Canterbury City Council, Dover District Council, and Thanet District Council have announced an ongoing cybersecurity incident that has disrupted online services for potentially hundreds of thousands of residents. The councils are working closely with the U.K.’s National Cyber Security Center (NCSC), which confirmed its understanding of the impact of the incident.
Background on the Incident
On Friday, the three local authorities jointly stated they were investigating a cyberattack that has caused widespread disruption to their websites and services. The NCSC was informed about the incident and is assisting in determining its scope and potential long-term effects.
The councils have taken immediate steps to isolate potentially compromised systems, ensuring critical services remain unaffected. However, this precautionary measure may have inadvertently impacted non-critical services, leading to the observed disruption.
Impact on Residents
The outage has affected the websites of Canterbury City Council, Dover District Council, and Thanet District Council, making it difficult for residents to access essential information or services. This includes government portals, planning applications, and other online tools that are integral to local governance and community management.
NCSC’s Role in the Investigation
The NCSC has been instrumental in assessing the extent of the incident. Its involvement underscores the importance of robust cybersecurity measures to prevent future breaches. The center is working with the councils to identify any unauthorized access attempts and to mitigate risks for similar incidents in the future.
Outsourcing Services to EKS
A key aspect of this incident involves outsourcing services to an external provider, EKS. However, it appears that the outsourcing agreement itself may be at risk due to the cyberattack on EK Services, which is linked to EKS. This development suggests a broader implication for any contractual relationships in the public sector.
Statement from Civica
It’s important to note that Civica, the outsourcing company involved, has not directly commented on the incident but has expressed its understanding of the situation. The company has emphasized the need for robust contract management and regular audits to prevent such occurrences.
Response from Councils
The councils have issued statements expressing their appreciation for the NCSC’s support in this matter. They have also highlighted the importance of preparedness measures, including regular cybersecurity training for staff and access to up-to-date IT infrastructure.
Conclusion
This incident serves as a stark reminder of the vulnerabilities inherent in relying on external providers for critical services. The councils’ response demonstrates a commitment to maintaining public trust by addressing the issue proactively and ensuring that such incidents do not recur.
For further information, residents are encouraged to contact their respective council offices directly. Additionally, updates will be provided through official channels as the investigation progresses.
End of Article
