Tag: NCSC

Pat McFadden: Cyber attacks are “wake up call” for businesses

Pat McFadden, Chancellor of the Duchy of Lancaster, will set out what action the government is taking to improve cyber security in a speech next week

  • Pat McFadden led briefing with national security officials and National Cyber Security Centre CEO on Friday about support being provided to retailers
  • He will use keynote speech at CyberUK to say “companies must treat cyber security as an absolute priority”
  • Comes as National Cyber Security Centre works closely with affected organisations to provide expert advice and support 

In the wake of a wave of cyber attacks on retailers, Pat McFadden will set out what action the government is taking to improve the country’s cyber security in a speech next week, as the government secures Britain’s future through the Plan for Change.

Recognising the impact such attacks have on working people as they go about their daily lives, the Chancellor of the Duchy of Lancaster will highlight moves to “bolster our national defences” including through the Cyber Security Bill.

It follows a briefing he led with national security officials and NCSC CEO Richard Horne on Friday about the recent hacks and expert support being provided to retailers.

In the keynote speech at the CyberUK conference in Manchester next week, the Chancellor of the Duchy of Lancaster will say: “These attacks need to be a wake-up call for every business in the UK.

“In a world where the cybercriminals targeting us are relentless in their pursuit of profit – with attempts being made every hour of every day – companies must treat cyber security as an absolute priority.

“We’ve watched in real-time the disruption these attacks have caused – including to working families going about their everyday lives. It serves as a powerful reminder that just as you would never leave your car or your house unlocked on your way to work. We have to treat our digital shop fronts the same way.”

The National Cyber Security Centre (NCSC) is working closely with organisations that have reported incidents to them to fully understand the nature of these attacks and to provide expert advice to the wider sector based on the threat picture.

They’re also urging leaders to follow the advice on the NCSC website to ensure they have appropriate measures in place to help prevent attacks and respond and recover effectively.

In his speech next week, Pat McFadden will encourage firms from all sectors to consider what cyber protections they have in place.

In a message to business leaders across the UK, he will say: “We are ready to support you. The National Cyber Security Centre is standing ready to support businesses and provide advice, and guidance, on how to raise the cyber security bar.”

Pat McFadden will set out the action the government is taking to boost the country’s cyber protections. He will say: “We’re modernising the way the state approaches cyber, through the Cyber Security and Resilience Bill. That legislation will bolster our national defences.

“It will grant new powers for the Technology Secretary to direct regulated organisations to reinforce their cyber defences It will require over 1,000 private IT providers to improve their data and network security.

“It will require companies to report a wider array of cyber incidents to the NCSC in the future – to help us build a clearer picture of who, and what, hostile actors are targeting.”

Last month (April) the government launched a Cyber Governance Code of Practice. This is a package of measures which shows boards and directors how they can manage digital risks and protect their businesses and organisations from cyber attacks.

It covers a range of areas, including having robust cyber strategies in place, promoting a culture in workplaces so all employees are aware of the potential cyber risks they could face in their daily work, and having incident response plans in place which will mean organisations can respond quickly to cyber incidents as they occur.

Small businesses looking to strengthen their online defences are also encouraged to engage with the NCSC’s Small Business Guide, which provides quick and easy actions to help bolster their defences and support through the Cyber Local scheme, which provides tailored funding to boost regional cyber skills.  

The National Cyber Security Centre is working with a number of major UK retailers who have been affected by recent incidents.

NCSC CEO Dr Richard Horne said: “The disruption caused by the recent incidents impacting the retail sector are naturally a cause for concern to those businesses affected, their customers and the public.

“The NCSC continues to work closely with organisations that have reported incidents to us to fully understand the nature of these attacks and to provide expert advice to the wider sector based on the threat picture.

“These incidents should act as a wake-up call to all organisations. I urge leaders to follow the advice on the NCSC website to ensure they have appropriate measures in place to help prevent attacks and respond and recover effectively.”

Free cyber security courses for schools in Scotland

Young people aged 11-14 years in Scotland are being invited to participate in a series of free, virtual CyberFirst courses to help students explore their passion for technology and inspire the next generation of cybersecurity talent.

Created by the National Cyber Security Centre (NCSC) – a part of GCHQ, and delivered in partnership with QA and the educational charity The Smallpeice Trust, the CyberFirst courses are designed to show students interested in computing and cyber security what a diverse range of career paths are available in the field and to help them develop the skills they need to excel.

The content is structured in a way that aims to harness every student’s individual potential whilst delving into the ins and outs of everyday technology using realistic scenarios.

The interactive, instructor-led courses, that will take place in virtual classrooms throughout February 2021, include:

  • CyberFirst Trailblazers – open to any student starting Year 8, S2 in Scotland in the 2020/21 academic year. Students will become ‘digital detectives’, employing digital forensics to identify the source and spread of malicious software and learning how open source intelligence can help with the collection of further information. They will also learn the basics of website customisation.
  • CyberFirst Adventurers – open to any student starting Year 9, S3 in Scotland in the 2020/21 academic year. Students will use ‘big data’, work against the clock in a cryptography exercise, and have the chance to create their own models using 3D design software.

The courses will also instil a strong sense of responsibility in students, emphasising the importance of acting safely, legally and ethically in the cyber security profession.

Chris Ensor, the NCSC’s Deputy Director for Cyber Growth, said: “I’m delighted we are offering our CyberFirst Trailblazers and Adventurers courses online next year, giving more students from across Scotland an exciting opportunity to develop their digital skills.

“I would really encourage students to sign up to learn more about what cyber security careers actually look like and to connect with other like-minded people with a shared passion for technology. The cyber security experts of the future will play a vital role in keeping the UK safe online, and the NCSC is committed to nurturing the young talent this country has to ensure we have a well-equipped and diverse workforce.”

Dr Kevin P. Stenson, chief executive of The Smallpeice Trust, said:“With many students continuing to shield or facing the possibility of self-isolation, the online CyberFirst courses will provide a brilliant – and most importantly, safe – opportunity for young people in Scotland to boost their digital skills and enrich their problem-solving abilities from their own homes.”

The CyberFirst Trailblazer and Adventurer courses will take place during February. Further information and booking for the CyberFirst courses can be found here: https://www.smallpeicetrust.org.uk/cyberfirst