Written by 11:26 am Security News

NCSC Calls on UK Firms to Join Mass Cyber-Deception Initiative

ncsc-cyber-league

The UK’s leading cybersecurity agency has called on the country’s organizations to deploy cyber-deception technologies at scale to assess their efficacy.

National Cyber Security Centre (NCSC) CTO Ollie Whitehouse said in a blog post this week that the aim is to “establish an evidence base for use cases” of cyber-deception at a national scale to see how the technology might be adopted as part of its Active Cyber Defence 2.0 initiative.

He claimed two prominent use cases currently stand out:

The plan is an ambitious one. It aims to deploy a minimum of 5000 low- and high-interaction solutions on the UK internet, across IPv4 and IPv6, plus 20,000 low-interaction solutions inside internal networks.

In addition, Whitehouse wants to deploy 200,000 low-interaction solutions in cloud environments and two million honeytokens – fake IT resources designed to detect criminal activity.

He said the research aims to answer several key questions: how good are cyber-deception technologies at helping to detect latent and new compromises, and does knowledge of the presence of such technologies change threat actor behavior?

“We recognize the potential value of using cyber-deception technologies and techniques to support cyber defence in certain situations,” said Whitehouse. “We are keen to work with UK public and private sector organizations who have deployed solutions as described above. If this is you, we want you to get in touch.”

The initiative follows a “first-of-its-kind” conference of international and UK government partners and industry representatives at the NCSC’s headquarters.

The NCSC set out its plans for Active Cyber Defence 2.0 earlier this month, claiming it will usher in a new generation of cybersecurity tools and services to fill gaps in the commercial market.

The aim is for government departments or private sector organizations to take over these services in time.

Read more on cyber deception: Insurer’s UK Honeypots Attacked 17 Million Times Per Day.

  • Highline Public Schools Forced to Close By Cyber-Attack
    A cyber-attack forced a group of schools in the US Pacific Northwest to close for at least two days. Highline Public Schools has more than 17,500 students in grades K-12. The district has 34 schools and 2,000 staff in Washington State. On Sunday, the school district reported that it had suffered a cyber-attack and that …
  • Cyber-Attack on Payment Gateway Exposes 1.7 Million Credit Card Details
    Electronic payment gateway Slim CD has been hit by a cyber-attack, potentially exposing the credit card details of 1.7 million individuals. The firm, which handles electronic payments for US and Canadian-based merchants, revealed that it became aware of suspicious activity in its computer environment around June 15, 2024. A subsequent investigation identified system access between …
  • Most Targeted DDoS Attacks Double With Governments
    New research says the number of distributed denial of service (DDoS) attacks continues to grow, doubling year over year (YoY). According to StormWall’s DDoS Attacks Report, attacks globally rose by 102% in the first half of this year compared to 2023. The government sector was the most brutal hit, with a 116% YoY increase. StormWall says …
  • Ransomware Attacks Exposed 6.7 Million Records in US Schools
    Ransomware attacks on US schools and colleges have surged in recent years, with 491 incidents recorded since 2018. These attacks impacted over 8,000 educational institutions and exposed 6.7 million individual records. According to a new report by Comparitech, estimated costs exceed $2.5b in downtime alone as schools struggle to restore systems, recover data and strengthen cybersecurity measures. …
  • Georgia Tech Sued Over Cybersecurity Violations
    The US government has filed a lawsuit against the Georgia Institute of Technology (Georgia Tech) and its affiliate Georgia Tech Research Corporation (GTRC) for alleged cybersecurity violations. The Department of Justice (DoJ) has joined a whistleblower to file a “complaint-in-intervention” against the institutions for “knowingly” failing to implement cybersecurity controls as required by their Department of Defense (DoD) contract. This contract related to …