It has been revealed that the Ministry of Defence was targeted in a cyberattack on a third party payroll system including the details of “tens of thousands” of British Armed Forces and veterans.
Grant Shapps, Defence Secretary, will address MPs on Tuesday 7 May, but will not identify specific culprits and instead warn of the dangers posed by cyber espionage from hostile states.
“These types of attacks are business as usual for nation-state adversaries and are mostly unsuccessful,” said Patrick Wragg, Head of Incident Response at Integrity 360.
“However, every once in a blue moon they get lucky and are able to access sensitive data.
“The armed forces personal data that was accessed is extra valuable because they will be highly security cleared individuals which means the data can be used for blackmail/extortion purposes.
“The system that was breached being managed by an external contractor highlights the need for extra levels of security when dealing with third-parties.”
The system used by the Ministry of Defence (MoD) includes names and bank details of armed forces personnel.
China’s foreign ministry said it “firmly opposes and fights all forms of cyberattacks” and “rejects the use of this issue politically to smear other countries”.
Defence Secretary Grant Shapps will make a statement to the Commons, with the BBC reporting he will set out a “multi-point plan” which will include action to protect affected service men and women.