A pro-Russian cyber group has claimed responsibility for a series of distributed denial-of-service (DDoS) attacks against UK public sector websites, including several local councils and the Association of Police and Crime Commissioners, in a coordinated three-day campaign.
The hacking collective, known as NoName057(16), announced the operation across social media platforms, stating it was retaliating against Britain’s support for Ukraine.
The group posted on X (formerly Twitter): “Britain is invested in the escalation of the [Ukraine] conflict, and we are disconnecting its resources.”
Limited Impact Despite High Claims
Despite bold claims of success, the impact of the attacks appears to have been limited. Councils in Blackburn with Darwen and Exeter reported no disruption to their websites, contrary to the hackers’ assertions.
Other allegedly affected entities, including Cardiff City Council, Harwich International Port, and the Association of Police and Crime Commissioners, declined to comment or were unavailable.
In instances where sites did become temporarily inaccessible due to a surge in traffic, services resumed within hours.
Arun District Council confirmed experiencing issues early Tuesday morning, stating that its website was fully operational again by 11:30am. “We are aware of the claims made on X and continue to investigate,” a council spokesperson said.
National Highways also reported being targeted but reassured the public that their site would return to normal functionality shortly.
Recurring Attacks, Minimal Damage
The recent incidents mirror a similar attack launched last October, which briefly disabled council websites without compromising any personal or sensitive data.
The National Cyber Security Centre (NCSC) said at the time that it had issued guidance to affected authorities.
“While DDoS attacks are relatively unsophisticated and low in impact, they can cause temporary disruption to public-facing services by overwhelming systems with traffic,” the NCSC noted.
A Persistent Threat from NoName057(16)
Since its emergence in 2022, NoName057(16) has repeatedly deployed DDoS attacks to disrupt government operations and media services across Ukraine, Europe, and the US. In early 2023, the group turned its attention to politics, targeting websites of presidential candidates in the Czech Republic.
UK Cyber Threats on the Rise
A report by cybersecurity firm Bridewell last summer found that 63% of government-related businesses had been victims of ransomware attacks within a 12-month period.
The National Audit Office further warned in January that cyber threats facing UK government bodies are “severe and advancing quickly.”
In response to a recent uptick in cyberattacks on major UK retailers—such as Marks & Spencer, the Co-op, and Harrods—the NCSC has issued updated guidance.
These breaches involved hackers impersonating IT support staff to reset passwords and bypass authentication systems.
The NCSC stated that investigations are ongoing: “It is too early to determine whether these incidents are linked or part of a coordinated campaign.”
