Today the National Cyber Security Centre (NCSC) published a press release urging UK organisations to bolster their cyber security resilience by consulting their recently updated cyber securityguidance, which we may have previously highlighted to you. We encourage you to read this press release and the guidance if you haven’t done so already. This guidance has been produced in response to malicious cyber incidents in Ukraine, which fit with a pattern of previous Russian behaviour, including the damaging NotPetya incident in 2017.
While the NCSC is not aware of any specific threats to UK organisations at this time in relation to the events in Ukraine, they are monitoring the situation closely. The guidance encourages organisations to take actionable steps that reduce their risk of falling victim to an attack, including: patching, improving access controls, and testing incident response plans. It also encourages organisations to register for the Early Warning service, so that the NCSC can inform organisations of any malicious activity, and advises organisations that fall victim to a cyber attack to report the incident to the NCSC’s 24/7 Incident Management team.
We will follow up with any further updates and will of course contact you to share any specific information we have that is relevant to your organisation. If you have any questions, please get in touch with your NCSC or BEIS contacts.