News • Jan 22, 2020 10:13 UTC
The Criminal Law Reform Now Network (CLRNN) has launched an independent report which calls for an urgent reform of the Computer Misuse Act (CMA) 1990, the legislation that effectively governs the UK’s cyber security industry today. NCC Group, alongside other industry specialists, acted as expert editors for the report and will be supporting its parliamentary launch in the House of Commons.
News • Jan 22, 2020 07:02 UTC
As part of our ongoing commitment to create a diverse and inclusive workplace, we have signed up to Stonewall’s Global Diversity Champion programme.
News • Jan 21, 2020 22:00 UTC
Tony Richardson has been appointed as NCC Group’s representative for its new operations in Japan, where he will be responsible for developing and executing the go-to-market business and sales strategy
News • Jan 21, 2020 16:14 UTC
NCC Group has been successfully accredited and awarded a security label from ENX to perform automotive security assessments for the German car manufacturing industry through the TISAX framework. https://enx.com/tisax
Running the risk: How we unleashed our version of NotPetya on global commodities trading firm, Trafigura
News • Jan 20, 2020 14:39 UTC
Back in June 2017, the fast moving, data destroying NotPetya worm hit and rightly made organisations sit up and think about how they could defend against such an attack. NCC Group’s groundbreaking work around the NotPetya worm simulation with Trafigura features in this special edition of The Innovator. https://innovator.news/the-innovator-magazine-4ef4b3e6b39b
Blog posts • Jan 20, 2020 10:13 UTC
January is a time for reflection, which most companies try to tap into by spamming you with predictions for the upcoming year, New Year’s resolutions and new solutions to old problems. My marketing department have convinced me to jump on the bandwagon, however ...
Blog posts • Jan 15, 2020 23:59 UTC
One of the problems that cyber security stakeholders face is the overabundance of tools and processes. Just Google “firewall providers” and you are deluged with information; replace firewall with any other tool (anti-virus, phishing simulation, intrusion detection system, and the like) and the results are similar.
News • Jan 08, 2020 13:56 UTC
Cyber Security is often likened to a stool, with the three legs representing people, processes and technology. In business and the public sector, creating the right balance of investment between these three vital components is the greatest challenge faced by cyber security decision makers today.
News • Jan 07, 2020 12:09 UTC
NCC Group promoted to highest level of Splunk’s partnership programme.
News • Dec 19, 2019 14:58 UTC
NCC Group has officially been named as one of the security assessment partners for Google’s free email service, Gmail.
News • Dec 19, 2019 14:26 UTC
Recently we were involved in DVLA's Code Challenge initiative, which enables interested pupils across Wales to develop their problem solving, communication and teamwork skills as well as improve their knowledge of computer programming in a fun and innovative way.
Blog posts • Dec 18, 2019 21:57 UTC
Few things capture the imagination like movies. From epic dramas to tearful romances, from everyday travails to futuristic science fiction, from chilling horror to feel-good comedy, Hollywood is our great escape into the land of make believe. Here are some of my favorite movies, the lessons they taught us as moviegoers, and the lessons that translated for me as a cyber security consultant.
News • Dec 13, 2019 07:51 UTC
With time running short, it was time to make our move on the naughty and nice lists. Upon approaching the reception with the same cheery demeanour as the other elves, we noticed a pile of new elf passes on the desk...
Blog posts • Dec 11, 2019 16:48 UTC
For a company focused on core operations and meeting the needs of its stakeholders, it makes financial sense to handover non-core functions to third-party vendors. Unfortunately, this introduces a whole new element of risk in the company’s ecosystem – third party risk, of which cybersecurity is a critical component.
News • Dec 10, 2019 05:24 UTC
In the run up to Christmas 2019, the consumer choice organisation Which? engaged us to assess the security of seven popular electronic and connected toys. This is an activity that Which? has performed across a few years, so provided an opportunity to see if any security improvements had been made across the connected toy industry in relation to preservation of the privacy and safety of children.
Blog posts • Dec 08, 2019 19:02 UTC
With increased demand for virtual card capabilities from Australian businesses, merchants and service providers, we keep being asked by our customers whether virtual payment cards are subject to Payment Card Industry Data Security Standard (PCI DSS). If they are, what would be the impact and their obligation against the payment standard? Mohammad Daneshvar explores...
News • Dec 06, 2019 10:52 UTC
On a cold winter day, NCC Group’s Black Team began one of their most challenging operations to date - testing of a high-profile client based in the North Pole. Read on for a festive tale complete with elves, hot chocolate, and a compromised sleigh…
The best way to improve your cyber security? Outline where you are now and roadmap to your target state.
Blog posts • Dec 04, 2019 18:16 UTC
As anyone working in cyber security knows, 100% threat prevention/mitigation is a myth. One question we hear time and time again is, “how much security is enough?” Sourya Biswas explains why there are so many different ways to answer this...
News • Dec 04, 2019 13:26 UTC
Our consultants, Philip Marsden and Ross Bradley demonstrated their skills last weekend when they came second in the 5G Ultrahack Ericsson challenge in Finland.