UK organisations encouraged to take action in response to current situation in and around Ukraine

1643988621726 cybersecurity

The NCSC is investigating the recent reports of malicious cyber incidents in Ukraine. Incidents of this nature are similar to a pattern of Russian behaviour seen before in previous situations, including the destructive NotPetya attack in 2017 and cyber attacks against Georgia. The UK Government has attributed responsibility for both these attacks to the Russian Government.

While the NCSC is not aware of any current specific threats to UK organisations in relation to events in and around Ukraine, the guidance encourages organisations to follow actionable steps that reduce the risk of falling victim to an attack, including:

  • patching systems;
  • improving access controls and enabling multi-factor authentication;
  • implementing an effective incident response plan;
  • checking that backups and restore mechanisms are working;
  • ensuring that online defences are working as expected, and;
  • keeping up to date with the latest threat and mitigation information.

The guidance, also advises organisations which fall victim to a cyber attack to report the incident to the NCSC’s 24/7 Incident Management team.

This advice is the basis for good Cyber Hygiene which I would hope to see in all businesses. If you require advice or assistance with any of this please don’t hesitate to get in touch with me directly or with the cybersecurity team at [email protected].

More information can be found here: www.ncsc.gov.uk or CyberNews

Related Posts

  • Cybersecurity is a Board-level responsibility

    Cybersecurity is a Board-level responsibility

    Cybersecurity

    Cybersecurity is no longer just an IT issue, it’s a core Boardroom responsibility. This blog outlines the legal expectations and practical steps directors must take to lead on cyber [...]

    Read article

  • Why is cybersecurity essential for the manufacturing industry?

    Why is cybersecurity essential for the manufacturing industry?

    Cybersecurity

    All you need to know about effective manufacturing cybersecurity. [...]

    Read article

  • Cybersecurity isn’t just for big business

    Cybersecurity isn’t just for big business

    Cybersecurity

    Cyber threats affect every organisation, not just large enterprises. Our blog shares real-world insights and practical advice to help small and mid-sized organisations improve their cybersecurity and stay resilient [...]

    Read article

  • Why Every Organisation Needs The Perfect IT Security Policy

    Why Every Organisation Needs The Perfect IT Security Policy

    Cybersecurity

    An IT security policy isn’t just paperwork, it’s your organisation’s first line of defence. In this blog, we explore why a clear, practical policy matters, what it should cover, [...]

    Read article

  • How to Build a Disaster Recovery Plan That Actually Works

    How to Build a Disaster Recovery Plan That Actually Works

    CybersecurityIT

    From ransomware to IT outages, UK organisations face rising threats to continuity. This post covers the key elements of a strong disaster recovery plan – and why testing, communication [...]

    Read article

  • Why should an organisation carry out board-level cyber training? 

    Why should an organisation carry out board-level cyber training? 

    Cybersecurity

    Cybersecurity isn’t just an IT issue, it’s a leadership issue, and this blog explains why board-level training is vital to protect your business from the top down. [...]

    Read article

Quiz yourself

Are you more cyber savvy than an 11 year old?

11-14 year olds get asked these questions in school. Could you get these right?