AirQualityNews infotecNEWS NewStartMag SocialCareToday EnvironmentJournal JobsInFinance PlanningNews Housing Jobs Online Education Jobs Online
Public Sector News
Part of the
PSN Network
Advertisement
Data Management , Headlines , News
Noah Bovenizer
February 2nd 2023

Related Articles

Opinion: Shifting our cyber security mindset – from victim to proactive defender
Features Headlines News
Opinion: Shifting our cyber security mindset – from victim to proactive defender
Life-threatening IT outages prove ‘cyber Armageddon’ likely in technology age
Headlines Online Networks & Computing
Life-threatening IT outages prove ‘cyber Armageddon’ likely in technology age
Insecure password led hackers to 440,000 Hackney Council files
Headlines Online Networks & Computing
Insecure password led hackers to 440,000 Hackney Council files
Network keys and addresses accessed in EV fast-charge ‘cyber attacks’
Editor's Pick
Headlines Online Networks & Computing
Network keys and addresses accessed in EV fast-charge ‘cyber attacks’
Curbing e-bike nuisance in Coventry
Headlines News Technology
Curbing e-bike nuisance in Coventry
Essex school reprimanded for illegal use of facial recognition technology
Headlines Technology
Essex school reprimanded for illegal use of facial recognition technology

NCSC published advisory to protect against phishing

The National Cyber Security Centre has published new advice for organisations on how to avoid malicious cyber campaigns in light of phishing attacks from Russia and Iran. 

Part of GCHQ, the NCSC has published an advisory from some of the UK’s best cyber experts highlighting campaigns by Russia-based group SEABORGIUM and Iran-based group TA453 or APT42 that ran throughout 2022, though the two groups are not connected.

blue and white logo guessing game

NCSC Director of Operations, Paul Chichester, said: ‘These campaigns by threat actors based in Russia and Iran continue to ruthlessly pursue their targets in an attempt to steal online credentials and compromise potentially sensitive systems.’ 

He added: ‘The UK is committed to exposing malicious cyber activity alongside our industry partners and this advisory raises awareness of the persistent threat posed by spear-phishing attacks.’ 

Spear-phishing scheme involve an attacker sending malicious links that seek to obtain sensitive information from specific targets with the recent attacks being aimed at specific figures and sectors including defence, NGOs, government organisations, politicians and journalists. 

Advice mentioned in the publication includes turning on multi-factor authentication, disabling mail-forwarding and enabling automated email scanning features. 

The advisory also explains how the scams can work and the various approaches that would be attackers may make, including through social media and professional networking platforms. Some attackers also impersonate real-world contacts with false invitations and links disguised as Zoom meeting URLs. 

Mr Chichester said: ‘We strongly encourage organisations and individuals to remain vigilant to potential approaches and follow the mitigation advice in the advisory to protect themselves online.’ 

Individuals and organisations who recognise the patterns of activity listed in the advisory are also encouraged to report it to the NCSC through their website. 

You can read the NCSC’s full advisory on their website here. 

A survey from the Department for Digital, Culture, Media and Sport found that a large majority of bigger charities and businesses had experienced a cyber security incident in the last twelve months.

Photo by Brett Jordan

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

Advertisements
Help us break the news – share your information, opinion or analysis
Back to top