A CYBER attack on the UK’s Defence Academy, based in Oxfordshire, caused “significant” damage, a retired high-ranking officer has revealed.
The school, based in Shrivenham, teaches 28,000 military personnel, diplomats and civil servants a year and moved more online during the pandemic.
Air Marshal Edward Stringer, who left the armed forces in August, told Sky News the attack which was discovered in March 2021 meant the Defence Academy was forced to rebuild its network.
He said he did not know if criminals or a hostile state, like China, Russia, Iran or North Korea, were responsible but the damage has yet to be fully rectified months on, Sky reported.
Mr Stringer told the outlet: “It could be any of those or it could just be someone trying to find a vulnerability for a ransomware attack that was just, you know, a genuine criminal organisation.”
He added: “There were costs to… operational output. There were opportunity costs in what our staff could have been doing when they were having to repair this damage.
“And what could we be spending the money on that we’ve had to bring forward to rebuild the network? There are not bodies in the streets but there’s still been some damage done.”
Read also: Woman frustrated as no Covid test kits available for delivery
It has been reported that no sensitive information was stored on the academy’s network.
In an exclusive interview with Sky, Mr Stringer said “unusual activity” was first discovered by contractors working for outsourcing company Serco and “alarm bells” started ringing.
He told Sky there were “external agents on our network who looked like they were there for what looked pretty quickly like nefarious reasons”.
But he disclosed the attack was not successful and while the hackers may have been using the academy as a “backdoor” to other Ministry of Defence (MoD) systems, there were no breaches beyond the school.
Read also: Full list of Oxfordshire recipients in New Year Honours
Mr Stringer – who was also director general of joint force development and led the military thinking about how it would adapt to the future of warfare – said the attack fell within a so-called grey zone of harm, which falls below the threshold of war, according to Sky News.
The site, which is much like a domain for a university, had to be completely rebuilt, a task which is still ongoing.
The National Cyber Security Centre, a branch of GCHQ, was also made aware of the hack, Sky News reported.
An MoD spokesperson said: “In March 2021 we were made aware of an incident impacting the Defence Academy IT infrastructure. We took swift action and there was no impact on the wider Ministry of Defence IT network. Teaching at the Defence Academy has continued.”
Follow us on Facebook, Twitter, Instagram and Tik Tok
Got a story for us? Send us your news and pictures here
Comments: Our rules
We want our comments to be a lively and valuable part of our community - a place where readers can debate and engage with the most important local issues. The ability to comment on our stories is a privilege, not a right, however, and that privilege may be withdrawn if it is abused or misused.
Please report any comments that break our rules.
Read the rules here