Thursday 21 Apr 2022 @ 16:15
National Cyber Security Centre
Printable version

UK joins international partners to issue advice on latest Russian cyber threat

An overview of Russian cyber threats to critical infrastructure and mitigation guidance for all organisations.

decorative image

The UK yesterday joined international partners to share updated mitigation advice against Russian state-sponsored and criminal cyber threats.

The advisory is published jointly by the National Cyber Security Centre (NCSC) – a part of GCHQ – alongside agencies in the US, Australia, Canada and New Zealand, as well as the UK’s National Crime Agency. It provides technical details on the threat to critical infrastructure from Russian state-sponsored and cyber criminals.

It complements recent NCSC advice on actions to take when the cyber threat is heightened, and aims to further improve the resilience of organisations in the event of heightened malicious cyber activity.
Several immediate actions for all organisations to take to protect their networks are set out in the advisory, which include:

  • prioritising the patching of known exploited vulnerabilities
  • enforcing multi-factor authentication (MFA)
  • monitoring remote desktop protocol (RDP) and
  • providing end-user awareness and training

Lindy Cameron, NCSC CEO, yesterday said:

“In this period of heightened cyber threat, it has never been more important to plan and invest in longer-lasting security measures.

“It is vital that all organisations accelerate plans to raise their overall cyber resilience, particularly those defending our most critical assets.

“The NCSC continues to collaborate with our international and law enforcement partners to provide organisations with timely actionable advice to give them the best chance of preventing cyber attacks, wherever they come from.”

The advisory also includes details on Russian-aligned cyber criminal groups, some of which have recently pledged support for the Russian state and have threatened to conduct malicious operations in retaliation against countries providing support to Ukraine.

The advisory is available to read in full on the Cybersecurity and Infrastructure Security Agency’s (CISA) website.

Read the advisory

 

Channel website: https://www.ncsc.gov.uk/

Original article link: https://www.ncsc.gov.uk/news/uk-joins-international-partners-to-issue-advice-on-latest-russian-cyber-threat-

Share this article

Latest News from
National Cyber Security Centre

NCSC enters new partnership for PDNS delivery

17/04/2024 13:05:00

The National Cyber Security Centre announces new partnership to deliver the Protective Domain Name System (PDNS) service.

UK holds China state-affiliated organisations and individuals responsible for malicious cyber activity

26/03/2024 10:31:00

UK calls out pattern of malicious cyber activity by Chinese state-affiliated organisations and individuals targeting democratic institutions and parliamentarians.

NCSC and partners issue warning about state-sponsored cyber attackers hiding on critical infrastructure networks

08/02/2024 11:05:00

GCHQ’s National Cyber Security Centre and partners share details of how threat actors are using built-in tools to camouflage themselves on victims’ systems.

Business leaders urged to toughen up cyber attack protections

24/01/2024 13:12:00

New guidelines to help directors and business leaders boost their resilience against cyber threats.

Exploitation of vulnerabilities affecting Ivanti Connect Secure and Ivanti Policy Secure

15/01/2024 10:15:00

Organisations are encouraged to take immediate action to mitigate vulnerabilities affecting Ivanti Connect Secure (ICS) and Ivanti Policy Secure (IPS) gateways (CVE-2023-46805 and CVE-2024-21887), and follow the latest vendor advice.

UK exposes attempted Russian cyber interference in politics and democratic processes

08/12/2023 10:29:00

The UK condemns Russia’s sustained attempts at political interference in the UK and globally.

UK and allies expose Russian intelligence services for cyber campaign of attempted political interference

07/12/2023 14:25:00

The UK and allies call out the Russian Intelligence Services for a campaign of malicious cyber activity attempting to interfere in UK politics and democratic processes

NCSC launches Cyber Incident Exercising scheme

06/12/2023 15:25:00

New CIE assured providers give organisations support to create structured table-top or live-play cyber incident exercises.

UK and Republic of Korea issue warning about DPRK state-linked cyber actors attacking software supply chains

23/11/2023 16:05:00

Joint advisory observes cyber actors leveraging zero-day vulnerabilities and exploits in third-party software.