British NCSC Chief Describes Russian Attacks As ‘Devastating'

Uploaded on 2021-10-18 in TECHNOLOGY--Hackers, INTELLIGENCE-Hot Spots-Russia, FREE TO VIEW

Criminal groups based in Russia have been blamed by Britain's Cyber Security chief for the most "devastating" ransomware attacks in the country and she said malicious actors are trying to steal coronavirus vaccination plans and data on new variants. 

Russia remains the UK’s most acute cyber threat and the source of most ransomware attacks, says head of National Cyber Security Centre Lindy Cameron.

Cyber attacks which see hackers get inside computer networks and lock the owners out until they pay a ransom present "the most immediate danger" to UK businesses in cyber space, Cameron has warned. Many ransomware gangs operate from Ukraine and Russia and the Russian ransomware gangs are often said by western government officials to operate with the Kremlin's tacit approval, but are not directly controlled by the government.

Ms Cameron said her agency, an arm of GCHQ, and the National Crime Agency had assessed that cyber criminals based in Russia, and its neighbours, were responsible for the most of the "devastating" ransomware attacks against the UK. Her remarks represent one of the firmest attempts yet by a British intelligence chief to pin the epidemic of internet extortion on Russia, which is accused of sheltering criminal hackers who seek to extract millions by seizing corporate data.

She said these types of attack posed a threat to everyone from major companies to local councils and schools.

Speaking at the Chatham House Cyber 2021 conference, Cameron said that few organisations were prepared for the threat or tested their cyber defences.  Cameron said ransomware “presents the most immediate danger” of all cyber threats faced by the UK, in her Chatham House speech. Increasingly in recent cases, criminal gangs have also threatened to release some of the data they have access to publicly.

Ms. Cameron said that the challenge the ransomware criminal gangs posed in terms of law enforcement is "acute" as "the criminals responsible often operate beyond our borders, are increasingly successful in their endeavours, and pose a global challenge we must fight together to ensure no place becomes a safe haven".

Ransomware has risen up the agenda in recent months, particularly the US where an attack on Colonial Pipeline caused fuel shortages on the US east coast. There had been some signs that Russian-linked activity dipped over the summer but cyber security experts believe much of that may be to do with the hackers taking their summer holiday rather than any fundamental shift away from what has been a highly-lucrative business model. Cameron also said that ransomware would continue to be attractive while organisations remained vulnerable and were willing to pay. She said the government had been clear that paying ransoms simply emboldened criminal groups. 

As well as improving its defences, she also said the UK would aim to deliver a "sustained, proactive" campaign to disrupt those harming the UK, including ransomware gangs. 

This would include a range of techniques including the newly established National Cyber Force which can carry out offensive hacking operations. "Malicious actors continue to try and access Covid related information, whether that is data on new variants or vaccine procurement plans... Some groups may also seek to use this information to undermine public trust in government responses to the pandemic. And criminals are now regularly using Covid-themed attacks as a way of scamming the public." she said.

Cameron made reference to the recent revelations about the Pegasus spyware sold by the company NSO Group, saying that the NCSC has raised a "red flag" about the growing commercial market for sophisticated products which can be used to hack into people's phones and carry out surveillance. 

She warned of the dangers of "authoritarian states like China" having the ability to influence the standards of new technology in a way that undermines the UK's security. She said the UK needed to be "clear eyed" and protect itself "against Chinese practices that have an adverse effect on our own prosperity and security".

Sky:         Silicon:       Independent:        Guardian:       Verdict:         HSToday:   

TechTimes:      USNews:       BBC:      Image: NCSC

You Might Also Read:

Data Privacy Is Key To The Technology Battle With China:

 

« US Proposes Legislation To Control AI
How AI Will Affect The Future Of Work »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Get Cyber Safe

Get Cyber Safe

Get Cyber Safe is a national public awareness campaign created to educate Canadians about Internet security and the simple steps they can take to protect themselves online.

Zerto

Zerto

Zerto provides enterprise-class disaster recovery and business continuity software specifically for virtualized data centers and cloud environments.

Mobile Guroo

Mobile Guroo

Mobile Guroo is a strategy and systems integrator for Enterprise Mobility Management projects.

Cyber Data-Risk Managers

Cyber Data-Risk Managers

Cyber Data-Risk Managers Pty Ltd is an insurance broker based in Melbourne, Australia specializing in Cyber insurance / Data breach insurance.

Avatu

Avatu

Avatu specialise in providing clients the advice, technology and tools they need to fight cyber and insider threats.

BioConnect

BioConnect

BioConnect provide biometric access control solutions to verify a person’s identity across physical, IOT and digital applications.

ICS-CSR

ICS-CSR

ICS-CSR is a research conference bringing together researchers with an interest in the security of industrial control systems.

Dataprovider.com

Dataprovider.com

Our Brand Protection Suite gives you the tools to discover trademark infringement on the Internet, such as websites selling counterfeit products, even when this is not immediately noticeable.

SyncDog

SyncDog

SyncDog is a leader in enterprise security and the preeminent vendor for containerized mobile application security across cloud & on-premise computing environments.

gener8tor

gener8tor

The gener8tor Cybersecurity Accelerator offers a cutting-edge program in San Antonio, home to the second-largest concentration of cybersecurity experts in the United States.

Brightsolid

Brightsolid

Brightsolid are experts in Hybrid Cloud. We design, build and manage secure, scalable cloud environments that meet customers’ business ambitions.

North Green Security

North Green Security

North Green Security is a UK-based cyber security training and consultancy company.

Eqlipse Technologies

Eqlipse Technologies

Eqlipse Technologies provides products and high-end engineering solutions to customers in the Department of Defense and Intelligence Community.

OneStep Group

OneStep Group

OneStep Group are a leading Australian provider of information and communications technology (ICT) services, connecting businesses through technology solutions and support.

Converged Communication Solutions

Converged Communication Solutions

Converged is an independent Internet Service Provider, telephony, IT support and security specialist.

GO Business

GO Business

GO Business are a specialised B2B team within GO that caters to the communication needs of the local business community in Malta.

Vault Cloud

Vault Cloud

Vault Cloud, Australia's National Cloud, is an Australian owned and operated company specialising in secure, sovereign, hyperscale cloud infrastructure.

Tech Data

Tech Data

Tech Data, a TD Synnex company, is a leading global distributor and solutions aggregator for the IT ecosystem.