News Hub

Iran launched cyber attacks against UK infrastructure

Written by Wed 3 Apr 2019

Iran stole over 10,000 data records from UK local government networks and Post Office days before Christmas, claims Sky News

Iran has been accused of launching a number of cyber attacks on the Post Office and the UK’s local government networks in the lead-up to Christmas, it has been reported.

According to Sky News, the attacks took place on December 23, with more than 10,000 pieces of data records stolen, such as email addresses, postal addresses, company positions and phone numbers, including the mobile number of Post Office chief executive Paula Vennells and at least 10 peers and MPs.

Other private companies and banks were also affected, cyber security experts said, blaming an Iranian Revolutionary Guard group for the incident and a previous attack hitting the parliamentary network in 2017.

British security services have not confirmed Iran’s involvement, but the National Cyber Security Centre said it was “aware of a cyber incident affecting some UK organisations in late 2018”.

“Political disruption provides a fertile ground for cyber-attacks against government, non-government and international organisations, meaning it’s hardly surprising malicious actors in Iran have mounted an attack against the UK,” said Darren Anstee, chief technical officer at IT specialist firm Netscout.

“Attacks by Iran can be effective, as groups in the country are known to be employing new techniques, as well as combining custom-made tools with commodity crimeware to extend their reach and impact.

“As a result, it is critical that governments and organisations make themselves aware of these new methods to disrupt and interfere with domestic and international affairs. It is also essential that governments and businesses collaborate closely to neutralise threats and prevent attacks on national institutions.”

The news comes as social networks continue to fight interference from Iran and other countries seeking to manipulate political events elsewhere.

In February, Facebook said it had removed 783 pages, groups and accounts “engaging in co-ordinated inauthentic behaviour tied to Iran” using repurposed news stories from Iranian state media, about topics such as Israeli-Palestinian relations and the conflicts in Syria and Yemen.

The bad actors misrepresented themselves as originating from other countries, but were traced back to Iran.

In November, the FBI identified two Iranian perpetrators responsible for the  2015 cyber attacks against hospitals, government agencies and institutions in US and Canada.

The attacks infected more than 230 entities, caused $30 billion in damages and netted the duo $6 (£4.5) million from ransom payments extorted.

Written by Wed 3 Apr 2019


cyber attack iran public sector
Send us a correction Send us a news tip