The National Cyber Security Centre responds to threats to nationally significant organisations and high-impact cyber incidents at national level.
An incident is an attack or attempted attack against a computer or network that harmed, or potentially may harm, the confidentiality, integrity or availability of network data or systems.
In general, cyber security incidents include, but are not limited to:
For more, see NZ Cyber Threat section, below.
The NCSC understands that incident reports may contain commercially or other sensitive information. Information in incident reports to the NCSC may, however, form part of the NCSC's reporting to other entities on cyber threats.
This reporting is an important part of the NCSC's information assurance and cyber security function. Subject to the point below, the NCSC reporting would not include personal information about identifiable individuals.
The National Cyber Security Centre (NCSC) publishes reports of cyber security incidents.
Recorded incidents range in seriousness from small businesses targeted with ransomware and attempts to obtain credit card information, through to serious and persistent attempts to compromise the information systems of significant New Zealand organisations. This can include identification and exfiltration of valuable intellectual property.
Some of these threats come from well-resourced foreign sources. Sometimes they are targeting significant New Zealand organisations, others use New Zealand systems to target overseas networks.
Examples of the threats identified through the GCSB’s cyber security capabilities include:
Part of our response to more sophisticated and advanced threats are the advanced cyber threat detection and disruption capabilities developed as part of the CORTEX initiative.