• Follow us


Why UK government organisations are a key target for cyberattacks

The WannaCry ransomware attack in 2017 highlighted the systemic vulnerability of the UK’s government organisations: their networks are open, and their email security protocols are outdated and inconsistent. Two years on, they remain a soft target for cybercriminals looking to extort quick profits and nation state hackers seeking to gain an advantage in the ever-intensifying global cyberwar. 

Not only are these organisations soft targets, they are also of high value to cybercrime groups. Once they bypass the typically rudimentary security applications of a government body, adversaries are able to access the much wider bureaucratic network of councils, employees and agencies. With it they can inflict huge damage by charging high ransoms and bringing a halt to the digital infrastructure that manages and controls public services.

One way that criminals try to infiltrate these organisations is through their email networks. Open by default and lacking a consistent set of security standards, many of these networks are highly vulnerable to phishing, BEC scams and other forms of social engineering attacks.

Through an initiative named Active Cyber Defence (ACD), the National Cyber Security Centre (NCSC) is trying to ameliorate these endemic vulnerabilities. Central to its strategy is encouraging and helping government organisations to implement Domain-based Message Authentication, Reporting and Conformance (DMARC), a basic and ultimately flawed protocol which helps users to authenticate inbound emails. Approximately two thirds of government organisations have failed to do so.

So why aren’t government organisations doing more to protect their systems, the services they manage and the citizens they serve?

Soft targets for hard-hitting cybercrime groups

The first problem that these organisations face is being part of a huge bureaucracy of hundreds of disparate governmental departments and thousands of other external groups, which rely on email to communicate with one another. Every new and unauthorised communication between groups and stakeholders presents a new relationship for attackers to hijack and an attack path to exploit.

As well as being soft targets, these organisations possess the kind of desirable data and influence that hackers can leverage to line their pockets, conduct espionage or wreak infrastructural havoc. This makes them a potentially fruitful venture for cybercrime groups which, like any business, seek to minimise costs and maximise efficiency and profits.

Despite the potentially catastrophic consequences, as typified by the WannaCry attack in 2017, government organisations’ email networks remain largely unprotected. Even the NCSC’s warning that social engineering attacks and spear-phishing are the biggest threats currently facing the UK, have fallen on the deaf ears of more than two thirds of government organisations. This is in stark contrast with the 90 per cent of central government departments which have implemented DMARC protocol.

However, those government organisations and departments that have heeded the NCSC’s advice aren’t exactly impregnable. Although it has its advantages, DMARC isn’t a silver bullet for securing email networks. This is because, while it safeguards senders from direct impersonation by attackers, it does little in the way of protecting the recipients on the receiving end of this form of attack. And cybercriminals know it.

By co-opting one of the tens of thousands of employee email addresses that are readily accessible on governmental websites, phishers can circumvent DMARC authentication by sending purportedly legitimate emails containing malicious files or links to unsuspecting recipients. This pitfall has the potential to cause government bodies huge financial and structural damage. By duping an unknowing employee into inadvertently downloading malware via a malicious link, or disclosing a large dataset containing citizen information, attackers can continue to infiltrate, and extract from, fragile email networks.

Following the phaseout of the Government Secure Intranet (GSI) platform in March, government organisations are even more susceptible to these kinds of threats than ever. A network that enabled secure electronic communication for over ten years, GSI was vital in providing low-level protection to all bodies and agencies within its network. In preparation of this change, the UK Government Digital Service (GDS) strongly endorsed the implementation of DMARC protocol. However, without jurisdiction, this advice has fallen on mostly deaf ears. For those organisations that have ignored it, this could prove detrimental.

Targets of high value

By infiltrating one government organisation, cybercriminals might also endeavour to gain access to the much greater network of systems and employees it is part of. Doing so provides them with greater access to proprietary data and infrastructure and the subsequent power to cause detrimental financial, operational or political damage.

The damage caused by the WannaCry ransomware attack was so widespread and severe, hitting more 200,000 computers across the globe including thousands across the NHS, that it is still being felt today. The cause? Organisational negligence of security maintenance and procedure.

What government organisations need to do next

Fundamentally, it is the responsibility of each government organisation to secure its email network, the individuals that comprise it and the information and data that they manage and share through it. While the NCSC can provide advice and guidance on how to do so, it cannot mandate that these changes are actioned within a certain timeframe or to any sort of minimum standard like the Department of Homeland Security has in the US. Without any external pressure, the inherent slowness of governmental bureaucracy and the prioritisation of other more “urgent” tasks, government organisations lack the impetus, and the resources to act. The continuing failure to do so could prove an even greater drain on their resources and continuity in the long-run.

Therefore, rather than waiting to be hit by an attack, government organisations need to adopt a more proactive approach to email security. However, it is evident that, as spear-phishing and other social engineering techniques increase in number and sophistication, DMARC is not capable of holding back the tide. What is required is an advanced threat protection solution that can detect threats as attackers tweak and transform them. 

Maor Hizkiev, CTO and Co-Founder, BitDam

Read More

Leave A Comment

More News

Latest ITProPortal news

Redefining the term engineer in the workplace. 2019-07-01 05:00:10Lots of people have 'engineer' in their job title, but what is engineering?

The predictive art of retention – using data 2019-07-01 04:30:34As the number of people voluntarily leaving their job roles continues to rise, it is now harder than ever to attract and retain talent. More companies

Vital points to consider while choosing the platform 2019-07-01 04:00:27Selecting the best platform for your website is an absolute requirement for your business, but choosing the right platform isn’t that easy.

Modernising mission critical communications 2019-07-01 04:00:18The modernisation of mission critical communications with intelligent push-to-talk broadband solutions.

Wi-Fi 6 vs. 5G: Key advantages for businesses 2019-06-28 07:00:222019 will be a landmark year for wireless connectivity and the Internet of Things (IoT), with the launches of Wi-Fi 6 and 5G making headlines across t

Why UK government organisations are a key target 2019-06-28 06:30:44Why aren’t government organisations doing more to protect their systems, the services they manage and the citizens they serve?

Somerville bans facial recognition in public 2019-06-28 06:30:30After San Francisco comes Somerville, and after that - possibly Oakland

Russia's Google breached, users spied upon 2019-06-28 06:00:29Yandex says the attack was spotted at an early stage

Boards have woken up to the value of 2019-06-28 06:00:01Security is now a priority for boards but managing security is as complex as ever.

Seven reasons asset compliance blows-up 2019-06-28 05:30:32How TAM can help businesses stay compliant and avoid the most common pitfalls.

GDPR one year on: where do we stand? 2019-06-28 05:00:24As we pass the GDPR one-year anniversary, how has the data landscape changed?

Best practices for preventing and recovering from a 2019-06-28 04:00:29How to defend and recover from ransomware attacks.

TechRadar: Internet news

Women's Ashes live stream: how to watch England 2019-07-18 04:49:052019's epic England vs Australia cricket battle continues - can England strike back? Get a 2019 Women's Ashes live stream from anywhere on Earth.

Stage 12 Tour de France live stream: how 2019-07-18 04:43:05After a day on the flat, Le Tour riders head back to the mountains. Don't miss Stage 12 with this 2019 Tour de France live stream info.

iPhone 11, iPhone 11 Max and iPhone XR 2019-07-18 04:37:22This is potentially our best look at Apple's new iPhones so far, as case test models appear in a hands on video.

The Open 2019 live stream: how to watch 2019-07-18 04:19:34The players are on the course for the 148th Open Championship. Watch the golf with a 2019 Open live stream from anywhere on Earth.

Best translation software of 2019 2019-07-18 03:32:35Expanding into new global markets? Time to take your websites and software with you.

Dell's Black Friday in July deals are back 2019-07-18 02:01:37More Mega Deals hit the internet for Dell's Black Friday in July event.

Best cheap smartphones in Australia for 2019 2019-07-18 01:33:28Looking for a new mobile but want value for money? These smartphones offer a lot of bang for your buck.

Samsung Galaxy Tab S6 leak offers more proof 2019-07-17 21:32:12Official renders have leaked for Samsung's upcoming pro-tablet showing dual cameras and divisive rear-mounted S Pen.

Firefox will soon alert users if their saved 2019-07-17 21:21:21Mozilla is working on updating Firefox's security to integrate Lockwise password management with its Monitor tool.

Instagram is now hiding like counts in Australia, 2019-07-17 20:25:44Instagram seems to be nudging users to appreciate posts based on merit, not on how popular they are.

Microsoft Surface Pro 7: what we want to 2019-07-17 17:56:21The Microsoft Surface Pro 6 is already a great device, but what could Microsoft do with the Surface Pro 7?

macOS Catalina: macOS 10.15 release date, news and 2019-07-17 17:39:56Apple has announced macOS Catalina, the name for its macOS 10.15 release later this year. Here's everything we know.

TechCrunch » Enterprise

Investor Jocelyn Goldfein to join us on AI 2019-07-18 13:00:37Artificial intelligence is quickly becoming a foundational technology for enterprise software development and startups have begun addressing a variety

InCountry raises $15M for its cloud-based private data 2019-07-18 12:36:08The rise of data breaches, along with an expanding raft of regulations (now numbering 80 different regional regimes, and growing) have thrust data pro

VComply raises $2.5 million seed round led by 2019-07-18 09:00:47Risk and compliance management platform VComply announced today that it has picked up a $2.5 million seed round led by Accel Partners for its internat

Intel announces deep, multi-year partnership with SAP 2019-07-18 08:29:38Intel announced a deep partnership with SAP today around using advanced Intel technology to optimize SAP software tools. Specifically, the company pla

Southeast Asian cloud communications platform Wavecell acquired by 2019-07-17 23:03:49Wavecell, a cloud-communications platform for companies in Southeast Asia, announced today that it has been acquired by 8×8 in a deal worth abou

AT&T signs $2 billion cloud deal with Microsoft 2019-07-17 12:24:13While AWS leads the cloud infrastructure market by a wide margin, Microsoft isn’t doing too badly, ensconced firmly in second place, the only ot

ClassPass introduces a corporate wellness program 2019-07-17 10:24:28ClassPass has set up yet another revenue stream, signing to a corporate wellness program partners like Facebook, Glossier, Google, Morgan Stanley, Und

Dust Identity secures $10M Series A to identify 2019-07-17 10:03:30The idea behind Dust Identity was originally born in an MIT lab where the founders developed the base technology for uniquely identifying objects usin

Stonly lets you create interactive step-by-step guides to 2019-07-17 07:01:28French startup Stonly wants to empower users so that they can solve their issues by themselves. Instead of relying on customer support agents, Stonly

AlphaSense, a search engine for analysis and business 2019-07-17 06:10:14Google and its flagship search portal opened the door to the possibilities of how to build a business empire on the back of organising and navigating

ContractPodAi scores $55M for its ‘AI-powered’ contract management 2019-07-17 04:00:36ContractPodAi, a London-based startup that has developed what it describes as AI-powered contract lifecycle management software, is disclosing $55 mil

Qualtrics’ Julie Larson-Green will talk experience management at 2019-07-16 12:00:57We’re less than two months out from our first TC Sessions: Enterprise event, which is happening in San Francisco on September 5, and did you kno

Digital Trends

Best air conditioner deals: LG, TCL, and Frigidaire New! 2019-07-18 19:39:30We’re well into summer, but the hottest days are yet to come. Here are a few air conditioner deals available online right now for both portable

Walmart slashes prices on Xbox One, Sony PS4, New! 2019-07-18 19:35:37If you're in the market for a new Xbox One, Sony PS4, or Nintendo Switch games, there are quite a few Walmart discounts to choose from right now. Thi

Beats Solo3 wireless headphones still $140 off on New! 2019-07-18 19:30:58While Prime Day may have ended, Amazon has extended some deals for a few days. Wireless headphones are a popular purchase, and now on Amazon, the matt

Walmart’s Prime Day Nintendo Switch bundle deal is New! 2019-07-18 19:15:01The best bet for anyone looking to get their hands on Nintendo's latest console is to grab one of the bundle deals that pop up from time to time, and

The best free TV show episodes on YouTube New! 2019-07-18 19:05:33TV networks have made a habit of putting episodes from popular series on YouTube for free. From premium platforms like Showtime to experimental newcom

Marvel’s Avengers single-player campaign, customization make splash at New! 2019-07-18 19:00:58Marvel Entertainment is the belle of the ball at San Diego Comic-Con, as the company hosted a panel dedicated to the efforts being made to bring its p

Beat the summer heat: Walmart cuts 51% off New! 2019-07-18 19:00:28This is a perfect moment to get your own air conditioning as Walmart slashed the price of Honeywell CO25AE Portable Evaporative Air Cooler by over 50%

Stranger Things season 4: Here’s everything we know New! 2019-07-18 18:51:30After three wildly successful seasons of Stranger Things, everyone wants to know where Netflix will take the gang in season 4. Here's everything we k

Life after launch: Inside the massive effort to New! 2019-07-18 18:27:09The Apollo 11 mission put a man on the moon, but NASA didn’t necessarily preserve every step of the process. Researchers are trying to rescue th

Change from within: How the CTA could bring New! 2019-07-18 18:09:23With a sea of white, male faces as homogeneous as Wonder Bread, tech has an inclusivity problem -- and the trade group behind CES has answers. This we

Don’t miss these incredible Samsung 4K TV, QLED New! 2019-07-18 18:02:04Amazon Prime Day may be over, but Samsung's Black Friday in July sale is just heating up — and with discounts on QLED 4K TVs, 8K TVs, and sound

Digital Trends Live: Netflix loses subscribers, Uber’s in-car New! 2019-07-18 17:37:23On this episode of DT Live, we take a look at the biggest trending stories in tech, including Netflix’s subscriber loss, Uber’s in-car sho

Disclaimer and Notice:WorldProNews.com is not responsible of these news or any information published on this website.