Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

10/14/2020
03:50 PM
50%
50%

London Borough of Hackney Investigates 'Serious' Cyberattack

London's Hackney Council says some services may be slow or unavailable as it looks into a cyberattack affecting services and IT systems.

The London Borough of Hackney has reported that a serious cyberattack has affected many of its services and IT systems.

Hackney Mayor Philip Glanville says Council officers are working with the UK's National Cyber Security Centre (NCSC), external experts, and the Ministry of Housing, Communities, and Local Government to investigate and understand the full effects of this incident.

Related Content:

Treasury Dept. Advisory Shines Spotlight on Ransomware Negotiators

2020 State of Cybersecurity Operations and Incident Response

New on The Edge: What Is End-to-End Encryption?

"This investigation is at an early stage, and limited information is currently available," Glanville writes in a statement. "We will continue to provide updates as our investigation progresses."

The current focus, he says, is on delivering essential frontline services, especially to vulnerable residents, and protecting data while restoring affected services as soon as possible. In the meantime, some Council services may be unavailable or slower than usual, and its call center is "extremely busy." The Council website will be updated as more information is available, he adds. 

"Local and national councils will always be a target for cybercriminals given the sensitive data they hold, but the truth of the matter is that many remain unprepared for a cyberattack," says Dean Ferrando, systems engineer manager for EMEA at Tripwire. "It's difficult to prepare for something you don’t understand, can't visualize, and haven't experienced."

He advises organizations conduct continuous assessments of configuration and vulnerability risk across IT systems, and ensure systems are regularly patched and updated, to ensure they're secure and the attackers' job is more difficult. 

Read Hackney Council's full statement here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
michaelgane
50%
50%
michaelgane,
User Rank: Apprentice
10/14/2020 | 6:30:34 PM
Interesting
This is interesting. It will be nice to see how serious it actually was. 
Commentary
Ransomware Is Not the Problem
Adam Shostack, Consultant, Entrepreneur, Technologist, Game Designer,  6/9/2021
Edge-DRsplash-11-edge-ask-the-experts
How Can I Test the Security of My Home-Office Employees' Routers?
John Bock, Senior Research Scientist,  6/7/2021
News
New Ransomware Group Claiming Connection to REvil Gang Surfaces
Jai Vijayan, Contributing Writer,  6/10/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: Google's new See No Evil policy......
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-24368
PUBLISHED: 2021-06-20
The Quiz And Survey Master – Best Quiz, Exam and Survey Plugin WordPress plugin before 7.1.18 did not sanitise or escape its result_id parameter when displaying an existing quiz result page, leading to a reflected Cross-Site Scripting issue. This c...
CVE-2021-31664
PUBLISHED: 2021-06-18
RIOT-OS 2021.01 before commit 44741ff99f7a71df45420635b238b9c22093647a contains a buffer overflow which could allow attackers to obtain sensitive information.
CVE-2021-33185
PUBLISHED: 2021-06-18
SerenityOS contains a buffer overflow in the set_range test in TestBitmap which could allow attackers to obtain sensitive information.
CVE-2021-33186
PUBLISHED: 2021-06-18
SerenityOS in test-crypto.cpp contains a stack buffer overflow which could allow attackers to obtain sensitive information.
CVE-2021-31272
PUBLISHED: 2021-06-18
SerenityOS before commit 3844e8569689dd476064a0759d704bc64fb3ca2c contains a directory traversal vulnerability in tar/unzip that may lead to command execution or privilege escalation.