Advancing UK Aerospace, Defence, Security & Space Solutions Worldwide
  • Home
  • /
  • Security
  • /
  • NCSC joins US and Australian partners to reveal latest ransomware trends

Security

NCSC joins US and Australian partners to reveal latest ransomware trends

The UK’s cyber security experts have warned of a growing wave of increasingly sophisticated ransomware attacks in their first joint advisory with international partners on the threat.

Image courtesy NCSC

The advisory from the National Cyber Security Centre (NCSC), Australian Cyber Security Centre (ACSC), Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) details both the threat picture for 2021 as well as the mitigation steps organisations can take.

Advertisement
ADS S &P RT

Ransomware attacks involve the blocking of access to computers or data by cyber criminals, who then demand payment from the victim before they can retrieve it. In 2021, cyber authorities observed a number of ransomware trends, including:

  • increased use of cyber criminal ‘services-for-hire’
  • sharing of victim information between different groups of cyber criminals
  • diversifying approaches to extorting money

Ransomware groups also increased the impact of their attacks by:

  • targeting cloud services
  • attacking industrial processes and the software supply chain
  • launching attacks on organisations during public holidays and weekends

The advisory follows the NCSC’s recently launched Ransomware Hub, which is a one-stop shop for advice on how ransomware works, on whether a ransom should be paid, and how to prevent a successful attack.

NCSC CEO Lindy Cameron said: “Ransomware is a rising global threat with potentially devastating consequences but there are steps organisations can take to protect themselves.

“To help ensure organisations are aware of the threat and how to defend themselves we have joined our international partners to set out the very latest threat picture alongside key advice.

“I strongly encourage UK CEOs and Boards to familiarise themselves with this alert and to ensure their IT teams are taking the correct actions to bolster resilience.”

The joint advisory also offers mitigation advice to network defenders which will reduce the risk of a compromise, which includes implementing a requirement for multi-factor authentication, Zero Trust architecture, and a user training programme with phishing exercises.

UK organisations which fall victim to a cyber attack should report the incident to the NCSC’s 24/7 Incident Management team.

Advertisement
ADS S &P RT

Abigail Bradshaw CSC, Head of the Australian Cyber Security Centre, said: “Ransomware remains one of the most disruptive cyber threats to organisations and individuals. This global problem requires a global solution. That is why the ACSC is joining with our US and UK partners to issue this advisory, providing a coordinated global response to counter these cyber threats.

“It is critical that individuals, businesses and industry follow the advice and mitigation strategies in this joint advisory to strengthen your networks and uplift your defences to protect yourselves against this threat.”

CISA Director Jen Easterly said: “We live at a time when every government, every business, every person must focus on the threat of ransomware and take action to mitigate the risk of becoming a victim.

“Reducing risk to ransomware is core to CISA’s mission as the nation’s cyber defense agency, and while we have taken strides over the past year to increase awareness of the threat, we know there is more work to be done to build collective resilience.

“With our NCSC-UK, ACSC, FBI, and NSA partners, we urge organizations to review this advisory, visit stopransomware.gov to take action to strengthen their cybersecurity posture, and report unusual network activity or cyber incidents to government authorities.”

Assistant Director Bryan Vorndran of the FBI's Cyber Division said: “The FBI is committed to protecting the public from the rise in ransomware attacks that we have seen in recent years.

“With our partners in and outside of government, the FBI is working to bring all our tools to bear against these criminals. It is critical for business leaders across industries and the public to take action immediately to harden their systems and work with law enforcement to tackle this threat.”

NSA Cybersecurity Director Rob Joyce said: “When critical infrastructure is held at risk by foreign hackers operating from a safe haven in an adversary country, that’s a national security problem.

“The ransomware scourge is a significant focus area for NSA as we generate insights alongside our partners. Network defenders should take action on the mitigations in the advisory.”
 

 

 

Advertisement
Babcock LB
Beazley partners with Dryad Global on superyacht cybersecurity

Security

Beazley partners with Dryad Global on superyacht cybersecurity

4 November 2024

Dryad Global has joined forces with Beazley, who offer the first comprehensive cyber insurance policy for superyachts vessels. Dryad Global's superyacht clients will now benefit from premium discounts on Beazley's specialist yacht policy.

UK PM unveils investment to boost border security

Security Events

UK PM unveils investment to boost border security

4 November 2024

UK Prime Minister Sir Keir Starmer is set to announce an additional £75 million to boost border security and tackle criminal smuggling gangs, at the INTERPOL General Assembly in Glasgow today, bringing investment in Border Security Command over the next two years to £150 million.

UK satellite set to enhance maritime security

Security Space

UK satellite set to enhance maritime security

4 November 2024

The UK Space Agency has announced that a satellite developed by Horizon Technologies, has successfully completed its Critical Design Review (CDR) and is on schedule for launch in mid-2025.

Babcock completes deep maintenance of Lambeth River Station

Security

Babcock completes deep maintenance of Lambeth River Station

1 November 2024

Babcock has successfully completed a deep maintenance programme for the London Fire Brigade’s (LFB) Lambeth river station.

Advertisement
ODU RT
Five Eyes launch shared security advice campaign for tech startups

Defence Security

Five Eyes launch shared security advice campaign for tech startups

1 November 2024

The Secure Innovation security guidance is being utilised across the Five Eyes intelligence partnership demonstrating the increased commitment between the nations involved.

Emergency services tackle fire at BAE Systems

Security Defence

Emergency services tackle fire at BAE Systems' Barrow-in-Furness site

30 October 2024

Cumbria Police and other emergency services have attended a fire at BAE Systems' Barrow-in-Furness site, which took hold in the early hours of this morning.

Advertisement
ODU RT 2