Cyber Attack On Britain’s Defence Academy

Uploaded on 2022-01-03 in GOVERNMENT-Defence, FREE TO VIEW, TECHNOLOGY--Hackers

A cyber attack on Britain's national Defence Academy, possibly by Russia or China, has caused “significant” damage, says a retired high-ranking officer. 

Air Marshal Edward Stringer, who retired in August, said the attack which was first discovered in March 2021 and meant the Defence Academy was required to rebuild its network. 

The targeting of an academic institution is an indication of how the frontline in modern warfare can be anywhere, the former director general of the academy told Sky News.He did not know if criminals or a hostile state, like China, Russia, Iran or North Korea, were responsible, but the damage has yet to be fully rectified nine months later

Stringer said the attack, was first detected March 2021, meant the Defence Academy was forced to rebuild its network. Stringer did not know if criminals or a hostile state, such as China, Russia, Iran or North Korea, were responsible but the damage has yet to be fully rectified. “It could be any of those or it could just be someone trying to find a vulnerability for a ransomware attack that was just, you know, a genuine criminal organisation... There were costs to … operational output. There were opportunity costs in what our staff could have been doing when they were having to repair this damage." he said. 

News of this event appears alongside disclosure of a similar damaging attack on Belgian defence networks. 

It is the first time a senior officer has spoken on the record about the cyber attack and its impact on the academy, which is based in Shrivenham, Oxfordshire, and teaches thousands of British and overseas military officers every year. The school teaches 28,000 military personnel, diplomats and civil servants a year and moved more online during the pandemic.

Stringer the attack was not successful and while the hackers may have been using the academy as a “backdoor” to other Ministry of Defence systems, there were no breaches beyond the school.

Air Marshall Stringer was also director general of joint force development and led British military thinking about how it would adapt to the future of warfare, said the attack fell within a so-called grey zone of harm, which falls below the threshold of war

The National Cyber Security Centre, a branch of GCHQ, was also made aware of the hack and a British Defence Ministry official said: “In March 2021 we were made aware of an incident impacting the Defence Academy IT infrastructure. We took swift action and there was no impact on the wider Ministry of Defence IT network. Teaching at the Defence Academy has continued.”

GBNews:        Sky:         Independent:      Leicester Mercury:       Enfield Independent:      Guardian

You Might Also Read:

British Military Aim To Reduce Their Attack Surface:

 

« Malicious Joker App Gets Half A Million Downloads
NSO Spyware Used To Hack Political Leaders In Poland »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Omerta

Omerta

Omerta is a global security technology and services company. We advise, consult, design, build, mitigate, protect, manage, provide and train to protect from increasing cyber threats.

IP Performance

IP Performance

IP Performance Limited is a leading supplier of customised network infrastructure and security solutions.

Norton Rose Fulbright

Norton Rose Fulbright

Norton Rose Fulbright is a global business law firm. Practice areas include Data protection, Privacy and Cybersecurity.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Beta Systems Software

Beta Systems Software

Beta Systems automate IT-based business processes, control access rights, monitor processes, secure the network and optimize the infrastructure management of corporate IT.

Hexatrust

Hexatrust

The HEXATRUST club was founded by a group of French SMEs that are complementary players with expertise in information security systems, cybersecurity, cloud confidence and digital trust.

Trustonic

Trustonic

Trustonic is a leader in the device security market. Our mission is to protect apps, secure devices & enable trust.

Sectra Communications

Sectra Communications

Sectra successfully develops and sells cutting-edge solutions in the expanding niche segments of medical IT and cybersecurity.

CyberKnight Technologies

CyberKnight Technologies

CyberKnight Technologies is a cybersecurity focused value-added-distributor (VAD) headquartered in Dubai and covering the Middle East.

DataFleets

DataFleets

DataFleets is a privacy-preserving data engine that unifies distributed data for rapid access, agile analytics, and automated compliance.

Robo Shadow

Robo Shadow

Robo Shadow are trying to bridge the gap between the top tier organisations that can afford everything and everyone else who has to “Make it up as they go along” when it comes to Cyber.

CYDEF

CYDEF

CYDEF provides comprehensive, state-of-the-art cybersecurity protection that is accessible and affordable to organizations of any size.

European Cybersecurity Competence Centre (ECCC)

European Cybersecurity Competence Centre (ECCC)

The ECCC aims to increase Europe’s cybersecurity capacities and competitiveness, working together with a Network of National Coordination Centres to build a strong cybersecurity Community.

NormCyber

NormCyber

NormCyber provide award-winning cyber security and data protection as a service for midsize organisations.

AuthenticID

AuthenticID

Our mission at AuthenticID is to combat fraud worldwide and help businesses protect their enterprise and valuable data assets.

Swick Technologies (SWICKtech)

Swick Technologies (SWICKtech)

SWICKtech offer IT managed services to increase IT security, stability, and performance for your organization.