progression blog series, we are sharing colleague stories about how they’ve developed, changed and grown their career within NCC Group. For the fifth installment of our series, our Talent Attraction team spoke to Michael Alexander Heenes to hear more about his journey so far and how he made the move from a Legal Advisor to becoming a Forensic Investigator at Fox-IT NCC Group.
NCC Group Monthly Threat Pulse – September 2022
September’s analysis from NCC Group’s Global Threat Intelligence team shows an increase in ransomware attacks after a rather turbulent summer period in the threat group scene, with Conti disbanding, Lockbit rebranding, and new actors emerging.
Connected tech: smart or sinister? UK Parliament Committee invites NCC Group’s Matt Lewis as expert witness
On 11 October, NCC Group Commercial Research Director Matt Lewis gave evidence to the UK Parliament’s Digital, Culture, Media and Sport Select Committee about the cyber security risks of connected technologies and what can be done to mitigate them.
Fake antivirus, Sharkbot circles back onto Google Play store
Back in February 2022, our Fox-IT threat intelligence team discovered a new generation banking Trojan, posing as a fake Android antivirus cleaner, known as SharkBotDropper, in the Google Play store. Last month, the team detected a new version of this malware dropper active in two apps on the Google Play store, with over 60,000 installations between them.
Our Fox-IT Dissect framework for forensic data collection, now open source
Releasing Dissect as open source software will greatly enhance the ability for organisations and, in particular cyber incident responders, to deal with large amounts of forensics data in increasingly complex IT environments.
Future of transport mobility - keeping the sector safe and secure
After being appointed vice chair of the techUK Intelligent Mobility and Transport Steering Board , Dr Liz James, senior security consultant at NCC Group, discusses her new role and its impact on the cyber security community.
MySwitch2Cyber: Poet and performer to Junior developer
In this instalment of our MySwitch2Cyber blog series, our talent attraction team sat down with Gijs ter Haar from our Dutch team at Fox-IT to hear about his journey from a career as a poet and performer to a security trainee and now junior developer at DetACT.
NCC Group Monthly Threat Pulse – August 2022
Analysis from NCC Group’s Global Threat Intelligence team suggests a proliferation of new and evolving threat actors in August with the emergence of new threat actor, IceFire and a surge in activity for most active attacker Lockbit 3.0.