Why you should watch last week’s Panorama

Liam Watt
Tuesday 29 July 2025

Last week’s BBC Panorama episode, Fighting Cyber Criminals (aired Monday 21 July), sheds light on the growing threat of cybercrime across the UK and beyond. From ransomware attacks to sophisticated phishing campaigns, this 30-minute documentary offers a behind the scenes take on the challenges caused by cybercrime and what is being done to combat it. 

Why this matters to us 

As a member of our University, you’re a target. Whether you’re a student or staff member, cyber criminals are constantly evolving their tactics to steal data, hijack accounts and exploit systems. This documentary explains just how real the threat is and how easily a single click can open the door. 

Four key points from the episode 

  1. Ransomware remains a top threat. UK schools, universities and councils are being locked out of their own systems and extorted for huge sums of money. 
  2. Email fraud is on the rise. Business email compromise is a major tactic, where attackers impersonate staff or suppliers to trick people into transferring funds.
  3. Criminals hide abroad. Many cybercriminal gangs operate from countries where there are not as strict cyber laws making legal takedowns difficult. 
  4. Human error is the weak link. Most attacks succeed because someone is tricked into clicking a malicious link, opening a malicious attachment or entering credentials into a fake login page. 

How to keep safe online 

Bringing together advice from the National Cyber Security Centre (NCSC) and St Andrews Computer Security Incident Response Team (CSIRT), here are some tips to keep you safe online.

Enable multi-factor authentication (MFA)

Ensure MFA is in place for all your online accounts. Your University account uses number matching push notifications. This is the most secure authentication method, so if you are still using phone calls, consider downloading the relevant smartphone app. Find out more about number matching on our previous blog post.

Follow the University’s password policy 

To create a strong and secure password, it should be at least 12 characters long and include a mix of upper and lower-case letters. Instead of a traditional password, it’s recommended to use a passphrase made up of three random words, which makes it both memorable and secure. Additionally, the passphrase must contain at least one non-alphanumeric character, such as a symbol, to enhance its complexity.

It’s important to avoid using easily guessable information, such as your name or date of birth, to ensure the password remains secure against common attacks.

Think before you click

Pause and review links or attachments, especially in unexpected emails. Read our ‘four ways to spot a phishing email’ blog post to learn the telltale signs of scam emails.

Keep your devices up to date

Install updates regularly on your phone, laptop, and tablet when they become available.

Run antivirus scans

You can download WithSecure to your personal laptop from Apps Anywhere for free. This will give your laptop a second layer of security from viruses and malicious code.

Report suspicious emails

If you think an email is a phishing attempt or doesn’t look right, forward it on to [email protected] or staff can use the report phishing button. If you have general IT Security concerns or questions, contact [email protected] 

Watch the BBC Panorama – Fighting Cyber Criminals

Subscribe to the IT Services blog

Enter your email address to subscribe to this blog to receive notifications of new posts.

Cookie preferences