Step 1
Suspicious data from external sources is identified.
How does Police CyberAlarm work?
Monitoring
Reports highlight threats, update blacklists, strengthen security and assist organisations.
Vulnerability Scanning
Scans websites, detects vulnerabilities, reports and alerts you to threats, strengthens security.
Reporting
Members receive threat and vulnerability reports, improving protection against risks.
How the Secure Sensor works
Step 2
Internal traffic and data is filtered out.
Step 3
The suspicious data is encrypted and transmitted to the PCA servers
Step 4
The data is analysed to identify if there is a threat.
Step 5
If it is identified as malicious the member is alerted of any of the steps they need to take to mitigate the risk.
Step 6
This is shared with Police forces allowing them to identify new trends, patterns and cyber-attacks.
What does Police CyberAlarm Monitor?
Police CyberAlarm monitors inbound traffic on the organisation’s network and collects data to produce reports on the latest cyber threats. These reports allow member organisations to update blacklists and other security measures with new IP addresses and relevant information, helping to strengthen their overall security.
Police CyberAlarm monitors a range of security systems, including:
Firewalls
A firewall is a key security device that acts as the first line of defence against online threats. It filters network traffic based on predefined rules, blocking unwanted or suspicious connections while allowing safe data through. By analysing firewall logs, Police CyberAlarm can identify attempted attacks, their sources, and how they target your network.
Network Intrusion Detection Systems (IDS)
A Network Intrusion Detection System monitors network traffic that has passed through your firewall, analysing data packets for suspicious or malicious activity. By using advanced rules and threat intelligence, IDS helps identify potential attacks that may bypass basic security measures.
Intrusion Prevention Systems (IPS)
An Intrusion Prevention System not only detects suspicious network activity but can also take immediate action to block it. Using advanced threat intelligence, deep packet inspection and up-to-date threat intelligence, IPS helps stop harmful traffic before it reaches your systems.
Anti-Virus (AV) Software
Anti-virus software scans files and data to detect and block malware before it can harm your systems. While desktop AV protects users' devices, network-level AV adds an extra layer by safeguarding other equipment like routers and switches. The logs help identify the source of threats and support ongoing cyber protection.
Anti-Spam Systems
Anti-spam systems filter out fraudulent or malicious emails that other defences may miss. By scanning messages for dangerous links, attachments, or known scams, they stop threats before they reach users' inboxes. Logs shared with Police CyberAlarm help identify and analyse attempted email-based attacks targeting your organisation.
Network Anti-Virus
Network AV adds an extra layer of protection by scanning data as it moves across your network, helping to stop viruses and malware before they reach users or devices. Watch the video below for further information.
Detect Risks Early with Police CyberAlarm Vulnerability Scanning
Police CyberAlarm Vulnerability Scanning helps organisations identify weaknesses in their websites and external IP addresses before criminals can exploit them. Regular scans generate straightforward reports that highlight known risks, helping to strengthen cybersecurity and protect against suspicious activity. Monthly scanning makes it easier to stay ahead of new threats that could affect your network, website, or online services.
How it works
Step 1
Scans your organisation's website addresses (URLs) and external IP addresses.
Step 2
Identifies what services are available (e.g. web requests from a server).
Step 3
Detects the software and version being used.
Step 4
Compares results against international databases of known vulnerabilities.
Step 5
Tests, where possible, to see if your organisation may be exposed.
Step 6
Each weakness that is found is given a Common Vulnerability Exposure (CVE) code. This code explains which systems are affected, how serious the risk is, and what steps can be taken to fix it.
Police CyberAlarm carries out these scans regularly and provides updated reports. Where possible, the reports include CVE details to help organisations understand the issue and take action to reduce or remove the risk.
Proactive Scanning to Protect Your Systems
Watch the video below to see how regular scanning identifies potential security gaps and helps keep your organisation safe.
Detailed Reports to Help You Understand & Respond to Cyber Threats
Police CyberAlarm provides regular reports that highlight suspicious traffic and potential attacks aimed at your organisation. These reports give you a clear picture of how your systems are being targeted and help you take action to strengthen your defences.
Suspicious Traffic at a Glance
A summary of suspicious traffic coming from the internet into your network.
Where Threats Are Coming From
The top sources of suspicious activity.
Ports Under Attack
The ports (entry points) attackers are trying to use against your systems.
UK vs. Global Threats
A breakdown of suspicious activity from within the UK and from outside the UK.
How it helps
Police CyberAlarm reports show your organisation how it is being attacked and where those attacks are coming from. This information makes it easier to update security measures and stay one step ahead of threats.
If you also choose to use Vulnerability Scanning, you will receive an additional Vulnerability Assessment Report. This report highlights potential weaknesses in your systems and includes CVE (Common Vulnerability Exposure) codes. These codes provide details on the risks identified and recommended steps for fixing them.
