NCC Group 2021 Annual Research Report
We are proud to present our second Annual Research Report – summarising over 237 conference publications, technical blog posts, advisories, and tool releases published by our researchers between January 1 2021 and December 31 2021.
Global cyber security landscape – what to expect in 2022
We’ve interviewed industry leaders from our four key geographies – the UK, the Asia and-Pacific (APAC) region, North America and Europe – to understand the key developments in each region over the last twelve months, and what we might expect from the year ahead and beyond.
NCC Group Monthly Threat Pulse – November 2021
NCC Group’s monthly Threat Pulse report, based on analysis from our Strategic Threat Intelligence team, has identified a 1.9% increase in ransomware attacks compared to October, with a 50% increase in organisations targeted by PYSA ransomware.
Log4Shell vulnerability – advice and recommendations
At NCC Group, we’ve set up a live research blog to track the development of the Log4Shell vulnerability and here, we outline practical advice for how organisations can defend themselves against it.
NCC Group Monthly Threat Pulse – October 2021
NCC Group’s monthly Threat Pulse report, based on analysis from our Strategic Threat Intelligence team has identified 314 double-extortion ransomware victims around the world, a 65% increase on September’s victims.
NCC Group welcomes the UK NCSC annual review
We share our thoughts on the UK’s National Cyber Security Centre’s (NCSC) annual review for 2021, summarising the key threats facing today’s society.
NCC Group Monthly Threat Pulse – September 2021
NCC Group’s monthly Threat Pulse report, based on analysis from our Strategic Threat Intelligence team, reveals the scale of the increasing ransomware threat facing businesses.
News spotlight: Oil and Gas pipelines a target for hackers – part two
Following our last oil and gas industry news spotlight on the advisory issued by the CISA and FBI on a spear phishing and intrusion campaign carried out between 2011 and 2013, Damon Small, technical director at NCC Group, reacts to a new directive that requires owners and operators of critical pipelines to implement specific measures to protect against ransomware and other prevailing threats.
News spotlight: Oil and gas pipelines a target for hackers – part one
Last week saw substantial cyber security developments for the oil and gas industries in the US. In the first of two articles, Damon Small, technical director at NCC group reacts to an advisory released by the CISA and FBI on a spear phishing and intrusion campaign carried out on 23 US oil and natural gas pipeline operators between 2011 to 2013 by Chinese state-sponsored hackers.
Research update: RM3 – Curiosities of the wildest banking malware
Recently, our Research and Intelligence Fusion Team (RIFT) published research findings on RM3, an advanced variant of the banking malware family known as Gozi, and uncovered Oceania as the top target for threat actor groups.