Messaging platforms like WhatsApp, Signal, or Telegram which are commonly used in workplaces, pose a significant security risk, given their inability to comply with enterprise protection products and lack of management mechanisms. To mitigate this, firms should adopt enterprise-grade messaging systems with strong security features, enforce archive and retention policies, ensure certification, security audits, and comprehensive staff training on risk awareness.

The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.