NCSC’s Warning on Hacktivist Threat to CNI Updated

The UK’s National Cyber Security Centre (NCSC) and the US partner, the Cybersecurity and Infrastructure Security Agency (CISA), have issued a warning about the evolving threat from Russia-backed hacktivist groups targeting critical national infrastructure (CNI). These groups have recently been targeting vulnerable industrial control systems in both Europe and North America, causing physical disruptions in the US. The hacktivists have been tampering with water and wastewater systems, resulting in equipment malfunctions and overflow events. They have exploited vulnerabilities in the virtual network computing (VNC) protocol to gain access to these systems. The NCSC urges all CNI operators to enhance their defenses and follow mitigation advice to protect against future attacks. These hacktivist groups, though less sophisticated than state-backed threat groups, are considered dangerous due to their lack of oversight, resulting in broader targeting and disruptive effects. They are increasingly interested in achieving a more destructive impact on CNI organizations. The NCSC and CISA recommend immediate action, including the implementation of secure system administration, strengthening remote access, and updating access policies to mitigate the risk of future attacks.

Unlock your business potential with our expert guidance. Get in touch now!

silenced-gagged-secret-Michael-adobe.jpg

Post Office Criticized for Deleting Comments on IT Scandal from Social Media

Whitehouse-fotolia-scaled.jpg

When Leaders Overlook Cybersecurity Guidelines, the Entire System Suffers

Police-crime-2-adobe.jpg

Police Digital Service Board Director Resigns Months After CISO’s Departure

surveillance-CCTV-facial-recognition-Gorodenkoff-adobe.jpg

Essex Police Reveals ‘Incoherent’ Facial Recognition Evaluation

chatbot-1-fotolia.jpg

Podcast: RSA 2025 – Navigating AI Risks and the CISO’s Role

hybrid-cloud-storage-fotolia.jpg

Trump’s Visit Strengthens Saudi Arabia’s AI Initiatives

threat-management-fotolia.jpg

Security Tests Uncover Major Vulnerability in Government’s One Login Digital ID System