Response 1085965

Response to request for information

Reference

1085965

Response date

17 April 2023

Request

Information on Cyber Security / Cyber Attacks.

Response

1. Cyber-attacks are unwelcome attempts to steal, expose, alter, disable or destroy information through unauthorised access to computer systems.  Does your department record the number of cyber-attacks it receives? Yes 
2. If it does record the number of cyber-attacks it receives, how many did it receive in the following years?

   I am unable to release the information requested as the information is exempt from disclosure by virtue of section 31 of the Freedom of Information Act 2000.  Section 31(1)(a) states that the information is exempt if its’ disclosure would be likely to prejudice the prevention or detection of crime.

3. Does the department you work for record the total financial cost, e.g. fixing the hack, paying any ransoms, loss of earnings etc of cyber-attacks? Yes
4. If it does record the number of cyber-attacks it receives, how many did it receive in 2021 and 2022? See response to Q.2
5. Does your organisation you work for have a cyber-insurance policy? See response to Q.2
6. Has your cyber-insurance premium increased in the last year. See response to Q.2
7. What is the percentage increase in your cyber-insurance premium? See response to Q.2