Guardian Newspaper Hit by Ransomware Attack

The Guardian newspaper has come under a suspected ransomware attack.

It said there had been a “serious incident” affecting its IT systems in the last 24 hours, with disruption to “behind the scenes services”.

The company said it was continuing to publish globally to its website – one of the most visited news sites in the world – and was “confident” it could still print the physical paper.

Staff have been told not to go into the office and to work from home.

In a statement, the Guardian said: “Our technology teams have been working to deal with all aspects of this incident, with the vast majority of our staff able to work from home as we did during the pandemic.

“We believe this to be a ransomware attack, but are continuing to consider all possibilities.”

Ransomware is malicious software used by hackers – and often sent via attachments in emails – to gain access to an organisation’s or individual’s computer systems.

The criminals then find and encrypt important or sensitive files – and demand a ransom for them to be unlocked.

A huge range of targets – from schools and hospitals to government agencies and media organisations – have fallen victim to ransomware, with research indicating hackers are paid in the majority of cases, especially in the UK.

According to the Press Gazette, the Guardian is the ninth most-read news site in the world, with almost 390 million visits in November.

In its own reporting of the incident, the Guardian said online publishing was “largely unaffected”.

It said Guardian Media Group chief executive Anna Bateson and editor-in-chief Katharine Viner had sent a message to the company’s workforce.

“Thank you to everyone working hard throughout this incident to keep us publishing,” they said.

“We will continue to keep our staff and anyone else affected informed.

“With a few key exceptions, we would like everyone to work from home for the remainder of the week unless we notify you otherwise.”

Jake Moore, global cyber-security adviser at security software company ESET, said the Guardian being targeted was not a surprise.

“News organisations have become a regular target for cyber-attacks this year, and these attacks often have even more damaging effects on the companies targeted,” he said.

“Ransomware can often bring all departments to a standstill, so it is fortunate that despite this attack the organisation will still see some key areas working as usual.”