Ransomware is a growing cyber threat and in the last week, two high-profile incidents have highlighted the impact these attacks can have on organisations and their customers.

US-based Garmin and Blackbaud have both issued statements on attacks against their networks, which have been widely reported in mainstream media.

With more organisations moving operations online, it has never been more important to ensure your defences are as robust as possible.

The NCSC’s advice on mitigating malware and ransomware attacks explains how organisations can defend themselves against those attacks. We would also encourage signing up to our Exercise in a Box online tool, which will help you test and check your cyber resilience through simulated exercises.

Incidents can happen at any time, so it’s important to be prepared for them. Our Incident Management guidance collection will help you plan, build, develop and maintain an effective cyber incident response capability.

Managing identity is critical to business

A report conducted by Sailpoint has revealed that 86% of IT experts in Europe, the Middle East and Africa expect their organisation’s number of Software-as-a-Service (SaaS) applications to grow over the next year-and-a-half despite workers returning to physical office spaces.

As a result, IT experts have predicted that monitoring cyber security threats will become more challenging and identity governance will be key to defending business networks with multiple remote access points potentially providing hackers access. Companies may also need to close gaps in their security and compliance which developed as they rushed to move to working remotely.

The NCSC’s Cyber Assessment Framework (CAF) guidance highlights how organisations can best manage identity and access controls. Further guidance also provides an in-depth look in to identity and authentication as part of cloud security. The NCSC also produced advice on working from home for individuals and organisations.