Trend analysis is an important topic within threat intelligence. It lets us forecast where things are headed; whether they’re getting better, worse or different; and where we should be focusing our precious budgets.

The UK’s National Cyber Security Centre (NCSC) recently released the Incident trends report (October 2018 – April 2019). This highlights some of the trends seen across various UK government entities, organizations and sectors.

The NCSC report shares actionable intelligence to those responsible for defending valuable business targets. Gaining a better understanding about the nature of cyberattacks will help businesses to be more prepared to implement defensive measures needed to protect their infrastructure, data and customers.

Threat actors will continue to evolve their techniques and increase attack volume. Cyberattacks against businesses are becoming more frequent, more sophisticated and more successful as the fight between adversaries and targets continues. For example, the Department of Digital, Culture, Media and Sport’s 2019 Cyber Security Breaches Survey revealed that 60 percent of medium businesses and 61 percent of large businesses reported having a breach in 2018. The NCSC report is a useful resource for every business to prepare for what is next and to identify what we are doing well and what we need to do better.

The NCSC report reveals five main threats and threat vectors that affected UK organizations:

  • cloud services (Office 365 in particular)
  • ransomware
  • phishing
  • vulnerability scanning
  • supply chain attacks.

According to the report, “The trends are adversary agnostic, with each type of attack used widely by a range of different cyber adversaries. All the incident types noted have resulted in compromises within the UK, some significant in nature.”

Cloud Services and Office 365 are Primary Targets

The NCSC report highlights cloud services and Office 365 as the primary targets of the attackers. While traditional models of (Read more...)