NCSC warns UK organisations to bolster defences against Russian cyberthreat

Written by Sam Trendall on 1 February 2022 in News

Cyber unit instructs organisations that the time has come to ‘take action’ after attacks in Ukraine

Credit: Gerd Altmann from Pixabay

The National Cyber Security Centre has instructed UK business to take urgent action to bolster their IT defences to best protect against potential cyberthreats from Russia.

The warning comes in light of growing tensions between leaders over Ukraine, and the potential threat posed by Russian troops that were recently moved close to the country’s borders.

The NCSC claims that recent weeks have also brought a spate of “malicious cyber incidents in and around Ukraine”. Over the last few years, the GCHQ-based cyber unit has joined overseas counterparts and government ministers in repeatedly calling out attacks attributed to Russian authorities.

The incidents seen in Ukraine in recent weeks “fit with the pattern of Russian behaviour previously observed”, it said.

Related content

The centre said that it is “not aware of any current specific threats to UK organisations in relation to events in and around Ukraine” but has updated its guidance to encourage UK organisations – particularly large companies – to take immediate steps to increase their cyber resilience.

Recommended measures include: “patching systems; improving access controls and enabling multi-factor authentication; implementing an effective incident response plan; checking that back-ups and restore mechanisms are working; ensuring that online defences are working as expected; and keeping up to date with the latest threat and mitigation information”.

Any organisations that believe they have suffered a cyberattack are instructed to contact the NCSC’s incident management team, which operates around the clock.

“The NCSC is committed to raising awareness of evolving cyberthreats and presenting actionable steps to mitigate them,” said the centre’s director of operations Paul Chichester. “While we are unaware of any specific cyberthreats to UK organisations in relation to events in Ukraine, we are monitoring the situation closely and it is vital that organisations follow the guidance to ensure they are resilient. Over several years, we have observed a pattern of malicious Russian behaviour in cyberspace. [Recent] incidents in Ukraine bear the hallmarks of similar Russian activity we have observed before.”


About the author

Sam Trendall is editor of PublicTechnology. He can be reached on

Share this page




Please login to post a comment or register for a free account.

Related Articles

Police investigated 4,300 cyber offences last year – but charged fewer than 100 criminals
12 August 2022

The proportion of offences resulting in a formal charge increased slightly, but remains at barely more than one in every 50

Scottish Government expands cyber-resilience programme for businesses
8 August 2022

Contract worth £500,000 will see an additional 250 firms offered training

FCDO unit hires £770k consultancy to help shape international defence collaboration platform
18 July 2022

New Hermes platform is intended to provide a ‘modular, scalable solution’

Regulator urges review of ‘systemic risks’ of government use of private messaging
14 July 2022

ICO reveals findings of year-long investigation