Back Issues This Week → Current Issue → Popular →

The article revisits the British Library's October 2023 ransomware attack, in which the Rhysida group exploited a remote access server lacking MFA, exfiltrated 600GB of data, and encrypted systems, with recovery costs exceeding GBP 7 million.

Databarracks' James Watts and Charlie Maclean-Bristol outline six lessons: implement comprehensive identity controls like MFA; actively manage legacy technology risk; design systems with network segmentation to limit breach spread; prioritize recovery capability alongside prevention; regularly test and exercise response plans; and share incident insights publicly to build collective resilience.

The Library's transparent Cyber Incident Review, commended by the NCSC, is highlighted as a model for industry learning.