Cyber defence

Last updated: 16 Jul. 2018 17:03

Cyber threats and attacks are becoming more common, sophisticated and damaging. The Alliance is faced with an evolving complex threat environment. In recent events, cyber attacks have been part of hybrid warfare. NATO and its Allies rely on strong and resilient cyber defences to fulfil the Alliance’s core tasks of collective defence, crisis management and cooperative security. NATO needs to be prepared to defend its networks and operations against the growing sophistication of the cyber threats and attacks it faces.

Highlights

Cyber defence is part of NATO’s core task of collective defence.
NATO has affirmed that international law applies in cyberspace.
NATO's main focus in cyber defence is to protect its own networks (including operations and missions) and enhance resilience across the Alliance.
In July 2016, Allies reaffirmed NATO’s defensive mandate and recognised cyberspace as a domain of operations in which NATO must defend itself as effectively as it does in the air, on land and at sea.
Allies also made a Cyber Defence Pledge in July 2016 to enhance their cyber defences, as a matter of priority. Since then, almost all Allies have upgraded their cyber defences.
NATO reinforces its capabilities for cyber education, training and exercises.
Allies are committed to enhancing information-sharing and mutual assistance in preventing, mitigating and recovering from cyber attacks.
NATO Cyber Rapid Reaction teams are on standby to assist Allies, 24 hours a day, if requested and approved.
At the Brussels Summit in 2018, Allies agreed to set up a new Cyberspace Operations Centre as part of NATO’s strengthened Command Structure. They also agreed that NATO can draw on national cyber capabilities for its missions and operations.
NATO and the European Union (EU) are cooperating through a Technical Arrangement on cyber defence that was signed in February 2016. In light of common challenges, NATO and the EU are strengthening their cooperation on cyber defence, notably in the areas of information exchange, training, research and exercises.
NATO is intensifying its cooperation with industry through the NATO Industry Cyber Partnership.

More background information

Principal cyber defence activities

NATO Policy on Cyber Defence

To keep pace with the rapidly changing threat landscape and maintain robust cyber defences, NATO adopted an enhanced policy and action plan, which were endorsed by Allies at the Wales Summit in September 2014. An updated action plan has since been endorsed by Allies in February 2017. The policy establishes that cyber defence is part of the Alliance’s core task of collective defence, confirms that international law applies in cyberspace and intensifies NATO’s cooperation with industry. The top priority is the protection of the communications systems owned and operated by the Alliance.

The policy also reflects Allied decisions on issues such as streamlined cyber defence governance, procedures for assistance to Allied countries, and the integration of cyber defence into operational planning (including civil emergency planning). In addition, the policy defines ways to take forward awareness, education, training and exercise activities, and encourages further progress in various cooperation initiatives, including those with partner countries and international organisations. It also foresees boosting NATO’s cooperation with industry, including on information-sharing and the exchange of best practices. Allies have also committed to enhancing information-sharing and mutual assistance in preventing, mitigating and recovering from cyber attacks.

NATO’s cyber defence policy is complemented by an action plan with concrete objectives and implementation timelines on a range of topics from capability development, education, training and exercises, and partnerships.

Allies pledged at the Warsaw Summit in 2016 to strengthen and enhance the cyber defences of national networks and infrastructures, as a matter of priority. Together with the continuous adaptation of NATO’s cyber defence capabilities, as part of NATO’s long-term adaptation, this will reinforce the cyber defence and overall resilience of the Alliance.

At Warsaw, Allies also reaffirmed NATO’s defensive mandate and recognised cyberspace as a domain of operations in which NATO must defend itself as effectively as it does in the air, on land and at sea. As most crises and conflicts today have a cyber dimension, treating cyberspace as a domain will enable NATO to better protect and conduct its missions and operations.

Developing the NATO cyber defence capability

The NATO Computer Incident Response Capability (NCIRC) based at SHAPE, Mons, Belgium, protects NATO’s own networks by providing centralised and round-the-clock cyber defence support to the various NATO sites. This capability is expected to evolve on a continual basis, to maintain pace with the rapidly changing threat and technology environment.

To facilitate an Alliance-wide and common approach to cyber defence capability development, NATO also defines targets for Allied countries’ implementation of national cyber defence capabilities via the NATO Defence Planning Process. In June 2017, further cyber defence capability targets were agreed by defence ministers.

Cyber defence has also been integrated into NATO’s Smart Defence initiatives. Smart Defence enables countries to work together to develop and maintain capabilities they could not afford to develop or procure alone, and to free resources for developing other capabilities. The Smart Defence projects in cyber defence, so far, include the Malware Information Sharing Platform (MISP), the Smart Defence Multinational Cyber Defence Capability Development (MN CD2) project, and the Multinational Cyber Defence Education and Training (MN CD E&T) project.

NATO is also helping member countries by sharing information and best practices, and by conducting cyber defence exercises to help develop national expertise. Similarly, individual Allied countries may, on a voluntary basis and facilitated by NATO, assist other Allies to develop their national cyber defence capabilities.

Increasing NATO cyber defence capacity

Recognising that cyber defence is as much about people as it is about technology, NATO continues to improve the state of its cyber defence education, training and exercises.

NATO conducts regular exercises, such as the annual Cyber Coalition Exercise, and aims to integrate cyber defence elements and considerations into the entire range of Alliance exercises, including the annual Crisis Management Exercise (CMX). NATO is also enhancing its capabilities for cyber education, training and exercises, including the NATO Cyber Range, which is based at a facility provided by Estonia.

To enhance situational awareness, an updated Memorandum of Understanding on Cyber Defence was developed in 2015. This updated MOU is now being concluded between NATO and the national cyber defence authorities of each of the 29 Allies. It sets out arrangements for the exchange of a variety of cyber defence-related information and assistance to improve cyber incident prevention, resilience and response capabilities.

The NATO Cooperative Cyber Defence Centre of Excellence (CCD CoE) in Tallinn, Estonia is a NATO-accredited research and training facility dealing with cyber defence education, consultation, lessons learned, research and development. Although it is not part of the NATO Command Structure, the CCD CoE offers recognised expertise and experience.

The NATO Communications and Information Systems School (NCISS) in Latina, Italy provides training to personnel from Allied (as well as non-NATO) nations relating to the operation and maintenance of NATO communication and information systems. NCISS will soon relocate to Portugal, where it will provide greater emphasis on cyber defence training and education.

The NATO School in Oberammergau, Germany conducts cyber defence-related education and training to support Alliance operations, strategy, policy, doctrine and procedures. The NATO Defense College in Rome, Italy fosters strategic thinking on political-military matters, including on cyber defence issues.

Cooperating with partners

Because cyber threats defy state borders and organisational boundaries, NATO engages with relevant countries and organisations to enhance international security.

Engagement with partner countries is based on shared values and common approaches to cyber defence. Requests for cooperation with the Alliance are handled on a case-by-case basis founded on mutual interest.

NATO also works with, among others, the European Union (EU), the United Nations (UN) and the Organization for Security and Co-operation in Europe (OSCE). The Alliance’s cooperation with other international organisations is complementary and avoids unnecessary duplication of effort.

Cyber defence is one of the areas of strengthened cooperation between NATO and the EU, as part of the two organisations’ increasingly coordinated efforts to counter hybrid threats. NATO and the EU share information between cyber crisis response teams and exchange best practices. Cooperation is also being enhanced on training, research and exercises.

Cooperating with industry

The private sector is a key player in cyberspace, and technological innovations and expertise from the private sector are crucial to enable NATO and Allied countries to mount an effective cyber defence.

Through the NATO Industry Cyber Partnership (NICP), NATO and its Allies are working to reinforce their relationships with industry. This partnership relies on existing structures and includes NATO entities, national Computer Emergency Response Teams (CERTs) and NATO member countries’ industry representatives. Information-sharing activities, exercises, training and education, and multinational Smart Defence projects are just a few examples of areas in which NATO and industry have been working together.

Governance

The NATO Policy on Cyber Defence is implemented by NATO’s political, military and technical authorities, as well as by individual Allies. The North Atlantic Council (NAC) provides high-level political oversight on all aspects of implementation. The NAC is apprised of major cyber incidents and attacks, and it exercises principal authority in cyber defence-related crisis management.

The Cyber Defence Committee, subordinate to the NAC, is the lead committee for political governance and cyber defence policy in general, providing oversight and advice to Allied countries on NATO’s cyber defence efforts at the expert level. At the working level, the NATO Cyber Defence Management Board (CDMB) is responsible for coordinating cyber defence throughout NATO civilian and military bodies. The CDMB comprises the leaders of the policy, military, operational and technical bodies in NATO with responsibilities for cyber defence.

The NATO Consultation, Control and Command (NC3) Board constitutes the main committee for consultation on technical and implementation aspects of cyber defence.

The NATO Military Authorities (NMA) and NCIA bear the specific responsibilities for identifying the statement of operational requirements, acquisition, implementation and operating of NATO’s cyber defence capabilities. Allied Command Transformation (ACT) is responsible for the planning and conduct of the annual Cyber Coalition Exercise.

Lastly, NCIA, through its NCIRC Technical Centre in Mons, Belgium, is responsible for the provision of technical cyber security services throughout NATO. The NCIRC Technical Centre has a key role in responding to any cyber incidents affecting NATO. It handles and reports incidents, and disseminates important incident-related information to system/security management and users.

The NCIRC Coordination Centre is a staff element responsible for the coordination of cyber defence activities within NATO and with member countries, and for staff support to the CDMB.

Evolution

Although NATO has always protected its communication and information systems, the 2002 Prague Summit first placed cyber defence on the Alliance’s political agenda. Allied leaders reiterated the need to provide additional protection to these information systems at the Riga Summit in 2006.

Following the cyber attacks against Estonia’s public and private institutions in April and May of 2007, Allied defence ministers agreed in June 2007 that urgent work was needed in this area. As a result, NATO approved its first Policy on Cyber Defence in January 2008.

In the summer of 2008, the conflict between Russia and Georgia demonstrated that cyber attacks have the potential to become a major component of conventional warfare.

NATO adopted a new Strategic Concept at the Lisbon Summit in 2010, during which the NAC was tasked to develop an in-depth NATO cyber defence policy and to prepare an action plan for its implementation.

In June 2011, NATO defence ministers approved the second NATO Policy on Cyber Defence, which set out a vision for coordinated efforts in cyber defence throughout the Alliance within the context of the rapidly evolving threat and technology environment, and an associated action plan for its implementation.

In April 2012, cyber defence was introduced into the NATO Defence Planning Process. Relevant cyber defence requirements are identified and prioritised through the defence planning process.

At the Chicago Summit in May 2012, Allied leaders reaffirmed their commitment to improve the Alliance’s cyber defences by bringing all of NATO’s networks under centralised protection and implementing a series of upgrades to the NCIRC.

In July 2012, as part of the reform of NATO’s agencies, NCIA was established.

In February 2014, Allied defence ministers tasked NATO to develop a new, enhanced cyber defence policy regarding collective defence, assistance to Allies, streamlined governance, legal considerations and relations with industry.

In April 2014, the NAC agreed to rename the Defence Policy and Planning Committee/ Cyber Defence as the Cyber Defence Committee.

In May 2014, the full operational capability of the NCIRC (NCIRC FOC) was achieved, providing enhanced protection to NATO networks and users.

At the Wales Summit in September 2014, Allies endorsed a new cyber defence policy and approved an action plan which, along with the policy, contributes to the fulfilment of the Alliance’s core tasks. The policy and its implementation is under close review at both the political and technical levels within the Alliance and will be refined and updated in line with the evolving cyber threat.

On 17 September 2014, NATO launched an initiative to boost cooperation with the private sector on cyber threats and challenges. Endorsed by Allied leaders at the Wales Summit, the NATO Industry Cyber Partnership (NICP) was presented at a two-day cyber conference held in Mons, Belgium, where 1,500 industry leaders and policy makers gathered to discuss cyber collaboration. The NICP recognises the importance of working with industry partners to enable the Alliance to achieve its cyber defence policy’s objectives.

On 10 February 2016, NATO and the EU concluded a Technical Arrangement on Cyber Defence to help both organisations better prevent and respond to cyber attacks. This Technical Arrangement between NCIRC and the Computer Emergency Response Team of the EU (CERT-EU) provides a framework for exchanging information and sharing best practices between emergency response teams.

On 14 June 2016, defence ministers agreed to recognise cyberspace as a domain at the Warsaw Summit. This is an addition to the existing operational domains of air, sea and land. This recognition does not change NATO’s mission or mandate, which is defensive. As in all areas of action, NATO will exercise restraint and act in accordance with international law. The Alliance also welcomed efforts undertaken in other international fora to develop norms of responsible state behaviour and confidence-building measures to foster a more transparent and stable cyberspace for the international community.

At the Warsaw Summit in July 2016, Allied Heads of State and Government reaffirmed NATO’s defensive mandate and recognised cyberspace as a domain of operations in which NATO must defend itself as effectively as it does in the air, on land and at sea. This will improve NATO’s ability to protect and conduct its missions and operations.

Allies also pledged to enhance the cyber defences of their national networks and infrastructures, as a matter of priority. Each Ally will honour its responsibility to improve its resilience and ability to respond quickly and effectively to cyber attacks, including in hybrid contexts.

On 6 December 2016, NATO and the EU agreed on a series of more than 40 measures to advance how the two organisations work together – including on countering hybrid threats, cyber defence, and making their common neighbourhood more stable and secure. On cyber defence, NATO and the EU will strengthen their mutual participation in exercises, and foster research, training and information-sharing.

On 16 February 2017, defence ministers approved an updated Cyber Defence Action Plan as well as a roadmap to implement cyberspace as a domain of operations. This will increase Allies’ ability to work together, develop capabilities and share information.

Also on 16 February 2017, NATO and Finland stepped up their engagement with the signing of a Political Framework Arrangement on cyber defence cooperation. The arrangement will allow NATO and Finland to better protect and improve the resilience of their networks

On 8 November 2017, defence ministers expressed their agreement in principle on the creation of a new Cyberspace Operations Centre as part of the outline design for the adapted NATO Command Structure. This will strengthen NATO’s cyber defences, and help integrate cyber into NATO planning and operations at all levels. Ministers also agreed to allow the integration of Allies’ national cyber contributions into Alliance operations and missions. Allies will maintain full ownership of those contributions, just as Allies own the tanks, ships and aircraft in NATO missions.

On 5 December 2017, NATO and EU Ministers agreed to step up cooperation between the two organisations in a number of areas, including cyber security and defence. Analysis of cyber threats and collaboration between incident response teams is one area of further cooperation; another is the exchange of good practices concerning the cyber aspects and implications of crisis management.

Following the announcement of 8 November 2017, defence ministers agreed on 14 February 2018 to set up the proposed Cyberspace Operations Centre in Belgium.

At the Brussels Summit in 2018, Allied leaders agreed to set up a new Cyberspace Operations Centre as part of NATO’s strengthened Command Structure. The Centre will provide situational awareness and coordination of NATO operational activity within cyberspace. Allies also agreed that NATO can draw on national cyber capabilities for its missions and operations. Finally, Allies took stock of their progress to enhance national resilience through the Cyber Defence Pledge.

News

New NATO hub will gather the Alliance's cyber defenders12 Feb. 2019
NATO and the European Union work together to tackle growing cyber threats10 Dec. 2018
Allied Intelligence Chiefs discuss countering cyber-attacks, disinformation 03 Dec. 2018
Cyber Coalition helps prepare NATO for today’s threats27 Nov. 2018
Enhancing cybersecurity in Ukraine29 Oct. 2018

NATO and the fight against terrorism

Defence Against Terrorism Programme of Work (DAT POW)

Video

- How could cyber attacks affect you? 25 May. 2018
- E-Warriors: The Estonian Cyber Defence Unit 12 Jan. 2018
- €3 billion tech upgrade for NATO 28 Jun. 2017
- Detecting fake news 30 Jun. 2017
- NATO and Jordan cooperate on cyber defence 09 Aug. 2017
- NATO Cyber Security Symposium - NIAS 2016 28 Sep. 2016
- NATO Allies pledge to increase investment in cyber defence 09 Jul. 2016
- International Cyber Defence Exercise 27 Apr. 2015
- NATO helps Jordan fend off ISIL cyber threat 30 Oct. 2014
- Collaborating against cyber threats 04 Jun. 2013
- NATO Chronicles: Fighting the Invisible Enemy 20 Sep. 2011
- Exercising together against cyber attacks 20 Dec. 2011
- Cyber conflicts - exploring the concept 30 Jun. 2011
- A former hacker now working on cybersecurity 29 Nov. 2011
- Fighting against cyber attacks 22 Jun. 2011
- Rendez-Vous - Hacktivists or jihadists: the shape of threats to come? 17 Aug. 2011

Infographic

Infograph - Cyberdefence & NATO

NATO Review

- NATO’s role in cyberspace 12 Feb. 2019 Cyber threats to Alliance security are becoming more frequent, complex, destructive and coercive. Laura Brent of NATO’s Emerging Security Challenges Division looks at the challenges facing the Alliance and at the steps that have been taken in cyber defence over the past decade. The views expressed are her own.
- Spending for success on cyber defence 06 Apr. 2017 Why is it so important to invest in cyber defence? What do nations need to spend on? Neil Robinson of NATO’s cyber defence policy team explains.
- Cyber resilience: protecting NATO’s nervous system 12 Aug. 2016 Without the right information, at the right time, in the right place, the ability of NATO commanders to take a decision is compromised. Information technology provides the glue for command and control capability.
- NATO: changing gear on cyber defence 08 Jun. 2016 The public-private character of how the Internet is governed highlights the need to work together – a key issue when reviewing NATO’s role. Cooperation between like-minded states and international organisations remains the best way to address many cyber risks.
- Cyber defence 08 Jun. 2016 Cyber attacks can affect most areas of our lives and are increasing in speed, sophistication and diversity. Should NATO do more to contribute to cyber defence?
- Hackers for hire 28 Jun. 2013 Hackers are the 21st century warriors who worry many. As everything we use becomes increasingly connected, so their opportunities to hack, divert or destroy increase. NATO Review talked to some hackers to see what motivates them – and finds out that they can actually be a force for good too.
- Cyber - the good, the bad and the bug-free 24 Jun. 2013 The changing threats to the world since 2001 is evident. When 9/11 occurred, there were just over 513 million Internet users (just over 8% of the world's population). But today's world has over 2.7 billion users of the Internet (or nearly 39% of the global population)…..
- Cyber attacks, NATO - and angry birds 24 Jun. 2013 If any NATO country knows about cyber attacks, it's Estonia. The country suffered a high profile series of attacks on institutions across the country in spring 2007. NATO Review asked Estonia's President what the country learned from this and why he feels the area deserves more attention.
- Cyber: how it can be used - in pictures 24 Jun. 2013 Cyber is never the easiest subject to illustrate (without numerous pictures of cables, keyboards and flashing computer lights), but NATO Review has managed to find a number of events and issues which highlight how the use of cyber techniques has boomed.
- Cyber attacks: how can they hurt us? 24 Jun. 2013 What damage can cyber attacks actually do? NATO Review asks the White House's former director of cyber infrastructure protection what we should be worried about - and how knowledge of cyber attacks' potential may be more limited than portrayed.
- The history of cyber attacks - a timeline 24 Jun. 2013 NATO Review's timeline on cyber attacks shows the history - and seriousness - of attacks since they began in the 1980s. Use the interactive timeline to find out about some of the major - and most audacious - cyber attacks since the first worm got loose in 1988.
- Cyber security infographic 24 Jun. 2013 No time to watch a video on cyber attacks? No problem. Here we provide an infographic highlighting the main threats (and prevention techniques) for those who fear cyber attacks in government bodies. From phishing to spam and from big data to data leakage, this GovLoop infographic explains what to look for and where.
- Cyberwar - does it exist? 24 Jun. 2013 Cyber war does not exist. This is the bald statement summarising the work of Dr Thomas Rid of King's College London, who feels that cyber attacks meet none of the conditions of war. NATO Review asked how he came to this conclusion and what it meant for the security field.
- Crime, computers and security in 2012 23 Jan. 2012 What's going to happen in 2012? Some things are easy to see: we'll see more attacks by criminals. We'll see more attacks by hactivists (like the infamous Anonymous group). But most importantly, we'll see that many of the future real-world crisis will have a cyber element in them as well. Certainly, any future war between technically developed nations is likely to incorporate computer attacks.
- New threats: the cyber-dimension 08 Sep. 2011 September 11th, 2001 has often been called the day that changed everything. This might not be true for our day to day life, but in security, it really marked a new era. Together with the Twin Towers, our traditional perceptions of threats collapsed. The Cold War scenario that had dominated for over 50 years was radically and irrevocably altered.
- Social media - the frontline of cyberdefence? 23 Mar. 2011 There are those who see social media as a threat to their security. Not just individuals, not just companies, but also governments. Why is this? And how much of a soft underbelly do social networks present?
- China and the West: Keyboard conflicts 21 Apr. 2010 Both the West and China have highlighted the importance of the Web - in different ways. Here we look at how it is becoming centre stage in cyber attacks between the two and the efforts both sides are making to beef up their defences.

Opinions

Speech by NATO Secretary General Jens Stoltenberg at the Cyber Defence Pledge Conference (Ecole militaire, Paris) 15 May. 2018

Keynote address by NATO Deputy Secretary General Rose Gottemoeller at the NATO Information Assurance Symposium (NIAS) Cyber Conference 19 Oct. 2017

Press conference by NATO Secretary General Jens Stoltenberg following the meeting of the North Atlantic Council at the level of Defence Ministers 16 Feb. 2017

Joint press conference by NATO Secretary General Jens Stoltenberg with the EU High Representative for Foreign Affairs, Federica Mogherini 06 Dec. 2016

Press Conference by NATO Secretary General Anders Fogh Rasmussen following the meeting of the North Atlantic Council at the level of Heads of State and Government during the NATO Wales Summit 05 Sep. 2014

NATO and Cyber: Time to Raise our Game (Opinion piece by NATO Secretary General Jens Stoltenberg, published in DefenseNews, 8 July 2016)

Official Texts

Statement on the implementation of the Joint Declaration signed by the President of the European Council, the President of the European Commission, and the Secretary General of the North Atlantic Treaty Organization 06 Dec. 2016

Cyber Defence Pledge 08 Jul. 2016

PDF Library

Fact Sheet - NATO Cyber Defence (February 2019)

Fiche d'information - Cyberdéfense de l’OTAN (février 2019)

Cybersecurity - A Generic Reference curriculum - English version

Cybersecurity - A Generic Reference curriculum - French version

Cybersecurity - A Generic Reference curriculum - Russian version

Cybersecurity - A Generic Reference curriculum - Arabic version

High resolution photos

- Cyberdefence, Key trends and Statistics 30 Jun. 2009 In 2011 there were 403 million unique variants of malware, compared to 286 million in 2010. Source: Symantec ISTR, April 2012 (Photo by NCIRC NATO)
- Cyberdefence, Key trends and Statistics 24 Jun. 2009 Nearly 5,000 new vulnerabilities were discovered in 2011. Source: Symantec ISTR, April 2012 (Photo by NCIRC NATO)
- Cyberdefence, Key trends and Statistics In 2011 mobile malware presented a tangible threat to businesses and consumers for the first time. The number of vulnerabilities for mobile devices is rising, with malware authors reinventing existing malware and creating mobile-specific malware. Source: Symantec ISTR, April 2012.
- Cyberdefence, Key trends and Statistics As tablets and smartphones continue to gain popularity, increasing amounts of sensitive information will be available on these devices. Malware designed for data collection, the sending of content, and user tracking will also become a greater problem. Source: Symantec ISTR, April 2012.
- Cyberdefence, Key trends and Statistics 13 Nov. 2008 More than 232.4 million identities were exposed and subject to potential theft during 2011. Hacking incidents posed the greatest threat, exposing 187 million identities. Source: Symantec ISTR, April 2012 (Photo by Andres Rueda)
- Cyberdefence, Key trends and Statistics Workers are bringing their smartphones and tablets into the corporate environment faster than many organizations are able to secure and manage them. Source: Symantec ISTR, April 2012
- Cyberdefence, Key trends and Statistics According to a recent Symantec survey, 50% of lost phones will not be returned. For unprotected phones, 96% of lost phones will have the data on that phone breached. Source: Symantec ISTR, April 2012.
- Cyberdefence, Key trends and Statistics The most frequent cause of data breaches that could lead to stolen identities is theft or loss of computers, smartphones, USB keys, and backup devices. Theft or loss related breaches exposed 18.5 million identities. Source: Symantec ISTR, April 2012.
- Cyberdefence, Key trends and Statistics Macs are not immune from cyber threats. A number of new threats emerged for Mac OS X in 2011, including trojans like MacDefender, a fake anti-virus programme. It looks convincing and it installs without requiring admin permission first. Source: Symantec ISTR, April 2012 (Photo by Sharyn Morrow)
- Cyberdefence, Key trends and Statistics In 2010, Stuxnet grabbed headlines around the world. It showed that targeted attacks could be used to cause physical damage in the real world, making the spectre of cyber-sabotage a reality. In October 2011, Stuxnets successor, Duqu, came to light. It uses a zero-day exploit to install spyware that records keystrokes and other system information. Source: Symantec ISTR, April 2012.
- Cyberdefence, Key trends and Statistics At 54% combined, the government/public sector, manufacturing and finance were the most targeted industries when it came to email cyber attacks in 2011. Source: Symantec
- Cyberdefence, Key trends and Statistics QR codes, a way for people to convert a barcode into a Web site link using a camera app on their smartphone, have become increasingly popular over the last couple of years. Its fast, convenient and dangerous. Malware authors have used it to install infected software on Android phones. Source: Symantec ISTR, April 2012.
- Cyberdefence, Key trends and Statistics Companies are increasingly using cloud applications instead of company-managed software to store files or communicate. Although there are benefits to cloud computing, there are also cyber security and legal risks involved. Source: Symantec ISTR, April 2012.

Cyber defence

Highlights

More background information

Principal cyber defence activities

Governance

Evolution

Organization

Topics

Newsroom

e-Library

Quicklinks