back to article Brit cybercops issue tender to rip and replace their formerly flaw-ridden CyberAlarm tool

Police have issued a tender to replace their CyberAlarm tool following reporting by The Register and infosec researchers revealing security flaws in the logging software. A public tender notice revealed that the National Police Chiefs' Council (NPCC) is seeking a new supplier for what it described as the "next iteration" of …

  1. Mike 137 Silver badge

    "a secondary function being to tell businesses who deploy the tool that they're under attack"

    Businesses that take security seriously should be able to recognise for themselves that they're under attack. Practically none can though. I can't count the number of monitoring appliances I've encountered, generating logs that never get examined until after a data breach is all over.

    Monitoring should be a continuous activity, referenced to an established pattern of normal activity (and not just left to unsupervised "tools"). I've rarely succeeded in persuading clients to perform the necessary baselining to recognise normality. Consequently they fail to identify departures from it when under attack (supposing they're even looking anyway).

  2. Dr Scrum Master

    Significant and Irreparable Damage

    I always find it amusing when organisations claim that someone else is causing "significant and irreparable damage" to them or their brand, as it's invariably the brand owner who has an already tainted reputation or is the one actually damaging its reputation all by itself.

    1. sbt
      Paris Hilton

      Re: already tainted reputation

      Not helped by the branding shenanigans, but have they even heard of Barbara Streisand?

      Need a BS icon, El Reg! ---->

      1. Anonymous Coward
        Anonymous Coward

        Re: already tainted reputation

        No. Did you mean Barbra Streisand?

        (Sorry. Couldn't resist.)

        1. RegGuy1 Silver badge

          Re: already tainted reputation

          No he meant brexit.

          (ducks) sorry!

        2. sbt

          re: Did you mean Barbra

          Agh, all these different name spellings are enough to drive ma yentl.

  3. Chris Hills

    My response

    If facts are damaging to your brand then I suggest you consider your actions.

  4. TimMaher Silver badge
    Thumb Down


    Is CyberAlarm one if their shitty efforts to get into security? Their behaviour pattern seems similar when confronted by a truth.

  5. John Brown (no body) Silver badge
    Facepalm ---

    Such a rookie mistake when looking for a new domain name. Although in this case I suspect they had already committee'd and focus grouped the name and there was no turning back so they just took the name with whatever TLD was available.

  6. h3nb45h3r

    Zero Trust

    Not talking about the security policy this uses, by my feelings towards it.

    Shan't be recommending, using or touching this thing with a barge pole, or any suitable similar replacement (barge poles are hard to get hold of these days...)

  7. gerdesj Silver badge

    An impressive feat

    "Its stated intention is to provide cybercops with an instant overview of current network attacks facing UK SMEs"

    My little company (20 employees) has six internets. A 1Gbs-1, a 100Mbs-1 and four 80/20Mbs-1 links. The netflows alone for that lot is quite a lot of data. OK so we are not normal as such but you would need an insane amount of gear to gather, analyse and process netflows for the entire country or any country for that matter.

    I don't know what a cybercop is supposed to be but it sounds a bit wanky. Even if something like that existed they will never be able to look after me at the moment as things stand. I'm not sure what the fix is but I'm pretty sure the problem has not even been begun to be described.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like