Businesses Advised to Prepare Robust Cyber-Attack Response Plans
The rise in cyber-attacks has led the government to advise businesses to prepare robust response plans. Chief executives nationwide are being urged to have physical copies of their contingency plans ready for potential cyber incidents. This comes in light of recent high-profile hacks that have significantly disrupted operations for major companies.
Recent Cyber-Attacks and Their Impact
The National Cyber-Security Centre (NCSC) reported a notable increase in attacks classified as nationally significant this year. Out of a total of 429 hacks in the first nine months, 204 were categorized as nationally significant, marking a significant rise from last year’s 89 incidents. These attacks have affected retailers such as Marks and Spencer, The Co-op, and Jaguar Land Rover, leading to empty shelves and halted production lines.
Understanding Nationally Significant Incidents
Nationally significant incidents fall into one of the following categories:
- Category 1: National cyber-emergency
- Category 2: Highly significant incident
- Category 3: Significant incident
- Category 4: Substantial incident
- Category 5: Moderate incident
- Category 6: Localized incident
This year, incidents classified as highly significant increased by 50%, with 18 occurrences. These categories help in understanding the severity of cyber threats faced by organizations.
Advice for Businesses
Richard Horne, Chief Executive of the NCSC, emphasized the need for organizations to develop plans for sustaining operations without IT systems during an attack. Emphasis is placed on “resilience engineering,” enabling firms to anticipate, absorb, recover, and adapt in the event of a cyber incident.
Businesses are advised to keep contingency plans in paper form or offline, outlining how communication will be handled in the absence of digital tools. This advice is highlighted prominently in the NCSC’s annual review, reflecting the seriousness of the threats.
Common Threats and Motivations
The majority of cyber-attacks are financially motivated, often involving ransomware or data extortion tactics. Many criminal organizations are based in Russia or neighboring regions, though there has been a surge in teenage hacking groups from English-speaking countries. This year, UK authorities have arrested seven teenagers linked to major cyber incidents.
Lessons from Recent Incidents
Paul Abbott, whose transport company KNP closed due to a cyber-attack, shared that investing in cyber-security alone is not enough. He noted that effective security, education, and contingency planning are crucial. Abbott referred to the situation as not a matter of “if” but “when” these incidents will occur.
Graeme Stewart, from Check Point, reiterated the importance of treating cyber-security with the same seriousness as health and safety protocols. He cautioned that businesses should not venture online without basic protections in place.
Utilizing NCSC Resources
The government encourages businesses to take advantage of free tools provided by the NCSC, including cyber insurance for small firms that have completed the Cyber-Essentials program. Heightened preparations combined with effective collaboration can significantly improve resilience against cyber threats.
With the growth of cyber threats, businesses must adapt their strategies to include robust contingency plans and proactive measures to safeguard their operations.
