{"id":6612,"date":"2024-03-14T09:21:56","date_gmt":"2024-03-14T09:21:56","guid":{"rendered":"httpss:\/\/www.advantagego.com\/?p=6612"},"modified":"2025-03-24T04:26:39","modified_gmt":"2025-03-24T04:26:39","slug":"is-the-uk-ready-for-ransomware-threats-to-british-businesses","status":"publish","type":"post","link":"https:\/\/www.advantagego.com\/en-us\/content\/is-the-uk-ready-for-ransomware-threats-to-british-businesses\/","title":{"rendered":"The Big Question: Is the UK ready to meet the threat of ransomware to British business?"},"content":{"rendered":"\n<p><em>The threat of ransomware attacks on businesses of all sizes has only been increasing and in the UK the government has been keen to look to enhance the country\u2019s cyber-security systems.<\/em><\/p>\n\n\n\n<p><em>Those efforts have been accompanied by a year-long enquiry into ransomware. The insurance industry is no stranger to the risks that come with cyber-crime. The growing demand from businesses for products to both mitigate the risks and enhance the response should they suffer a cyber-attack has challenged the market. The growing involvement of state actors has made the threat ever more complex.<\/em><\/p>\n\n\n\n<p><em>The industry has worked hard to create a set of solutions for clients but like so many emerging risks the threats are evolving and continue to do so.<\/em><\/p>\n\n\n\n<p><em>The response of government will be significant in the fight against cyber-crime including ransomware. Regulation and standards have to be established and the lengthening supply chains put businesses in the hands of the risk management systems of suppliers, some of which could be on the other side the world.<\/em><\/p>\n\n\n\n<p><em>This week the Joint Committee on the National Security Strategy (JCNSS) published the Government\u2019s Response to the ransomware inquiry and the conclusions were stark.<\/em><\/p>\n\n\n\n<p><strong><em>Ian Summers, Global Business Development Leader, AdvantageGo<\/em><\/strong><\/p>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>Chair of the JCNSS, Dame Margaret Beckett MP, says the government has a lot to do if it is to truly tackle the threat posed by ransomware to the economy and UK business.<\/p>\n\n\n\n<p>\u201cPerhaps it is not surprising that Government is not focused on preparing for the acknowledged, extremely high risk of a destructive and ruinously costly <a href=\"https:\/\/www.advantagego.com\/en-us\/content\/are-uk-general-insurers-susceptible-to-major-cyber-attacks\/\" target=\"_blank\" rel=\"noreferrer noopener\">cyber-attack on the UK<\/a>,\u201d she explains. \u201cDespite its place at the top of the UK\u2019s national risk register for years, our national response to the pandemic when it inevitably hit could fairly be categorised as shambolic.<\/p>\n\n\n\n<p>\u201cIn the response to our ransomware report, it is ever clearer that Government does not know the extent or costs of cyber-attacks across the country &#8211; though we\u2019re the third most cyber-attacked country in the world \u2013 nor does it have any intention of commensurately upping the stakes or resources in response.\u201d<\/p>\n\n\n\n<p>Beckett adds if the Government insists on operating the \u201costrich strategy\u201d for national cyber-security &#8211; based on legislation made before the internet arrived, \u201ccentred on a Department that seems to have difficulty mustering much interest in the issue\u201d, and in stark contrast to the cyber-attackers who are so fantastically well co-ordinated and resourced &#8211; where is the pro-active national security response to protect the UK supposed to come from?<\/p>\n\n\n\n<p>\u201cThe UK is and will remain exposed and unprepared if it continues this approach to tackling ransomware,\u201d she warns. \u201cThis response from the Government is not the assurance the Committee sought or that the country needs, and all the responsible and coordinating Departments would benefit from going away and reconsidering how the UK is to defend against this most pernicious threat.\u201d<\/p>\n\n\n\n<p>She explains following the Government response, her Committee intends to continue to monitor and follow up on issues raised in its report, especially in the areas where well-founded recommendations to enhance critical elements of national security have been rejected out of hand.<\/p>\n\n\n\n<p>\u201cIt will also encourage the successor Committee appointed after the upcoming General Election to continue to follow up and monitor progress against this report\u2019s recommendations,\u201d Beckett added.<\/p>\n\n\n\n<p>In particular she says the committee is concerned the Government continues to insist that all is well in the regulatory model while the regulators charged with implementing it say limitations in their capabilities and in the regulations themselves, are preventing some of them from making full use of the powers they do have. &nbsp;<\/p>\n\n\n\n<p>\u201cIn all 42% of operators of essential services have said they don\u2019t have the skills and capacity to deliver their obligations under the NIS Regulations. After a painfully delayed consultation the UK still continues to rely on an act of Parliament created before the advent of the internet itself as its main legislative tool against cyber-crime.\u201d<\/p>\n\n\n\n<p>On insurance Beckett adds: \u201cThe Government does not acknowledge how unaffordable the insurance market can be for some cyber-attack victims &#8211; local authorities and small companies are among the notable examples \u2013 and the Government does not agree that public intervention in this market is necessary,<\/p>\n\n\n\n<p>\u201cIt instead suggests that the roll out of the National Cyber Strategy should begin to reduce claims and therefore lower premiums: despite the Committee\u2019s report highlighting both the rapid recent growth of costly cyber-attacks and the Government\u2019s lack of understanding of the frequency and type of attacks that are actually occurring or how often or what amounts of ransoms are being paid.\u201d<\/p>\n\n\n\n<p>She added during their enquiries the Committee has heard worrying evidence of exactly how unprepared and unsupported UK local authorities are in facing cyber-attacks that could cripple or temporarily cease essential local services &#8211; and that the Government is fully cognisant of this.<\/p>\n\n\n\n<p>\u201cBut there is nothing in the response to address or assuage those concerns, there is no offer to counter the lack of resourcing and skills at local level; no offer of enhanced help for the responsible authorities or the populations that would be affected.\u201d<\/p>\n\n\n\n<p>Beckett concludes: \u201cThe Committee will seek to assess whether the assertions made by Government in rejecting key recommendations &#8211; that the National Cyber Strategy will <a href=\"https:\/\/www.advantagego.com\/en-us\/content\/unveiling-cyber-war-exclusion-clause-in-the-lloyds-market\/\" target=\"_blank\" rel=\"noreferrer noopener\">reduce the number and size of cyber-attack insurance claims<\/a>, obviating the need for Government intervention in the insurance market; that the fragmented approach to regulation and enforcement across Government is effective; that the proposed 21% resource uplift for the NCA is commensurate with the resource needed to tackle cyber-crime &#8211; are borne out in evidence, and continue to press for the recommended interventions to be implemented where it is not.\u201d<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The threat of ransomware attacks on businesses of all sizes has only been increasing and in the UK the government has been keen to look to enhance the country\u2019s cyber-security systems. Those efforts have been accompanied by a year-long enquiry into ransomware. The insurance industry is no stranger to the risks that come with cyber-crime. [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":6615,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ep_exclude_from_search":false,"footnotes":""},"categories":[7],"tags":[10],"line-of-business":[24],"class_list":["post-6612","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blogs","tag-exposure","line-of-business-cyber"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/posts\/6612","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/comments?post=6612"}],"version-history":[{"count":0,"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/posts\/6612\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/media\/6615"}],"wp:attachment":[{"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/media?parent=6612"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/categories?post=6612"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/tags?post=6612"},{"taxonomy":"line-of-business","embeddable":true,"href":"https:\/\/www.advantagego.com\/en-us\/wp-json\/wp\/v2\/line-of-business?post=6612"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}