NCSC Come Off Bench To Help Manchester United

Uploaded on 2020-11-27 in TECHNOLOGY--Hackers, FREE TO VIEW

The British National Cyber Security Centre (NCSC) is assisting Manchester United with its recovery after a cyber attack, which has meant the football club has been unable to fully restore its computer systems. The NCSC has been advising United, with the club working to ensure the network is secure before switching it back on. In the meantime email is unavailable to staff along with some other operations.

 The Premier League club confirmed the hacking on November 20 and said it was not “aware of any breach of personal data associated with our fans and customers”, however,according to some newspaper reports Manchester United’s network has been affected by ransomware.

It said in a statement: “The club has taken swift actions to contain the attack and is currently working with expert advisors to investigate the incident and minimise the ongoing IT disruption... The club has extensive protocols and procedures in place for such an event and had rehearsed for this risk. Our cyber defences identified the attack and shut down affected systems to contain the damage and protect data.”

The club’s media channels, including its website and mobile app, were not affected, and nor is it currently aware of any breach of fan data it may hold although club staff still do not have access to email and some other functions are still not available.

Manchester United has said it would not comment on who was responsible for this attack or their motives."This attack was by nature disruptive, but we are not currently aware of any fan data being compromised. Critical systems required for matches to take place at the Old Trafford stadium remained secure and games have gone ahead as normal.”

Last week, United informed the Information Commissioner’s Office, as legally required, although they could yet face a fine from the data regulator if fan data is compromised as a result of the attack. On November 13, Ticketmaster was issued a £1.25 million fine for failing to keep its customers’ personal data secure in a 2018 attack.

The NCSC’s annual review showed the organisation defended the UK from more than 700 cyber-attacks over the last year. It noted a rise in the number of ransomware attacks – where attackers lock access to data until a ransom is paid, being deployed. 

The NCSC said it dealt with more than three times as many ransomware incidents compared with last year and noted that criminals were changing their approach during such attacks to increasingly threaten to leak information publicly unless payment is made. The NCSC’s report also revealed it had scanned more than one million IP addresses linked to the NHS for vulnerabilities as part of efforts to protect the health service. Out of 723 cyber incidents between September 2019 and the end of August this year handled by the agency, 194 were directly linked to the coronavirus pandemic.

The NCSC noted that criminals were changing their approach during such attacks to increasingly threaten to leak information publicly unless payment is made.

NCSC:      Sky Sports:       Peebleshire News:     Guardian:    Computer Weekly:

 You Might Also Read: 

Russian Spies Hacked The Korean Olympics:

 

« A ‘FunnyDream’ From China
New British Telecoms Security Law »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Greensafe IT

Greensafe IT

Greensafe offer various onsite and offsite data erasure services, aimed at increasing data security whilst reducing any risk of data loss during transit.

Global Cybersecurity Forum (GCF)

Global Cybersecurity Forum (GCF)

Global Cybersecurity Forum is a catalyst platform designed to create a more resilient and better cyberworld for all.

Lumu Technologies

Lumu Technologies

Lumu is a cybersecurity company that illuminates threats and attacks affecting enterprises worldwide.

Com Laude

Com Laude

Com Laude is a domain name management company that provides strategic consulting to help companies strengthen digital brand, safeguard customers & protect brand IP.

Netragard

Netragard

Netragard has an established reputation for providing high-quality offensive and defensive security services.

Keysight Technologies

Keysight Technologies

Keysight is dedicated to providing tomorrow’s test technologies today, enabling our customers to connect and secure the world with their innovations.

East Midlands Cyber Resilience Centre (EMCRC)

East Midlands Cyber Resilience Centre (EMCRC)

The East Midlands Cyber Resilience Centre is set up to support and help protect businesses across the region against cyber crime.

evolutionQ

evolutionQ

evolutionQ delivers quantum-risk management strategies and robust cybersecurity tools designed to be safe in an era with quantum computing technologies.

Digistor

Digistor

Digistor is a leading manufacturer of industrial-grade flash storage products, secure storage products, and Removable Secure Data Storage.

ID R&D

ID R&D

ID R&D is an award-winning provider of AI-based facial liveness, document liveness, and voice biometrics.

SignMyCode

SignMyCode

SignMyCode is a one-stop shop for trusted and authentic code signing solutions to safeguard software.

NuKuDo

NuKuDo

NukuDo redefine the boundaries of cybersecurity talent development. We are dedicated to cultivating top-tier professionals equipped to tackle the complex challenges of cybersecurity.

DataGuard

DataGuard

DataGuard is a security and compliance software company trusted by organisations across the globe.

Aztek

Aztek

Aztek is one of the UK’s leading Managed Service Providers, providing customer-focused IT, Communication and Cyber Security solutions to help transform and grow your business.

Sattrix Information Security

Sattrix Information Security

Sattrix Information Security helps small, mid, and large enterprises in the area of digital transformation with a focus on information security.

ALSO Group

ALSO Group

ALSO is one of the leading technology providers for the ICT industry currently active in 31 countries in Europe and in many countries worldwide via PaaS (Platform as a Service) partners.