Losing back-up data in Sepa cyberattack ‘debilitating’ for watchdog, MSPs told
The environment body was targeted on Christmas Eve 2020 and it is still working to rebuild its system.
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.The loss of back-up data in the cyberattack on Scotland’s environment watchdog has been “debilitating”, the Auditor General has told MSPs
A Holyrood committee heard the ransomware attack on the Scottish Environment Protection Agency (Sepa) took place despite it having good cybersecurity in place.
The agency fell victim to a sophisticated attack on Christmas Eve 2020, leading to much of its critical data being lost.
Earlier this month, Audit Scotland published a report which said Sepa was still working to rebuild its system 12 months on from the attack, the full cost of which is still not known.
Auditors gave further details to the Public Audit Committee on Thursday.
Auditor General Stephen Boyle said no organisation can fully mitigate the risk of cyberattacks, and the loss of back-up data shows the sophistication of the attackers.
He said: “Sepa didn’t pay the ransom, so public money wasn’t used to that effect.
“But not having access to the back-ups has really been debilitating to the organisation in terms of the availability of its records, recreating its accounts and so forth.”
Sepa now has an action plan which includes strengthening its back-up arrangements, the committee was told.
Committee member Willie Coffey said it is dangerous to have a link between main servers and their back-ups.
Mr Coffey told the committee: “In my days working with computing, we used to take the back-up in a case and take it to the bank on a server.
“We’d actually take a hard drive away and make sure it was physically protected.
“So there’s a lesson from the past there as well.”