Tag Archives: it security

Threat Report 24th June 2022
June 23, 2022

The NCSC’s threat report is drawn from recent open source reporting....

Submit Comments on Draft NIST SP 1800-34, Validating the Integrity of Computing Devices
June 23, 2022

The National Cybersecurity Center of Excellence (NCCoE) has released the initial public draft of NIST...

Myths About Human Lie Detection

“Look me in the eyes.” People often use phrases like this to determine if someone...

22
Jun
NIST IoT Cybersecurity Program Releases New Documents
June 21, 2022

The National Institute of Standards and Technology (NIST) Cybersecurity for the Internet of Things (IoT)...

NCSC For Startups: the feedback loop
June 20, 2022

How startups can make the most of their time when pitching to cyber security experts....

Ordered t-way Combinations for Testing State-based Systems: NIST releases Cybersecurity White Paper 26
June 13, 2022

Fault detection often depends on the specific order of inputs that establish states which eventually...

Threat Report 10th June 2022
June 9, 2022

The NCSC’s threat report is drawn from recent open source reporting....

Using Business Impact Analysis to Inform Risk Prioritization and Response: NIST IR 8286D available for public comment
June 9, 2022

Traditional business impact analyses (BIAs) have been successfully used for business continuity and disaster recovery...

NIST Requests Public Comments on FIPS 180-4, Secure Hash Standard (SHS)
June 9, 2022

NIST is in the process of a periodic review and maintenance of its cryptography standards...

i100 insider: The cyber security advocate
June 8, 2022

Jenny, information and compliance security manager at a large European law firm and i100 member,...

Internet Safety Month: Stop, Think, Connect

June is National Internet Safety Month! The Department of Homeland Security in coordination with The...

08
Jun
Announcement of Proposal to Withdraw Special Publication 800-107 Revision 1
June 8, 2022

In August 2021, NIST’s Crypto Publication Review Board initiated a review process for NIST Special...

NIST Releases Draft IR 8409: Measuring the Common Vulnerability Scoring System Base Score Equation
June 8, 2022

Today, NIST is seeking public comments on NIST IR 8409 ipd (initial public draft), Measuring...

Final Public Draft: Engineering Trustworthy Secure Systems is Available for Comment
June 7, 2022

NIST is releasing the final public draft of a major revision to Special Publication (SP)...

New Briefing Pack for the NCSC Board Toolkit now available
June 6, 2022

Includes PowerPoints and videos to introduce your staff to the NCSC’s “essential reference point for...

Open for Public Comment: Preliminary Draft Practice Guide (SP 1800-35 Vol. A)
June 3, 2022

The Zero Trust Architecture (ZTA) team at NIST’s National Cybersecurity Center of Excellence (NCCoE) has...

Weekly Threat Report 27th May 2022
May 26, 2022

The NCSC’s Weekly threat report is drawn from recent open source reporting....

Plan for security flaws
May 26, 2022

All but the very simplest software is likely to contain bugs, some of which may...

Blockchain for Access Control Systems: NIST IR 8403
May 26, 2022

NIST has published NIST Internal Report (NIST IR) 8403, Blockchain for Access Control Systems. Protecting...

ACD the 5th Year: report now available to download
May 24, 2022

Active Cyber Defence extends its services to organisations beyond the public sector....

New SOC guidance 101
May 22, 2022

Explaining the rationale behind the NCSC’s updated Security Operations Centres guidance....

NIST Revises Special Publications 800-140C and 800-140D for the CMVP
May 20, 2022

NIST has published revisions of two Special Publications (SP) that identify security functions and sensitive...

Weekly Threat Report 20th May 2022
May 19, 2022

The NCSC’s weekly threat report is drawn from recent open source reporting....

Mythbusting cloud key management services
May 17, 2022

Why trying to avoid trusting the KMS doesn’t make sense (and other common misconceptions)....

Avoiding crisis mismanagement
May 15, 2022

New guidance for cyber attack victims focuses on the welfare of staff responding to (and...

Relaunching the NCSC’s Cloud security guidance collection
May 11, 2022

Andrew A explains what’s new in a significant update to the NCSC’s flagship cloud guidance....

Password Security

Password security is extremely important. No doubt, this is something you have heard before. In...

11
May
The Technology Assurance principles
May 10, 2022

Covering the ‘Product development’, ‘Design and functionality’ and ‘Though-life’ aspects of product assurance....

Putting staff welfare at the heart of incident response
May 9, 2022

Guidance for staff responsible for managing a cyber incident response within their organisation....

Laying the new foundations for enterprise device security
May 9, 2022

As the beta version of the new device security principles for manufacturers is released, Luna...