Skip to main content

DS Risk Warning: Cyber Critical Update

By

 

Critical Update



With thanks to our NPs the S W Cyber Resilience Centre, we bring you their updated advice. Please pay close attention to it, regardless that it flows from the attacks on the retail sector. The approach taken can be applied anywhere!


The National Cyber Security Centre (NCSC) has issued a critical warning following a wave of cyber attacks on major UK retailers including M&S, Co-op and Harrods. These incidents appear to involve criminals impersonating IT help desks to trick staff into revealing login credentials, a technique known as social engineering.

 

We’re issuing this urgent message to all SWCRC members to raise awareness and encourage immediate action.

 

What’s happening?

 

A group calling itself DragonForce has contacted the BBC to claim responsibility for recent breaches. Their tactics include:

       •     Phoning IT staff pretending to be locked-out employees

      •     Calling or messaging staff pretending to be from internal IT help desks

      •     Using fluent English and credible scenarios to gain trust

 

The NCSC believes these attacks resemble those carried out by the notorious “Scattered Spider” group, known for targeting senior staff to gain access to sensitive systems.

 

What should you do now?

 

We recommend the following immediate steps: 

🔐 Review your password reset procedures, especially for senior roles

📞 Introduce internal codewords or other identity checks for staff requesting credential changes

🧠 Reinforce awareness among staff of social engineering tactics

📊 Monitor for unusual login activity, such as logins at odd times or from unexpected locations

 

Further official advice is available here: NCSC Guidance

 

This is a timely reminder that no organisation is too small to be a target – simple procedural improvements can make a huge difference in resilience.


The Cyber Resilience Centre for the South West is excited to be working in partnership with you and your organisation to make the South West region a safer place to live, work and do business.



Comments

Post a Comment

Popular posts from this blog

Delegated Services Risk Warning: Whirlpool dryers recall

By
Hello all, If you have one of these you will have probably already spotted the warnings and concerns, but just in case the BBC are reporting today: The government is to issue an "unprecedented" recall notice of up to 500,000 Whirlpool tumble dryers which pose a fire safety risk. It comes four years after Whirlpool issued a warning after it found its Hotpoint, Creda and Indesit dryers had a fault which needed fixing. The fault was blamed for at least 750 fires over an 11-year period, according to the government. Whirlpool said safety was its "number one priority". It urged anyone still owning an affected to dryer to contact the company immediately on 0800 151 0905. A spokeswoman added: "In the meantime, anyone with an affected dryer that has not been modified  should unplug it and not use it  until the modification has been completed." An estimated 5.3 million dryers were sold in the UK, but it is thought up to 500,000 could still be in use. ...
Post a Comment
Read more

DS Risk Warning: UK raises terror threat level to ‘severe’ following Vienna attack

By
  Home Secretary Priti Patel has confirmed the escalation of the UK terror threat level from "substantial" to "severe" following an attack in Vienna that left at least three dead. The change means that an attack on UK soil is now deemed "highly likely". The Joint Terrorism Analysis Centre has changed the UK terror threat level from substantial to severe. This is a precautionary measure and is not based on any specific threat. The potential is for UK based 'lone wolfs' to be emboldened to take action themselves which could take place anywhere in the UK. We are asked to continue to remain vigilant and report any suspicious activity to the police on 999 or the anti-terrorist hotline: 0800 789 321. If your information does not relate to an imminent threat, you can also contact MI5 . What the threat levels mean: Threat levels are designed to give a broad indication of the likelihood of a terrorist attack. LOW means an attack is highly unlikely MODERATE ...
Post a Comment
Read more