Cyber risks: Government data reveals biggest cyber risks of 2019
The National Cyber Security Centre (NCSC) recently released their 2019 annual review of cyber risks, outlining the top forms of cyber-attack that both UK individuals and organisations experienced this past year. As 2020 approaches, be sure to review the following data points for a better understanding of the biggest cyber-threats facing your organisation and best practices for bolstering your cyber-security programme.
- Phishing attacks—The NCSC removed over 177,000 UK-based phishing websites from the internet this past year. Cyber-criminals use these sites to trick users into unknowingly revealing their personal information. This technique has consistently become more sophisticated and destructive over time. Use these tips to reduce your organisation’s phishing risks:
- Train employees on how to detect and report any signs of phishing (eg emails from unknown senders, suspicious links or unsecure web addresses).
- Conduct routine software updates.
- Install anti-malware and virus protection on all organisational devices.
- International threats—Of the 1,800 cyber-incidents that the NCSC has handled, a significant portion of attacks came from hostile nations—including Russia, China, Iran and North Korea. To mitigate your organisation’s international cyber-threats:
- Ensure compliance with all GDPR requirements regarding international data operations.
- Communicate with your local authority if you suspect an international cyber-threat.
- Payment card fraud—The NCSC detected over one million instances of suspected payment card fraud this past year. If your company utilises e-commerce, this is a top concern. Implement this guidance to limit your risk of payment card fraud:
- Make sure your organisation’s website has the proper controls to prevent hackers from infiltrating your payment system.
- Choose a trusted payment processor for all online transactions.