Malicious email volume

The request was partially successful.

Dear Criminal Cases Review Commission,

Please find below my FOI request regarding malicious emails sent to the department.

The date range for the requests is from 2018 to present day. The data shall include a breakdown by year and by individual departments (e.g. separate departments, agencies, or public bodies within the main government agency), if applicable.

1. How many malicious emails have been successfully blocked?
2. What percentage of malicious emails were opened by staff?
3. What percentage of malicious links in the emails were clicked on by staff?
4. How many ransomware attacks were blocked by the department?
5. How many ransomware attacks were successful?

Yours faithfully,
Rebecca Moody

DPO, Criminal Cases Review Commission

Dear Rebecca Moody,

 

We write in response to your information request under the Freedom of
Information Act 2000 (FOIA), made on 11.11.21.

 

You ask:

 

Please find below my FOI request regarding malicious emails sent to the
department.

 

The date range for the requests is from 2018 to present day. The data
shall include a breakdown by year and by individual departments (e.g.
separate departments, agencies, or public bodies within the main
government agency), if applicable.

 

1. How many malicious emails have been successfully blocked?

2. What percentage of malicious emails were opened by staff?

3. What percentage of malicious links in the emails were clicked on by
staff?

4. How many ransomware attacks were blocked by the department?

5. How many ransomware attacks were successful?

 

The answers to your questions are as follows:

 

 1. Not known – we use O365 which only keeps records for 90 days.
 2. No known – we use O365 which only keeps records for 90 days. We have
had no alerts or reported incidents of staff opening malicious emails
since our migration to O365 in November 2020.
 3. Not known – we use O365 which only keeps records for 90 days. We have
had no alerts or reported incidents of staff opening malicious emails
since our migration to O365 in November 2020.
 4. Not known – we use O365 which only keep records for 90 days.
 5. Zero.

 

For clarification, the earlier period for which you seek answers, i.e.
prior to November 2020, is a definite ‘not known’.

 

We trust that you will find this information of use.

 

Yours sincerely,

 

Information Team

Criminal Cases Review Commission

 

 

If you disagree with our decision or are otherwise unhappy with how we
have dealt with your request, in the first instance you may approach the
Commission’s Data Protection Officer for an internal review by writing to:
DPO, Criminal Cases Review Commission, 23 Stephenson Street, Birmingham,
B2 4BH or email at [1][email address]. Should you remain dissatisfied with
the outcome you have a right under section 50 of the Freedom of
Information Act to appeal against the decision by contacting the
Information Commissioner, Wycliffe House, Water Lane, Wilmslow, SK9 5AF,
Helpline 0303 123 1113, [2][email address]

 

 

show quoted sections

Dear Criminal Cases Review Commission,

Thank you for your response, would you be able to provide the information for questions 1-4 despite only having the last 90 days of data. That would be greatly appreciated.

Thank you,
Rebecca

DPO, Criminal Cases Review Commission

Dear Ms Moody,

 

Thank you for your follow-up request for additional clarification /
information, dated 30.11.21 and received by the CCRC on 01.12.21.

 

You ask to be provided with the information for questions 1-4 despite only
having the last 90 days of data.

 

In response, we are able to provide the figures for the last 90 days to
you:

 

1. How many malicious emails have been successfully blocked? – 68,278

 

2. What percentage of malicious emails were opened by staff? - Data not
available. As they were blocked, it is implied that none of the 68,278
blocked malicious messages were opened by staff.

 

3. What percentage of malicious links in the emails were clicked on by
staff? - 0

 

4. How many ransomware attacks were blocked by the department? - Data not
available.

 

We trust that you will find this information of use.

 

Yours sincerely,

 

Information Team

Criminal Cases Review Commission

 

 

If you disagree with our decision or are otherwise unhappy with how we
have dealt with your request, in the first instance you may approach the
Commission’s Data Protection Officer for an internal review by writing to:
DPO, Criminal Cases Review Commission, 23 Stephenson Street, Birmingham,
B2 4BH or email at [1][email address]. Should you remain dissatisfied with
the outcome you have a right under section 50 of the Freedom of
Information Act to appeal against the decision by contacting the
Information Commissioner, Wycliffe House, Water Lane, Wilmslow, SK9 5AF,
Helpline 0303 123 1113, [2][email address]

 

 

show quoted sections