The UK government suspects China's involvement in a recent hack targeting the armed forces payroll system, according to BBC sources. Defence Secretary Grant Shapps is expected to
address Members of Parliament today, cautioning against the risks posed by cyber espionage from hostile nations, although he won't specifically name the suspected perpetrator.
The breached system, managed by an external contractor, houses sensitive information including names and bank details of armed forces personnel, with a small portion potentially containing personal addresses. Although there's no evidence of data extraction, the government is treating the situation as if data was compromised.
Cabinet minister Mel Stride emphasized the government's swift response, underlining the seriousness with which cybersecurity is approached. However, investigations into the breach are in their early stages and identifying culprits may take considerable time.
While China is not expected to be officially named today, suspicions are leaning in that direction, given Beijing's history of targeting similar datasets. Concerns about the breach's implications have prompted responses from Conservative MPs, with Tobias Ellwood suggesting the targeted information aligns with China's strategic interests, such as identifying individuals vulnerable to coercion.
Former Defence Committee chairman Iain Duncan Smith emphasized the need for the government to acknowledge China's threat, citing its alignment with other authoritarian regimes. Labour's Shadow Defence Secretary John Healey condemned any hostile actions, labeling them unacceptable.
Chinese officials have refuted the accusations, asserting China's opposition to all forms of cyber attacks and dismissing the allegations as absurd.
This incident adds to growing concerns about cybersecurity threats outlined in the government's long-term defense strategy. Previous attributions of cyber attacks include China's involvement in a 2021 Electoral Commission hack and Russian intelligence activities targeting UK politics in 2023.
Both public institutions and private entities remain vulnerable to cyber threats, including ransomware attacks. However, the Metropolitan Police has clarified that it's not currently involved in the investigation of this particular breach. Photo: Harland Quarrington/MOD, Wikimedia commons.