Following the ransomware attack in October 2020, Hackney Council might have to answer for its staff’s IT and security training during lockdown.
Indeed, the cyber attackers published the employees’ and residents’ data on the dark web after attacking the London council’s IT systems. Although the council affirms that the data is not available through search engines on the internet, an investigation is still ongoing regarding the attack that cost the council millions of pounds.
The council is then facing action from the information commissioner on whether the staff receives security training when working from home. Working from home provides less security protection as the servers and systems are not protected against phishing emails and cyberattacks, especially as the council invested heavily in modern technology and cloud-based service.
Moreover, it was reported that other local authorities were also targeted by hackers such as Gloucester Council in December, as well as Salisbury, Copeland, and Islington councils.
