Effective vulnerability scanning requires #UK organizations to search for open network ports and identify unpatched, legacy or other vulnerable software and misconfigurations, NCSC said. In doing so, UK organizations can close security gaps across their networks and systems.
Phishing is the most prevalent attack method used by cybercriminals, NCSC stated. With a multi-layered cybersecurity strategy, UK organizations are well-equipped to stop phishing attacks before they escalate.
Cybercriminals are using ransomware to attack UK organizations of all sizes and across all industries, NCSC noted. UK organizations can develop and deploy security best practices and use email authentication and URL reputation services to combat ransomware attacks.
There has been “significant” use of tools and scripts to try and guess Office 365 users’ passwords, according to NCSC. To minimize risk, Office 365 users can follow NCSC’s recent advisory and Microsoft’s security best practices.
A National Cyber Security Centre (NCSC) report details cyber incident trends in the UK from October 2018 to April 2019. In the report, NCSC highlighted five cyber incident trends that are affecting UK organizations: