
NCSC Annual Review is published for 2023
The National Cyber Security Centre looks back at it's key developments and highlights over the last year in it's 2023 annual review. The National Cyber Security Centre (NCSC), a part of GCHQ, is the UK’s technical authority for cyber security.
The NCSC's CEO says:
In this year’s Annual Review , we reflect on key developments, achievements and trends from the last year. We’ve also included five case studies on areas of specific interest to the cyber security community – setting out the NCSC’s thinking on AI cyber security, on securing the UK’s critical national infrastructure, on defending our democratic processes, the future of UK cyber security services (including the NCSC’s role in their provision) and reflecting back on what we have learned from Russia’s invasion of Ukraine.
It says that they will focus their work on three priorities over the coming year:
1. Improve the UK's cyber resilience to the most significant cyber risks.
2. Retain their edge - as technology is developing faster than ever they must ensure the UK retains its edge in the face of future cyber security challenges, including those emanating from China.
3. The NCSC will only be successful in its mission if they are the strongest organisation they can be.
This year has seen the emergence of state-aligned actors as a new and emerging cyber threat to critical national infrastructure, the continuation of Russia's invasion of Ukraine and the concerns about the potential risks of AI.
Ransomware is still one of the main cyber threats facing the UK and all domestic organisations should take actions to protect themselves. The now-normal approach of stealing and encrypting data continues to be the main tactic used by cyber criminals. However, data extortion attacks, in which data is stolen but not encrypted are a growing trend.

The full report can be read: NCSC Annual Review 2023
{module title="Cyber Attack Advice"}
The NCSC's CEO says:
In this year’s Annual Review , we reflect on key developments, achievements and trends from the last year. We’ve also included five case studies on areas of specific interest to the cyber security community – setting out the NCSC’s thinking on AI cyber security, on securing the UK’s critical national infrastructure, on defending our democratic processes, the future of UK cyber security services (including the NCSC’s role in their provision) and reflecting back on what we have learned from Russia’s invasion of Ukraine.
It says that they will focus their work on three priorities over the coming year:
1. Improve the UK's cyber resilience to the most significant cyber risks.
2. Retain their edge - as technology is developing faster than ever they must ensure the UK retains its edge in the face of future cyber security challenges, including those emanating from China.
3. The NCSC will only be successful in its mission if they are the strongest organisation they can be.
This year has seen the emergence of state-aligned actors as a new and emerging cyber threat to critical national infrastructure, the continuation of Russia's invasion of Ukraine and the concerns about the potential risks of AI.
Ransomware is still one of the main cyber threats facing the UK and all domestic organisations should take actions to protect themselves. The now-normal approach of stealing and encrypting data continues to be the main tactic used by cyber criminals. However, data extortion attacks, in which data is stolen but not encrypted are a growing trend.

The full report can be read: NCSC Annual Review 2023
{module title="Cyber Attack Advice"}