A cyber attack on a local council's IT systems is estimated to have cost in the region of £10.4 million, according to new figures.
Redcar and Cleveland borough council has been under pressure to reveal the cost of an attack that took down its website and local services in February, according to the BBC.
Remedial and replacement work for the council's IT infrastructure made up £2.4 million of the overall cost, according to figures given in its budget report. The local authority is in discussion with the government to help cover the financial impact of the attack.
Some 135,000 residents were cut off from public services in February during the hack, affecting online appointments, access to planning documents, social care advice, and the council's housing systems. The UK's National Cyber Security Centre (NCSC) was ultimately brought in to help bring services back online.
The exact nature of the attack, and the steps taken to fix the damage, haven't been revealed by either Recar and Cleveland council or the NCSC, and the incident is still the subject of an ongoing criminal investigation. At the time, there was a suggestion that it resembled a ransomware attack, but there has been no official confirmation of this.
According to the report, at the time of the attack, the council had "industry-standard tools" used to secure its computer network, which were configured to provide "optimum protection".
The estimation of £10.4 million has been given to the government to assist a due diligence process with an agreement to provide Redcar and Cleveland with support, according to the budget report.
Individual departmental costs amounted to £3.4 million, while computer systems being out of action resulted in a reduction in enforcement income and a reduction in the amount of council tax and business rates being collected, causing a further £1 million in losses, according to the council.
-
Prolific ransomware operator added to Europe’s Most Wanted list as US dangles $10 million rewardNews The US Department of Justice is offering a reward of up to $10 million for information leading to the arrest of Volodymyr Viktorovych Tymoshchuk, an alleged ransomware criminal.
-
Jaguar Land Rover “did the right thing” shutting down systems to thwart cyber attackNews The attack on Jaguar Land Rover highlights the growing attractiveness of the automotive sector
-
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalitiesNews The attack on IT systems supplier Miljödata has impacted public sector services across the country
-
A notorious hacker group is ramping up cloud-based ransomware attacksNews The Storm-0501 threat group is refining its tactics, according to Microsoft, shifting away from traditional endpoint-based attacks and toward cloud-based ransomware.
-
Security researchers have just identified what could be the first ‘AI-powered’ ransomware strain – and it uses OpenAI’s gpt-oss-20b modelNews Using OpenAI's gpt-oss:20b model, ‘PromptLock’ generates malicious Lua scripts via the Ollama API.
-
Data I/O shuts down systems in wake of ransomware attack
News Regulatory filings by Data I/O suggest the costs of dealing with the attack could be significant
-
Average ransom payment doubles in a single quarterNews Targeted social engineering and data exfiltration have become the biggest tactics as three major ransomware groups dominate
-
BlackSuit ransomware gang taken down in latest law enforcement sting – but members have already formed a new groupNews The notorious gang has seen its servers taken down and bitcoin seized, but may have morphed into a new group called Chaos
