Attack could have significantly disrupted UK’s pandemic response, says NCSC
Hackers and state agents relentlessly targeted Britain’s health and 新冠肺炎 vaccine production sectors over the past year, according to cyber spies.
这 National Cyber Security Centre (NCSC), which is part of GCHQ, said it had shut down 442 phishing scams using NHS branding, 加 80 fake NHS apps. 关于 4.4 billion “potentially harmful interactions” were blocked.
In one incident government tech experts were forced to step in to defend the University of Oxford’s vaccine researchers from a ransomware attack that had “the potential to cause significant disruption to the UK’s pandemic response”, the NCSC revealed in its annual report published on Tuesday.
While criminal groups exploited the pandemic in other ways, hostile governments set their sights on vaccine and medical research over the last year, it is said.
Overall about one-fifth of the 777 breakthrough attacks the NCSC dealt with in the last 12 months were targeted at vaccine or other health organisations. This total was up from 723 in the previous 12 月.
这 新冠病毒 pandemic also gave hackers the opportunity – or “surface area” – to target businesses more widely, thanks to the mass transition to remote work and associated use of third-party computing and cloud services.
Lindy Cameron, the spy agency’s chief executive, 说: “One of the trends that the NCSC has seen over the last year was a worrying growth in criminal groups using ransomware to extort organisations.
“In my view it is now the most immediate cyber security threat to UK businesses and one that I think should be higher on the boardroom agenda.”
Ms Cameron warned last month the pandemic was likely to cast a “significant shadow” for many years when it came to cyber crime.
“Some groups may also seek to use this information to undermine public trust in government responses to the pandemic, and criminals are now regularly using Covid-themed attacks as a way of scamming the public,“ 她说.
In its annual report the NCSC singled out China as the biggest threat to Britain’s tech security.
Beijing is “a highly sophisticated actor in cyberspace with increasing ambition to project its influence beyond its borders and a proven interest in the UK’s commercial secrets”, the agency warned.
Russia also poses a direct threat, according to the NCSC, as well as an indirect one due to the country’s status as a haven for organised criminal gangs. Iran and North Korea are less technically adept but still dangerous, it added.
Two huge cyber attacks, one called SolarWinds and another targeting Microsoft Exchange, were among “the most serious global cyber incidents we’ve seen in recent years” and attributed to Russia and China respectively, said Sir Jeremy Fleming, the head of GCHQ.