Cyber Incident Victim: UK Anti-Doping Agency

On or around March 24, 2018, the UK Anti-Doping Agency (Ukad) experienced a cyberattack targeting its confidential medical and drug-testing data systems. The intrusion attempt occurred over the weekend, prompting Ukad to reboot its servers the following Monday as part of its incident response. Agency experts conducted an investigation and confirmed no data loss or compromise occurred during the breach attempt. Ukad's core anti-doping operations, including its athlete testing program, remained unaffected throughout the incident. The agency publicly acknowledged the attack after becoming aware of it during the weekend timeframe but did not disclose specific technical details about the attack vector or methodology used by the perpetrators.

While Ukad did not formally attribute the attack, some sources suggested potential involvement of the Russian-linked hacking group Fancy Bears, known for prior intrusions against global anti-doping organizations. This group had previously compromised the World Anti-Doping Agency (Wada) in 2016 through spear-phishing campaigns and leaked athlete therapeutic use exemption (TUE) records, including those of British cyclist Bradley Wiggins. Fancy Bears also breached the US Anti-Doping Agency (Usada), allegedly through an employee's public network usage during the 2016 Rio Olympics, resulting in leaks about Alberto Salazar's coaching program. Ukad maintained confidence in its cybersecurity posture following the incident, stating it had "appropriate levels" of protection and regularly reviewed system integrity. The agency emphasized that its response measures successfully contained the breach without operational disruption or data exfiltration.