MI5 warns of thousands of attempts to spy on civil servants via ‘malicious’ online profiles
Officials advised that hostile states use LinkedIn and other sites
Credit: Niek Verlaan from Pixabay
The Centre for the Protection of National Infrastructure has launched a campaign to warn civil servants of the security dangers posed by contacts made through business-related social media platforms.
Its “Think Before You Link” project flags the risks posed by hostile states’ use of sites such as LinkedIn and the potential for officials to be blackmailed and for the security of legitimate members of their networks to be compromised. The centre, which is part of MI5, said criminals and hostile actors often posed as recruiters or talent agents offering “enticing opportunities” as part of information gathering exercises.
“The consequences of engaging with these profiles can damage individual careers, as well as the interests of your organisation, and the interests of UK national security and prosperity,” it said.
MI5 said it was aware of more than 10,000 cases in which UK nationals “across virtually all government departments and key industries” had been approached by “malicious profiles” over the past five years.
It said the figure involved “premier professional networking sites” and was likely to be a conservative estimate.
The Think Before You Link campaign urges civil servants and other government employees to recognise the potential threat from existing or potential contacts, report them to their security manager and remove the individuals from their network.
CPNI said its campaign guidance also provided practical advice on how to respond to suspicious networking requests and how to “minimise the risk of being targeted in the first instance”.
One of the campaign videos uses the theme of an invite to make a presentation at a prestigious international conference as the pretext for establishing a social media network connection.
Whistleblower raised concerns about practice that went unheeded
Cabinet Office offers those affected a one-year subscription to a credit-checking service
Johnson and Dyson’s text exchange shows need for new rules, believe ex-cabinet secretaries
Security-focused documents are put through their paces in exercises designed to mimic 10 years of travel
Higher Education institutions are some of the most consistently targeted organisations for cyberattacks. CrowdStrike explores the importance of the right cybersecurity measures.
SolarWinds explains how public sector organisations can make the most of their hybrid IT investments - delivering services that are both innovative and reliable
There are many reasons to keep your Oracle workloads running on local servers. But there are even more reasons to move them to the cloud as part of a wider digital transition strategy. Six Degrees...
With the backdrop of the COVID-19 pandemic, every disaster now entails responding to at least two emergencies. Dataminr explains how organisations can best prepare.