Cyberattack On UK Labour Party System – Experts Reactions

Just one month before the UK’s general election, Labour has revealed it has been hit by two large-scale cyberattacks on its digital platforms. Whilst the Labour party states its IT systems have withstood the first attack with no detected data breaches, the distributed denial of Service (DDoS) attack has left the website running at sub-optimal speed, with a second attack now plaguing its platform.


EXPERTS COMMENTS
Anthony Webb, EMEA Vice President ,  A10 Networks
November 19, 2019
The choice of defensive policy will be determined by the size of the enterprise and its resources.
Distributed denial of service (DDoS) attacks present one of the most dangerous forms of cyber threat for political parties and can cause serious reputational and financial damage. This is especially prominent during a General Election campaign when the party will be engaged in influencing voters, thus widening their cyber footprint. The UK Labour Party has suffered two DDoS attacks in quick succes ....
[Read More >>]
Andy Heather, VP,  Centrify
November 13, 2019
Tackling this growing threat requires all political parties to take the risks posed by hackers extremely seriously.
Outside interference in general elections from malicious parties and cyber criminals can jeopardise trust in the democratic process. Tackling this growing threat requires all political parties to take the risks posed by hackers extremely seriously, particularly when confidential voter data including contact details and home addresses are at risk in a breach. All too often we’re seeing online cri ....
[Read More >>]
Tim Dunton, MD,  Nimbus Hosting
November 13, 2019
With the general election in full swing and all the main parties investing heavily in digital campaigns.
With the general election in full swing and all the main parties investing heavily in digital campaigns, it’s no surprise that malicious hackers are hoping to cause chaos and damage the democratic process. This incident is another reminder of why ensuring the highest standards of cyber security are in place to protect party websites and confidential voter data from theft. Additionally, it’s vi ....
[Read More >>]
Boris Cipot, Senior Sales Engineer ,  Synopsys
November 13, 2019
It is a complex task to find the issuer of a DDoS attack.
A DDoS (Distributed Denial of Service) attack attempts to disrupt a network service by bombarding it with requests. A DDoS attack could shut down a webpage, for instance, if too many computers request the webpage at once, thus causing the webserver to be unable to handle the magnitude of responses. Such an attack can be issued to a specific network service/resource or its surrounding infrastructur ....
[Read More >>]
Sam Curry, Chief Security Officer,  Cybereason
November 13, 2019
This is a reminder that we should all become more resilient.
DDoS is done to deny service, disrupt business or to punch your opponent square in the mouth. Most DDoS attacks are not particularly sophisticated and can be readily handled with the right products and services. However, most organisations aren't prepared for high volume or application-level attacks to their networks. DDoS attacks are notoriously difficult to attribute to particular actors or play ....
[Read More >>]
Eoin Keary, CEO and Cofounder,  Edgescan
November 13, 2019
Many cloud providers offer DDoS protection services which are worth considering for transactional sites.
Cheap computing power and cloud availability has resulted in a rise of such Denial of service attacks. They are a less popular attack vector than ransomware but nevertheless can affect the availability of a website or service quite quickly. Many cloud providers offer DDoS protection services which are worth considering for transactional sites, which if were made unavailable may result in revenue l ....
[Read More >>]
Robert Ramsden Board, VP EMEA ,  Securonix
November 13, 2019
The failure of the attack against the Labour Party headquarters should act as a reminder to political organisations of the enormous benefits.
Large scale cyber-attacks against political organisations is growing concern for political parties. As attackers become more sophisticated and persistent in their methods governments and political organisations need to invest in robust security systems to avoid operational disruptions or data loss. The failure of the attack against the Labour Party headquarters should act as a reminder to politica ....
[Read More >>]
Dan Pitman, Principal Security Architect,  Alert Logic
November 13, 2019
It’s entirely plausible that someone without any hacking experience paid for the DDoS attack on the ‘dark web’ from what is known as a ‘booter’.
There is no information on who the culprits might be right now, but a DDoS attack is not complex to arrange but takes resources to setup from scratch. It’s entirely plausible that someone without any hacking experience paid for the DDoS attack on the ‘dark web’ from what is known as a ‘booter’ – a paid-for service where a hacking group will lease out their existing botnet to perform th ....
[Read More >>]
Kieran Roberts, Head of Penetration Testing ,  Bulletproof
November 13, 2019
DDoS alone is not necessarily a sophisticated attack; it could literally be driven by a single individual with a botnet.
DDoS alone is not necessarily a sophisticated attack; it could literally be driven by a single individual with a botnet. The issue with DDoS is the pure volume of traffic which can also be used as a smokescreen, that's not to say that this is the case here though. At the moment we don’t have a lot of info, but certainly, interesting timing given the Government’s refusal to release their report ....
[Read More >>]
Jake Moore, Cybersecurity Specialist,  ESET
November 13, 2019
It is likely that all of the political parties will continue to be targeted during the campaign period.
In the run up to a general election, political parties become an even bigger target than usual. Attacks may not necessarily come from within the opposition, but more likely from someone trying to either raise awareness, or simply make noise. If this attack had been more successful, it could have had some rather embarrassing results, but it still stands as a warning to all political parties to rais ....
[Read More >>]
Mike Fentonat , CEO & the Threat Detection and Response Specialist,  Redscan
November 13, 2019
Kudos to the Labour party for detecting and responding to the attack early.
Politically motivated cyber-attacks are nothing new, but the fact that they are now more targeted and advanced than ever, presents a growing danger to democracy. The pressure is on the intelligence services to identify where this attack came from, which may be easier said than done. While details around the attack remain scant, it is difficult to speculate on who the perpetrators might be. Nati ....
[Read More >>]
Azeem Aleem, VP Security Consulting UK&I,  NTT
November 13, 2019
The traditional security perimeter is melting and so the attack surface is increasing.
We have seen some evidence of targeted cyber-activity previously in the US elections and with our own General Election just one month away this attack serves as a wake-up call to UK political parties as to the length which cyber criminals are prepared to go to disrupt, not just for commercial and national security implications but in this case, for political gain too. The traditional security ....
[Read More >>]
Anthony Chadd, Global SVP,  Neustar
November 13, 2019
Increasingly, hackers are moving away from large-scale DDoS attacks, to smaller, hyper-targeted ones.
With the Labour Party announcing today that it has successfully guarded against a DDoS attack on its digital platforms, new concerns have been raised about the security of sensitive government information as we rapidly approach the 2019 general election. While the attack originated from computers in Brazil and Russia, it was reportedly not state sponsored. And yet it serves as an important reminde ....
[Read More >>]
Ryan Kalember, Executive Vice President of Cyber Security Strategy,  Proofpoint
November 13, 2019
The recent attempted attack on the UK Labour Party underscores a significant issue impacting nations worldwide.
The recent attempted attack on the UK Labour Party underscores a significant issue impacting nations worldwide. Whilst this latest attempt at disrupting the democratic process points to a DDOS attack, which was thankfully foiled, these types of attacks are often used as diversions whilst others are being carried out. As such, UK political parties need to be on high alert over the next month pendin ....
[Read More >>]
Stuart Reed, UK Director,  Orange Cyberdefense
November 13, 2019
This is the first stone to be thrown in the cybersecurity space for this election but it won't be the last.
The news of a ‘large-scale cyber attack’ on the Labour Party’s digital platforms really comes as no surprise. Arguably, it was only a matter of time before the fierce competition on the campaign trail made its way into the online world. Whether this was an attack by another party or an outsider hasn’t been revealed, but it demonstrates that these elections, more than any other, will be fou ....
[Read More >>]
Corin Imai, Senior Security Advisor ,  DomainTools
November 13, 2019
The incident is an example of just how susceptible to cybercriminal activity our democratic process can be.
This should be a significant concern to all voters in the UK regardless of their political viewpoints. During a General Election, it is imperative that the main political parties are all given a fair and impartial hearing, and considering the importance of digital campaigning in modern election cycles, a DDoS attack such as this could give other parties an advantage. While there is no indication ....
[Read More >>]
Ronan David, VP of Strategy and Business Development,  EfficientIP
November 13, 2019
The DDoS (Distributed Denial of Service) attack reportedly used botnets to amplify its effectiveness.
The latest cyber attack on the British Labour Party was unsuccessful in extracting data this time round, but attacks on political bodies like these risk exposing extremely sensitive personal information or, at worst, potentially interfering with the UK’s politics at a sensitive time. The DDoS (Distributed Denial of Service) attack reportedly used botnets to amplify its effectiveness, allowing ha ....
[Read More >>]

If you are an expert on this topic:

Submit Your Expert Comments


In this article