NCSC picks IoT, cloud, and cryptojacking among UK plc’s biggest future threats
Cybersecurity agency issues report looking forward to coming dangers and back at year in which DDoS and ransomware hogged the headlines
Cryptojacking attacks, the internet of things, and cloud-security challenges are among the biggest future threats facing UK businesses, a government report has claimed.
To mark the start of the National Cyber Security Centre’s annual CYBERUK event, which takes place this week in Manchester, the NCSC and the National Crime Agency have jointly published a report titled The Cyber threat to UK business. The study picks out the four key trends in cybercrime that have defined the last 12 months: ransomware and distributed denial-of-service attacks; data breaches; supply-chain compromises; and fake news and information operations.
“With attackers able to achieve many of their aims by using techniques that are not particularly advanced, the distinction between nation states and cyber criminals has blurred, making attribution all the more difficult,” the report said.
The study added that some of the biggest attacks perpetrated last year – in particular the WannaCry assault – showed the physical dangers posed by online threats.
“The WannaCry ransomware attack in May spread rapidly and randomly due to its use of a self-replicating worm,” the report said. “The attack demonstrated the real-world harm that can result from cyberattacks, particularly when they are designed to self-replicate and spread.”
- NHS, local government, and ICO impacted by cryptojacking attack
- Major cyberattack on UK likely in next two years, warns NCSC chief
- Does the UK need an IoT regulator?
For the 2018/19 year and beyond, the NCSC and the NCA have picked out six key future threats: data breaches and legislation; cryptojacking; supply-chain compromises; increased use of worms; internet of things; and cloud security.
“Criminals are highly likely to continue to exploit long-standing and well-known vulnerabilities in victim infrastructure,” the report said. “We expect to see a continuation of cryptojacking and supply-chain attacks, and an increasingly diverse range of ransomware variants.”
Donald Toon, director of the NCA’s prosperity command, said that businesses need to work with police and government to help combat the ever-increasing cyberthreat.
“UK business faces a cyberthreat which is growing in scale and complexity,” he said. “Organisations which don’t take cybersecurity extremely seriously in the next year are risking serious financial and reputational consequences. By increasing collaboration between law enforcement, government, and industry we will make sure the UK is a safe place to do business and a hostile zone for cyber criminals.”
Look out on PublicTechnology this week for more news and analysis from the CYBERUK event.
Jessica Russell of techUK believes increased collaboration between the emergency services and technology partners could deliver improved public-safety outcomes
Hanna Johnson of tech accelerator Public believes that transforming citizen services will require government to adopt new ways of buying and using technology
Government's new Innovation Strategy set out ambitious proposals to update processes, eliminate ageing kit, and embrace emerging technologies. PublicTechnology caught up with...
Biostar 2 data leak compromises millions of sensitive data records but UK public sector users yet to detect any ill effects
After more than 20 years of stability, networks are going through a period of dramatic transformation. BT looks beyond the hype at the real benefits of virtualisation.
How can you stay ahead in the fast-paced world of digital technology? BT describes how it's a matter of focus...
The security threat landscape is confusing and changing rapidly – there’s so much out there, how do you understand where the true risks are? BT offers insight from their own experience
Organisations must alter their approach to cyber security recruitment in order to combat the global shortage of security professionals, writes BT