Search
Close this search box.

Become Cybersafe – 22nd February

Table of Contents

[fusion_builder_container type=”flex” hundred_percent=”no” equal_height_columns=”no” hide_on_mobile=”small-visibility,medium-visibility,large-visibility” background_position=”center center” background_repeat=”no-repeat” fade=”no” background_parallax=”none” parallax_speed=”0.3″ video_aspect_ratio=”16:9″ video_loop=”yes” video_mute=”yes” border_style=”solid” margin_top=”1px” flex_align_items=”center” flex_justify_content=”flex-start”][fusion_builder_row][fusion_builder_column type=”1_1″ type=”1_1″ layout=”1_1″ background_position=”left top” border_style=”solid” border_position=”all” spacing=”yes” background_repeat=”no-repeat” margin_top=”0px” margin_bottom=”0px” animation_speed=”0.3″ animation_direction=”left” hide_on_mobile=”small-visibility,medium-visibility,large-visibility” center_content=”no” last=”true” hover_type=”none” first=”true” background_blend_mode=”overlay” min_height=”” link=””][fusion_text]

Welcome to the latest edition of the Cybersafe Cyber Threats Update, a weekly series in which we bring attention to the latest cyber attacks, scams, frauds, and malware including Ransomware, to ensure you stay safe online. Being aware of these cyber threats helps UK companies to gain cyber essentials certifications and keeps employees on alert for potential danger.

Here are the most prominent threats which you should be aware of:

NCSC Sounds Alarm Over Private Branch Exchange Attacks

The UK’s National Cyber Security Centre (NCSC) recently sounded the alarm for smaller organisations, cautioning them about potential vulnerabilities lurking within their private branch exchange (PBX) phone systems. PBX systems serve as internet-connected private telephone networks, facilitating the management and routing of incoming and outgoing calls. While these systems often boast features tailored for business operations, such as call forwarding, voicemail, and conference calling, the NCSC’s latest advisory underscores the risks associated with improperly configured setups.

In a recent blog post, the NCSC highlighted the possibility of remote attackers exploiting the internet connection of inadequately secured PBX systems. Such exploitation could manifest in various forms of cyber crime, including dial-through fraud and the utilisation of compromised PBX systems in denial-of-service (DoS) attacks against other entities. To counteract these cyber threats, the NCSC has rolled out fresh guidance to assist organisations in mitigating PBX-related risks, regardless of whether they opt for managed cloud-based solutions or maintain on-premises systems. If you need help to strengthen your cyber security defences then you can take a look at Neuways’ Managed Cyber Security Service and get in touch with our dedicated cyber security team.

The NCSC’s Economy and Society Team emphasised the importance of implementing robust security measures, such as enforcing strong passwords and safeguarding administrator accounts through multi-factor authentication (MFA). Additionally, organisations are advised to scrutinise PBX contracts carefully, ensuring clarity regarding security responsibilities to prevent inadvertent financial repercussions. Business owners have been urged to consider limitations on call types or the restriction of call forwarding to off-premises numbers as potential safeguards.

Overall, the NCSC’s guidance serves as a timely reminder for SMEs and SMBs to safeguard their PBX systems against emerging cyber threats, thereby strengthening their overall cyber security posture. To do this, simply get in touch with our team today.

Reputable organisations targeted in Cyber attacks


It has been highlighted that the recent disruption faced by several prominent UK universities, notably the University of Cambridge and the University of Manchester, was due to a Distributed Denial of Service (DDoS) attack attributed to a hacktivist group. These attacks, which targeted the Janet Network utilised by researchers, were accompanied by a claim from the cyber attackers citing grievances against the UK government’s support for certain military actions abroad.

The University of Cambridge’s Clinical School Computing Service reported the impact of the attack, including intermittent internet access and disruptions to student IT services like CamSIS and Moodle. While the cyber attack primarily affected connectivity, with subsequent stabilisation efforts reported by affected institutions, the incident underscores the susceptibility of esteemed educational institutions to cyber threats. Organisations of all sizes need to be aware of these cyber threats as it helps to protect businesses. Having the right cyber security frameworks and awarenesses in place helps businesses to gain cyber essentials certifications in the UK, which provide credibility

Furthermore, the targeting of UK universities reflects a broader trend of escalating cyber attacks against renowned institutions in the country. The British Library, for instance, is still in the recovery phase following a ransomware attack in September 2023. Experts have noted the ongoing restoration efforts at the University of Cambridge’s Library, emphasising the critical need for heightened cyber security vigilance in businesses in the face of evolving cyber threats.

Experts emphasise the attractiveness of universities as soft targets for threat actors, particularly amidst the expanded threat landscape resulting from remote learning and increased connectivity. So if your business provides remote learning, then you need to take note of these cyber threats. Limited IT support (usually resolved by Managed IT Support), tight budgets, and the prevalence of standardised software in the education sector further exacerbate vulnerabilities, making universities susceptible to exploitation by cyber criminals.

As highlighted by research indicating a surge in cyber attacks against UK higher education institutions, including a concerning lack of cyber security strategies in many cases, the imperative for smaller businesses and those in the education sector to bolster their cyber security defences becomes increasingly evident. If you’re not sure whether your business could withstand a cyber attack, it is worth consulting with our cyber security team. Not only can we assess the existing infrastructure but Neuways are also able to help your business gain cyber essentials certifications in the UK.

Critical infrastructure software maker confirms ransomware attack


A recent cyber attack reported by BleepingComputer highlights the significant impact of cyber threats on critical infrastructure software makers. PSI Software SE, a German company specialising in solutions for energy suppliers all over the globe, including the UK. The confirmed ransomware attack on German-based PSI Software SE emphasises the disruptive potential of such incidents, leading to the shutdown of internal IT systems, including email services, to mitigate data loss risks.

Why this attack highlights the importance of Cyber Essentials Certifications

For businesses operating in critical infrastructure sectors like energy supply, the repercussions of cyber incidents extend beyond operational disruptions to potentially compromising sensitive data and posing systemic risks. The incident underscores the importance of robust cyber security measures to safeguard against evolving threats targeting vital infrastructure.

One proactive step businesses, particularly in the UK, can take to bolster their cyber security posture is obtaining Cyber Essentials Certification. This Certification, backed by the UK government, is a practical framework for implementing basic cyber security controls, helping organisations mitigate common cyber risks and enhance their resilience against cyber threats.

By adhering to the Cyber Essentials framework, businesses can implement essential security measures to protect against prevalent cyber threats, including ransomware attacks like the one experienced by PSI Software SE.

Cyber Essentials Certification demonstrates a commitment to cyber security best practices, fostering trust and confidence among customers, partners, and stakeholders. Achieving Cyber Essentials Certification can assist businesses in meeting regulatory requirements related to data protection and cybersecurity, ensuring compliance with industry standards and regulations.

The Certification can serve as a differentiator in competitive markets, signalling to clients and prospects that the organisation prioritises cyber security and takes proactive steps to safeguard sensitive information. Cyber Essentials Certification enables businesses to identify and address vulnerabilities in their IT systems and networks, reducing the likelihood of cyber incidents and mitigating associated risks.

Ultimately, the ransomware attack on PSI Software SE underscores the critical importance of cyber security for businesses operating in essential infrastructure sectors. Obtaining Cyber Essentials Certification offers tangible benefits by providing a structured approach to strengthening cyber security defences, enhancing resilience, and safeguarding against cyber threats.

As a business owner who wants to know more about cyber security, or invest in future-proofing your business, you can get in touch with Neuways today by following the details on our contact form.

—————————————————————————————————————————–

Contact Neuways for Cyber Security For Businesses

If you need any assistance with cyber security to become Cybersafe, then please contact Neuways and we will help you where we can. Just get in touch with our team today. We’re based in Derby but we work with clients all over the UK and can travel for your needs.

[/fusion_text][/fusion_builder_column][/fusion_builder_row][/fusion_builder_container]

Want to keep up with our blog?

Get our most valuable tips right inside your inbox, once per month!

Latest IT News & Insights
Microsoft Dynamics 365 Business Central Main Product Mockup Showcase ERP
Why Business Central enhances and streamlines solutions
See how Microsoft Dynamics 365 Business Central enhances business solutions and streamlines the processes...
Read More
Neuways artificial intelligence
Artificial Intelligence: The Good, The Bad & The Ugly
AI is the Marmite of the IT world. Love it or hate it, the reality is it filters into our everyday lives...
Read More
Choose Neuways for your IT Support, Cyber Security and Business Central needs.
Cyber Security Acronyms Part 1: Neuways
We are helping clients to understand cyber security. We're making it easy for you, as we are jargon busting...
Read More
Password Manager and Security with neuways
Password Managers just became an even more important tool for Employees
The Government has brought in a ban on employees and manufacturers using default passwords.
Read More
Dark Web monitoring
What is the Dark Web?
Dark Web Monitoring identifies whether any of your company data (including login credentials and confidential...
Read More
Password Manager and Security with neuways
Password Security
Business Password Manager Tool Protect your remote workforce with Password Manager Tool, the business...
Read More
WatchGuard WiFi Security
WatchGuard User Services Platform – Simple, Secure and Intelligent WiFi
Why do Neuways partner with WatchGuard? Find out below to see how we improve the cyber security of your...
Read More
Endpoint Security
Endpoint Security
Protect your business with the best in Endpoint Security – How Neuways can help you Protect Your...
Read More

Frequently Asked Questions

Managed IT support is a comprehensive solution where an expert IT provider, like Neuways, handles your technology infrastructure. This includes proactive monitoring, maintenance, cyber security, and support.

Contact us

Support: 01283 753300

Business Development: 01283 753333

Purchasing: 01283 753322

Admin and Accounts: 01283 753311

Email: hello@neuways.com

Yes we do. Your business needs Cyber Security due to the increasing number of cyber threats that are affecting businesses in all industries. If your business has data and technology systems implemented, you will need Managed Cyber Security.

Yes we can. We have our own dedicated Microsoft Dynamics 365 Business Central teams who work to ensure that we can implement the right systems and solutions into your website that are absolute right for you. 

Got a question?

Reach out
& Connect

Please enable JavaScript in your browser to complete this form.
Name