Criminals are launching more online attacks on UK businesses than ever before, according to a new report published by the the National Cyber Security Centre (NCSC).
The NCSC, which is part of GCHQ, released the report to coincide with its flagship CYBERUK 2018 summit, which is taking place this week in Manchester.
‘The Cyber Threat to UK Business‘ was jointly authored by the NCSC and the National Crime Agency (NCA) in collaboration with industry partners, and details some of the biggest cyber attacks from the last year and notes that risks to UK businesses continue to grow.
Emerging threats are also highlighted, such as theft from cloud storage and cryptojacking, in which computers are hijacked to create crypto currencies such as bitcoin.
The report acknowledges that a basic cyber security posture is no longer enough and most attacks will be defeated by organisations which prioritise cyber security and work closely with government and law enforcement.
Ciaran Martin, Chief Executive of the NCSC, said: “We are fortunate to be able to draw on the cyber crime fighting expertise of our law enforcement colleagues in the National Crime Agency.
“This joint report brings together the combined expertise of the NCA and the NCSC. The key to better cyber security is understanding the problem and taking practical steps to reduce risk.
“This report sets out to explain what terms like cryptojacking and ransomware really mean for businesses and citizens, and using case studies, shows what can happen when the right protections aren’t in place.”
The report also notes that firms are under increasing threat from ransomware, data breaches and supply chain weaknesses which it says can mean serious financial and reputational damage.
It sites real-life case studies from businesses damaged by cyber crime, including ransomware attacks that have affected companies ranging from multi-national firms to independent restaurants.
Furthermore, the report states that while law enforcement and government have successfully battled many cyber threats this year, under-reporting of cyber crime by businesses means crucial evidence and intelligence about cyber threats and offenders is being lost.
Donald Toon, director of the NCA’s Prosperity Command, said: “UK business faces a cyber threat which is growing in scale and complexity. Organisations which don’t take cyber security extremely seriously in the next year are risking serious financial and reputational consequences.
“By increasing collaboration between law enforcement, government and industry we will make sure the UK is a safe place to do business and hostile zone for cyber criminals.
“Full and early reporting of cyber crime to Action Fraud will be essential to our efforts.”