Download PDF version Contact company

The National Cyber Security Centre (NCSC) has issued a warning of heightened cyber threat to UK critical national infrastructure due to the risk posed by Russia state-aligned actors.

Pro-Russia ‘hacktivists’ have been targeting vulnerable small-scale industrial control systems in the UK, Europe and North America with more attacks expected over the coming months to target critical national infrastructure.

AI-enabled cyber threats

The NCSC outlined that the threats have largely been technically unsophisticated although US agencies have reported physical disruption to operations. The majority of activity so far has been DDoS attacks and website defacements.

The majority of activity so far has been DDoS attacks and website defacements

David Manfield, Associate Director for Cyber Security at Investigo, part of The IN Group, comments: “During periods of heightened cyber threat organisations must re-evaluate their cyber defences, from technology to people, to ensure they can remain robust in the face of an attack. Alarmingly, cyber staff is the top talent pain point for over a third of organisations, according to our Tech and the Boardroom survey, highlighting a stark gap in cyber readiness. Especially in the era of AI-enabled cyber threats, organisations should prioritise building a more diverse pipeline of tech talent, actively recruiting staff with specialist cyber skills that can lead and implement policies and technology adoption to bolster defences.”

Russian invasion of Ukraine

Ideologically driven state-aligned groups, often sympathetic to the Russian invasion of Ukraine, have been behind a series of threats over the past 18 months.

NCSC has urged all active technology owners and operators to follow the urged relief

In response, the NCSC has urged all operational technology owners and operators to follow recommended mitigation advice to bolster cyber defences. With a focus on critical national infrastructure, the NCSC said: “We expect these groups to look for opportunities to create such an impact, particularly if systems are poorly protected.”

Network access security applications

Achi Lewis, Area VP EMEA for Absolute Security, commented: “Cyber resilience should be the top priority for the NCSC, government and businesses, underpinning comprehensive cyber defence measures to combine reactive, preventative and recovery procedures. With cyber-attacks being a case of when, not if, particularly when it comes to critical national infrastructure, it is vital that organisations ensure their endpoint devices are best protected against threats to best mitigate the threat and impact of a breach.”

For many devices, essential security tools are failing, as shown in our Cyber Resilience Index. When not supported by remediation capabilities, Endpoint Protection Platforms and network access security applications on managed PCs fail to operate effectively 24 percent of the time, opening high-risk security gaps and making them vulnerable to breaches. While central networks appear a desirable entry point for malicious attackers, endpoints can be an easy route into an organisation’s systems if they’re behind patching and lack the necessary security controls.”

Impact of cyber threats

Oseloka Obiora, CTO, RiverSafe said: “Any attack against critical national infrastructure could have a catastrophic impact on public services, requiring sturdy cyber defence measures. In order to effectively mitigate the impact of cyber threats, security teams need comprehensive network visibility to enable them to both detect and address vulnerabilities before significant damage is caused.” 

Specifically in dispersed environments, observability should be at the core, monitoring the condition of networks, infrastructure and applications based on data outputs to ensure issues can be identified and resolved swiftly. Effective network visibility through observability could be the difference between hours and days’ worth of downtime should a successful attack occur.”

Download PDF version Download PDF version

In case you missed it

Alamo enhances security with Alcatel-Lucent solutions
Alamo enhances security with Alcatel-Lucent solutions

Alamo Colleges in San Antonio, Texas supports more than 65,000 students and 7,000 staff. It's five campuses and smaller regional learning centres connect students and staff, expan...

When choosing an access solution, make total cost of ownership a key part of the calculation
When choosing an access solution, make total cost of ownership a key part of the calculation

Digital access control has well-known benefits over traditional security, of course, but also costs attached to each stage of its lifetime. However, these costs are not fixed. Many...

The Camp: Enhance security with ASSA ABLOY Aperio wireless locks
The Camp: Enhance security with ASSA ABLOY Aperio wireless locks

As a provider of future-oriented business education, The Camp sought an access control solution as forward-thinking as their courses. Their campus site near Aix-en-Provence is div...

Quick poll
What's the primary benefit of integrating access control with video surveillance?