NCSC focuses on cybersecurity among SMEs.
The National Cyber Security Center (NCSC) addresses key cyber incidents in its new semi-annual report. It focuses on the most important issues surrounding cybersecurity among SMEs.
Digitization is also advancing in small and medium-sized enterprises. Numerous computers are interconnected via network interfaces. Processes such as order processing, planning, production and logistics are increasingly interlinked and digitally controlled, as the NCSC emphasized on the occasion of the publication of its latest half-yearly report (2nd half of 2022). As a result, the number of systems that are accessible from the Internet is increasing and should therefore be protected in the best possible way. However, SMEs in particular often pay too little attention to cybersecurity. For this reason, the NCSC focused on cybersecurity in SMEs in its current semi-annual report and highlighted the most important points for protection against cyber threats. In addition, a company and a police agency provide insight into the process of specific cyber incidents, according to the report.
Most frequently reported: Fraud
In the second half of 2022, the NCSC's reporting intake remained very high, with 17,341 reports, virtually identical to the first half of 2022, the center said. In total, the NCSC received 34,527 reports last year, it said. Of these, 85 percent came from the public and the remaining 15 percent from businesses, associations and government agencies. The reports would concern the most diverse forms of fraud. Fake extortion e-mails, i.e. threatening e-mails sent in the name of law enforcement agencies, accounted for almost one third of the reports. Other frequently reported forms of fraud include CEO fraud (see also "CEO Fraud") and invoice manipulation fraud.
Ransomware at the same level
Ransomware reports have remained steady, according to NCSC, accounting for nearly half of all reports in the malware category. About one-third of the 76 reports concern private individuals, while two-thirds concern companies. Among attacks against businesses, the "Lockbit" ransomware was particularly active, it said. This malware is known for not only encrypting data, but also stealing it and putting it online if the ransom is not paid. Such double extortions are being observed more and more frequently. Because many companies have recognized the threat posed by ransomware and have backups, pure encryption is now no longer lucrative enough for the attackers, the NCSC points out. The initial infection in ransomware incidents is often due to a vulnerability or poor configuration, in addition to emails with malicious attachments or links, it said.
Reports of hacking continue to rise sharply
Compared to the previous six-month period, the number of hacking reports almost doubled in the second half of the year to 276. Social media accounts in particular are a popular target for hackers, for example to blackmail users or to use the hacked accounts to distribute advertising for investment fraud.
Click here for NCSC's semi-annual report.
