Do you work in the transport, chemicals, energy, or water sectors?

NCSC offers guidance following increased cyber-attacks

The National Cyber Security Centre (NCSC) has warned that a large number of organisations within the aviation, chemicals, energy, transport, and water sectors have experienced online attacks over the past year.

Indeed, those who provide essential services to the UK could be at increased risk of having their devices compromised, meaning criminals could access vital data.

Not only could this lead to reputation damage and large costs but may also interrupt essential services.

However, a few tweaks to working process and greater awareness of cyber-attacks can help keep systems safer from hackers, and organisations running smoothly.

The NCSC recommends that those in the CNI (Critical National Infrastructure) industries should take special care of the phones, laptops and tablets which they use to administer their systems.

Large companies may consider using Privileged Access Workstations (PAWs) when carrying out their most important tasks, which may involve limiting the extent to which computers can access the internet.

NCSC recommends that smaller companies who cannot afford separate workstations for system administrators should carefully follow their guidance for using mobile devices to prevent hackers being able to reach your crucial information through the internet.

You can read their guidance on securing system administration on their website:

For more insider updates on what to look out for to increase your business’ resilience, consider signing up to our free newsletter.

The National Cyber Security Centre (NCSC) and National Police Chiefs Council (NPCC) are working together to support the establishment of Regional Cyber Resilience Centres (CRCs). The CRCs represent a significant opportunity for the NCSC to expand the reach of its guidance and services to smaller organisations across the country and provide an extra level of practical support to enhance their impact. The NCSC is currently assisting the NPCC in determining the suite of cyber security services that the CRCs will be able to offer.