01254 828 300 
The Department for Transport has published the first edition of its Cyber Risk and Threat Quarterly, bringing together current threats, real-world attack methods and regulatory updates affecting the transport sector.
Key risks identified include:
- Ransomware continuing to target critical infrastructure
- Activity from state-linked and organised criminal groups
- Growing exposure through supply chains and third-party providers
Recent guidance from the National Cyber Security Centre (NCSC) also highlights increased risk linked to global geopolitical tensions, with organisations encouraged to review their cyber readiness.
How attacks are happening
The report highlights a number of evolving tactics:
- Using trusted suppliers as a route into larger organisations
- Exploiting wireless and keyless entry systems
- Combining phishing with impersonation of IT help desks to bypass controls
These examples underline the importance of both technical controls and staff awareness.
Practical guidance and tools
The Quarterly signposts a range of support available to organisations, including:
- Cyber Essentials and Active Cyber Defence tools
- Guidance on mitigating malware and ransomware attacks
- The NCSC “Early Warning” system for threat alerts
- Incident reporting routes and response support
- There is also clear advice on what to do in the event of a cyber incident, including how to report breaches and access recovery guidance.
Regulatory developments
The update also reflects a shifting regulatory landscape:
- Enhancements to the Cyber Assessment Framework (CAF), with greater emphasis on threat intelligence, proactive monitoring and secure software
- Progress of the Cyber Security and Resilience Bill, which is expected to widen the scope of regulation – particularly in relation to critical suppliers
- These changes signal increased expectations on organisations to actively manage cyber risk across their operations and supply chains.
Read the first edition: Cyber Threat and Risk Newsletter March 2026.