+ Menu

We deliver research-led cyber security for clients around the globe

Established in 2003, MWR InfoSecurity is an independent cyber security consultancy with research at the heart of what we do. CIR accredited and a Crown Commercial Service Supplier, we offer a variety of security solutions and are acclaimed for our technical excellence.

About MWR

Our thinking

Expert Comment

TechRepublic: Patching XP forever won't stop next WannaCrypt

Dave Chismon argues that it is unreasonable to expect a company to support a product forever, particularly when not paying them to do so.

+ read more

Article

Fatboy: Ransomware-as-a-Service becoming weapon of choice

A new variant of ransomware was discovered last week, further highlighting the proliferation and advancement of ransomware technology.

+ read more

Article

Defending SWIFT payment systems from attack

Making sense of the recent attacks on payment systems and what can be done to defend against them.

 

+ read more

Article

Inside the 2017 Verizon DBIR

The tenth edition of the Verizon Data Breach Investigations Report is now available and MWR is again a contributor to the data analyzed. 

 

+ read more

Breach banner DBIR
Article

Shadow Brokers: Observations on the EastNets Operation Notes

Some of the most interesting insights into the Shadow Brokers group can be gleaned from the operational notes contained within the dumps.

+ read more

Door3
Featured

The MWR Briefing: Johannesburg

Jun 6th, 2017

Events

Upcoming Events

WarCon 2017

Jun 2nd, 2017

The MWR Briefing: Johannesburg

Jun 6th, 2017

BSides London 2017

Jun 7th, 2017

The MWR Briefing: Cape Town

Jun 8th, 2017

+ view more

Events

Training

 

MWR's cyber security training courses are distinctive in letting you see your network and applications from the attacker's viewpoint

+ read more

icon people
training homepage

Our courses

Proactive Web Defense

Proactive Network Defense

Proactive Mobile Defense: Android

Secure C/C++ Development

+ see all

MWR Labs

On the MWR labs website you will discover a wealth of exciting and interesting information from the world of cyber security, including an insight into the security research activities being undertaken by the MWR team.

+ take me to mwr labs

A Behavioural-based Approach to Ransomware Detection

+ read more

A Window into Ring0

+ read more

A Tale Of Bitmaps: Leaking GDI Objects Post Windows 10 Anniversary Edition

+ read more

Countercept

Countercept is a complete solution for the detection and response to cyber attacks, staffed by an award winning team. This managed service is delivered by MWR, the only independent security consultancy listed on the CESG Cyber Incident Response (CIR) scheme.

+ take me to Countercept

phishd

Built from MWR's offensive and defensive cyber security experience, phishd provide a full suite of managed services, across all aspects of employee security behavior, to track and reduce our clients’ susceptibility to phishing and other data-related attacks.

+ take me to phishd

Accreditations
MWR is an accredited member of The Cyber Security Incident Response Scheme (CSIR) approved by CREST (Council of Registered Ethical Security Testers).
MWR is certified under the Cyber Incident Response (CIR) scheme to deal with sophisticated targeted attacks against networks of national significance.
We are certified to comply with ISO 14001 in the UK, an internationally accepted standard that outlines how to put an effective environmental management system in place.
MWR is certified to comply with ISO 27001 to help ensure our client information is managed securely.
As an Approved Scanning Vendor MWR is approved by PCI SSC to conduct external vulnerability scanning services to PCI DSS Requirement 11.2.2.
We are members of the Council of Registered Ethical Security Testers (CREST), an organisation serving the needs of the information security sector.
MWR is a supplier to the Crown Commercial Service (CCS), which provides commercial and procurement services to the UK public sector.
MWR is a Qualified Security Assessor, meaning we have been qualified by PCI to validate other organisation's adherence to PCI DSS.
As members of CHECK we are measured against high standards set by CESG for the services we provide to Her Majesty's Government.
MWR’s consultants hold Certified Simulated Attack Manager (CCSAM) and Certified Simulated Attack Specialist (CCSAS) qualifications and are authorized by CREST to perform STAR penetration testing services.