Cyber Attack On Britain’s Defence Academy

A cyber attack on Britain's national Defence Academy, possibly by Russia or China, has caused “significant” damage, says a retired high-ranking officer. 

Air Marshal Edward Stringer, who retired in August, said the attack which was first discovered in March 2021 and meant the Defence Academy was required to rebuild its network. 

The targeting of an academic institution is an indication of how the frontline in modern warfare can be anywhere, the former director general of the academy told Sky News.He did not know if criminals or a hostile state, like China, Russia, Iran or North Korea, were responsible, but the damage has yet to be fully rectified nine months later

Stringer said the attack, was first detected March 2021, meant the Defence Academy was forced to rebuild its network. Stringer did not know if criminals or a hostile state, such as China, Russia, Iran or North Korea, were responsible but the damage has yet to be fully rectified. “It could be any of those or it could just be someone trying to find a vulnerability for a ransomware attack that was just, you know, a genuine criminal organisation... There were costs to … operational output. There were opportunity costs in what our staff could have been doing when they were having to repair this damage." he said. 

News of this event appears alongside disclosure of a similar damaging attack on Belgian defence networks. 

It is the first time a senior officer has spoken on the record about the cyber attack and its impact on the academy, which is based in Shrivenham, Oxfordshire, and teaches thousands of British and overseas military officers every year. The school teaches 28,000 military personnel, diplomats and civil servants a year and moved more online during the pandemic.

Stringer the attack was not successful and while the hackers may have been using the academy as a “backdoor” to other Ministry of Defence systems, there were no breaches beyond the school.

Air Marshall Stringer was also director general of joint force development and led British military thinking about how it would adapt to the future of warfare, said the attack fell within a so-called grey zone of harm, which falls below the threshold of war

The National Cyber Security Centre, a branch of GCHQ, was also made aware of the hack and a British Defence Ministry official said: “In March 2021 we were made aware of an incident impacting the Defence Academy IT infrastructure. We took swift action and there was no impact on the wider Ministry of Defence IT network. Teaching at the Defence Academy has continued.”

GBNews:        Sky:         Independent:      Leicester Mercury:       Enfield Independent:      Guardian

You Might Also Read:

British Military Aim To Reduce Their Attack Surface:

 

« Malicious Joker App Gets Half A Million Downloads
NSO Spyware Used To Hack Political Leaders In Poland »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Paessler

Paessler

Paessler is a leading worldwide provider of network monitoring software.

OneVisage

OneVisage

Our award-winning 3DAuth digital identity platform turns any consumer mobile device into a real-time 3D facial scanner that securely authenticates the user in seconds.

Intertrust Technologies

Intertrust Technologies

Intertrust Technologies is a software company specializing in trusted computing products and services.

C3.ai

C3.ai

The C3 AI Suite supports configurable, pre-built, high value AI applications for predictive maintenance, fraud detection, anti-money laundering, sensor network health and more.

Zymbit

Zymbit

Zymbit provides hardware security modules (HSM) for IoT devices, including Raspberry Pi and other single board computers.

TES

TES

TES is a provider of IT Lifecycle Services, offering bespoke solutions that help customers manage the commissioning, deployment and retirement of Information Technology assets.

Cyber Smart Defense

Cyber Smart Defense

Cyber Smart Defense is a specialist provider of penetration testing services and IT security audits.

Tracepoint

Tracepoint

Tracepoint provide full-service cyber incident response, remediation and recovery solutions for the most time-sensitive situation your company may ever face.

Risk Strategies

Risk Strategies

Risk Strategies is a leading specialty risk management consultancy and insurance broker offering smarter, practical approaches to risk mitigation including Cyber Liability insurance.

Allentis

Allentis

Allentis provide adapted solutions to ensure the security and performance of your information system.

White Tuque

White Tuque

A new way to protect your organization. White Tuque is your partner in identifying threats, understanding your risk, and ensuring your business remains resilient.

Tozny

Tozny

Tozny offers products with security and privacy in mind that are built on the foundation of end-to-end encryption, and open-source verifiable software.

VP Techno Labs

VP Techno Labs

VP Techno Labs is an award-winning cybersecurity firm focusing only cybersecurity to develop cutting edge solutions for emerging business.

Zama

Zama

Zama - pioneering homomorphic encryption. We believe people shouldn't care about privacy. Not because it doesn't matter, but because it shouldn't be an issue!

V3 Cybersecurity

V3 Cybersecurity

V3 Cybersecurity is a unique company focused on contextualization of security programs from a business perspective. Our mission is to provide enterprise IT Risk Management capabilities.

PingSafe

PingSafe

PingSafe is creating the next-generation cloud security platform powered by attackers' intelligence, providing coverage for vulnerabilities that traditional security solutions would otherwise overlook