IT Systems and Data Protection

12.02.18

ICO forced to take down its website amid cryptocurrency hacker fears

The Information Commissioners Office (ICO) has had to take down its website as a “precautionary measure” against hackers, who have infected hundreds of government computers with a program that mines cryptocurrency.

The Student Loans Company, Scottish NHS helpline, and the websites of both Manchester City Council and Camden Council have been affected by the malware, which is believed to be called Coinhive, and uses other people’s computers to “mine” or generate currency similar to bitcoin.

It is thought the issue was brought about through the website Browsealoud, a website which increases the accessibility of webpages by reading out content to people with vision difficulties.

Rather than mining bitcoin, the most well-known cryptocurrency, the hacking software is being used to generate Monero – a rival currency worth around £180 per unit.

A spokesperson for the ICO said: “We are aware of the issue and are working to resolve it. We have taken our website down as a precautionary measure whilst this is done.”

The office is a non-departmental government body which is sponsored by the Department of Digital, Culture, Media and Sport and is responsible for providing local government organisations with guidance on the upcoming general data protection regulation (GDPR).

The ICO site is still down and it is unclear when services will resume although other affected sites have now returned.

In a statement, the National Cyber Security Centre (NCSC), said it was investigating the incident but that there was no immediate risk to the public.

“NCSC technical experts are examining data involving incidents of malware being used to illegally mine cryptocurrency,” a spokesperson said.

“The affected service has been taken offline, largely mitigating the issue. Government websites continue to operate securely.

“At this stage there is nothing to suggest that members of the public are at risk.”

TextHelp, which runs the Browsealoud service, is believed to have enacted its cyber-attack action plan after the incident, and is now consulting with an independent agency about a review of its security.

The attack is the second major malware outbreak on public sector networks in recent years after the ‘WannaCry’ incident early last year.

Rather than focusing on cryptocurrency, the earlier incident saw many NHS trusts targeted, with software shutting down individual terminals and demanding a specific sum of money to restore access.

Top image: scyther5

Have you got a story to tell? Would you like to become a PSE columnist? If so, click here.

Comments

There are no comments. Why not be the first?

Add your comment

 

public sector executive tv

more videos >

latest public sector news

Bill for cash-strapped council’s usage of ring-fenced money could be up to £16m

21/05/2018Bill for cash-strapped council’s usage of ring-fenced money could be up to £16m

 A new investigation into the usage of public funds by Northamptonshire County Council could levy the authority with a £16m grant bill... more >
Local authority’s enhanced powers ‘ripe for misuse’ for convicting hundreds of homeless, new figures show

21/05/2018Local authority’s enhanced powers ‘ripe for misuse’ for convicting hundreds of homeless, new figures show

People sleeping rough on Britain’s streets have been fined, given criminal records, or even imprisoned due to enhanced council powers to re... more >
Council calls on Whitehall to fix ‘broken’ funding system, rejects claims of bankruptcy

21/05/2018Council calls on Whitehall to fix ‘broken’ funding system, rejects claims of bankruptcy

A Conservative-controlled council has called on the government to sort out its “broken” funding system, and claimed it was not going ... more >

editor's comment

25/10/2017Take a moment to celebrate

Devolution, restructuring and widespread service reform: from a journalist’s perspective, it’s never been a more exciting time to report on the public sector. That’s why I could not be more thrilled to be taking over the reins at PSE at this key juncture. There could not be a feature that more perfectly encapsulates this... read more >

last word

The importance of openness after Grenfell

The importance of openness after Grenfell

Following the recent Grenfell Tower tragedy, Lord Porter, chairman of the LGA, argues that if the public are going to have faith in the safety testing process then everything must be out in the o... more > more last word articles >
Bill for cash-strapped council’s usage of ring-fenced money could be up to £16m

21/05/2018Bill for cash-strapped council’s usage of ring-fenced money could be up to £16m

 A new investigation into the usage of public funds by Northamptonshire County Council could levy the authority with a £16m grant bill after its apparent usage of ring-fenced cash on o... more >
Local authority’s enhanced powers ‘ripe for misuse’ for convicting hundreds of homeless, new figures show

21/05/2018Local authority’s enhanced powers ‘ripe for misuse’ for convicting hundreds of homeless, new figures show

People sleeping rough on Britain’s streets have been fined, given criminal records, or even imprisoned due to enhanced council powers to reduce homelessness. New figures obtained in a ... more >

the raven's daily blog

The complexities of Brexit and the hunt for exceptional data scientists

16/04/2018The complexities of Brexit and the hunt for exceptional data scientists

Christopher Gallagher, public sector – SAS, says it’s imperative that organisations have the most experienced data scientists at hand. The Civil Service is feeling immense Brexit stress. Making the right decisions, analysing the ‘best interests’ of the nation as a whole, as well as discrete segments of the populati... more >
read more blog posts from 'the raven' >

comment

The digital journey so far

08/05/2018The digital journey so far

Michael Sage, digital services group manager at Chelmsford City Council, outlines the authority’s journey towards becoming digitally indepe... more >
Equipping the cyber security gatekeepers

08/05/2018Equipping the cyber security gatekeepers

With the General Data Protection Regulation (GDPR) just around the corner, cyber security is on the lips of the whole public sector – but P... more >
The hydrogen revolution

08/05/2018The hydrogen revolution

PSE’s Josh Mines takes a look at an innovative scheme in Sheffield that will see some of the first hydrogen-fuelled vans begin work in the ... more >
Energy efficiency: not just a matter of more money

30/04/2018Energy efficiency: not just a matter of more money

David Reilly, head of cities & regions at the Carbon Trust, reports on the findings from this year’s Low Carbon Cities Conference. ... more >

interviews

GDPR: The public sector scarecrow

03/04/2018GDPR: The public sector scarecrow

SPONSORED INTERVIEW PSE’s Josh Mines chats to Martin de Martini, CIO of Y Soft, about what the General Data Protection Regulation (GDPR)... more >
Data at the heart of digital transformation

03/04/2018Data at the heart of digital transformation

SPONSORED INTERVIEW Grant Caley, UK & Ireland chief technologist at NetApp, speaks to PSE’s Luana Salles about the benefits of movin... more >
Keeping London safe

05/03/2018Keeping London safe

Theo Blackwell, London’s first-ever chief digital officer (CDO), speaks to PSE’s Luana Salles about the role he plays in ensuring the... more >
BIM: Digitising the public sector

19/02/2018BIM: Digitising the public sector

PSE’s Josh Mines talks to Stephen Crompton, CTO at GroupBC, and Stuart Bell, the company’s sales and marketing director, about how Bu... more >

public sector focus

View all News