Conficker worm hits the House of Commons network

It's not April 1st yet, but reports say that Conficker may have wormed its way into what may be its biggest target yet.

The parliamentary IT system has been hit by the Conficker worm, according to reports.

A leaked memo sent to MPs, Lords and their staff claims that the worm was causing the network to slow down locking some users out of their accounts.

MPs are warned that infected hardware will be removed from the network and that IT staff won't be able to clean unauthorised devices, suggesting that outside PCs are allowed on to the network.

Security experts say such an arrangement is an embarrassing lapse in security.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"One of the foremost rules of good corporate IT governance is that machines not regulated by the organisation should never be allowed to connect to its network, and for good reason," Rob Cotton, chief executive of IT security company NCC Group told Channel 4 News.

"For the parliamentary network to have to ask all unauthorised computers to be taken off its network is, frankly, embarrassing.

"Unauthorised machines shouldn't even be capable of coming anywhere near an official network like this, particularly one which could provide a doorway to seriously sensitive material."

When asked to explain why outside PCs were allowed on the network, a parliament spokesman helpfully told Channel 4: "I'm not authorised to answer why we can't answer the question."

MPs are also requested not to connect "memory sticks or any other portable storage devices" on to the Parliament Network for the time being. The Conficker virus is known to spread through such devices.

New variants of the worm have continued to breed, while this isn't the first time it has hit the public sector.

Featured Resources

What you need to know about migrating to SAP S/4HANA

Factors to assess how and when to begin migration

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

Testing for compliance just became easier

How you can use technology to ensure compliance in your organisation

Download now

Best practices for implementing security awareness training

How to develop a security awareness programme that will actually change behaviour

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/policy-legislation/data-governance/354496/brexit-security-talks-under-threat-after-uk-accused-of
data governance

Brexit security talks under threat after UK accused of illegally copying Schengen data

10 Jan 2020
Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/hardware/laptops/354533/dell-xps-13-new-9300-hands-on-review-chasing-perfection
Laptops

Dell XPS 13 (New 9300) hands-on review: Chasing perfection

14 Jan 2020
Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020