Manchester United still crippled by 'disruptive' cyber attack

The UK’s cybersecurity agency is assisting Manchester United over a cyber attack earlier this month which has left the football club unable to yet fully restore their computer systems. The Premier League club confirmed the hacking on 20 November and said they were not “aware of any breach of personal data associated with our fans and customers”.

As of Thursday night, club staff still did not have access to email, and some other functions were also unavailable. The National Cyber Security Centre (NCSC) is now assisting them.

A spokesperson said: “The NCSC is aware of an incident affecting Manchester United Football Club and we are working with the organisation and partners to understand impact.”

On Thursday, the Premier League club reiterated they were not currently aware of any supporter data being affected. In a statement, United said: “Following the recent cyber attack on the club, our IT team and external experts secured our networks and have conducted forensic investigations.”

The club said they would not comment on who was “responsible for this attack or the motives”. The statement continued: “This attack was by nature disruptive, but we are not currently aware of any fan data being compromised.

“Critical systems required for matches to take place at Old Trafford remained secure and games have gone ahead as normal.” Last week United informed the Information Commissioner’s Office, as required.

They could face a fine from the data regulator if supporter data is compromised as a result of the cyber attack. On 13 November Ticketmaster was fined £1.25m for failing to keep its customers’ personal data secure in a 2018 attack.

Earlier this month, the NCSC’s annual review showed the organisation defended the UK from more than 700 cyber attacks over the last year. It noted a rise in the number of ransomware attacks – where attackers lock access to data until a ransom is paid – being deployed.

The NCSC said it dealt with more than three times as many ransomware incidents compared with last year and noted that criminals were changing their approach during such attacks to increasingly threaten to leak information publicly unless payment is made.

United’s network has been affected by ransomware, the Daily Mail reported.

The NCSC’s report also revealed it had scanned more than one million IP addresses linked to the NHS for vulnerabilities as part of efforts to protect the health service. Out of 723 cyber incidents between September 2019 and the end of August this year handled by the agency, 194 were directly linked to the coronavirus pandemic.

source: theguardian.com