-optimized.jpg){kind=avatar}
If you have applied for legal aid digitally since 2010, take steps to safeguard yourselves, says the Legal Aid Agency after a cyber-attack on its online digital services dating from April . According to the agency, on Friday, May 16, it discovered the attack was more extensive than originally understood.
What they say
Jane Harbottle, Chief Executive Officer of the Legal Aid Agency, said: “I understand this news will be shocking and upsetting for people and I am extremely sorry this has happened. Since the discovery of the attack, my team has been working around the clock with the National Cyber Security Centre to bolster the security of our systems so we can safely continue the vital work of the agency.
“However, it has become clear that to safeguard the service and its users, we needed to take radical action. That is why weโve taken the decision to take the online service down. We have put in place the necessary contingency plans to ensure those most in need of legal support and advice can continue to access the help they need during this time. I am incredibly grateful to legal aid providers for their patience and cooperation at a deeply challenging time.”
The agency says that in the days after the discovery it informed all legal aid providers that some of their details, including financial information, may have been compromised; and has worked with the UK official National Crime Agency (NCA) and National Cyber Security Centre (NCSC) and (as required to by data protection law) informed the watchdog the Information Commissioner.
Comments
Andy Norton, European Risk Officer at Armis, said: โThe fact that it took weeks to uncover the true scale of the attack shows just how complex and stealthy todayโs threats have become. Public services are being targeted more often, and this isnโt a one-off; itโs part of a growing pattern. Well-organised groups are finding gaps in digital defences, slipping through unnoticed and quietly stealing sensitive data. Weโve now reached the point where spotting that activity early is the only way to prevent real damage.โ
David Higgins, Senior Director Field Technology Office, at the cybersecurity firm CyberArk, described this Ministry of Justice breach as just the latest in a wave of attacks on government agencies aimed at stealing sensitive data from employees, contractors and citizens. He said: “Early reports point to compromised legal aid data – exactly the kind of data cybercriminals sell, exploit, and weaponise. Itโs another stark reminder that public sector security strategy needs a serious reset.
“Debates about funding and legacy systems aside, many agencies are still failing at security 101 โ patching, system updates, and controlling identity security. Essentially, itโs about managing who has access to what, whether theyโre a human or machine, and making sure the wrong people canโt get in.
“In past breaches – and potentially this one too – attackers exploit privileged credentials to infiltrate, move laterally, and exfiltrate data unnoticed. Itโs a well-worn playbook, and it keeps working. Enforcing tighter controls around identity security and accelerating multi-factor authentication is critical to stopping this kind of activity. Until government agencies recognise that identities are the single most valuable target in any network, theyโll continue to hand cybercriminals the advantage.โ
And Jonathan Lee, Cyber Strategy Director at cyber software firm Trend Micro, described the Agencyโs confirmation that โa significant amountโ of private data, including criminal records, had been hacked as extremely concerning. He said: “As the breaches continue to hit the headlines, data continues to be stolen and services are disrupted, itโs time to refocus, not just on regulations and compliance, such as the forthcoming Cyber Security & Resilience Bill, but on building the collective resilience of the UK against such cyber attacks, aiming to stop them before they happen. Itโs time to stop being reactive and go on the front foot. This requires focus and investment, with cyber no longer being seen as a grudge purchase but as a necessary cost of running a resilient operation. This needs to be at the centre of the Governmentโs thinking with the spending review nearly upon us.”
