Warning on emerging threat to CNI from state-aligned groups with intent to launch destructive attacks
The NCSC is urging CNI to take steps now to bolster their defences against attack from state-aligned groups.

Warning on emerging threat to CNI from state-aligned groups with intent to launch destructive attacks

Today we have released a warning about the emerging threat to Critical National Infrastructure (CNI) from state-aligned groups that have the intent to launch “destructive and disruptive attacks”. 

On the first day of #CYBERUK23, we're urging CNI to take steps now to bolster their defences. The threat comes particularly from state-aligned groups sympathetic to Russia’s invasion.  

These groups are not motivated by financial gain, nor subject to control by the state, and so their actions can be less predictable & targeting broader than traditional cybercrime actors. 

Activity from these groups is likely to take the form of Distributed Denial of Service (DDoS) attacks, website defacements or the spread of misinformation. Some groups have stated a desire to achieve a more destructive impact against western infrastructure. 

Dr Marsha Quallo-Wright, NCSC Deputy Director for Critical National Infrastructure, said: 

"Our message to CNI sector is not to panic but to take sensible, proportionate steps now to protect themselves. Follow our advice for organisations on steps to take when the cyber threat is heightened.” 

The NCSC’s heightened threat guidance was published shortly before Russia’s invasion of Ukraine last year and those in the CNI sector are urged to read it.


To find out more about the risk, join "The three R's of cyber security: Russia, ransomware & resilience." Plenary 3 will be streamed at #CYBERUK23 at 0915, Thursday 20th April.

Set yourself a reminder and follow us on Twitter and YouTube for updates during the conference.

Rachael Fruin CISSP CISRM CISLI

Information & Cyber Security Advisor at Great Ormond Street Hospital for Children NHS Foundation Trust

1y

I echo other comments. It isn’t just CNI, it’s their supply chain & all businesses & organisations aligned to UK, US & NATO goals. It’s the new Cold War by proxy. Whilst it isn’t directly financially motivated it is designed to cause maximum disruption & financial pain. One could argue it mimics & far exceeds any financial sanction. We need better information sharing, more transparency on breaches/attack methodologies & issues, more investment on implementing & improving basic cyber defences. We also need strong policing & auditing of software houses.

Like
Reply
Rahim Khoja

Systems Engineer & Python Developer | Specializing in Linux, Hypervisors, and High-Performance Computing

1y

I'm not even reading anything about government sponsored IT security.. The whole Idea is silly, and can quickly be used against industry.

Like
Reply
Al L.

Digital Identity Crusader, Inventor, Entrepreneur, University Lecturer & 🌮❤️er

1y

Neutralize all their credential phishing & password-based attacks with a Passwordless phish-proof MFA solution. Deploy it in 15 mins across the entire business of thousands. Ask Bell Integration - Driving Digital Transformation. Mark Nicholas and Alex Christophe timing is everything. 💪🏽

To view or add a comment, sign in

More articles by National Cyber Security Centre

Insights from the community

Others also viewed

Explore topics