Feeds

No investigation after malware is found on parliamentary PC

Hill to climb for new e-crime unit

Beginner's guide to SSL certificates

Police did not investigate when Alun Michael MP reported a PC in his office was attacked with malware, the former minister has revealed.

Michael, a tech-savvy parliamentarian, was able to detect and remove the malware himself, and described it as "a low level incident". He told The Register that he decided to report it to police as "an experiment", however.

"I though that with it being a computer within the Palace of Westminster there might be some feedback from the police," he said. "Or at least an acknowledgement it had been recorded - but no."

The security of parliamentary PCs is viewed as particularly sensitive given the confidentiality of MPs' correspondence with their constituents. When police recently seized computer equipment from the office of Tory immigration spokesman Damian Green without a warrant, it caused uproar among his fellow MPs.

Michael made the breach public during the same week it emerged the justice secretary Jack Straw's webmail account was hijacked by Nigerian advance fee fraudsters.

The government has been heavily criticised in recent years by the technology industry, academics and peers for its failure to address widespread fraud via the internet. The National Hi-Tech Crime Unit was effectively closed down when it was rolled into the Serious and Organised Crime Agency in 2006, leaving no organisation to monitor and investigate e-crime.

"It would be unrealistic to expect police to investigate every malware infection," Michael said. "My point was about the reporting system. If a car is broken into, whoever broke into it is long gone and you don't necessarily expect the police to investigate. You do however expect it to be recorded."

The Metropolitan police is currently setting up a successor to the National Hi-Tech Crime Unit, the Police Central e-crime Unit (PCeU), after ministers finally approved funding last year. Detective Superintendent Charlie McMurdie, who will head the unit, agreed that investigating every online fraud was unrealistic, but recording as much as possible was important.

"We have got 140,000 cops and most of them don't know one end of the computer from the other," she told delegates at a Westminster conference on e-crime last month. The PCeU, including a national online fraud reporting centre, will be operational later this year. ®

Internet Security Threat Report 2014

More from The Register

next story
Regin: The super-spyware the security industry has been silent about
NSA fingered as likely source of complex malware family
Why did it take antivirus giants YEARS to drill into super-scary Regin? Symantec responds...
FYI this isn't just going to target Windows, Linux and OS X fans
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
'Regin': The 'New Stuxnet' spook-grade SOFTWARE WEAPON described
'A degree of technical competence rarely seen'
Astro-boffins start opening universe simulation data
Got a supercomputer? Want to simulate a universe? Here you go
You stupid BRICK! PCs running Avast AV can't handle Windows fixes
Fix issued, fingers pointed, forums in flames
prev story

Whitepapers

Go beyond APM with real-time IT operations analytics
How IT operations teams can harness the wealth of wire data already flowing through their environment for real-time operational intelligence.
5 critical considerations for enterprise cloud backup
Key considerations when evaluating cloud backup solutions to ensure adequate protection security and availability of enterprise data.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
How to simplify SSL certificate management
Simple steps to take control of SSL certificates across the enterprise, and recommendations centralizing certificate management throughout their lifecycle.