Security Surgery with Matt Lewis Part Two: A Day in the Life
In this four-part series, Matt Lewis, Research Director, explains how the work we do shapes and secures our society in ways that you might not be aware of. Today, we’re focusing on everyday life. Watch the video or read the Q&A and get in touch if you want to find out more.
Webinar: Breaking Free From the Hamster Wheel of Third-Party Risk Management
Editor’s note: Looking to get more out of your Third Party Risk Management Program? Be sure to register for our upcoming webinar, “Breaking Free From the Hamster Wheel of Third-Party Risk Management”.
NCC Group providing ongoing threat intelligence on F5 Networks vulnerability
Last week, a new vulnerability which could allow remote compromise of F5 Networks BIG-IP networking devices was disclosed. In the days following the initial disclosure, NCC Group’s Research Intelligence Fusion Team (RIFT) has closely monitored the vulnerability – setting up a honeypot to learn more about the behavior of threat actors.
New whitepaper: How to make threat actors work harder and fail more often
We’ve published a new whitepaper to help organisations build their resilience against cyber attacks, based on insights from our Red Team engagements across the globe.
Security Surgery with Matt Lewis Part One: Smart Cities
In this four-part series, Matt Lewis, Research Director, explains how the work we do shapes and secures our society in ways that you might not be aware of. Today, we’re focusing on the biggest threats to smart cities and best practices for city planners. Watch the video or read the Q&A and get in touch if you want to find out more.
Risk vs cost: cyber in the face of economic uncertainty
As the Covid recession starts to bite, many organisations will be looking at ways to reduce their costs. Cyber security, beyond pure compliance activities, can often be seen by CFOs as purely a cost, making it a prime candidate for the review and ultimate reduction or removal. But recent research by Portsmouth University in the UK has shown that as GDP falls, criminal activity, including fraud, ri
APRA’s CPS 234 and Supply Chain Compliance: FAQs
In June 2020, we hosted a webinar on APRA’s CPS 234 Information Security Standard (“CPS 234”), addressing supply chain risk management and compliance, as well as how to apply for the deadline extension. We have provided responses below to the questions asked by attendees on CPS 234 compliance and the process for ensuring that supply chain risk is managed effectively.
The Computer Misuse Act (CMA) turns 30 years old
Today marks 30 years since the Computer Misuse Act (CMA) received royal assent in the UK. Since 1990, our physical and cyber worlds have evolved drastically, meaning that the Act is now out of date. To mark this occasion, we sat down with our head of public affairs, Katharina Sommer, to find out more about the CMA – including why we should care about it, and what needs to change.
Hospitals and ransomware: The human cost of weak cybersecurity
In our latest blog we investigate why healthcare organisations are a prime target for ransomware attacks and provides guidance on how to best deal with an attack.
Easing lockdown - UK hospitality starts to open for business
The gradual relaxation of lockdown restrictions brings opportunity and complexity as businesses get ready to reopen their doors in a new way in order to keep staff and customers safe and secure. As we navigate new challenges and adapt to new working procedures, it is important to ensure that we continue to prioritise people’s privacy and that data protection legislation is adhered to.
NCC Group hosts first virtual UK Academic Centres of Excellence in Cyber Security Research (ACE-CSR) conference
This week, here at NCC Group we hosted the 2020 light virtual version of the Academic Centres of Excellence in Cyber Security Research (ACE-CSR) conference as a Microsoft Teams Live event on 24 & 25 June.
NCC Group named Authorized Lab by ioXt Alliance to enhance security standards in Internet of Things product development
NCC Group has been named as an Authorized Lab by the ioXt Alliance, the Global Standard for IoT Security and the industry group dedicated to building confidence in Internet of Things products.
The road to a successful implementation of SIEM and SOC
Having a SIEM solution or a managed SOC in place can be hugely rewarding, providing you with “eyes and ears” on what happens on your systems and network, while supporting your ongoing compliance efforts. But it can also be an extra expense that does not live up to your expectations, providing little true value, or even worse: a false sense of security.
NCC Group advises on security and privacy for Danish COVID-19 app
NCC Group is proud to have collaborated with the Danish Ministry of Health on the security of the newly launched COVID-19 contact tracing app.
Three Important Nuances of the CCPA
The California Consumer Privacy Act (CCPA) became a law about two (2) years ago and went into effect January 1, 2020. Since then, the CCPA has undergone some proposed changes that have recently been f
As the cyber attack against Australia ramps up, it's time to take action
Prime Minister Scott Morrison has formally addressed Australia this morning, stating that our organisations are being targeted by a sophisticated state-based actor. The Government have attributed the
The link between patient safety and cyber security
Although the link between cyber security and patient safety could be considered obvious to some, there are still, perhaps, several key stakeholders that may not have these two views aligned closely enough. Stuart Kurutac, security consultant at NCC Group, explores how we can improve the awareness of the effect that cyber security issues pose to patient safety.
On the Road to Zero Trust in Transport: Introducing Automotive Ethernet
As part of our Always On, Always Here campaign, Security Consultant, Liz James, explains how Automotive Ethernet can make connected vehicles safer and more secure by providing opportunities for zero trust.
A question of trust: how can organisations build strong relationships within supply chain?
Over the past few months, trust has become an even more crucial element of the supply chain. So how can organisations strengthen it? We've explored this with the help of some of our contacts at Burness Paull LLP, the Scottish Business Resilience Centre and the Scottish Government.