London’s National Gallery Hit With 2 Million Attacks

Uploaded on 2020-03-30 in NEWS-Cybersecurity News, FREE TO VIEW

The National Gallery, one of London’s most popular art museums based in Trafalgar Square was hit with a staggering 1,875,250 email cyber-attacks last year. The gallery, which attracts over five million visitors every year, was hit by an astonishing total of 1,875,250 email cyber-attacks in 2019. These came in a variety of forms, including spam and virus attempts.

This is according to official figures obtained by Absolute Software, the cyber security specialists and leader in endpoint resilience. Absolute Software obtained the information via a Freedom of Information request. The figures displayed the lengths cyber-criminals went to try and steal the personal and financial data of members of the major tourist attraction.

 “It’s clear that cyber-criminals are mastering the art of malicious email attacks, designed to infiltrate the National Gallery and steal confidential data.... With millions of visitors every year and tens of thousands of members, it’s vital that London’s leading tourist hotspots have the right systems in place to protect devices from infiltration.” said Andy Harcup of  Absolute Software, 

The National Gallery, which is a non-departmental public body of the Department for Digital, Culture, Media and Sport, prevented a wide range of sophisticated attacks from reaching their destination. The gallery's online security team successfuly blocked email addresses software was able to quarantine 1,176,656 different attack attempts, while its detection software blocked 18,378 spam emails and 443,741 attempted connection emails. 

A further 179,844 emails were stopped under the category of anti-spoofing lockout and 10,959 were registered as manual envelope rejection. Another 2810 emails were blocked under the category of Simple Mail Transfer Protocol (SMTP).
“With many major museums now closed due to the COVID-19 outbreak, it’s critical that enterprises have full visibility of the assets allocated to remote workers as well as always having control of those assets in case of the need to take action,” added Harcup.

The National Portrait Gallery, another one of London’s most prestigious art galleries, was targeted by 347,602 emails containing spam, phishing and malware attacks in the final quarter of 2019, according to official figures and this data underlines the threat posed to the capital’s museums by malicious hackers who are intent on stealing membership data from tourist hotspots.

Of the 347,602 blocked email attacks, 56 per cent (194,620) were identified as Directory Harvest Attacks (DHA).
A DHA is an attempt to determine the valid e-mail addresses of employees or individuals associated with an organisation’s server so that they can be added to a spam database. Additionally, 61,710 emails were blocked as the sender belonged to a ‘threat intelligence blacklist’.

In 2017, London art dealers were defrauded out of hundreds of thousands of pounds after hackers successfully breached company email accounts to monitor correspondence between clients.  The incident resulted in fresh cyber security guidance being issued by the Society of London Art Dealers, as well as tips for avoiding email fraud.

CloudPro:         Infosecurity-Magazine:       The Commentator:       The Commentator:

You Might Also Read: 

Cyber Crime Is An Increasing Risk For Charities:

 

« Hackers Are Exploiting Remote Workers
AI Is Closing The Cyber Skills Gap »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Norton Rose Fulbright

Norton Rose Fulbright

Norton Rose Fulbright is a global business law firm. Practice areas include Data protection, Privacy and Cybersecurity.

mmCERT

mmCERT

mmCERT is the national Computer Emergency Response Team for Myanmar.

Netrix

Netrix

Netrix is a Mexican company specialized in IT Security, with more than 18 years of experience in Managed Services, Professional Services and Turnkey Solutions related to Security.

Clym

Clym

Clym is the data privacy platform that helps organisations meet their data protection obligations. Cookies, Consent, Requests, Policies and more are all managed in a secure and adaptive application.

ubirch

ubirch

The ubirch platform is designed to ensure that IoT data is trustworthy and secure.

Infopulse

Infopulse

Infopulse is a global provider of Software Engineering, Cloud & IT Infrastructure Management, and Cybersecurity services.

IT Career Switch

IT Career Switch

An IT Career Switch Traineeship is the easiest way to start a new career in IT or Cybersecurity with fantastic career prospects.

ENLIGHTENi

ENLIGHTENi

ENLIGHTENi are the platform to develop next-gen talent in Technology, Risk, and Cybersecurity. Our mission is to develop next-gen talent through challenge-based learning and team collaboration.

Electric Power Research Institute (EPRI)

Electric Power Research Institute (EPRI)

The Electric Power Research Institute’s Cyber Security Research Laboratory (CSRL) addresses the security issues of critical functions of electric utilities.

Kasm Technologies

Kasm Technologies

Kasm Browser Isolation - Protect your organization from malware, ransomware and phishing by using zero-trust containerized browsers.

MindWise

MindWise

MindWise is a comprehensive global threat monitoring solution with implementations for fraud prevention and enterprise threat intelligence.

Nullify

Nullify

Nullify is your automated security sentry that continuously finds and fixes security issues across your codebase.

Technology Mindz

Technology Mindz

Technology Mindz is a leading provider of cybersecurity services. We offer a wide range of services to help businesses. Our services are Identity and access management, Governance risk and compliance.

Star Lab

Star Lab

Star Lab specializes in the development and productization of embedded security technologies.

CyberSalus

CyberSalus

CyberSalus is a pioneering cyber tech services company dedicated to protecting the digital integrity of healthcare organizations.

Odaseva

Odaseva

Odaseva delivers the strongest data security solution for enterprises running on Salesforce, safeguarding confidentiality and integrity of critical business information.