Oh no, you're thinking, yet another cookie pop-up. Well, sorry, it's the law. We measure how many people read us, and ensure you see relevant ads, by storing cookies on your device. If you're cool with that, hit “Accept all Cookies”. For more info and to customize your settings, hit “Customize Settings”.

Review and manage your consent

Here's an overview of our use of cookies, similar technologies and how to manage them. You can also change your choices at any time, by hitting the “Your Consent Options” link on the site's footer.

Manage Cookie Preferences
  • These cookies are strictly necessary so that you can navigate the site as normal and use all features. Without these cookies we cannot provide you with the service that you expect.

  • These cookies are used to make advertising messages more relevant to you. They perform functions like preventing the same ad from continuously reappearing, ensuring that ads are properly displayed for advertisers, and in some cases selecting advertisements that are based on your interests.

  • These cookies collect information in aggregate form to help us understand how our websites are being used. They allow us to count visits and traffic sources so that we can measure and improve the performance of our sites. If people say no to these cookies, we do not know how many people have visited and we cannot monitor performance.

See also our Cookie policy and Privacy policy.

This article is more than 1 year old

UK defines Cyber DEFCON 1, 2 and 3, though of course doesn't call it that

Brits revamp cyber alert framework

The UK government has launched a new cyber attack categorisation that is designed to improve response to incidents – sadly it doesn't go up to 11.*

Categorisation into bands ranging from six down towards one (the most severe) will span the full range of incidents from localised attacks against individuals or SMEs up to "national cyber emergency".

New UK cyber attack categorisation system

Cyber DEFCON ratings

The NCSC said it has responded to more than 800 significant incidents since October 2016, and their incident responders will now classify attacks into six specific categories rather than the previous three.

The changes, which are effective immediately, are aimed at improving consistency around the incident response as well gearing the UK up towards making a better use of resources - ultimately leading to more victims receiving support.

The incident category definitions delineate what factors would happen to activate a specific classification, which organisation responds and what actions they would take.

Paul Chichester, the NCSC’s director of operations, told us: “This new joint approach, developed in partnership with UK law enforcement, will strengthen the UK’s ability to respond to the significant, growing and diverse cyber threats we face.

“The new system will offer an improved framework for dealing with incidents, especially as GDPR and the NIS Directive come into force shortly."

The framework encompasses cyber incidents in all sectors of the economy, including central and local government, industry, charities, universities, schools, small businesses and individuals.

Ollie Gower, deputy director at the National Crime Agency, added: “This new framework will ensure we are using the same language to describe and prioritise cyber threats, helping us deliver an even more joined up response.

“I hope businesses and industry will be encouraged to report any cyber attacks they suffer, which in turn will increase our understanding of the cyber threat facing the UK.”

Any cyber attack which may have a national impact should be reported to the NCSC immediately. This includes cyber attacks which are likely to harm UK national security, the economy, public confidence, or public health and safety. Depending on the incident, the NCSC may be able to provide direct technical support.

People or businesses suffering from a cyber attack below the national impact threshold should contact Action Fraud, the UK’s national fraud and cyber crime reporting centre, which will respond in accordance with the new incident categorisation.

Information processed by the new framework will ultimately be used to generate a more comprehensive national picture of the cyber threat landscape.

The announcement comes on the final day of NCSC’s flagship conference CYBERUK 2018. ®

Bootnote

Disappointingly, the newly introduced classification system doesn’t go up to 11. Nor does it have a hors category, like the most difficult mountain climbs of the Tour De France. Hors signifies climbs that are "beyond categorisation".

There’s no colour coding in the new system - so there’s no brown alert either.

 

Similar topics

TIP US OFF

Send us news


Other stories you might like