London’s National Gallery Hit With 2 Million Attacks

Uploaded on 2020-03-30 in NEWS-Cybersecurity News, FREE TO VIEW

The National Gallery, one of London’s most popular art museums based in Trafalgar Square was hit with a staggering 1,875,250 email cyber-attacks last year. The gallery, which attracts over five million visitors every year, was hit by an astonishing total of 1,875,250 email cyber-attacks in 2019. These came in a variety of forms, including spam and virus attempts.

This is according to official figures obtained by Absolute Software, the cyber security specialists and leader in endpoint resilience. Absolute Software obtained the information via a Freedom of Information request. The figures displayed the lengths cyber-criminals went to try and steal the personal and financial data of members of the major tourist attraction.

 “It’s clear that cyber-criminals are mastering the art of malicious email attacks, designed to infiltrate the National Gallery and steal confidential data.... With millions of visitors every year and tens of thousands of members, it’s vital that London’s leading tourist hotspots have the right systems in place to protect devices from infiltration.” said Andy Harcup of  Absolute Software, 

The National Gallery, which is a non-departmental public body of the Department for Digital, Culture, Media and Sport, prevented a wide range of sophisticated attacks from reaching their destination. The gallery's online security team successfuly blocked email addresses software was able to quarantine 1,176,656 different attack attempts, while its detection software blocked 18,378 spam emails and 443,741 attempted connection emails. 

A further 179,844 emails were stopped under the category of anti-spoofing lockout and 10,959 were registered as manual envelope rejection. Another 2810 emails were blocked under the category of Simple Mail Transfer Protocol (SMTP).
“With many major museums now closed due to the COVID-19 outbreak, it’s critical that enterprises have full visibility of the assets allocated to remote workers as well as always having control of those assets in case of the need to take action,” added Harcup.

The National Portrait Gallery, another one of London’s most prestigious art galleries, was targeted by 347,602 emails containing spam, phishing and malware attacks in the final quarter of 2019, according to official figures and this data underlines the threat posed to the capital’s museums by malicious hackers who are intent on stealing membership data from tourist hotspots.

Of the 347,602 blocked email attacks, 56 per cent (194,620) were identified as Directory Harvest Attacks (DHA).
A DHA is an attempt to determine the valid e-mail addresses of employees or individuals associated with an organisation’s server so that they can be added to a spam database. Additionally, 61,710 emails were blocked as the sender belonged to a ‘threat intelligence blacklist’.

In 2017, London art dealers were defrauded out of hundreds of thousands of pounds after hackers successfully breached company email accounts to monitor correspondence between clients.  The incident resulted in fresh cyber security guidance being issued by the Society of London Art Dealers, as well as tips for avoiding email fraud.

CloudPro:         Infosecurity-Magazine:       The Commentator:       The Commentator:

You Might Also Read: 

Cyber Crime Is An Increasing Risk For Charities:

 

« Hackers Are Exploiting Remote Workers
AI Is Closing The Cyber Skills Gap »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

FT Cyber Resilience Summit: Europe

FT Cyber Resilience Summit: Europe

27 November 2024 | In-Person & Digital | 22 Bishopsgate, London. Business leaders, Innovators & Experts address evolving cybersecurity risks.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Pervade Software

Pervade Software

Pervade Software is a global provider of dedicated compliance tracking software with monitoring & reporting capabilities.

Centre for Cyber Security (CFCS) - Denmark

Centre for Cyber Security (CFCS) - Denmark

The Centre for Cyber Security is the Danish national IT security authority, Network Security Service and Centre for Excellence within cyber security.

Tenfold Software

Tenfold Software

Tenfold is the unique, centralized platform for managing user and permissions efficiently and automatically.

Shift Technology

Shift Technology

Shift Technology provides insurance companies with an innovative SaaS solution to improve and scale fraud detection.

LMG Security

LMG Security

LMG Security is a cybersecurity consulting, research and training firm.

Infosec Train

Infosec Train

Infosec Train provide professional training, certifications & professional services related to all spheres of Information Technology and Cyber Security.

Nordic Cyber Summit

Nordic Cyber Summit

Nordic Cyber Security Summit addresses a wide range of technological issues from the IT Security spectrum and also provides a wider perspective from all aspects of the industry.

ProWriters

ProWriters

As a leading cyber insurance company, ProWriters offers flexible Cyber Liability Insurance coverage designed to cover privacy, data, and network exposures.

iTechArt Group

iTechArt Group

iTechArt is a top-tier custom software development company offering Cybersecurity Consulting, Application Security Testing, Risk Management and Compliance, and Infrastructure Security services.

eSec Forte Technologies

eSec Forte Technologies

eSec Forte Technologies is a CMMI Level-3 ISO 9001-2008, 27001-2013 certified global consulting and implementation company focused on Information Security and Cyber Security.

IntelliDyne

IntelliDyne

IntelliDyne is a leading information technology consulting firm enabling better mission performance through innovative technology solutions.

Aikido Technology Services

Aikido Technology Services

Aikido Technology Services is a leading-edge technology solutions provider, servicing the Pacific North West USA. We offer affordable IT solutions designed to streamline and secure your business.

Mindflow

Mindflow

Mindflow is dedicated to bringing answers to the challenges the cybersecurity field and beyond face today.

Offenso Hackers Academy

Offenso Hackers Academy

At Offenso we focus on cyber security training focused on producing cyber security professionals with a wide range of abilities to counter threats from the internet and cloud to a business.

Aberrant

Aberrant

A radically new approach to managing information security. Aberrant is the single pane of glass through which a security program can be viewed.

MIND

MIND

MIND is the first-ever data security platform that puts data loss prevention and insider risk management programs on autopilot, so you can automatically identify, detect and prevent data leaks.