A significant cyber attack has struck the Kensington and Chelsea Council in West London, disrupting several services and prompting warnings that recovery could take months. The council’s leader, Cllr Elizabeth Campbell, stated that an in-depth review will commence “when the time is right,” as the authority grapples with the immediate aftermath of the incident.
Cllr Campbell emphasized the seriousness of the situation, indicating that some services may not return to normal for “months.” She confirmed that the council is collaborating with the National Cyber Security Centre (NCSC) and the information watchdog to investigate the breach. In addition, she plans to work alongside leaders from Westminster City Council and Hammersmith and Fulham Council, both of which were also affected, to improve future cybersecurity measures.
During a recent Full Council meeting, Cllr Campbell acknowledged the hard work of staff who have been “literally day and night” addressing the challenges posed by the attack. She stated, “Our main aims will be to support residents who need us, fix things as quickly as possible, and to be transparent with the public on where we are on this recovery journey.”
The leader of the council articulated that disruptions are expected to continue for at least two weeks, with potential ramifications lasting several months. She noted, “Let me be crystal clear: this remains an incredibly serious incident.”
Cllr Campbell assured the public that the council has been “honest and upfront” regarding the data breach, although it remains uncertain whether any personal or financial information has been compromised. She explained that the council’s cybersecurity systems were activated to mitigate damage during the attack, which is believed to have originated from the council’s infrastructure.
On November 24, 2023, the council detected unusual activity, prompting immediate action. By the afternoon of November 25, the council informed residents of the breach and activated emergency protocols. Maxine Holdsworth, the Chief Executive of Kensington and Chelsea Council, stated that cybersecurity specialists were deployed onsite by noon on the day of the attack.
In her remarks to the council, Holdsworth detailed the proactive measures taken to protect data and systems. An emergency command centre was established, and both the Metropolitan Police and NCSC were notified of the incident immediately. She also assured residents that while some digital services are disrupted, essential services such as bin collections will proceed as normal.
Residents who pay council tax via Direct Debit may encounter delays in their payments, which will not be processed on the usual schedule. The council advises residents to keep sufficient funds available to ensure payments can be collected once systems are restored.
The council has also indicated that the cyber attack coincided with the weekly payment cycle for internal foster carers, and solutions are being developed to ensure that all due payments are processed. Importantly, the authority has stated that no one will face rent arrears actions if their payments cannot be collected due to the ongoing cyber issues.
In a concerning update, the council confirmed that some data has been “copied and taken away,” although they believe it primarily comprises historical data from 2006 to 2020. The council is currently unable to determine the full extent of the breach or the identity of the attackers, as investigations continue.
As the council navigates this challenging period, Cllr Campbell reiterated the importance of transparency and resilience. She assured the public that updates will be provided regularly as the recovery progresses.
Residents impacted by the cyber attack are encouraged to reach out to the council for assistance, as the authority remains committed to restoring full operational capacity as swiftly as possible.
