The 2021 NCSC annual report is out, discussing their work in cyber security.
They say “we have offered support to 777 significant incidents– up from 723 the previous year – with around 20% of organisations supported linked to the health sector and vaccines”.
On the SolarWinds IT management platform attack, they say “Russia’s Foreign Intelligence Service (SVR) was behind one of the most serious cyber intrusions of recent times”.
They called the attack on Microsoft Exchange “the most significant and widespread cyber intrusion against the UK and allies ever observed by the NCSC”.
The ransomware threat is evolving, with criminals improving their operations in the same way a commercial company would develop its services. The main points of entry are phishing and exposed Remote Desktop Protocol ports. Therefore, staff education remains important as well as technical controls.
One of the best ways to reduce your risk of cyber attack is by going for Cyber Essentials +
We can help you with any necessary improvements, after which you’ll be independently verified and can display the Cyber Essentials badge as reassurance to your clients and partners.