..

This design element requires flash & JavaScript to be enabled to play. Download the latest version of flash from Adobe.com.

commissum is a company one hundred percent focused on the provision of information security advice and services. Our team has been providing the full range of these services to a broad cross-section of businesses and government organisations for over twenty years.

commissum'ko-mis-sum, n. that which is entrusted [Latin]

cyber-war

Leading USA military contractor QinetiQ hacked and ransacked by Chinese hackers for three years

Wed 08 May, 2013 // Briony

A new report from Bloomberg, the business information provider (www.bloomberg.com/news/2013-05-01/china-cyberspies-outwit-u-s-stealing-military-secrets.html) outlines how hackers from China stealthily infiltrated the computer systems of QinetiQ North America, a leading espionage and military contractor to the US government, and the US branch of the British defence technology company QinetiQ. A vast range of highly ...

cyber-tanks

Suspected hacker arrested after “biggest-ever DDoS attack”

Tue 30 Apr, 2013 // Briony

Police in Spain have arrested a Dutch national on suspicion of launching the largest-ever “Distributed Denial of Service” (DDoS) attack. Sven Olaf Kamphuis, 35, was arrested on April 25th near Barcelona, Spain. At the time, he was in possession of a specially-equipped van set up as a mobile computing and ...

masked-attacker

Hackers break into large cloud provider, claim to have credit card details

Fri 26 Apr, 2013 // Briony

Some days ago, hackers gained access to computers owned by Linode, a company providing cloud services in the form of virtual Linux servers. The hackers gained access by using a “zero-day vulnerability” (a previously unsuspected security weakness) in Adobe ColdFusion, the software used in running the Linode web server. It ...

padlock-at-sign

Wordpress website attacked by hackers in sophisticated attack

Tue 16 Apr, 2013 // Briony

The Wordpress website at www.wordpress.com has been targeted by hackers in a sustained and intensive attack, using a botnet (a network of involuntarily enslaved computers) comprising almost one hundred thousand individual computers, or “bots”.The botnet is being used in an attempt to discover administrative passwords set by those Wordpress bloggers ...

security-paper-slips

Bitcoin mining malware uses Skype to conscript user’s computers

Mon 08 Apr, 2013 // Briony

The Skype Internet communication system, used for video and audio calls over the Internet, has been unwittingly conscripted by hackers to spread malware to unsuspecting users. This malware takes over the computer’s processing capability, in order to carry out the mathematical calculations that will allow the hackers to accumulate units ...

cyberattacks

Saboteurs arrested after damage to undersea Internet cable

Tue 02 Apr, 2013 // Briony

At the end of March, three divers were arrested after they had partially cut through a large cable at the bottom of the Mediterranean Sea. The cable, owned by Telecom Egypt, forms an important part of Egypt’s Internet connectivity, and is one of the main cables at the bottom of ...

chained-smartphone

Put an Android phone in the freezer to unlock its secrets, say researchers

Fri 08 Mar, 2013 // Briony

German security researchers have discovered that putting an Android smartphone in the freezer for as little as an hour can help to unlock its confidential contents.A team of three security researchers from Friedrich-Alexander University (FAU) in Erlangen, Germany, discovered that if an Android smartphone is cooled to about -10 degrees ...

unlocked-padlock

Computers hacked at Microsoft, Apple and Facebook

Wed 27 Feb, 2013 // Briony

Microsoft has issued a blog posting confirming that a “small number” of computers on its premises were subject to a successful hacking attack a short while ago, involving malicious software. These computers included not only Windows PC’s but also some Mac computers. Microsoft stated that, as far as it could ...

secure mobile phone

Pioneering encryption app for smartphones could revolutionise privacy and security

Tue 19 Feb, 2013 // Briony

A new invention in mobile phone encryption has profound implications for the way in which phones are used, both by citizens and by criminals and terrorists.A technology start-up firm, Silent Circle, has launched a ground-breaking mobile phone encryption app, “Silent Suite”. It builds on their earlier app, launched in October ...

smartphone-cctv-cameras

New “Google for spies” software tracks people on social media

Mon 11 Feb, 2013 // Briony

The “Guardian” newspaper today revealed how new and secret software from the defence contractor Raytheon is capable of tracking users by “data mining” of social media websites, and can predict their future behaviour – including future criminal behaviour.The software, named “Riot” (“Rapid Information Overlay Technology”) gathers a great deal of ...

padlock-broken

Twitter passwords hacked in serious security breach

Mon 04 Feb, 2013 // Briony

Twitter, the social media website, has suffered a serious breach of security where the passwords of about 250,000 users have been stolen, thus compromising their Twitter accounts. Although this breach represents only a small proportion of Twitter’s 200 million users, it nevertheless represents a major security incident. Twitter has taken ...

hand-binary-password

Most user-created passwords can be cracked in seconds, study finds

Fri 01 Feb, 2013 // Briony

A new study from Deloitte, the “Canadian Technology, Media & Telecommunications (TMT) Predictions 2013 report”, finds that this year most passwords generated by end users will be easily cracked by technology readily available today. Once the password has been cracked, the user’s online accounts (including bank accounts if applicable) will ...

big-ben-westminster

Government political advisor with sensitive document falls victim to the telephoto lens

Wed 09 Jan, 2013 // Briony

On Wednesday January 9th, the Daily Telegraph newspaper reported on a deeply embarrassing data leak from the Government, stemming from a photograph of a Government advisor carrying a politically sensitive document in plain view.The previous day, Patrick Rock (the political advisor to the Prime Minister) had been photographed in Downing ...

broken-padlock

Amazon Kindle Fire targeted by Android malware

Thu 03 Jan, 2013 // Briony

Amazon’s Kindle Fire e-reader has recently become a target for malware from Amazon’s own App Store.The Kindle Fire tablet/e-reader is a popular device, customised towards the consumption of media from Amazon (text, audio, video) rather than for general-purpose processing. It runs the open-source Android operating system produced by Google. Content ...

hard-drive

Swiss intelligence agency falls victim to insider theft of data

Fri 21 Dec, 2012 // Briony

Earlier this year, the Swiss intelligence agency NDB experienced the theft of a vast amount of confidential data by a former employee, who was an IT technician with high-level access to NDB’s data. Recently, more information has become available. It seems that the data was simply copied to hard drives, ...

secure-https

US military training moves into cyberspace with new simulation

Fri 07 Dec, 2012 // Briony

After generations of military training in physical training grounds, the US military has now moved into cyberspace for specialised training exercises. Created by SANS, a major information security training provider, a simulated city known as “NetWars CyberCity” will provide cyber-warriors with the opportunity to hone their defensive skills in a ...

breaking-chain

Hackers attack Pakistan domain name system: major websites cut off

Mon 26 Nov, 2012 // Briony

A shadowy group of hackers known as “eboz” has exploited flaws in the infrastructure of PKNIC, the Internet domain name agency for Pakistan, to attack major websites in Pakistan and redirect all traffic destined for them to another website. More than 280 major Pakistan-based websites, including local versions of Microsoft, ...

mask-identity

New EU data protection regulations and the “right to be forgotten”

Thu 22 Nov, 2012 // Briony

A set of proposed data protection regulations from ENISA, the EU’s cyber-security agency, include the concept of a “right to be forgotten”. This involves obliterating electronic records about an individual from the Internet or from any kind of data storage. However, the concept is fraught with technical and legal difficulties.The ...

Anti-virus software alone can no longer provide complete protection

Wed 14 Nov, 2012 // Briony

Anti-virus software, for so long the foundation of users’ arsenal of computer security weapons, is no longer enough on its own.The claim was made by Mark Patton, general manager of GFI Software’s Security Business Unit, in a recent interview in Infosecurity Magazine. In the space of just 14 months, there ...

cyberattacks-ahead

Unemployment will lead to increased hacktivist activity, says researcher

Mon 29 Oct, 2012 // Briony

An increase in unemployment will lead to an increase in hacktivist cyber-crimes, according to Miloslav Kucera of the Czech Technical University in Prague. In a talk at the ISSE conference (Information Security Solutions Conference) in Brussels, Belgium, the scientist outlined recent research into the similarities between hacktivist groups (such as ...

padlock-and-keyboard

UK Foreign Secretary announces spy apprenticeships for future cyber-warriors

Mon 22 Oct, 2012 // Briony

William Hague, Foreign Secretary of the UK and the man responsible for the UK’s intelligence agencies, announced a new programme of apprenticeships for aspiring cyber operatives on Thursday October 18th.Mr Hague was touring Bletchley Park near Milton Keynes, the wartime home of Britain’s codebreakers, which is being preserved as a ...

Westminster

UK considers plans for civilian reservists to form a new cyber-army

Mon 15 Oct, 2012 // Briony

The UK’s Government Communication Headquarters (GCHQ), situated in Cheltenham, Gloucestershire, may form the centre of a new reservist cyber-army under plans currently being considered by ministers and by the security services.The UK, in common with other countries, is facing a greatly increased cyber-security threat, which has the potential to cripple ...

maskedman

New report shows increasing number of cyber-attacks and cost of cybercrime

Tue 09 Oct, 2012 // Briony

The 2012 “Cost of Cyber Crime” report was published earlier this week. It is a survey by the Ponemon Institute (commissioned by HP). The survey covers two hundred companies from all sectors, in the US, the UK, Germany, Japan and Australia. Its figures are estimates only, yet the conclusions are ...

cyber-attacks-ahead-sign

More than fifty universities hacked and personal information made public

Fri 05 Oct, 2012 // Briony

A team of criminal hackers known only as “Team Gh0stshell” has succeeded in hacking into the computers of more than fifty universities around the world, and has published on the Web some of the personal data thus retrieved. The hackers, who refer to this attack as “Project Westwind”, claim to ...

viruses-trojans-malware

Sophos anti-malware software classifies itself as a virus

Mon 24 Sep, 2012 // Briony

Sophos, a leading security firm, last week released an update to its anti-malware software that classified itself as a virus, leading to widespread disruption for users.The new update classified all update utilities, including itself, as viruses (specifically, the Shh/Updater-B virus), and attempted to remove them from the computer, while also ...

big-padlock-keyboard

Some new PC’s made in China are already infected with malware

Mon 17 Sep, 2012 // Briony

Microsoft security investigators have discovered that some of the PC’s manufactured in China are already infected with malware even before they are sold.Microsoft bought a selection of brand-new PC’s (both desktops and laptops) from various manufacturers based in China, buying them in several different cities. They discovered that about twenty ...

mobile-phone-security-cameras

Survey finds most parents unaware of security threats to children’s mobile phones

Tue 11 Sep, 2012 // Briony

A recent survey by the security software vendor ESET finds that most parents are unaware of the security threats to their children’s mobile phones. The survey covered more than 1000 parents, and was carried out in June by research firm Vision Critical.About a third of parents did not believe that ...

circuit-board-infosec

Cyber Security Challenge UK announces new-style security challenge

Mon 03 Sep, 2012 // Briony

Cyber Security Challenge UK is a series of information security competitions designed to identify people with much-needed cybersecurity skills in the UK, and to assist them to enter the cybersecurity field. It has been running for three years, sponsored by various information security companies, universities and Government agencies.The prizes for ...

padlock-sitting-on-mobile

Web storage provider now offers two-factor authentication

Wed 29 Aug, 2012 // Briony

The web storage and sharing provider Dropbox has now begun to offer two-factor authentication. This will make it much harder for hackers to gain access to the stored data of Dropbox users.Cloud storage providers such as Dropbox enable users to send large files that are too big to send as ...

padlock-atsign

Technology journalist is hacked and suffers serious identity theft

Tue 28 Aug, 2012 // Briony

The technology journalist Matt Honan, who writes for Wired magazine and the technology website Gizmodo, found recently that a hacker had gained access to a large portion of his digital identity, and had succeeded in taking it over, with highly damaging personal consequences.In a detailed analysis of the exploit (at ...

    “We have been pleased to work with commissum who have provided us with services to address our Security Assurance requirements. commissum met our demands, as an organisation operating within the Legal Services sector, with the highest level of integrity, commitment and excellent level of service. We would have no hesitation in recommending commissum.”

    Mr Kenneth P, IT Manager, National Legal Services

    "commissum recently provided us with services to assess a web application and supporting infrastructure. I was impressed with the consultants throughout the project, by their technical knowledge, flexibility, open communication and willingness to go that extra mile. Of particular benefit was the sound advice given both during and after the engagement. By identifying vulnerabilities promptly, accompanied with practical recommendations on how to address them. We were able to implement improvements quickly. Good value, a job well done.”

    JM, Infosec Analyst, International Investment Bank

    "We engaged with commissum for the first time this year and found them highly professional and a pleasure to do business with. We were particularly pleased with the report provided which was of excellent quality, with an appropriate level of detail and clarity in its recommendations. I would happily refer others to commissum.”

    Mr Billy K, IT Director, National Law Firm

    "We are extremely pleased with the work carried out by the commissum team. All of the commissum staff were a pleasure to work with and maintained a high level of professionalism at all times. They were able to provide us with sound advice and guidance to make sure that we got the best value for money from our test and provided excellent communication and recommendations before, during and after the tests. I would strongly recommend commissum to other companies that are looking for peace of mind in relation to their IT security and I can say that we will use commissum again for future testing.”

    Chris S, IT Officer - UK Housing Association

    "commissum understood exactly what we needed and delivered excellent service on time, and on budget. Why can't all companies be like them!"

    Mr Duncan M, Information Security Manager - National Building Society

    Get in touch with one of our security consultants today

    • No obligation
    • Expert advice
    • Tailored solutions
    "commissum was particularly responsive and the project was well managed under demanding conditions. I was very happy with the technical standard. Very good value for money as well”

    Mr Kenneth Y, Head of IT Risk & Compliance, International Retail Bank

    "I was very pleased with the work delivered by commissum from start to finish. The quality of reporting was excellent and the consultants very helpful with clear communication throughout the engagement. I would happily recommend commissum to others.”

    Ms Louisa L, IT Manager, National Building Society

    "commissum provided us with a high quality service. We found the project team helpful and flexible in responding to changes in requirement; the technical staff in particular were excellent. All commitments including deliverable timescales were met and I would have no hesitation in recommending commissum.”

    Mr A Moretti, Executive Director for IT Security Risk Management, Global Investment Bank

    "From the start the project went very smoothly despite the short notice. commissum maintained excellent communication throughout ........ their flexibility and responsiveness right up to the end of the project was of great value to us.”

    Mr Keith H, Senior Business Manager - UK Local Government