Middlesbrough Council boosts cybersecurity spending, strategy in response to repeated cyber attacks
Briefly

Middlesbrough Council boosts cybersecurity spending, strategy in response to repeated cyber attacks
"Middlesbrough Council has announced a sizable investment into a 12-month cybersecurity service worth approximately £25,000, in recognition of the growing risk to UK public sector organizations. The move has come amid an year-long overhaul of the council's cybersecurity strategy, including greater staff training and data center disaster recovery tests. In a report [ PDF] published 25 September, the council acknowledged the work it currently does to ensure its third-party suppliers safeguard data in order to secure its supply chain, in addition to its own cybersecurity measures."
"It noted that in November 2024 the council suffered two DDoS attacks that took down its website, with another successful attack happening in early December. Responding to these attacks, the council implemented a mitigation solution at the end of 2024 and has suffered no further DDoS incidents since. In the spring, it put in place a three-year cybersecurity training strategy and completed the Get Cyber Assessment Framework (CAF), a government program councils can use to identify third-party dependencies, organizational vulnerabilities, and analysis of critical teams. Completion of the program secured Middlesbrough Council a £15,000 grant."
Middlesbrough Council invested in a 12-month cybersecurity service costing approximately £25,000 as part of an extensive, year-long overhaul of its cybersecurity approach. The council increased staff training, conducted data center disaster recovery tests, and reviewed third-party supplier data safeguards to secure its supply chain. The council experienced two DDoS attacks in November 2024 and another successful attack in early December, then implemented a mitigation solution that prevented further incidents. The council completed the Get Cyber Assessment Framework, secured a £15,000 grant, enacted a three-year training strategy, and commissioned Veritau to audit server administration and security, receiving substantial assurance.
Read at IT Pro
Unable to calculate read time
[
|
]