The National Cyber Security Centre
Let’s be honest; cyber-crime is a huge concern for everybody these days. As an IT organisation, we are more than aware that cyber-crime is only increasing and with all the jargon involved, it can be difficult to understand the terminology. There’s malware, trojan horses, spyware and many more phrases to get your head around.
Wouldn’t it be nice if you could visit a website and find easy to understand advice on cyber-crime? Look no further!
The National Cyber Security Centre was set up to help protect your critical services from cyber-attacks, managing major incidents and improve the underlying security of the UK internet. Through technological improvement and advice to people and organisations, their vision is to help make the UK the safest place to live and do business online.
The National Cyber Security Centre (NCSC) are a part of GCHQ. They have access to some of the most sophisticated capabilities available to government. Acknowledging the sensitivity of these resources, whilst working to make the benefits of their expertise as widely available as possible is critical.
What do The National Cyber Security Centre offer?
Respond to cyber security incidents: Despite all their efforts to reduce risks and improve security, incidents will still unfortunately happen. When they do, The National Cyber Security Centre work to reduce harm to those affected, help with recovery and learn lessons for the future.
They also co-ordinate the wider response of government and law enforcement. In the case of serious incidents, they communicate publicly, giving people and businesses advice on how to protect themselves.
They reduce risks to the UK: The National Cyber Security Centre helps public and private sector organisations secure their networks. They support the most critical of organisations in the UK and provide bespoke advice, assist in the design and testing of networks, and help develop effective incident response plans.
Provide leadership on critical issues: Combining the best of government, industry and academic expertise, The National Cyber Security Centre has the clearest possible picture of the threats, vulnerabilities and technology trends.
Offer online CyberFirst courses: These are short courses designed to introduce 11-17 year olds to the world of cyber security. They are all free and easily accessible on their website. Teaching the next generation about cyber-crime is critical, as cyber-crime is only increasing. The online courses they offer are:
CyberFirst Defenders – A free four day residential and non-residential course aimed at 14-15 year olds. The course provides a valuable introduction to the tools, knowledge and skills required to build and protect small networks and personal devices.
CyberFirst Futures – A free five day residential and non-residential course aimed at 15-16 year olds. Ideal for students looking to study computer science at AS/A Levels, or equivalents. Students will explore advanced cyber security threats to devices, apps and software and investigate ways of protecting them.
CyberFirst Advanced – A free five day residential and non-residential course aimed at 16-17 year olds. This is designed to expand the knowledge of anyone studying computer science at AS/A Levels or equivalents or for any student who has a real interest and aptitude for computers.
Useful advice and guidance: The National Cyber Security Centre provide useful articles relating to cyber-crime on their website including:
You can read more of their useful articles here.
The Cyber Security Information Sharing Partnership: This is a confidential forum for sharing intelligence about cyber threats and vulnerabilities, in real time. Run by The National Cyber Security Centre, this is a government initiative that helps to increase overall awareness of cyber-crime and reduce the impact on UK businesses. You can read more about it here.
You can find out more about The National Cyber Security Centre by visiting their website here.
Finally, here is some useful terminology in how your data may be retrieved through a cyber-attack:
- Baiting – A USB drive or another electronic media device is passed to you, which is pre-loaded with malware.
- Clickjacking – Concealing hyperlinks beneath legitimate clickable content, which when clicked, downloads malware.
- Doxing – Publicly releasing a person’s information, typically retrieved from social networking sites.
- Cross-site scripting – When a malicious code is injected into a website.
- Social Engineering – A strategic use of conversation to extract information from people without giving them the feeling they are being scammed.
- Pharming – Redirecting users from legitimate websites to fraudulent ones for extracting confidential information.
- Phishing – An email that looks like it is from a legitimate organisation or person, but contains a link or file with malware.
- Spoofing – Deceiving computers or users by hiding or faking ones’ identity. Email spoofing utilises a fake email address or simulates a genuine email address.
- Keystroke logging (Key logger) – Spyware that is used for covertly recording the keys struck on a keyboard. The log file created by the key logger can then be sent to a specified recipient. By examining the key log data, it may be possible to find private information such as usernames and passwords.
You can visit our security section on our dedicated blog here. This section is packed full of helpful reviews and tips on internet security, cyber-crime, password protection and much more. Most of our blog posts in this section contain downloadable or/and printable PDFs, which you may find useful.