China reportedly hacks UK Ministry of Defence, personnel data accessed

Old brass sign marking the offices of the British Ministry of Defence on a building in Whitehall, London, UK
(Image credit: Shutterstock)

Months after the UK Ministry of Defence (MoD) was evaluated to have the worst IT security in Whitehall, data on armed forces personnel has been accessed in a cyber attack.

While the data accessed by the threat actor was being handled by a third party contractor, earlier this year the MoD was evaluated to have 11 red-rated systems that were either highly exposed to cyber attacks and data breaches, or were evaluated as being unsuitable for use and inefficient.

No official determinations have been made on who was responsible for the attack, but similarities to a previous attack allegedly perpetrated by China attempting to steal information on ex-RAF pilots has prompted some to accuse China of again targeting UK armed forces personnel.

Cyber attack a matter of when, not if

Cyberattacks and breaches have become the norm for organizations across the globe, but there's no reason why this should translate into having no defense at all, nor one that relies upon the Computer Misuse Act - an outdated and poorly maintained regulatory framework on cybercrime which was introduced before the invention of the internet.

Whitehall IT systems, particularly those of the MoD whose primary function is to “ensure our security”, were given no mention by UK Chancellor of the Exchequer Jeremy Hunt in his recent announcement of the spring budget, with a recent Armis survey of UK IT leaders adding more than half believed the government cannot defend its citizens or businesses from cyberwarfare.

The National Security Strategy Joint Committee recently criticized the Home Office for its approach to ransomware as a national security threat, stating that former Home Secretary Suella Braverman had “showed no interest in it”, and had instead drawn focus and funding towards issues such as small boats instead.

Jake Moore, Global Cybersecurity Advisor, ESET said, “Protecting our digital landscape is just as critical as safeguarding the physical realm and this latest data breach highlights yet again the importance for increased investment in defence and security measures.”

“Cybersecurity standards are vital in government organisations but they don’t always operate in the way they are designed. A framework is often laid out as a gold standard but in reality corners are cut. Cybercriminals will attack all links in the chain looking for the weakest link and if this involves a small external company, this firm will require the same security as the government organisation in question.

“Many businesses in the government’s supply chains will handle extremely sensitive data but it is imperative that they are checked not only in terms of vetting but in terms of continual security protocols as well. When dealing with this level of sensitive information which could potentially cause a huge knock on effect, it is vital that they are protected to the highest possible standard,” Moore concluded.

More from TechRadar Pro

Benedict Collins
Staff Writer (Security)

Benedict has been writing about security issues for over 7 years, first focusing on geopolitics and international relations while at the University of Buckingham. During this time he studied BA Politics with Journalism, for which he received a second-class honours (upper division), then continuing his studies at a postgraduate level, achieving a distinction in MA Security, Intelligence and Diplomacy. Upon joining TechRadar Pro as a Staff Writer, Benedict transitioned his focus towards cybersecurity, exploring state-sponsored threat actors, malware, social engineering, and national security. Benedict is also an expert on B2B security products, including firewalls, antivirus, endpoint security, and password management.

Read more
An illustration of a silhouetted thief in motion running while carrying a stolen fingerprint
The 5 worst cyberattacks of 2024
An American flag flying outside the US Capitol building against a blue sky
US military and defense contractors hit with Infostealer malware
China
Chinese hackers develop effective new hacking technique to go after business networks
An image of network security icons for a network encircling a digital blue earth.
Why effective cybersecurity is a team effort
China
US Treasury declares ‘major incident’ after apparent state-sponsored Chinese hack
Classroom
Many schools still don’t have basic cybersecurity measures, research reveals
Latest in Pro
A person using a smartphone with a cybersecurity lock symbol appearing over it.
The growing threat of device code phishing and how to defend against It
Cybersecurity
Why OT security needs exposure management to break the cycle of endless patching
Employees sat around together discussing business issues.
AI deregulation: what smart leaders do when the rules go off the rails
Branch office chairs next to a TechRadar-branded badge that reads Big Savings.
This office chair deal wins the Amazon Spring Sale for me and it's so good I don't expect it to last
Saily eSIM by Nord Security
"Much more than just an eSIM service" - I spoke to the CEO of Saily about the future of travel and its impact on secure eSIM technology
NetSuite EVP Evan Goldberg at SuiteConnect London 2025
"It's our job to deliver constant innovation” - NetSuite head on why it wants to be the operating system for your whole business
Latest in News
The Witcher 4
You're probably not playing The Witcher 4 until 2027 at the earliest, per CD Projekt's latest financial update
DeepSeek
DeepSeek’s new AI is smarter, faster, cheaper, and a real rival to OpenAI's models
Open AI
OpenAI unveiled image generation for 4o – here's everything you need to know about the ChatGPT upgrade
Apple WWDC 2025 announced
Apple just announced WWDC 2025 starts on June 9, and we'll all be watching the opening event
Hornet swings their weapon in mid air
Hollow Knight: Silksong gets new Steam metadata changes, convincing everyone and their mother that the game is finally releasing this year
OpenAI logo
OpenAI just launched a free ChatGPT bible that will help you master the AI chatbot and Sora