Mike Freer
| Primary URL | Location | Industry | www[.]parliament[.]uk |
Country
United Kingdom
|
Government - National
|
|---|
Profile
Mike Freer, a government whip and Member of Parliament in the United Kingdom, was directly involved in a significant cybersecurity incident targeting the parliamentary estate in February 2019. The attack was a sophisticated phishing campaign that compromised personal contact lists, including Freer's own mobile phone number. Attackers used this access to propagate malicious messages, specifically adding dozens of MPs, including cabinet ministers, to an unauthorized WhatsApp group. The phishing attempt urged recipients to provide overseas contact details or download a fraudulent messaging application under the guise of facilitating government payments. Freer publicly confirmed the breach, advising his contacts to ignore suspicious emails making such requests. Parliamentary authorities investigated the incident, which was noted as following a previous cyberattack on parliamentary accounts attributed to foreign actors, highlighting a persistent threat to parliamentary communications and data security.
The incident underscores the critical role of parliamentary authorities in safeguarding the digital communications of elected officials and their staff. The attack's method—exploiting trusted personal contacts to spread malicious links—demonstrates a targeted approach aimed at infiltrating secure networks through social engineering. While parliamentary officials declined to disclose the full scope of compromised data or identify potential perpetrators, the public confirmation by a serving whip like Freer indicated the seriousness with which the breach was treated. This event occurred within the broader context of the UK Parliament's digital infrastructure being a repeated target for cyber espionage, positioning the institution's security protocols as a key area of operational focus and a potential benchmark for legislative bodies globally facing similar advanced persistent threats. The specific structural or ownership details of the parliamentary administrative body managing these risks are not provided in the available information.