Tuesday 16 October 2018 4:57 pm

UK foils more than 10 cyber attacks per week, says GCHQ


The UK has faced more than 10 cyber attacks per week on average in the last two years, the National Cyber Security Centre (NCSC) today revealed, with most coming from “hostile” nation states.

Since it became operational in 2016, GCHQ’s cyber crime defence centre has been forced to defend Britain against 1,167 threats, 557 of which happened in the last year, it said in its second annual report.

Read more: UK and Dutch agencies put Russia behind five cyber attacks

The majority of the attacks were carried out by hackers “directed, sponsored or tolerated” by foreign governments, NCSC chief executive Ciaran Martin said in the report.

“These groups constitute the most acute and direct cyber threat to our national security,” he said.

Meanwhile, the NCSC has more than halved the UK’s share of global phishing attacks – where hackers attempt to trick victims into sharing personal data – from 5.3 per cent to 2.4 per cent, said the report.

The NCSC said it worked to prevent “high-volume commodity attacks that affect people’s everyday lives”, removing 138,398 phishing sites between September 2017 and August 2018.

Cabinet Office minister David Lidington praised the NCSC, saying it had “risen to the challenge”, but experts warned business against complacency.

Chris O’Brien, director of intelligence operations at threat intelligence firm EclecticIQ, called cyber security a “never-ending battle on a constantly changing battlefield”.

Despite NCSC efforts, he said, major incidents such as last year’s Wannacry attack on the NHS were inevitable.

“There needs to be a plan in place for every public or private organisation to limit the impact of such disruption to essential services over a prolonged period of time,” he added.

Read more: Tesco Bank slapped with £16.4m fine for data breach

Emily Orton, director of cyber security firm Darktrace, said cyber attacks were getting “faster and more furious”.

“As guardians of our data, companies of all sizes need to take responsibility and embrace more sophisticated technologies to protect themselves from advanced attacks,” she added. “The increasing trend towards AI is going a long way to bolster businesses’ cyber resilience.”