Britain Building Cyber Forces to Attack ISIS

Uploaded on 2015-11-23 in NEWS-Cybersecurity News, INTELLIGENCE--Europe, GOVERNMENT-Defence, FREE TO VIEW

British spies are building elite cyber offensive forces to strike at Islamic State fighters, hackers and hostile powers, Chancellor George Osborne said recently after warning militants wanted to launch deadly digital attacks.

Islamic State was trying to develop the capability to attack British infrastructure such as hospitals, power networks and air traffic control systems with potentially lethal consequences, Osborne said.

In response, Britain will bolster spending on cyber defences, simplify its state cyber structures and build its own offensive cyber capability to attack adversaries.

"We will defend ourselves. But we will also take the fight to you," Osborne, Britain's second most powerful politician after Prime Minister David Cameron, said in a speech at Britain's GCHQ eavesdropping agency.
"We are building our own offensive cyber capability – a dedicated ability to counter-attack in cyberspace. When we talk about tackling (Islamic State), that means tackling their cyber threat as well as their guns, bombs and knives."

Britain's new cyber attack forces will be run jointly between GCHQ and the Defence Ministry and will target individual hackers, criminal gangs, militant groups and hostile powers, using a "full spectrum" of actions, Osborne said.

GCHQ traces its history back to World War One signals intelligence with Winston Churchill as its founder and once reported to the MI6 foreign intelligence service but has since gained significant influence as one of the world's pre-eminent eavesdropping agencies.

One of the most secret spy agencies in the world, its existence was only officially recognised legally by Britain in the 1990s.

After the Paris attacks, which killed at least 129 people and were claimed by Islamic State, Britain said it would boost staff at its domestic MI5 security service, MI6 and GCHQ by about 15 percent.

Osborne said public spending on cyber security would be almost doubled to a total of 1.9 billion pounds ($2.9 billion) over the period to 2020, saying the decision to ramp up cyber defence funding had been taken before Friday's bloodshed in Paris.

Islamic State was already using the Internet for propaganda, to radicalise people and for planning purposes, he added, "They have not been able to use it to kill people yet by attacking our infrastructure through cyber attack," he said. "But we know they want it and are doing their best to build it.

GCHQ was currently monitoring cyber threats against 450 companies in aerospace, finance defence, energy and telecoms sectors, while the number of cyber national security incidents had doubled to 200 a month since last year, he said.

A new national cyber security plan drawn up by the government would feature a dedicated force to ensure faster and more effective responses to major online attacks. The force would be based at GCHQ in Cheltenham, southwest England.

Other elements of the plan included possible cooperation between internet service providers, with help from the government, to fend off malware attacks and block bad addresses used against British internet users, as well as a new institute to train coders, Osborne said.

British broadband provider TalkTalk suffered a cyber attack in October, which affected 157,000 customers. In November, Britain and US authorities carried out a drill with leading banks to test their response to a cyber incident in the financial sector.

"The experience in the last month of TalkTalk shows how cyber attack can suddenly go from a theoretical risk to a massive business cost," Osborne said.

Reuters:

 

« Anonymous Acts on Cyber War Threat
Restricting Encryption Wouldn’t Stop Paris-Style Attacks »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Caldew Consulting

Caldew Consulting

Caldew specialise in providing information assurance and cyber security consultancy, covering the full spectrum of the security life cycle.

SolarWinds

SolarWinds

SolarWinds as a worldwide leader in solutions for network and IT service management, application performance, and managed services.

JLT Specialty

JLT Specialty

JLT Specialty is a leading specialist insurance broker. Services offered include Cyber Risks insurance.

MaxMind

MaxMind

MaxMind is an industry-leading provider of IP intelligence and online fraud detection tools.

Minerva Labs

Minerva Labs

Minerva’s patent pending solution keeps malware in a constant sleep state before it can infiltrate your network and cause any damage.

Red Balloon Security (RBS)

Red Balloon Security (RBS)

Red Balloon Security is a leading embedded device security company, delivering deep host-based defense for all devices.

SANS CyberStart

SANS CyberStart

SANS CyberStart is a unique and innovative suite of tools and games designed to introduce children and young adults to the field of cyber security.

NSEIT

NSEIT

NSEIT offers end-to-end Information Technology products, solutions and services including cybersecurity to organizations in the financial sector.

SpyCloud

SpyCloud

SpyCloud is a leader in account takeover (ATO) prevention, protecting billions of consumer and employee accounts either directly or through product integrations.

Swarmnetics

Swarmnetics

Swarmnetics helps customers discover hard-to-find software vulnerabilities by hacking your system before the bad guys do.

Qohash

Qohash

With a focus on data security, Qohash supports security, compliance and optimization use cases enhancing your risk management process.

McCrary Institute - Auburn University

McCrary Institute - Auburn University

The McCrary Institute seeks practical solutions to real-world problems in the areas of cyber and critical infrastructure security.

BT Security

BT Security

BT provides telecommunications and network infrastructure services to keep businesses around the world connected and secure.

Aravo Solutions

Aravo Solutions

Your Extended Enterprise is full of hidden risks – Aravo makes them visible, measurable, and manageable.

Endor Labs

Endor Labs

Endor Labs gives developers and security teams the context they need to prioritize open source risk.

Skylark

Skylark

Skylark is a leading global IT services provider, transforming client’s businesses through innovative and advanced technology solutions.