National Cyber Security Centre
UK joins international partners to issue advice on latest Russian cyber threat
An overview of Russian cyber threats to critical infrastructure and mitigation guidance for all organisations.
The UK yesterday joined international partners to share updated mitigation advice against Russian state-sponsored and criminal cyber threats.
The advisory is published jointly by the National Cyber Security Centre (NCSC) – a part of GCHQ – alongside agencies in the US, Australia, Canada and New Zealand, as well as the UK’s National Crime Agency. It provides technical details on the threat to critical infrastructure from Russian state-sponsored and cyber criminals.
It complements recent NCSC advice on actions to take when the cyber threat is heightened, and aims to further improve the resilience of organisations in the event of heightened malicious cyber activity.
Several immediate actions for all organisations to take to protect their networks are set out in the advisory, which include:
- prioritising the patching of known exploited vulnerabilities
- enforcing multi-factor authentication (MFA)
- monitoring remote desktop protocol (RDP) and
- providing end-user awareness and training
Lindy Cameron, NCSC CEO, yesterday said:
“In this period of heightened cyber threat, it has never been more important to plan and invest in longer-lasting security measures.
“It is vital that all organisations accelerate plans to raise their overall cyber resilience, particularly those defending our most critical assets.
“The NCSC continues to collaborate with our international and law enforcement partners to provide organisations with timely actionable advice to give them the best chance of preventing cyber attacks, wherever they come from.”
The advisory also includes details on Russian-aligned cyber criminal groups, some of which have recently pledged support for the Russian state and have threatened to conduct malicious operations in retaliation against countries providing support to Ukraine.
The advisory is available to read in full on the Cybersecurity and Infrastructure Security Agency’s (CISA) website.
Latest News from
National Cyber Security Centre
NCSC urges organisations to prepare for the long haul on Russia-Ukraine05/07/2022 15:20:00
Guidance issued advises how organisations can avoid staff burnout during an extended period of heightened cyber threat.
Commercial cyber capabilities must be used legally and responsibly, says UK NCSC CEO29/06/2022 16:20:00
Lindy Cameron's speech at Tel Aviv Cyber Week emphasised the importance of partnerships and international regulation of sophisticated cyber capabilities.
UK joins international cyber agency partners to release supply chain guidance12/05/2022 14:20:00
Joint advisory sets out practical steps to take for managed service providers and their customers to protect themselves.
NCSC joins industry to offer unprecedented protection for public from scams12/05/2022 13:20:00
Data sharing collaboration will allow ISPs to instantly block access to fraudulent sites.
Organisations offered streamlined guidance to help them move to the cloud12/05/2022 11:15:00
Cloud security guidance refreshed to support small businesses to large organisations moving to cloud-based services.
Chancellor of the Duchy of Lancaster speech at Cyber UK11/05/2022 16:12:00
Steve Barclay today gave a speech at the Cyber UK conference in Wales.
Russia behind cyber attack with Europe-wide impact an hour before Ukraine invasion11/05/2022 15:43:00
New UK and US intelligence suggests Russia was behind an operation targeting commercial communications company Viasat in Ukraine.
New email security tool launched to help organisations check their defences11/05/2022 10:33:00
A free email security check service helps organisations identify vulnerabilities.