National Cyber Security Centre
NCSC response to Uber data breach
An official statement from the National Cyber Security Centre on the Uber data breach.
A spokesperson for the National Cyber Security Centre said:
“Companies should always report any cyber attacks to the NCSC immediately. The more information a company shares in a timely manner, the better able we are to support them and prevent others falling victim.
“We are working closely with other agencies including the NCA and ICO to investigate how this breach has affected people in the UK and advise on appropriate mitigation measures.
“Based on current information, we have not seen evidence that financial details have been compromised.”
- If a member of the public thinks they have been a victim of cyber crime or cyber-enabled fraud, they should contact Action Fraud
- If you have been told that your personal details, such as your password, may have been accessed, you should ensure those details are not used on any other accounts
- Victims of cyber crime should be vigilant against suspicious phone calls or targeted emails
NCSC advice on phone calls
- If you do receive a phone call that is suspicious - for example, one that asks you for security information - do not divulge any information, and hang up.
- Pick up the phone and make sure there is a dial tone to ensure the caller is not still on the line.
- Contact the organisation that the caller claimed to be from – never using the details they provided during the call.
NCSC advice on targeted emails
- Fraudsters can use the data they’ve acquired to make their phishing messages look much more credible, including using real names and statements such as: 'To show this is not a phishing email, we have included the month of your birth and the last 3 digits of your phone number'.
- These phishing messages may not relate to the organisation that has been breached, and may use more well-known brands. The NCSC has guidance on protecting yourself from phishing.
- Usually, if you are the target of a phishing message, your real name will not be used. However, if fraudsters do have your name, people will need to be extra vigilant around any message that purports to be from an organisation they deal with - especially when there are attachments or links which take people to sites asking for more personal information.
If members of the public think they have been a victim of online crime, they can report a cyber incident using Action Fraud’s online fraud reporting tool any time of the day or night, or call 0300 123 2040. For further information visit www.actionfraud.police.uk
The UK Government is fully committed to defending against digital threats and set up the NCSC last year through the five-year National Cyber Security Strategy, supported through £1.9 billion transformative investment.
The NCSC works in a transparent manner and relies on good relationships with industry and government partners. In its first year, the NCSC managed 590 significant cyber incidents across the UK and is preventing tens of millions of attacks every week through pioneering Active Cyber Defence measures.
Latest News from
National Cyber Security Centre
Wanted: Cyber security innovators to help secure UK networks14/06/2021 11:15:00
Call open for pioneering companies to apply for new NCSC for Startups initiative.
Alert: Further ransomware attacks on the UK education sector by cyber criminals04/06/2021 16:10:00
The NCSC is responding to further ransomware attacks on the education sector by cyber criminals.
NCSC launches online game to give children a head start with staying cyber secure25/05/2021 14:15:00
CyberSprinters, an educational cyber security game, has been launched by the NCSC.
Neurodiversity and disability to be captured in second survey on diversity of UK cyber sector14/05/2021 16:15:00
NCSC and KPMG UK launch second survey to help improve diversity in the cyber security industry.
New tool launched to support organisations achieve Cyber Essentials certification12/05/2021 16:05:00
Cyber Essentials Readiness Tool asks organisations questions related to the main Cyber Essentials criteria to help prepare them for certification.
British tech startups offered help to keep innovations secure12/05/2021 15:05:00
New guidance from the NCSC and the Centre for the Protection of National Infrastructure (CPNI) to help fledgling technical companies consider key questions around security.
Large UK organisations offered ten steps to stay ahead of cyber threat12/05/2021 10:15:00
Refreshed 10 Steps to Cyber Security guidance released for cyber security professionals in large and medium sized organisations.
Fifteen times more online scams stamped out as cyber experts moved to protect UK during pandemic10/05/2021 16:15:00
The fourth annual report on the NCSC’s Active Cyber Defence (ACD) programme is released.