Active Cyber Defence strategy ‘should be used nationwide’
The UK government's Active Cyber Defence (ACD) strategy for combating cyber crime has proven highly successful where used and should be rolled out across the country to other sectors, a new report has recommended.
A study into the effectiveness of the programme conducted by the Cyber Security Research Group and The Policy Institute at King's College London found the strategy has helped reduce both the frequency and impact of cyber crime for government agencies and users, and has great potential to improve security nationwide if used more widely.
"There are no significant technical obstacles to extending these protections beyond the public sector and no fundamental reasons why ACD tools and techniques should not be tested and deployed as appropriate," the report stated.
It also suggested that security could be improved by publicly identifying the steps businesses are taking to improve their defences.
'Naming and shaming' in this way would act as an incentive for those that have not done enough to step up their efforts so far, the report said. It noted that four in ten businesses were subject to a cybersecurity breach or attack in 2017-18, and official figures suggest that UK residents are more likely to be a victim of cybercrime or fraud than any other offence.
Therefore, publishing details of what steps are being taken to guard against this could help consumers make decisions about which firms to do businesses with, as well as spurring on organisations to do more.
"The hope with ACD is that it can help identify which companies are adhering to good practices and which are not," the report said. "The 'carrot' is the recognition of one’s commitment to cybersecurity; the 'stick' is the risk of going out of business."
Launched in 2016, the ACD framework features a range of tools that can be used proactively to tackle cyber crime. In its first year in operation, it helped remove 121,479 unique phishing sites across 20,763 attack groups physically hosted in the UK, and 18,000 more sites internationally, while in 2017, 3TB of DNS data was analysed for security threats, with over 134,000 unique queries blocked.
Share This Post, Choose Your Platform!
With over 25 years in the business telecoms industry and an unrivalled reputation of delivering excellent, personal customer service, Arrow is one of very few companies in the UK able to provide a full telecoms, IT and energy consultancy and service proposition.
Savings through automation, scale, improved service. We’ve got that covered. But the true value comes with empathy, through empowerment, collaboration. It’s connecting people that drives us forward. It’s people that make tomorrow happen.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.