British Elections: Labour Party Suffers Second Attack

The UK Labour Party election campaign has experienced two sophisticated and large-scale cyberattacks by hackers on its digital platforms this week. Labour is reportedly suffering a second cyber-attack after saying it successfully thwarted one on Monday 11th November. The party says it has "ongoing security processes in place" so users "may be experiencing some differences", which it is dealing with "quickly".

The Distributed Denial of Service (DDoS) attack floods a computer server with traffic to try to take it offline. Earlier, a Labour source said that attacks came from computers in Russia and Brazil.

The first attack was reported to the National Cyber Security Centre on Monday. A Labour spokeswoman had said the first cyberattack had ‘failed’ because of the party’s ‘robust security systems’ and that they were confident that no data breach occurred. Labour sources have confirmed it was targeted by a so-called distributed denial-of-service (DDoS) attack, one of the most common forms of cyberattack.

In a DDoS attack hackers flood a target’s online platforms with traffic from various sources, with the aim of slowing down access or causing websites to crash.

In a statement, Labour said: ‘We have experienced a sophisticated and large-scale cyberattack on Labour digital platforms. We took swift action and these attempts failed due to our robust security systems....The integrity of all our platforms was maintained and we are confident that no data breach occurred....Our security procedures have slowed down some of our campaign activities, but these were restored this morning and we are back up to full speed….We have reported the matter to the National Cyber Security Centre.’

Security experts believe that these types of attacks are usually carried out by a group of cyber criminals or a nation state. The last general election in 2017 was disrupted by the worldwide WannaCry attack, which hit hundreds of NHS trusts and GP practices, leading to thousands of appointments and operations being cancelled.

The NCSC subsequently attributed the attack to a shadowy North Korean crime organisation known as the Lazarus group

Following reports of a second cyber-attack, a Labour Party spokesperson said: "We have ongoing security processes in place to protect our platforms, so users may be experiencing some differences. We are dealing with this quickly and efficiently."

NCSC:         Metro:          BBC:     

You Might Also Read: 

Three In Five Politicians’ Websites Don’t Use Cyber Security:

Hackers Came, But the French Were Prepared:

 

 

« Closing The Skills Gap Starts At School
The Future Of Cybersecurity Jobs »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Nixon Peabody LLP

Nixon Peabody LLP

Nixon Peabody LLP is an international law firm with offices across the USA, Europe and Asia. Practice areas include Data Privacy and Cyber Security.

Radware

Radware

Radware is a global leader of application delivery and cyber security solutions for virtual, cloud and software defined data centers.

Zadara Storage

Zadara Storage

Zadara provide complete data backup and protection delivered as a fully-managed service.

Security Industry Association (SIA)

Security Industry Association (SIA)

The SIA's mission is to be a catalyst for success​ within the global security industry through information, insight and influence.

Bricata

Bricata

Bricata offers industry-leading IPS solutions for enterprise-wide threat prevention and unparalleled situational awareness.

Siepel

Siepel

Siepel manufactures high quality shielded rooms and anechoic chambers dedicated to TEMPEST, NEMP & HIRF.

TEISS

TEISS

Teiss.co.uk is a website dedicated to providing information about cyber security. TEISS also provide a series of conferences and events focused on cyber security.

Dracoon

Dracoon

DRACOON is market leader in the German-speaking region for secure enterprise file sharing.

InfoSec Conferences

InfoSec Conferences

InfoSec Conferences is an online directory of infosec conferences. We list every single Information Security conference, event and seminar within every niche in Cybersecurity.

VirtualArmour

VirtualArmour

VirtualArmour is a managed security services provider with global reach and local attitude.

Anthony Timbers LLC

Anthony Timbers LLC

Anthony Timbers is a cybersecurity consulting and penetration testing firm providing services to the Federal and Commercial sectors nationwide.

Jisc

Jisc

Jisc is a membership organisation working in partnership with the UK’s research and education communities to develop the digital technologies they need to teach, discover and thrive.

Cyral

Cyral

Easily observe, control, and protect your data endpoints in a cloud and DevOps-first world. Discover Data Mesh Security with Cyral.

Kompleye

Kompleye

Kompleye is a recognized cybersecurity and compliance audit organization that offer a comprehensive solution for different industries.

IT Voice

IT Voice

IT Voice specializes in Managed IT and VoIP solutions. Our focus is simplifying the technology so our customers can stay focused on what they do best.

DataPatrol

DataPatrol

DataPatrol is a software company, specialized in providing Security and Privacy of company’s data and information in an evolved way.