Article
Cyber Security

NCSC encourages UK businesses to bolster cyber resilience

By Sam Steers
January 31, 2022
undefined mins
The National Cyber Security Centre (NCSC) is urging UK organisations to bolster their cyber security resilience in response to cyber incidents in Ukraine

UK organisations are being urged to bolster their cyber security resilience in response to the malicious cyber incidents in and around Ukraine. 

It comes after the National Cyber Security Centre (NCSC), which is part of GCHQ, updated its guidance to UK companies and organisations last week.

Paul Chichester, NCSC Director of Operations, said: “The NCSC is committed to raising awareness of evolving cyber threats and presenting actionable steps to mitigate them. While we are unaware of any specific cyber threats to UK organisations in relation to events in Ukraine, we are monitoring the situation closely and it is vital that organisations follow the guidance to ensure they are resilient. 

“Over several years, we have observed a pattern of malicious Russian behaviour in cyberspace. Last week’s incidents in Ukraine bear the hallmarks of similar Russian activity we have observed before.”

Ukraine incidents similar to previous attacks in Russia and Georgia

The NCSC is investigating the recent reports of malicious cyber incidents in Ukraine. Incidents of this nature are similar to a pattern of Russian behaviour seen before in previous situations, including the destructive NotPetya attack in 2017 and cyber attacks against Georgia. The UK Government has attributed responsibility for both these attacks to the Russian Government.   

While the NCSC is not aware of any current specific threats to UK organisations in relation to events in and around Ukraine, the guidance encourages organisations to follow actionable steps that reduce the risk of falling victim to an attack, including:

  • patching systems; 
  • improving access controls and enabling multi-factor authentication; 
  • implementing an effective incident response plan; 
  • checking that backups and restore mechanisms are working; 
  • ensuring that online defences are working as expected, and; 
  • keeping up to date with the latest threat and mitigation information. 

 The guidance, which is primarily aimed at larger organisations, also advises organisations that fall victim to a cyber attack to report the incident to the NCSC’s 24/7 Incident Management team.

CybersecrityNCSCcyberthreatscyberresilience
Share
Share

Featured Articles

Secure 2024: AI’s impact on cybersecurity with Integrity360

With 2023 seeing increased AI in cybersecurity, and rising cyberattacks, Integrity360 leaders consider what the 2024 cyber landscape will look like

IT and OT security with Ilan Barda, CEO of Radiflow

Cyber Magazine speaks with Radiflow’s CEO, Ilan Barda, about converging IT and OT and how leaders can better protect businesses from cybersecurity threats

QR ‘Quishing’ scams: Do you know the risks?

QR code scams, or Quishing scams, are rising and pose a threat to both private users and businesses as cyberattacks move towards mobile devices

Zero Trust Segmentation with Illumio’s Raghu Nandakumara

Network Security

Is the password dead? Legacy technology prevents the shift

Network Security

Fake Bard AI malware: Google seeks to uncover cybercriminals

Technology & AI