UK businesses ‘should bolster security’ after Ukraine cyber-attacks

The National Cyber Security Centre (NCSC) has urged British companies to “bolster their cyber security resilience” following malicious cyber incidents which took place in Ukraine.

The UK organisation said that there have been no current threats to the country identified so far but that the guidance would enable businesses to build resilience ahead of potential incidents.

The NCSC, which is investigating the recent reports of cyber incidents in Ukraine, claimed that the activity “fits with pattern of Russian behaviour previously observed”, including the NotPetya incident and cyber attacks against Georgia – which the government attributed responsibility to the Russian government.

The NCSC urged companies to follow actionable steps that reduce the risk of falling victim to an attack, including: patching systems; improving access controls and enabling multi-factor authentication; implementing an effective incident response plan; checking that backups and restore mechanisms are working; ensuring that online defences are working as expected, and; keeping up to date with the latest threat and mitigation information. 

The guidance is primarily aimed at larger companies.

“The NCSC is committed to raising awareness of evolving cyber threats and presenting actionable steps to mitigate them,” said Paul Chichester, from the National Cyber Security Centre (NCSC). “While we are unaware of any specific cyber threats to UK organisations in relation to events in Ukraine, we are monitoring the situation closely and it is vital that organisations follow the guidance to ensure they are resilient.

“Over several years, we have observed a pattern of malicious Russian behaviour in cyberspace. Last week’s incidents in Ukraine bear the hallmarks of similar Russian activity we have observed before.”

    Share Story:

Recent Stories


Banking's GenAI evolution: Beyond the hype, building the future
In the first episode of a three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech explores how financial institutions can navigate the transformative potential of Generative AI while building lasting foundations for innovation.

Beyond compliance: Transforming document management into a strategic advantage for financial institutions
In this exclusive fireside chat, John Rockliffe, Pre-Sales Manager at d.velop, discusses the findings of Adapting to a Digital-Native World: Financial Services Document Management Beyond 2025 and explores how FSIs can turn document workflows into a competitive advantage.

Sanctions evasion in an era of conflict: Optimising KYC and monitoring to tackle crime
The ongoing war in Ukraine and resulting sanctions on Russia, and the continuing geopolitical tensions have resulted in an unprecedented increase in parties added to sanctions lists.

Achieving operational resilience in the financial sector: Navigating DORA with confidence
Operational resilience has become crucial for financial institutions navigating today's digital landscape riddled with cyber risks and challenges. The EU's Digital Operational Resilience Act (DORA) provides a harmonised framework to address these complexities, but there are key factors that financial institutions must ensure they consider.