Helping member organisations monitor and report the malicious activity they face from the Internet
As a business in the East Midlands Region, you are eligible to sign up for Police CyberAlarm for free.
What is Police CyberAlarm?
As a member, Police CyberAlarm is a free tool to help you understand and monitor malicious cyber activity against your network. This service is made up of two parts: Monitoring and Vulnerability Scanning.
Police CyberAlarm will detect and provide regular reports of suspicious cyber activity, enabling your business or organisation to identify and take steps to minimise your vulnerabilities.
The data collected by the system only contains summary information (meta data and header information) about communications your business or organisation receives from the internet. The system is designed to protect personal data, trade secrets and intellectual property.
How does Police CyberAlarm work?
Once you become a Police CyberAlarm member you install a virtual or physical ‘Police CyberAlarm Collector’ on your network, which will be used to collect and process traffic logs to enable the identification of suspicious and malicious activity from your firewall/internet gateway, Network Intrusion Detection/Prevention system (IDS/IPS), Network Anti-Virus and Anti-Spam filters.
Police CyberAlarm is a monitoring system and does not interfere with normal network operations. It is a small virtual appliance outside the network and does not delay the traffic through the gateway and is installed with just one-click.
Data collected is used to create regular reports on suspicious and potentially malicious activity seen by your business, as well as reports identifying threat trends seen across the network of Police CyberAlarm members. Your business can use this reported intelligence to update your defences to better protect your business from cyber threats.
This data is also used by the Police to evaluate and track trends in cybercrime, and take enforcement action where appropriate.
What information does Police CyberAlarm collect and how is it used once collected?
The Police CyberAlarm Data Collector installed on your site first identifies suspicious data and by doing so automatically filters out any internal traffic and data from known trusted sources.
The remaining data is then encrypted and transmitted to the Police CyberAlarm servers where it is collated, verified, analysed and shared between police forces allowing them to identify new trends, patterns, and cyber-attacks.
It is also then possible to identify whether there are repeated trends or patterns on particular services, products, or devices. This information can be used to inform advice and guidance to member organisations and others, as well as to enable the police to take enforcement action.
Each member organisation will benefit from their own report which will include the identification of the new trends and attacks allowing them to better defend themselves against such attacks.
What are the benefits to my business?
Police CyberAlarm benefits both member organisations and UK Policing.
Members benefit from regular intelligence reporting, through their ‘Member Summary Threat Report’, summarising suspicious activity detected in the external traffic logs sent to their Police CyberAlarm collector.
In addition to this report, members who opt in for vulnerability scanning will also receive a ‘Vulnerability Assessment Report’. This report details any known potential vulnerabilities and the CVE codes for those vulnerabilities to help better protect the organisation.