When the UK’s National Cyber Security Centre (NCSC) recommends that organizations revisit pen and paper plans, it may sound retrograde. After all, modern cybersecurity strategies often focus on AI-enhanced threat detection, zero trust architecture, and real-time telemetry.
But this latest guidance isn’t about going backwards. It is a response to a rapidly evolving threat landscape where ransomware can disable entire enterprises, cutting off communication, halting production, and leaving even well-defended organizations unable to function.
Read more…
Source: Rapid7
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- Cosmetics giant Avon is recovering from a mysterious cyber-security incident
June 16, 2020
Avon has filed documents with the US Securities Exchange Commission disclosing the incident on June 9, a day after the company first discovered issues with some of its IT infrastructure. The company said the incident “interrupted some systems and partially affected operations.” Last week, Avon distributors reported problems accessing the company’s backend, where they usually file new product ...
- 13th Signal Regiment: British Army creates new cyber unit to protect forces
June 5, 2020
The British Army has created a new military cyber unit to protect forces in the modern era. The 13th Signal Regiment was formally launched on Monday. It will be based at Blandford Forum in Dorset but operate where needed around the world. It was described by a defence source as a “restructuring of existing capabilities”, bringing together ...
- NCA launches UK ad campaign to divert kids searching for cybercrime tools
May 29, 2020
The UK’s National Crime Agency (NCA) has launched a new advertising campaign designed to divert young people searching for cybercrime services to white hat alternatives. As spotted by cybersecurity expert Brian Krebs, using a UK IP address when searching Google for particular terms that can relate to cybercrime, such as Distributed Denial-of-service (DDoS) for hire, booters, stressers, ...
- UK electricity middleman hit by cyber-attack
May 14, 2020
Elexon, a crucial middleman in the UK power grid network, reported that it fell victim to a cyber-attack earlier today. In a short message posted on its website, the company said the incident only impacted its internal IT network and employee laptops. The company’s email server was also impacted and had been taken down, cutting employees off from crucial ...
- SilverTerrier: New COVID-19 Themed Business Email Compromise Schemes
May 7, 2020
Focusing on one of the most active subsets of the global threat landscape, Palo Alto Networks Unit 42 tracks Nigerian cyber criminals involved in Business Email Compromise (BEC) activities under the name SilverTerrier. Over the past 90 days (Jan. 30 – Apr. 30), we have observed three SilverTerrier actors/groups launch a series of 10 COVID-19 themed ...
- Coronavirus: GCHQ gets access to NHS data to beef up security
April 29, 2020
Health secretary Matt Hancock has used emergency powers under the NHS Act of 2006 to give GCHQ special dispensation to access data on the NHS’s cyber security and other IT systems in order to better protect the health service from cyber attack during the Covid-19 coronavirus pandemic. Documents released by the government, which can be viewed ...