The personal data of an unspecified number of active UK military personnel had been compromised in a significant Ministry of Defence data breach.
The UK’s Ministry of Defence (MoD) is tasked with protecting the UK, its crown dependencies, and its overseas territories against threats from both state and non-state actors. The ministry also oversees and trains the Royal Navy, British Army, Royal Air Force, and the Strategic Command.
The breach occurred as a result of an attack on the Ministry of Defence (MoD) payroll system, but the exact motives of the perpetrators behind the breach remain unknown.
Victims of Ministry of Defence Data Breach Being Actively Notified
The compromised data spans several years and includes the names, bank details, and in at least a few instances, even the personal addresses of active and previously-serving armed forces members. The Royal Navy, Army, and Royal Air Force are included in this breach. However the ministry confirmed that no operational defence data had been accessed during the incident.
The affected payroll system was managed by an external contractor. Upon becoming aware of the incident, immediate action was taken by the Ministry of Defence, with the affected system taken offline, and investigations underway. The MoD further confirmed that it would ensure that all salaries would reach its service members on time.
The investigation parties which include public cybersecurity agencies GCHQ and NCSC, are also examining potential security failings or vulnerabilities by the third-party contractor SSCL, who operated the payroll system for the MoD.
The MoD is actively notifying and providing support to those affected, including veterans’ organizations. UK’s Defence Secretary Grant Shapps is scheduled to update MPs in the Parliament about the breach and outline a “multi-point plan” to protect affected service personnel.
Prime Minister Rishi Sunak stated to Al Jazzera that a “malign actor” was probably behind the compromise of the payroll system. “There are indications that a malign actor has compromised the armed forces’ payment network,” Sunak told the reporters.
He further reassured people that the Ministry of Defence had taken the network offline and making sure that affected individuals obtained support.
Several Sources Suspect China Behind Ministry of Defence Data Breach
Although the hackers‘ identity remains undisclosed, some officials and news agencies suspect China to be behind the attack amidst rising warnings about the threats posed by hostile states and third parties.
China was previously reported to have attempted to obtain data from ex-RAF pilots through the use of financial lures. However, the MoD has not commented on China’s involvement.
Tobias Ellwood, a Conservative MP and veteran disclosed to Sky News that he believed China might behind the attack as a way of coercing the financially vulnerable in exchange for cash.
In response to these allegations, the Chinese foreign ministry emphasized its stated opposition to all forms of cyber attacks and rejected the use of hacking incidents for political purposes. The UK-China relationship has been strained over recent hacking allegations, with Britain accusing Chinese-government sponsored hackers of targeting its lawmakers and electoral watchdogs over the past few years.
While the breach is being investigated, concerns arise about sharing sensitive intelligence with countries harboring close relationships with China. This incident follows previous cyberattack campaigns attributed to China, prompting government officials to acknowledge China as a significant challenge.
Martin Greenfield, CEO of the London-based cybersecurity consultancy Quod Orbis, expressed that the incident was the latest in a series of recent cyber-attacks demonstrating the threat of campaigns targeting nationally sensitive data as observed last month with an attack on the NHS.
He added that UK organizations still face challenges in securing systems and that there needs to be further co-operation and information sharing between different teams and between public and private agencies to combat this threat rather than operating in isolation.
He also expressed concern that the compromised service member data may be used in further targeted attacks in the digital and physical world, with tensions in the Middle East and Ukraine, such compromised data might pose additional challenges for MoD operations in the area.
Mel Stride, a government minister, highlighted the need to balance security concerns with economic engagement with China. He emphasized the importance of including China in global discussions on issues like climate change.
In Parliament, Deputy Prime Minister Oliver Dowden made use of the example of previously alleged incidents involving attacks on the Electoral Commission and targeted attempts on MPs who have made criticism against China. Opposition politicians and former military personnel expressed concerns and called for a comprehensive response from the government.
As China’s president, Xi Jinping, tours Europe, including friendly nations, concerns persist about the Chinese government’s purported efforts at cyber espionage.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.
