Subjects: Technology, general
UK Government publishes National AI Strategy
NCC Group responds to the UK Government’s announcement on its AI strategy.
NCC Group welcomes consultation on US Interagency Guidance for Third Party Risk Management
NCC Group responds to proposed US Interagency guidance on third-party risk management, and welcomes the agencies’ intent to promote consistency and assist regulated banking organizations in identifying, assessing and managing third party risks.
Formation flying: spotlight on aviation security
In our latest sector spotlight, we’ve teamed up with aviation security consultants 3DAssurance to look at cyber security for the aviation sector, revealing the need for a more holistic approach from all operational arms of the sector in order to effectively manage security risk in this period of rapid digitalisation and beyond.
Are vaccine passports giving a free pass to COVID-19 rule breakers?
We’ve been researching digital vaccine credential systems to gauge the extent to which user privacy is affected, and the degree of trust that users should place on these systems.
NCC Conversations: Understanding ADD and ADHD
As part of our ongoing NCC Conversations series, we explore the topic of neurodiversity – from coping strategies for different conditions to understanding ADHD in the workplace.
NCC Group reveals threefold increase in targeted ransomware attacks in 2021
Analysis from NCC Group’s Research Intelligence and Fusion Team (RIFT) has highlighted the growing threat of ransomware around the world.
NCC Group responds to CREST statement
NCC Group thanks CREST for its thorough investigation into the allegations of historical (circa 2012 to 2014) breaches of the CREST Code of Conduct and Non-Disclosure Agreement by a small number of people employed by the Group at that time.
GPS S.O.S: Making GPS technology safer
GPS tracking is now a part of our daily life - in our smartwatches, smartphones, pet trackers, vehicles satellite navigation and more. But what are the risks? Anna Reedman, security consultant, explores this.
NCC Conversations: How can we reduce bias in artificial intelligence?
As part of our NCC Conversations series, we’ve been exploring the issue of systemic racism and how it impacts our industry, wider society, and the artificial intelligence technology that we use every day.
Are dash cam users en-route to security risks?
We rely on dash cams to continuously record events that happen on the road, and to provide evidence in the event of road traffic incidents or accidents. But can we trust them to keep our data safe and secure? In our latest research with Which?, we put nine devices to the test and uncovered a number of issues.
News spotlight: Oil and Gas pipelines a target for hackers – part two
Following our last oil and gas industry news spotlight on the advisory issued by the CISA and FBI on a spear phishing and intrusion campaign carried out between 2011 and 2013, Damon Small, technical director at NCC Group, reacts to a new directive that requires owners and operators of critical pipelines to implement specific measures to protect against ransomware and other prevailing threats.
Spotlight on the Monetary Authority of Singapore’s Technology Risk Management Guidelines
As part of our ‘Spotlight on’ series, we have been delving into the topic of operational resilience and third-party risk management within financial institutions. In this installment, Simon Fieldhouse, global managing director – Software Resilience, offers his insight into the latest version of the Monetary Authority of Singapore’s Technology Risk Management (TRM) guidelines.
So you want to work in cyber security?
There are many different types of jobs in cyber security. In this blog, Sourya Biswas, Technical Director here at NCC Group, gives some pointers for the different areas people may want to consider when thinking of a career in cyber security.
Digital Operational Resilience Act (DORA) – 5 key challenges to prepare for
The EU’s Digital Operational Resilience Act (DORA) is expected to come into effect in 2023. DORA aims to simplify and update the rules on ICT risk management in the face of rapid technology adoption. Here we take a look at the key challenges organisations will face in order to comply.
News spotlight: Oil and gas pipelines a target for hackers – part one
Last week saw substantial cyber security developments for the oil and gas industries in the US. In the first of two articles, Damon Small, technical director at NCC group reacts to an advisory released by the CISA and FBI on a spear phishing and intrusion campaign carried out on 23 US oil and natural gas pipeline operators between 2011 to 2013 by Chinese state-sponsored hackers.
Executive Analysis: How to effectively respond to a ransomware attack in four key steps
In the latest issue of Insight Space, Lloyd Brough explains how to effectively respond to a ransomware attack in four key steps.
Virtual event playback: Is ransomware an exponential threat to society?
In our latest Big Three virtual event, Quentyn Taylor, Director of Information Security at Canon Europe, Keith McDevitt, Cyber Security Integrator at the Scottish Government and Katharina Sommer, Head of Public Affairs at NCC Group, joined Ade Clewlow, Senior Advisor at NCC Group to discuss the exponential threat of ransomware.
Microsoft Exchange: analysing the geopolitics
Christo Butcher, global lead for threat intelligence at NCC Group and Fox-IT, outlines the motivations behind the Microsoft Exchange attack and analyses the significance of Western authorities’ accusation of China as responsible.
Spyware for sale: what happens next?
When reports emerged of individuals being targeted by Pegasus spyware, it raised a host of ethical and moral questions around the impact of spyware and how it might affect the world in the future. Here, our global CTO, Ollie Whitehouse, explores what comes next.