Labour sticks to ‘basic’ $20 cyber defence after attacks, emails show
Britain's opposition Labour Party was using a $20-a-month "basic security" service to protect its website when hackers attempted to force it offline last week and temporarily slowed down online campaigning, according to internal emails seen by Reuters.
Such entry-level protection is not recommended for large organisations at high risk of cyber-attacks, but the messages show Labour has since decided against upgrading to an increased security package on grounds of cost.
Labour and Britain's governing Conservative Party were hit by back-to-back cyber-attacks last week, just days into an election campaign security officials have warned could be disrupted by foreign hackers.
Labour uses the services of cybersecurity firm Cloudflare to help protect its website from attacks, party emails show, but only the level the company recommends for "professional websites, blogs, and portfolios requiring basic security."
After the attacks, the party considered upgrading to the increased security measures used by large organisations to help ensure their websites stay online, but decided the $60,000 annual cost was unjustifiable, according to the emails.
While the lower-tier security package protected the Labour site from major damage, it may not be enough if the party is hit by more sophisticated attacks, said a person with knowledge of the matter.
In a separate message, Labour's head of technology warned that the party could be at increased risk of cyber-attacks on the days of two televised election debates and its upcoming manifesto launch.
A Labour party spokesman declined to comment. Cloudflare did not respond to a request for comment.
A Conservative Party spokeswoman did not respond directly to questions about the type of website defences used by the party.
"We have the appropriate security measures in place to protect the party's IT and web infrastructure so were not disrupted in the recent incident," she said.
Election
The country's security agencies have warned that Russia and other countries may attempt to disrupt the election with cyber-attacks or divisive political messages on social media, a charge Moscow denies.
Officials say initial investigations have found nothing to link the attacks on Labour and the Conservatives to a foreign state.
The attackers used a common and relatively simple technique to attempt to force the parties' web services offline by flooding them with traffic.
Cloudflare says its services help defend against so-called distributed denial-of-service (DDoS) attacks by filtering out malicious website requests and absorbing the additional traffic.
Both Labour and the Conservatives have provided data to the police and Britain's National Cyber Security Centre (NCSC), part of the GCHQ signals intelligence agency, to help investigate the attacks, according to people with knowledge of the matter.
The NCSC said analysis was ongoing following last week's attacks but declined to comment on specific defences used by individual political parties.
"We are confident that the Labour party took the necessary steps to deal with the attack. The attack was not successful," an NCSC spokeswoman said, adding that major parties have been briefed on how to guard against future DDoS attacks.
source teiss
Industry: Cyber Security
Latest Jobs
-
- CONTRACT SOC Manager. London / Birmingham. URGENT Immediate role.
- London
- N/A
-
REF7847 Contract SOC Manager. SC cleared, London / Birmingham. Initial 3 month Contract. SOC Manager needed to for an URGENT 3-4 month CONTRACT. SC clearance is essential. The project is to aid in the setup, implementation and management of resources to help with the initial stand up stages of a new SOC within a greenfield site. This is a short term contract role whilst a permanent hire is brought on over the coming 3 to 4 months. Experience engaging with and managing client stakeholder relationships as well as 3rd party relationships is critical. The role will involve; setting up, implementing and fine tuning the various initial stages of a SOC environment. Experience establishing and building out technical process / operational capability, managing of technical teams (analysts, engineers and architects, creation of policy / playbooks, fine turning is key. SPLUNK is the tooling of choice… Interviewing immediately. Set up a call with me today on https://calendly.com/chris-holt/arranged-call-with-chris-holt-remote-soc-role Direct contact details Chris.Holt@dclsearch.com or 07884666351
-
- SPLUNK Level 3 SOC Consultant, SIEM Splunk, London / Birmingham
- Birmingham
- 55000
-
REF CH7825 Level 3 SOC Consultant, SIEM Splunk, London / Birmingham £55,000 + Level 3 SOC Consultant, SIEM SPLUNK needed. Security Clearance. Permanent role Level 3 SOC Consultant, SIEM SPLUNK needed to join a public sector client. The ability to achieve SC clearance is essential. MUST have experience working with SPLUNK ideally to an Advanced Power User level. Splunk Enterprise Security (ES) knowledge and hands on experience highly desirable. The role will include, but not be limited to; managing and handling incidents end to end, supporting and mentoring level 1 / level 2 staff, supporting the SOC manager in the delivery of the SOC roadmap, engaging with the client stakeholders (other technical teams) as and where needed, use case development, advanced search and reporting etc. The individual MUST currently be living in the UK and be able to achieve UK security clearance. (SC) This is a permanent role To arrange a call with Chris Holt use this calendy link https://calendly.com/chris-holt/arranged-call-with-chris-holt-remote-soc-role Chris.Holt@dclsearch.com
-
- Aspiring Cyber Partner. Business lead, market maker.
- London
- 150000+
-
Aspiring Cyber Partner (management consultancy) with Cyber specialism into Healthcare, Utilities and or Public Sector. Working with new and existing clients to help them solve, transform or evolve their cyber capabilities. MUST have; A proven management consultancy background in cyber. A history of identifying and closing new business opportunities. Currently Revenue generating / must be able to demonstrate recent wins. Client facing to board level with international businesses. Team leadership / mentoring experience. Extensive cyber industry experience. Digital transformation, Start-up environments etc. Experienced presenter at industry events, to be the public face of a business / capability. Breadth of knowledge across Cyber security. Service definition / creation. Would consider a senior director with experience delivering the above looking to step up. All conversations kept in confidence. To arrange a discreet call book a time to speak in my diary via https://calendly.com/chris-holt/cyber-partner-call Chris.Holt@dclsearch.com
-
- Internal Security Auditor, Level 1 Service Provider (ISO27001)
- London
- Upto 65,000 plus benefits
-
Internal Security Auditor ISO 27001, PCI, needed to join a Cyber team within this expanding Fintech business. The Internal Security Auditor will have end to end responsibility for planning, delivering, remediating any findings etc. Experience working within financial services is highly desirable. This Is a great time to join a newly formed and growing Cyber team within a rapidly expanding fintech, that is taking a major share of its market. We are looking for someone with experience, (but not to be limited to) a mix of Information Security standards, frameworks, audit principles, controls / policies and the management and use of the technical tooling etc. ISO 22301, ISO 27001, NIST Cybersecurity Framework etc An ideal candidate will be working within an end user environment with a cyber consultancy background. Experience taking a company through accreditation is highly desirable Experience managing internal stakeholders, technical teams and external third parties essential Flexible working, but with the ability to get into London. This is an exclusive role to DCL Search & Selection.