Hammersmith and Fulham council has disclosed that it is hit by around 20,000 attempted cyber-attacks every day.

According to media reports, whilst the council has applied measures such as anti-phishing, anti-spam and enhanced firewall rules to combat the attempted attacks, a spokesperson for the umbrella group London Councils said several boroughs in the capital have been subjected to major attacks in recent years, sometimes leading to significant disruption and costs.

Vigilant

A London Councils spokesperson said: “Every London borough is vigilant to the risk of cyber-attacks, which can range in severity and impact. In recent years we’ve seen several boroughs across the capital subjected to major attacks, sometimes leading to considerable disruption to services and costs to the boroughs.

“All London boroughs invest in cyber security tools and processes to keep their systems safe. We also collaborate to share insights and intelligence about potential threats to maintain the smooth-running of local services.”

Commenting, Adam Boynton, senior security strategy manager EMEIA at Jamf, said the number of cyber-attacks faced by the council represents a wider issue, as security threats across all local councils have significantly increased over the last few years.

“Councils hold vast amounts of personal data, making them prime targets for cybercrime,” he said. “This data can be exploited for fraud, sold on the dark web, or used in future attacks. Cyber-attacks not only compromise sensitive information but also erode public trust and disrupt essential services, significantly impacting community operations.”

Outdated Systems

Boynton claimed that local council networks are particularly vulnerable due to their continued reliance on outdated IT systems and end-of-life software that are not equipped to handle modern cyber threats. “These systems are frequently patched together over many years, introducing complexities in maintenance and security upgrades,” he said.

“We recommend implementing multiple defensive layers and enforcing cyber hygiene practices, such as multi-factor authentication, secure passwords or password management software, and user awareness of security risks. Strong hygiene practices are an effective way to improve cyber resilience without stretching limited budgets.”

Dan Raywood Senior Editor SC Media UK

Dan Raywood is a B2B journalist with more than 20 years of experience, including covering cybersecurity for the past 16 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.

He has spoken at events including 44CON, Infosecurity Europe, RANT Conference, BSides Scotland, Steelcon and ESET Security Days.

Outside work, Dan enjoys supporting Tottenham Hotspur, managing mischievous cats, and sampling craft beers.