British Cyber Security At Risk From Russia

Speaking the National Cyber Security Centre’s (NCSC) CyberUK conference, Britain's cyber security Minister Steve Barclay said that Russia poses a significant threat to the UK. A “whole of society” approach to cyber security is needed to protect the UK amid Russia’s war in Ukraine, the Minister said. 

According to Barclay, one major Russian-based cyber crime group was behind a failed ransomware attempt to steal personal data to exchange it for a ransom payment, with 53 victim known reports in the past year. 

“It is vital that we adopt a ‘whole of society’ approach to cyber security... It’s a job for us all. Preserving our core values of democracy and free speech while keeping people safe online, as we are doing through our Online Safety Bill, depends on the UK having robust cyber defences." 

“We will achieve these by harnessing our collective strengths and acting as one. It is for this reason that our National Cyber Strategy treats the cyber domain no longer as a niche concern simply for the IT team, but as a wide-ranging grand initiative... “Responsible, durable, effective cyber power cannot be achieved by government alone; we want to see industry, universities, schools and individual citizens getting involved.” Barclay said.

NCSC chief executive Lindy Cameron echoed the Minister, saying it was vital for cyber security experts to “empower everyone” and to “mobilise every individual to stand up for the collective safety of our community”.
“We need to help people develop that instinct for spotting digital duplicity,” she said. “The threats are not going away – it will change but it won’t go away – and we must be savvy enough to respond to those changes... So we need to help people help themselves. That way we can build a well-prepared, resilient nation that sees the digital world as exciting, vibrant and rewarding, not scary, confusing and dull.”

Mr Barclay added that the “greatest cyber crime threat to the UK” will come from ransomware attacks – a form of malware that encrypts a victim’s files... While attempted attacks are concerning, we can draw positives. Our controls quickly spotted them. And in deploying rapid incident responses, we cull useful evidence to share with the wider sector, helping mitigate against similar-style attacks.

Coinciding with the Minister's speech, the Five Eyes intelligence partners in the UK, US, Australia, Canada and New Zealand issued a joint advisory to IT service providers and their customers with guidance on how to protect themselves and their supply chains in the wake of Russia’s invasion of Ukraine.

The advisory encourages firms to adopt multi-factor authentication, an added layer of log-in security, and ensure that all software and operating systems were up-to-date as well as prioritising the patching of any known vulnerabilities. The advisory comes after GCHQ spy agency Chief Sir Jeremy Fleming said that that the current “serious global economic situation” means “the need to make the UK the safest place to live and do business online is ever more relevant”.

The GCHQ Director said the UK must continue to focus on cyber criminals and other bad actors who are constantly adapting their tactics in an effort to make money through illegal activities. Fleming also said the National Cyber Force (NCF), a partnership between GCHQ and the Ministry of Defence, has been working to “disrupt” cyber crime and has done so on an “immense scale”. 

He also warned the UK and other countries who are standing with Ukraine against Russia’s ongoing invasion must continue to boost their own cyber security capabilities. He also said GCHQ has seen indications that “Russia’s cyber operatives continue to look for targets in countries which oppose their actions”.

Independent:     Yahoo:     The National:     Quest Media:    PA News / Forres Gazette:    Standard:  

You Might Also Read: 

Britain’s National Cyber Security Strategy:

 

« The Big Cyber Security Threats That You Can Prepare For
Google’s New Security Features »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Cybertrust Japan

Cybertrust Japan

Cybertrust Japan provides a comprehensive security certification and digital authentication service, enabling customers to build and manage highly secure IT infrastructures.

CybergymIEC

CybergymIEC

CybergymIEC is a global leader in cyber defense solutions and training services.

redGuardian

redGuardian

redGuardian is a DDoS mitigation solution available both as a BGP-based service and as an on-premise platform.

IntaPeople

IntaPeople

IntaPeople are IT and engineering recruitment specialists. We have specialist teams for job sectors including Cybersecurity, IT infrastructure and DevOps.

Porto Research, Technology & Innovation Center (PORTIC)

Porto Research, Technology & Innovation Center (PORTIC)

PORTIC brings together several research centers and groups from P.PORTO in a single space, forming a superstructure dedicated to research, technology transfer, innovation and entrepreneurship.

Computer Services Inc (CSI)

Computer Services Inc (CSI)

CSI is a leading fintech, regtech and cybersecurity solutions partner operating at the intersection of innovation and service.

Wazuh

Wazuh

Wazuh is a free, open source and enterprise-ready security monitoring solution for threat detection, integrity monitoring, incident response and compliance.

Paubox

Paubox

Paubox offers secure, HIPAA compliant email and marketing solutions to fit the needs of modern healthcare organizations of every size.

J.S. Held

J.S. Held

J.S. Held is a global consulting firm providing technical, scientific, and financial expertise across all assets and value at risk.

GISEC Global

GISEC Global

GISEC Global provides vendors and companies from around the world with access to lucrative opportunity to capitalize on what's set to become one of the world's booming markets.

Aspire Technology Solutions

Aspire Technology Solutions

Aspire is an award-winning IT Managed Service and Cyber Security Provider. We specialise in cyber security, cloud, connectivity, managed services, unified communications and IT support.

Cybit

Cybit

Cybit is the one-stop-shop for digital transformation that scales in line with your growth.

SecZone

SecZone

SecZone is a Chinese enterprise with a mission to "Make It Secure." We are dedicated to driving software security innovation globally.

Waterleaf International

Waterleaf International

Waterleaf provide advanced network and cybersecurity solutions - informed by data sciences. Transforming Connectivity, Security and Information for Municipalities, Government & Enterprise.

Metrodata Group

Metrodata Group

PT. Metrodata Electronics, known as Metrodata Group, is the leading information communication technology company in Indonesia.

ClamAV

ClamAV

ClamAV is an open-source (GPL) anti-virus engine used in a variety of situations, including email and web scanning, and endpoint security.