The Channel logo

News

By | Kat Hall 4th March 2016 11:48

North Dorset Council hit by ransomware, flips the bird at miscreants

'We will not make ransom payments in such circumstances'

North Dorset District Council in England's southwest is working with police to identify the source of a ransomware infection in this week.

It is the latest outbreak of file-scrambling malware in what IT security experts believe to be a growing problem for local authorities in the UK.

According to an email seen by The Register, the attack had infected 6,000 files on the council's servers by Tuesday.

However, the council said yesterday evening the problem had been fixed.

Councillor Graham Carr-Jones, deputy leader of North Dorset District Council, said: “The ‘ransomware’ attack was quickly detected by our security systems and action was taken to minimise the impact on our systems. No customer data was compromised.

“The council has not made, and will not make ransom payments in such circumstances. We are currently working with other public sector agencies, including the police to identify the source.”

It follows an attack on Lincolnshire County Council last month leading it to turn off all of its networks' computers.

The council eventually got its IT back up and running after attackers demanded a £350 Bitcoin payment.

Mark James, security specialist at ESET, said that many public sector bodies are sitting targets for attackers due to the nature of the data they hold and the cost constraints of upgrading all their systems.

"We hear about healthcare a lot, which is particularly serious because if those systems go offline we're not just talking about malicious software, but peoples' lives," said James.

He added that with more sophisticated encryption targets have little choice between restoring their systems from a backup or paying the ransom.

Eddy Willems, security specialist at G-Data, said attackers were deliberately targeting organisations which appear more likely to pay the ransom to get back online. "Some of these organisations do not have the latest backup [systems] installed," he said.

"We are seeing an increase in the amount of ransomware than previously – there has been an evolution in what's available and will become an even bigger problem in the next year," he added.

Willems concluded that the ransomware problem is not that difficult to stop, providing organisations have the correct security measures in place. ®

comment icon Read 41 comments on this article or post a comment alert Send corrections

Opinion

Baby looks taken aback/shocked/affronted. Photo by Shutterstock

Kat Hall

Plans for 2 million FTTP connections in next four years 'not enough'
Microsoft CEO Satya Nadella
Stranded_ships

Chris Mellor

Thousands of layoffs announced as spinning rust enters its death spiral

Features

Locker room jocks photo via Shutterstock
Best locker-room strategy: Avoid emulating AWS directly
STRASBOURG, JUNE 29, 2016: The seat of the European Parliament. by Marco Aprile for shutterstock. EDITORIAL USE ONLY
Plan b, image via Shutterstock
EU workers, new markets: post-Brexit pressure on May & Co
Tough question, pic via Shutterstock