The Local Government Association (LGA) has published a case study of the 2021 cyber-attack on Gloucester City Council to facilitate lessons learning for other public sector organisations. The case study provides an overview of the targeted ransomware attack, with a detailed timeline of how the attack compromised encrypted servers, and temporarily prevented provision of the council services that were reliant on the data held on the servers. The case study sets out the broader preparedness context, the overall impact and response, initial recovery and cost of the incident, lessons learnt and remedial action taken by the council as part of the long-term recovery process.


Share this story