British Elections: Labour Party Suffers Second Attack

Uploaded on 2019-11-13 in TECHNOLOGY--Hackers, GOVERNMENT-National, FREE TO VIEW

The UK Labour Party election campaign has experienced two sophisticated and large-scale cyberattacks by hackers on its digital platforms this week. Labour is reportedly suffering a second cyber-attack after saying it successfully thwarted one on Monday 11th November. The party says it has "ongoing security processes in place" so users "may be experiencing some differences", which it is dealing with "quickly".

The Distributed Denial of Service (DDoS) attack floods a computer server with traffic to try to take it offline. Earlier, a Labour source said that attacks came from computers in Russia and Brazil.

The first attack was reported to the National Cyber Security Centre on Monday. A Labour spokeswoman had said the first cyberattack had ‘failed’ because of the party’s ‘robust security systems’ and that they were confident that no data breach occurred. Labour sources have confirmed it was targeted by a so-called distributed denial-of-service (DDoS) attack, one of the most common forms of cyberattack.

In a DDoS attack hackers flood a target’s online platforms with traffic from various sources, with the aim of slowing down access or causing websites to crash.

In a statement, Labour said: ‘We have experienced a sophisticated and large-scale cyberattack on Labour digital platforms. We took swift action and these attempts failed due to our robust security systems....The integrity of all our platforms was maintained and we are confident that no data breach occurred....Our security procedures have slowed down some of our campaign activities, but these were restored this morning and we are back up to full speed….We have reported the matter to the National Cyber Security Centre.’

Security experts believe that these types of attacks are usually carried out by a group of cyber criminals or a nation state. The last general election in 2017 was disrupted by the worldwide WannaCry attack, which hit hundreds of NHS trusts and GP practices, leading to thousands of appointments and operations being cancelled.

The NCSC subsequently attributed the attack to a shadowy North Korean crime organisation known as the Lazarus group

Following reports of a second cyber-attack, a Labour Party spokesperson said: "We have ongoing security processes in place to protect our platforms, so users may be experiencing some differences. We are dealing with this quickly and efficiently."

NCSC:         Metro:          BBC:     

You Might Also Read: 

Three In Five Politicians’ Websites Don’t Use Cyber Security:

Hackers Came, But the French Were Prepared:

 

 

« Closing The Skills Gap Starts At School
The Future Of Cybersecurity Jobs »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Libraesva

Libraesva

Libraesva specialize in Email Security. From Email Security, Phishing Awareness and Email Archiver. We can assist you with any email issues you may have.

Cyber Risk Policies

Cyber Risk Policies

CyberRiskPolicy.com is a joint venture between the Poindexter Surety Group of companies and Gibbs Cyber Security.

North American Electric Reliability Corporation (NERC)

North American Electric Reliability Corporation (NERC)

NERC is a not-for-profit international regulatory authority whose mission is to assure the reliability and security of the bulk power system in North America.

Center for Cyber Safety and Education

Center for Cyber Safety and Education

The Center for Cyber Safety and Education works to ensure that people across the globe have a positive and safe experience online through our educational programs, scholarships, and research.

OneSpan

OneSpan

OneSpan (formerly Vasco Data Security) is a global leader in digital identity security, transaction security and business productivity.

Scanmeter

Scanmeter

Scanmeter helps identifying vulnerabilities in software and systems before they can be exploited by an attacker.

CloudOak

CloudOak

CloudOak is a cloud channel provider for hybrid cloud Backup as a Service (BaaS), Disaster Recovery as a Service (DRaaS) and Archiving to Small to Medium Business (SMB).

Abnormal Security

Abnormal Security

Abnormal is an API-based email security platform providing protection against the entire spectrum of targeted email attacks.

Cryptoloc

Cryptoloc

Cryptoloc's core business is developing solutions designed to protect businesses from all kinds of security threats using a unique patented cryptography.

CHEQ

CHEQ

CHEQ provides fully autonomous, preemptive technology for brand safety and ad-fraud prevention.

CyFIR

CyFIR

CyFIR is a network investigation and Incident Response tool for performing live computer investigations across any size enterprise.

Krypsis

Krypsis

Krypsys is an information security company with a focus on helping you defend your information and data against emerging security threats.

Cyturus Technologies

Cyturus Technologies

Cyturus Technologies delivers cybersecurity business risk quantification services using our proprietary Adaptive Risk Model (ARM).

ImmuniWeb

ImmuniWeb

We Simplify, Accelerate and Reduce Costs of Security Testing, Protection and Compliance.

Yogosha

Yogosha

Yogosha is a crowdsourced cybersecurity platform enabling a win-win collaboration with the most talented hackers to detect and fix vulnerabilities on your most critical systems.

Digital.ai

Digital.ai

Digital.ai empowers organizations to scale software development teams, continuously deliver software with greater quality and security.