National Cyber Security Centre
NCSC significantly expands services to protect UK from record number of online scams
A record number of scams were removed from the internet in 2021 thanks to the Active Cyber Defence programme.
- More than 2.7 million scams removed from the internet in 2021 thanks to GCHQ’s National Cyber Security Centre ramping up Active Cyber Defence programme
- Fake celebrity endorsements and vaccine passports among the common scams taken down by NCSC’s pioneering service
- Latest figures revealed at start of flagship CYBERUK conference, where key cyber security topics, including Russia’s invasion of Ukraine, will be discussed
A RECORD number of online scams were removed from the internet last year thanks to the nation’s cyber experts significantly expanding the UK’s defences to push back against fraudsters, it was revealed yesterday (Tuesday).
Ahead of the opening of its flagship CYBERUK conference, the National Cyber Security Centre - a part of GCHQ – disclosed that more than 2.7 million scam campaigns were stamped out in 2021, nearly four times more than in 2020.
The rise reflects the expansion of NCSC services to take down additional malicious online content, such as fake celebrity endorsement scams, rather than an increase in scams overall. The work has been complemented by reports from the public of suspicious emails, texts and websites, which have enabled the NCSC to remove even more scams.
The celebrity scams and bogus extortion emails were the most commonly removed but other themes used by scammers included NHS vaccines and vaccine passports and even in one instance impersonating the CEO of the NCSC Lindy Cameron.
The findings represent some of the highlights in 2021 of the NCSC’s Active Cyber Defence programme, a pioneering initiative which prevents millions of cyber attacks from reaching UK citizens, critical infrastructure providers and organisations every year.
The highlights will be discussed at the NCSC’s CYBERUK conference which started yesterday at the ICC in Wales – the first in-person gathering of the event in three years. Other issues likely to feature heavily on the conference agenda are the international cyber security response to Russia’s invasion of Ukraine and the ongoing threat from ransomware.
Lindy Cameron, CEO of the NCSC yesterday said:
“As we kick off CYBERUK, the latest ACD figures shine a light on how the NCSC has responded to emerging cyber threat trends and security issues to keep the UK safe at scale.
“We know that scammers will go to great lengths and indeed my name has been used to try and trick people, but as we continue to expand our defences we can see the tangible impact this is having.
“I look forward to discussing common approaches to boosting cyber resilience in the coming days at CYBERUK as we explore how to drive forward a whole-of-society approach to cyber security.”
Dr Ian Levy, NCSC Technical Director, yesterday said:
“Over the past five years, our Active Cyber Defence programme has been central to preventing millions of cyber attacks from causing harm to the UK.
“The highlights shared today evidence some of the crucial interventions we made last year to take down online threats, deter attackers and improve our collective cyber resilience. We will publish the full annual report on our website in due course.
“As ACD continues to grow and innovate, we strongly encourage the private sector to work even more closely with us to enhance the effectiveness of our services to take down and block malicious websites.”
In 2021, the ACD programme continued to help the UK stay safe online during the COVID-19 pandemic while boosting the country’s collective cyber resilience.
The NCSC’s removed more than 1,400 NHS-themed phishing campaigns last year – an 11-fold increase on 2020 – as scammers tried to trick people with fake messages about the vaccine rollout and certificates.
Meanwhile, in one scam taken down, a scammer claiming to be NCSC CEO Lindy Cameron sent an email informing the recipient that the NCSC had stopped £5 million of their money being stolen and to get the funds back they were required to reply with personal information.
The overall increase in scam removals was largely due to the Takedown Service expanding to take down additional types of malicious online content over a prolonged period of time.
Alongside the removal of malicious online content, other key highlights from the fifth year of ACD’s operations include:
- More than 1.2 million domains linked with the Android malware Flubot were blocked – this malware was distributed to the public via ‘missed delivery’ scams
- 33 million events were flagged to organisations signed up to our Early Warning service, indicating something potentially malicious or vulnerable was on their systems. The service grew to more than 4,600 customers by the end of 2021.
- A milestone 10,000 users around the world was reached for the Exercise in a Box toolkit – a service which helps organisations practise their response to a cyber incident.
Fostering a ‘whole-of-society approach’ to cyber security is a central theme of this year’s CYBERUK being delivered across a range of panels, sessions and interactive workshops.
More than 1,500 attendees from industry, academia and government are set to participate in the first in-person summit since the pandemic where the community will share their expertise and experiences, and hear from leading cyber experts from around the world.
Following the success of last year’s CYBERUK conference online, the keynote speakers will also be streamed on the CYBERUK YouTube channel for a wider audience.
The latest ACD findings will be contained in the fifth year report, which will be published shortly. Last month, the NCSC announced all UK schools can now sign up for two ACD services: Mail Check and Web Check – to help them boost their email and web security.
Latest News from
National Cyber Security Centre
UK joins international cyber agency partners to release supply chain guidance12/05/2022 14:20:00
Joint advisory sets out practical steps to take for managed service providers and their customers to protect themselves.
NCSC joins industry to offer unprecedented protection for public from scams12/05/2022 13:20:00
Data sharing collaboration will allow ISPs to instantly block access to fraudulent sites.
Organisations offered streamlined guidance to help them move to the cloud12/05/2022 11:15:00
Cloud security guidance refreshed to support small businesses to large organisations moving to cloud-based services.
Chancellor of the Duchy of Lancaster speech at Cyber UK11/05/2022 16:12:00
Steve Barclay today gave a speech at the Cyber UK conference in Wales.
Russia behind cyber attack with Europe-wide impact an hour before Ukraine invasion11/05/2022 15:43:00
New UK and US intelligence suggests Russia was behind an operation targeting commercial communications company Viasat in Ukraine.
New email security tool launched to help organisations check their defences11/05/2022 10:33:00
A free email security check service helps organisations identify vulnerabilities.
NCSC and allies publish advisory on the most commonly exploited vulnerabilities in 202127/04/2022 16:10:00
A joint advisory from the NCSC and international partners details the 15 most commonly exploited vulnerabilities in 2021.
Schools offered free cyber defence tools to help keep out attackers26/04/2022 16:15:00
UK education settings can sign up for the NCSC's Web Check and Mail Check services to protect their websites and email servers from cyber attacks.