For those on the front line dealing with cyber attacks, the start of 2024 has provided no respite.

The volume of attacks has increased across a number of sectors in recent months, with no sign of the rise in activity abating. This has also been reflected in our cyber security team’s workload, where we are engaged in responding to a number of ransomware attacks on UK entities.

A couple of current trends are noteworthy, and reflect our first-hand experience of assisting clients in responding to recent incidents:

• Law firms: The number of reported cyber attacks on UK law firms has increased by over a third over the past year. This increase is apparent in Scotland, where small-to-medium-sized legal firms have been targeted. This focus on law firms may reflect that they generally hold sensitive personal data, leading threat actors to consider them to be more likely to pay a ransom to avoid compromised data being published online.
• Higher education and knowledge institutions: Attacks have also increased against higher education and knowledge institutions. As has been well publicised, the British Library is still encountering significant disruption from the cyber attack it suffered in October 2023 – this is expected to persist for some time while it works to restore certain services. In addition, higher education institutions in the UK have increasingly found themselves targets. As with law firms, they hold personal data for large numbers of individuals (students, employees, and third parties) as well as often sensitive research data. Both universities and knowledge institutions are also frequently subject to budget constraints which make paying for advanced data security protection a challenge.

The increased level of cyber activity is not focussed solely on the sectors identified above, and there have been a number of concerning headlines and warnings suggesting that there is no sign of the heightened cyber risk receding. In January, the National Cyber Security Centre warned that AI is already being used in malicious cyber activity and will likely increase the volume and impact of future cyber attacks, including ransomware attacks. More recently, analysts warned that cyber attacks linked to Chinese intelligence agencies are increasing in capability and frequency. The UK and US governments accused a hacking group backed by China’s government spy agency of conducting a lengthy cyber campaign targeting high-profile individuals and businesses, and announced a series of linked sanctions.

These updates reflect the reality that no UK business is immune to the threat of an attack.

In Scotland, the Cyber and Fraud Centre – Scotland runs an Incident Response Helpline in collaboration with Police Scotland and the Scottish government, with technical and legal incident response support provided by several trusted Scottish companies.

Burness Paull sits on the Centre’s Incident Response cadre and our cyber security team is available to assist any organisation which is the victim of a cyber incident in mitigating the effects of the incident. The Centre recently advised that the number of calls to its helpline had more than doubled from 123 calls in 2022/23 to 263 in 2023/24. They expect this figure to grow even further over the next year, particularly for ransomware attacks.

That update was underlined by NHS Dumfries and Galloway’s confirmation that some patient clinical data had been leaked online following a ransomware attack in March – the threat actor is understood to have threatened to publish 3TB of data relating to patients and staff.

These concerning developments underline the importance to UK businesses of taking all available steps to protect themselves, and the data they hold, from a potential attack, and being prepared in the (sadly inevitable) event of an attack occurring.

This article was first published in The Scotsman on 29^th April 2024.

If you would like to discuss the steps your business can take to protect itself from a cyber attack or data breach incident, or you have suffered an incident and need to manage the incident and any follow-on claims which may arise, Burness Paull’s leading cyber security, data protection and group litigation experts are on hand to work with you. Please get in touch to discuss how we can help.

Related News, Insights & Events