Cyberattack Hits U.K. Parliament, Limits MPs' Email AccessBy
Parliament ‘taking necessary steps to protect our systems’
Attack comes days after reports hackers sold MPs’ passwords
A cyberattack disabled some of the U.K. Parliament’s communications on Saturday, disrupting the ability of lawmakers to access their email, a House of Commons spokeswoman said.
In order to stop the attack from spreading, the government blocked members of Parliament from accessing their official email accounts from outside official buildings, she said. Computers within Parliament’s buildings are working normally, according to her statement.
“We have discovered unauthorized attempts to access accounts of parliamentary networks users and are investigating," the spokeswoman said, requesting anonymity in accordance with House of Commons rules.
She said it was investigating the attack with the help of the U.K.’s National Cyber Security Centre, a branch of Government Communications Headquarters, or GCHQ, Britain’s signals intelligence agency.
The National Crime Agency also said it was aware of a possible "cyber incident" affecting Parliament and was cooperating with the NCSC.
"Parliament has robust measures in place to protect all of our accounts and systems, and we are taking the necessary steps to protect and secure our network," according to the statement.
The attack began Friday night, according to The Daily Telegraph newspaper.
The breach comes two days after The Times of London reported that passwords for MPs along with 8,000 other U.K. government and police officials were being offered for sale on Russian hacking sites.
Most of the passwords seemed to have come from a 2012 hack of the business social network LinkedIn, according to The Times.
A month ago, the WannaCry ransomware attack crippled computer systems in Britain and around the world. The U.K.’s National Health Service was badly affected, with computers infected at more than 40 hospitals. The attack caused cancellation of elective surgeries and forced some hospitals to revert to paper and pencil to record information.
Cybersecurity experts have linked that attack to a hacking collective called the Lazarus Group, thought to be tied to the North Korean government.