On May 13, the day after the start of the widespread “WannaCry” ransomware cyber-attack, the UK Financial Conduct Authority (FCA) published a statement on the cyber-attack. The statement advised firms to review guidance issued by the National Cyber Security Centre. If firms were affected by the attack, it advised them to contact Action Fraud and notify their regulator.
The FCA also published a new webpage on cyber resilience on May 18. The webpage reinforces the importance of firms having a “security culture”—from the board of directors down to every employee. The webpage also acts as a repository for the FCA and other government agency’s publications on cybersecurity, as well as details on how to report a cyber incident.