April 2024 saw 652 security incidents with 5,336,840,757 records known to be breached. There were less incidents but higher numbers of records breached in the attacks compared to March.

In March 2024, there were 3,478 publicly disclosed security incidents with 299,368,075 records known to be breached. March saw fewer records breached but a huge increase (388% rise) in total incidents.

February 2024 had 712 cyber breaches accounting for more than 719 million records being compromised. This compares to a whopping 4,645 cyber incidents in January with more than 29 billion records breached.

Here’s the other top stories you need to read:

New podcast series from the NCSC

Each episode takes a deep dive into pressing cybersecurity issues and cover topics such as AI, ransomware, ‘life beyond passwords’ and cyber resilience.

Listen now.

New EU cyber legislation

How will the EU’s Digital Operational Resilience Act (DORA) impact UK businesses? Here’s everything you need to know about DORA, or the ‘Digital Operational Resilience Act’.

Global surge in brute force attacks

An increase in brute force attacks highlights why shared usernames and passwords across multiple platforms leave your business at risk.

Cyber resilience is stagnating

75% of UK businesses have experienced a cyber attack in the last year, with fraudulent emails or attachments being the biggest culprit, according to the latest UK Government-funded Cyber Security Longitudinal Survey (CSLS).

UK firms at risk

Overconfidence is putting UK firms at risk as many companies are overconfident about their cyber resilience and security capabilities, according to Cisco.

SMEs lack best practice

UK small and medium-sized enterprises (SMEs) lack best practice cybercrime protocols and are woefully unprepared to react to an incident, according to an insurer. Its survey suggested that hardly one in five (19 per cent) have a recommended cyber incident response plan (IRP) in place.

A guide for CEOs

Guidance from the NCSC to help CEOs in public and private sector organisations manage a cyber incident.

Cyber framework

The Cyber Assessment Framework (CAF) from the NCSC is aimed at helping organisations achieve and demonstrate an appropriate level of cyber resilience.

Mitigating the targeting of CISCO firewall platforms

NCSC and partners issue advice to help network defenders mitigate targeting of CISCO firewall platforms.

Here’s what businesses need to know.