Cyber Attack On Britain’s Defence Academy

Uploaded on 2022-01-03 in GOVERNMENT-Defence, FREE TO VIEW, TECHNOLOGY--Hackers

A cyber attack on Britain's national Defence Academy, possibly by Russia or China, has caused “significant” damage, says a retired high-ranking officer. 

Air Marshal Edward Stringer, who retired in August, said the attack which was first discovered in March 2021 and meant the Defence Academy was required to rebuild its network. 

The targeting of an academic institution is an indication of how the frontline in modern warfare can be anywhere, the former director general of the academy told Sky News.He did not know if criminals or a hostile state, like China, Russia, Iran or North Korea, were responsible, but the damage has yet to be fully rectified nine months later

Stringer said the attack, was first detected March 2021, meant the Defence Academy was forced to rebuild its network. Stringer did not know if criminals or a hostile state, such as China, Russia, Iran or North Korea, were responsible but the damage has yet to be fully rectified. “It could be any of those or it could just be someone trying to find a vulnerability for a ransomware attack that was just, you know, a genuine criminal organisation... There were costs to … operational output. There were opportunity costs in what our staff could have been doing when they were having to repair this damage." he said. 

News of this event appears alongside disclosure of a similar damaging attack on Belgian defence networks. 

It is the first time a senior officer has spoken on the record about the cyber attack and its impact on the academy, which is based in Shrivenham, Oxfordshire, and teaches thousands of British and overseas military officers every year. The school teaches 28,000 military personnel, diplomats and civil servants a year and moved more online during the pandemic.

Stringer the attack was not successful and while the hackers may have been using the academy as a “backdoor” to other Ministry of Defence systems, there were no breaches beyond the school.

Air Marshall Stringer was also director general of joint force development and led British military thinking about how it would adapt to the future of warfare, said the attack fell within a so-called grey zone of harm, which falls below the threshold of war

The National Cyber Security Centre, a branch of GCHQ, was also made aware of the hack and a British Defence Ministry official said: “In March 2021 we were made aware of an incident impacting the Defence Academy IT infrastructure. We took swift action and there was no impact on the wider Ministry of Defence IT network. Teaching at the Defence Academy has continued.”

GBNews:        Sky:         Independent:      Leicester Mercury:       Enfield Independent:      Guardian

You Might Also Read:

British Military Aim To Reduce Their Attack Surface:

 

« Malicious Joker App Gets Half A Million Downloads
NSO Spyware Used To Hack Political Leaders In Poland »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

rPeople Staffing

rPeople Staffing

rPeople provides direct placement in all areas of your organization, including and specializing in Technical and Executive hiring.

Rapid7

Rapid7

Rapid7 unites cloud risk management and threat detection to deliver results that secure your business and ensure you’re always ready for what comes next.

IDnext

IDnext

IDnext is the open and independent platform to support innovative approaches in the world of the Digital identity.

AGAT Software

AGAT Software

AGAT Software is an innovative security provider specializing in external access authentication and data protection solutions.

Independent Security Evaluators (ISE)

Independent Security Evaluators (ISE)

ISE is an independent security consulting firm headquartered in Baltimore, Maryland dedicated to securing high value assets for global enterprises and performing groundbreaking security research.

Shift Technology

Shift Technology

Shift Technology provides insurance companies with an innovative SaaS solution to improve and scale fraud detection.

National Initiative for Cybersecurity Education (NICE)

National Initiative for Cybersecurity Education (NICE)

NICE is a partnership between government, academia, and the private sector focused on cybersecurity education, training, and workforce development.

Kintent

Kintent

With Kintent, compliance becomes a habit, is simple to understand and achieve, and is continuously testable so that your customers can see that you are adhering to all your trust obligations.

QuantiCor Security

QuantiCor Security

QuantiCor Security is one of the world’s leading developers and manufacturers of quantum computer resistant security solutions for IT infrastructures and the Internet of Things (IoT).

Cyber Security Services

Cyber Security Services

Cyber Security Services is a cyber security consulting firm and security operations center (SOC).

Resolvo Systems

Resolvo Systems

Resolvo is provides comprehensive security assessment and testing services in Asia.

GeoEdge

GeoEdge

GeoEdge is the premier provider of ad security and quality solutions for the online and mobile advertising ecosystem.

Atlant Security

Atlant Security

Atlant Security is a cyber and IT security company offering consulting and implementation services.

BlastWave

BlastWave

BlastWave’s BlastShield integrates three innovative products into a single solution to help prevent inadvertent and intentional attacks.

Institute for Applied Network Security (IANS)

Institute for Applied Network Security (IANS)

For the security practitioner caught between rapidly evolving threats and demanding executives, IANS Research is a clear-headed resource for decision making and articulating risk.

Turngate

Turngate

Turngate simplify security investigations so you can see employee activities and entitlements in your enterprise in seconds.