Manchester United are hopeful their internal IT will be restored shortly after the club suffered a cyber attack on their computer systems last week.
The National Cyber Security Centre has been assisting United, with the club working to ensure the network is secure before switching it back on. In the meantime email is unavailable to staff along with some other operations.
A NCSC spokesperson said: “The NCSC is aware of an incident affecting Manchester United football club and we are working with the organisation and partners to understand impact.” United are not commenting on who may be behind the attack and the motives.
On Thursday, the Premier League club reiterated they were not aware of any supporter data being affected. In a statement, United said: “Following the recent cyber attack on the club, our IT team and external experts secured our networks and have conducted forensic investigations.”
The club said they would not comment on who was “responsible for this attack or the motives”. The statement continued: “This attack was by nature disruptive, but we are not currently aware of any fan data being compromised. Critical systems required for matches to take place at Old Trafford remained secure and games have gone ahead as normal.”
Last week United informed the Information Commissioner’s Office, as required. They could face a fine from the data regulator if supporter data is compromised as a result of the cyber attack. On 13 November Ticketmaster was fined £1.25m for failing to keep its customers’ personal data secure in a 2018 attack.
This month the NCSC’s annual review showed the organisation defended the UK from more than 700 cyber attacks over the last year. It noted a rise in the number of ransomware attacks – where attackers lock access to data until a ransom is paid – being deployed.
The NCSC said it dealt with more than three times as many ransomware incidents compared with last year and noted that criminals were changing their approach during such attacks to increasingly threaten to leak information publicly unless payment is made. United’s network has been affected by ransomware, the Daily Mail reported.
The NCSC’s report also revealed it had scanned more than one million IP addresses linked to the NHS for vulnerabilities as part of efforts to protect the health service. Out of 723 cyber incidents between September 2019 and the end of August this year handled by the agency, 194 were directly linked to the coronavirus pandemic.