New Guidance: Actions to take when the threat is heightened
The NCSC (National Cyber Security Centre) is advising UK organisations to strengthen their current cyber security controls to mitigate the risk of a heightened cyber threat level. The guidance explains circumstances in which the cyber threat might change, and outlines the steps an organisation can take in response to a heightened cyber threat.
There is no current immediate threat to the UK, however there have been recent reports of malicious cyber incidents in Ukraine similar to previous attacks carried out by Nation States, such as the NotPetya incident in 2017.
UK organisations are being encouraged to review and improve their cyber resilience to reduce risk of falling victim to an attack and to ensure a quick recovery with minimal impact should they fall victim to a cyber-attack. Such controls covered in the guidance include patching, improving access controls, and testing incident response plans.
Please follow this link to the latest released guidance. Actions to take when the cyber threat is heightened – NCSC.GOV.UK Further guidance is available via the NCSC website advising how to mitigate risks for both medium to large organisations and small organisations. Information on Creating a Cyber Response Plan and Dealing with a Cyber Attack is also available on the CyberScotland Portal.
Organisations are encouraged to register for NCSC’s Early Warning Service, which provides notifications of malicious activity, possible incidents and security issues. To find out more information about this free service and how to register please follow this link. Early Warning – NCSC.GOV.UK
If you have been a victim of a Cyber Attack, it is recommended to report the incident to the SBRC Cyber Incident Helpline on 01786 437 472.
If you have been a victim of crime, and it is not an ongoing emergency, you can report this to Police Scotland on 101. For all emergency calls, dial 999.