Categories: insights & viewpoints
SnapMC: extortion without ransomware
Over the past few months NCC Group has observed an increasing number of data breach extortion cases, where the attacker steals data and threatens to publish said data online if the victim decides not to pay.
Managing Consultant and Incident Handler Mattijs Dijkstra, who is based in our Delft office in The Netherlands, shares his thoughts in this piece.
Forget ransomware, too expensive a
Making the UK a tech and science superpower: what can businesses take from the UK’s Budget?
Yesterday in the UK parliament, the Chancellor Rishi Sunak announced the new Autumn Budget and three-year Spending Review, which set out the government’s ambition to make the UK a global technology and science superpower. Our global CTO, Ollie Whitehouse, comments.
Spotlight on the future of outsourcing in the UAE’s financial services sector
As part of our ‘Spotlight on’ series this month, Simon Fieldhouse, global managing director – Software Resilience looks to the Middle East and how the changing regulatory landscape is shaping the future of its financial services sector.
NCC Conversations: How can we reduce bias in artificial intelligence?
As part of our NCC Conversations series, we’ve been exploring the issue of systemic racism and how it impacts our industry, wider society, and the artificial intelligence technology that we use every day.
News spotlight: Oil and gas pipelines a target for hackers – part one
Last week saw substantial cyber security developments for the oil and gas industries in the US. In the first of two articles, Damon Small, technical director at NCC group reacts to an advisory released by the CISA and FBI on a spear phishing and intrusion campaign carried out on 23 US oil and natural gas pipeline operators between 2011 to 2013 by Chinese state-sponsored hackers.
Executive Analysis: How to effectively respond to a ransomware attack in four key steps
In the latest issue of Insight Space, Lloyd Brough explains how to effectively respond to a ransomware attack in four key steps.
Executive Viewpoint: Defending your organisation from ransomware
In this executive viewpoint, Tim Rawlins discusses how the ransomware threat landscape is becoming increasingly complex, and what you can do to defend your organisation.
Webinar playback: are people your largest untapped resource for cyber resilience?
In our webinar ‘are people your largest untapped resource for cyber resilience?’ we discuss how we can create a more diverse and inclusive sector, address the cyber security skills gap, and make people more capable when it comes to cyber security.
Executive Analysis: Three actions to reduce your cyber security skills gap
Stephen Bailey looks at why despite multiple initiatives to address the cyber security skills gap in the last decade, it is still a major problem for organisations and how internal skills shortages are one of the main security challenges organisations are facing over the next six months.
Spotlight on Australia’s Security of Critical Infrastructure (SOCI) Act
As of this month, organisations operating in one of Australia’s 11 critical infrastructure sectors are required more significantly to contribute to the Australian Government’s vision for a “more secure online world for Australians”, or risk fines of up to $44,400 or prison sentences of up to two years for non-compliance.
Technical viewpoint: The insider threat: understanding the human behaviours that impact cyber resilience
Global GTO, Ollie Whitehouse takes a look at the the human factors and behaviours that can lead to a cyber security incident.
Building resilience into the digital transformation process
Worldwide spending on digital transformation technologies and services increased by as much as 10% in 2020, reaching $1.3 trillion. But how does widespread adoption affect operational resilience – and how can the legal sector support businesses? Tim Rawlins, Senior Adviser, explores this.
New whitepaper: how can digital footprints make us vulnerable to cyber crime?
In this post, we speak to Matt Lewis, commercial research director at NCC Group, about our latest whitepaper which explores how our digital footprints can make us vulnerable to cyber crime.
NCC Group forges partnership with CybSafe to boost awareness of human cyber risk
NCC Group has partnered with cyber security and data analytics company, CybSafe, to drive awareness of human cyber risk, improve security habits and help decrease the number of people-related security incidents.
Integrated Review: the UK’s future as a cyber power
The UK government has released its Integrated Review of Security, Defence, Development and Foreign Policy, which sets out a framework for policy in the coming years that will help shape the nation’s position on the global stage. Our global CTO, Ollie Whitehouse reacts to this news.
Research spotlight: Hardware and embedded systems
We recently published our annual research report – a look back at our work over the last year. In our follow up research spotlight series, we’re looking into some of the key areas in a little more detail – and in this instalment, we hear from Rob Wood, technical vice president at NCC Group, for more on our research into hardware and embedded systems.
Spotlight on cyber security as a science
Evidence-based cyber resilience decisions can make a quantifiable difference when it comes to material improvements for the global business community, and for society as a whole. While we are still in the foothills of this becoming common practice, our global CTO, Ollie Whitehouse, explores the way that our approach to security is changing.
Ransoms and beyond
As attackers take advantage of the recent rapid digital transformation and move to remote working, Managing Security Consultant, Kenneth Yu, takes a look at some of the most commonly exploited services for ransomware attacks.
The cyber landscape in 2021 and beyond: an opportunity to learn from the present
Our global CTO, Ollie Whitehouse, shares his thoughts on the future of the cyber landscape, including how we can strengthen society’s resilience against threats and create regulatory and legislative regimes fit for the digital age across the globe.