UK Cyber Incident Trends Report

The UK’s National Cyber Security Centre (NCSC) has published a report detailing cyber incident trends in the country from October 2018 to April 2019, which the U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) encourages administrators to review. It reveals that five main threats and threat vectors affected UK organizations: cloud services, and Office 365 in particular; ransomware; phishing; vulnerability scanning; and supply chain attacks. The report examines each of these, presenting some of the specific methods used by threat actors and providing tips for preventing and mitigating incidents. Given the UK report’s findings, CISA advises its partners review the following resources for more information on improving cybersecurity posture: Ransomware; Avoiding Social Engineering and Phishing Attacks; Securing Network Infrastructure Devices; APTs Targeting IT Service Provider Customers; and Microsoft Office 365 Security Observations. Read the report at NCSC.