CyberAlarm: Statements from the Police and DfE
Posted on: 25th Apr 2022 by: Rick Cowell
The Police CyberAlarm is a free tool to help educational establishments, and other organisations, monitor and report the malicious activity they face from the internet.
Registering for the Police CyberAlarm is a requirement of the Risk Protection Arrangement (RPA) for schools.
There have been several claims disputing the security and suitability of the Police CyberAlarm tool, and while the ANME is neither disputing nor confirming the claims that have been made, we contacted the CyberAlarm team at the City of London Police, and the RPA team at the DfE, we have shared their statements with our members, and wanted to share them here too.
Statement from the CyberAlarm Team:
“The Police CyberAlarm team was contacted by a security consultant relating to potential vulnerabilities within the Police CyberAlarm system.
The team has engaged with the individual directly and facilitated a meeting between him and a Crest Star and NCSC approved CHECK consultancy who are fully investigating. As with all security concerns, we thank the individual for bringing them to our attention.
We have switched off member access to one area of Police CyberAlarm as a precaution whilst we investigate further. We are confident that no breach has occurred, and member organisations and data remain secure.
We will continue to ensure the security of the system by working with the provider and our partners to maintain our own robust internal testing process, as well as with NCSC approved, CHECK accredited independent cyber security companies.”
National Police CyberAlarm Coordinator
City of London Police
Further information from the CyberAlarm team, and statements from two companies that have assessed the CyberAlarm tool can be seen here: https://cyberalarm.police.uk/security/
Statement from the RPA Team:
"I can confirm that the RPA condition of cover is to register with Police CyberAlarm as that will connect members with their local police Cyber Protect team who will ensure they are notified of any known threats by email.
The installation of the free CyberAlarm software tool is available to any members who are willing or able to have it.
The software gathers data and can identify any malicious activity or if an attack has taken place, but there are a number of technical circumstances where installation is not possible, which is why we did not make the software installation a condition."
RPA Future Projects Strategy and Delivery Lead
Department for Education
Director and Founder of ANME Ltd.
Association of Network Managers in Education
- April 2022 (3)
- February 2022 (1)
- January 2022 (2)
- December 2021 (4)
- April 2020 (1)
- December 2019 (1)
- October 2019 (1)
- September 2019 (2)
- August 2019 (1)
- July 2019 (1)
- June 2019 (3)
- May 2019 (6)
- April 2019 (2)
- March 2019 (2)
- February 2019 (1)
- January 2019 (2)
- December 2018 (1)
- June 2018 (2)
- May 2018 (1)
- December 2017 (1)
- June 2017 (1)
Latest on the Blog:
Posted on: 26 Apr 2022
Posted on: 25 Apr 2022
Posted on: 25 Apr 2022
Posted on: 1 Feb 2022
Posted on: 31 Jan 2022