On the forefront of UK’s cybersecurity and the foremost authority on it is the National Cyber Security Centre (NCSC). They are tasked with ensuring that the online spaces of the nation are safe, for work and living. Each year their annual review highlights the evolving cyber threat landscape, the efforts of the organisation to mitigate risk, and the insights that are critical for business and individuals alike.

In this newsletter, we will delve specifically into the most prominent threats that they’ve detailed in their 2024 report, and give some actionable takeaways for you.

Key insights on the threats

Ransomware: The Reigning Threat to UK Organizations

Ransomware has and continues to be one of the most pervasive threats to UK organisations. Notably, attackers don’t even encrypt data anymore – we are seeing more and more attacks where attackers are simply threatening to release the data.

We are also seeing more than ever that with the interconnection of our companies, organisations and information, when one organisation is under attack, it affects several others. An example of this would the be ransomware attack that was conducted on Synnovis (something we also wrote about!). This shows a vulnerability of our modern supply chains.

To combat ransomware as a threat, NCSC offers support:

·       NCSC Cyber Essentials for organisations to reduce vulnerabilities.

·       Cyber Incident Response schemes to guide organisations in recovery from attacks.

These measures are valuable tools for any organization looking to strengthen its defences.

AI: The Double-Edged Sword in Cybersecurity

With all the development in AI, it is no surprise that it has become a double edged sword. It has the potential to empower defenders, but we are also seeing how it empowers attackers. It can aid organisations in their threat detections, but in the same way enables adversaries to launch to sophisticated cyber attacks.

One thing we are seeing is the way Generative AI can aid in making phishing, social engineering and other deceptive techniques more effective, making it ever harder for defence.

Cyber Proliferation: A Growing Challenge

First off, what is cyber proliferation?

This refers to the increasing spread and availability of cyber tools and technologies. This can be for the good, but the issue is when its used for malicious purposes. It can include hacking software, ransomware-as-a-service and commercial spyware.

The concern lies in how these tools are now much more accessible to a broader audience, including threat actors. It is no longer highly sophisticated state-sponsored groups – they’re now accessible to low-sophistication cyber criminals. It has lowered the barriers for less skilled actors to have access to dangerous software.

The NCSC is addressing this through initiatives like the Pall Mall Process Declaration.

Incident Management and Response

In 2024, the numbers were as following:

Bridging the Cybersecurity Gap

There is an ever-widening disparity between the complexity of threats and threat actors, versus the capabilities of our defences is a growing concern. The NCSC report emphasises that there is an urgent need for organizations to adopt basic cybersecurity measures to protect themselves.

As cyber tools and software become more accessible, the scale and sophistication of attacks are set to increase.

Some actionable takeaways from this report

Adopt basic cyber hygiene – Whether that’s implementing frameworks like Cyber Essentials to safeguard against common threats, or anything further intensive, it is good to cover the basics of safeguarding against cyber threats.

Stay Updated on AI Risks – Invest in AI-driven defences but ensure that you and your organisations are aware of the risks of generative AI technologies. The more awareness there is of what these technologies are aware of and can do, the more it ensures that the company won’t face any negative effects of this technology.

Be Proactive About Incident Management – Utilise services like the NCSC’s Early Warning system to address vulnerabilities before they are exploited. Keep yourself up to date with threats that are known for companies and ensure that your organisation is sufficiently safe against them.

Collaborate Internationally – Engage with initiatives like the Pall Mall Process to shape the responsible cyber norms globally, and get yourself involved with any other initiatives that build cyber security norms across the board.

The NCSC Annual Review 2024 this year has given us a stark reminder of the ever-evolving cyber landscape – as threats grow more sophisticated, organisations need to prioritise resilience, adopt a proactive stance and ensure they are aware of the developing risks that are occurring and developing. By leveraging the insights and resources that NCSC provides, businesses can navigate challenges ahead with confidence.

The insights from the NCSC Annual Review highlight that cyber resilience is no longer optional—it’s essential. As we face an increasingly sophisticated threat landscape, now is the time to act, adapt, and fortify our defences