Cyber Resilience

Ransomware: Latest NCSC Guidance

May 14, 2017 by No Comments | Category Cyber Resilience, Cyber resilience communications, cyber threats and news

The latest statement and guidance from the NCSC (14/05/17):

Since the global coordinated ransomware attack on thousands of private and public sector organisations across dozens of countries on Friday, there have been no sustained new attacks of that kind. But it is important to understand that the way these attacks work means that compromises of machines and networks that have already occurred may not yet have been detected, and that existing infections from the malware can spread within networks.

This means that as a new working week begins it is likely, in the UK and elsewhere, that further cases of ransomware may come to light, possibly at a significant scale.

1. Limit the spread and impact of the attacks that have already occurred. Guidance from the NCSC:

It is imperative that any organisation that believes they may be affected, follows and implements this guidance.

2. It is possible that a ransomware attack of this type and on this scale could recur, however organisations can undertake three simple easy-to-implement defences against ransomware which very considerably reduce the risk of attack and the impact of successful attacks and can be summarised as follows:

  1. Keep your organisation’s security software patches up to date
  2. Use proper antivirus software services
  3. Most importantly for ransomware, back up the data that matters to you, because you can’t be held to ransom for data you hold somewhere else.

More information can be found at


Leave a comment

By submitting a comment, you understand it may be published on this public website. Please read our privacy policy to see how the Scottish Government handles your information.

Your email address will not be published. Required fields are marked *