UK Will Retaliate Against Cyberattacks

Uploaded on 2016-11-15 in NEWS-Cybersecurity News, GOVERNMENT-Defence, FREE TO VIEW

The UK must be able to retaliate in kind against cyber-attacks, the chancellor has said.  Philip Hammond added that hostile "foreign actors" were developing techniques that threaten the country's electrical grid and airports.

The warning came within a speech describing how the government plans to spend a previously announced £1.9bn sum on cybersecurity. It also addressed ways to tackle cyber-scammers and defend businesses. "If we do not have the ability to respond in cyberspace to an attack which takes down our power network - leaving us in darkness or hits our air traffic control system grounding our planes - we would be left with the impossible choice of turning the other cheek, ignoring the devastating consequences, or resorting to a military response," Mr Hammond said as he described the National Cyber Security Strategy in London.

"That is a choice we do not want to face and a choice we do not want to leave as a legacy to our successors."

The strategy will help enlarge specialist police units that tackle organised online gangs. In addition, some cash will also go towards education and training of cybersecurity experts. "If we want Britain to be the best place in the world to be a tech business then it is also crucial that Britain is a safe place to do the digital business," the chancellor added. "Trust in the internet and the infrastructure on which it relies is fundamental to our economic future."

Mr Hammond's speech followed a warning from MI5 that Russia poses an increased cyber-threat. "It is using its whole range of state organs and powers to push its foreign policy abroad in increasingly aggressive ways - involving propaganda, espionage, subversion and cyber-attacks," Andrew Parker, the domestic security agency's director general, told the Guardian.

The Kremlin has dismissed the allegation. "Until someone produces proof, we will consider those statements unfounded and groundless," said spokesman Dmitry Peskov.

A rare intervention from the head of MI5 warning of aggressive Russian behaviour in cyberspace is a sign of government grappling with how to respond to a changing threat.

Cyber-espionage and crime have been around for years, but what has been new is the willingness of states and other actors to take more aggressive - even destructive - moves in cyberspace.

Until now, the US has been more inclined to confront Russia, notably relating to hacks linked to its impending presidential election. But Andrew Parker's comments, as well as the chancellor's about "striking back" in cyberspace, may be a sign that the UK is now pursuing a similar path.

Sir Tim Berners-Lee, the inventor of the web, told the BBC that it was "absolutely right" that the government was concerned about the issue. "Whether it's script kiddies sitting in their garage or it's a state actor - clearly we've seen the internet can be attacked and has been attacked in all kinds of different ways," he told the Today programme.

"The United Kingdom needs to have a strong but responsible and accountable police force, and [cyber-intelligence agency] GCHQ needs to have the tools to be able to defend us and defend the open internet."

Teens and foreign states

Mr Hammond said Britain "must now keep up with the scale and pace of the threats we face", including those carried out by foreign perpetrators who then try to deny their involvement.

He did not refer directly to Russia or any other specific country. "The ability to detect, trace and retaliate in kind is likely to be the best deterrent," Mr Hammond said. "We will not only defend ourselves in cyberspace, we will strike back in kind when we are attacked."

Ben Gummer, paymaster general, said in a statement: "No longer the stuff of spy thrillers and action movies, cyber-attacks are a reality and they are happening now.

"Our adversaries are varied, organised criminal groups, 'hacktivists', untrained teenagers and foreign states."

Finding talent

The £1.9bn to pay for the national strategy was allocated last year and will fund the programme until the end of 2020.

With the aid of industry, the government has already set up automated systems that screen out malware and spam before it reaches UK citizens. Other projects have helped the government verify where emails come from to thwart specific tax fraud campaigns aimed at the UK.

Future spending plans involved cash for recruiting more than 50 specialists who will work at the cybercrime unit at the National Crime Agency.

These will help tackle organised gangs and aim to raise the cost of engaging in hi-tech crime to make it much less attractive.

The cyber-plan also involves the creation of a Cyber Security Research Institute, "a virtual network UK universities" that will co-ordinate research into efforts to improve defences for smartphones, laptops and tablets.

Security-based start-ups will also get help via an innovation fund that will commercialise work on novel tools and defences.

A national scheme will also be set up to retrain "high-aptitude professionals" as cybersecurity experts. Prof Alan Woodward, a computer security expert from the University of Surrey, said he hoped the government spent cash on the "high volume, low sophistication attacks" that plague people and cause the majority of financial losses.

"I hope the £1.9bn will be spent in growing talent," he said. "The government talk about 50 recruits here and 50 there. I'm afraid we need many more."

Prof Woodward said it was getting "increasingly difficult" to persuade young people to study computer science and getting them to try cybersecurity was "a real headache".

"I would really like to see money put into reaching young people early enough to influence the subjects they decide upon at school and pairing an image for them of just how interesting and rewarding a career in cybersecurity can be," he said.

BBC:       UK To Increase National Cyber Defences:

« Pepper Keep’s Son Robot Dreams on Hold
Cyber-attacks & Hacking: What You Need To Know »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Tines

Tines

The Tines security automation platform helps security teams automate manual tasks, making them more effective and efficient.

ManTech International

ManTech International

ManTech provides comprehensive, integrated cyber security support, which includes computer and network design, implementation, and operations.

Cryptovision

Cryptovision

Cryptovision GmbH is one of the leading specialists for modern, user-friendly cryptography and solutions for secure electronic identities.

Ogasec

Ogasec

Ogasec is a cybersecurity company formed by the merger between Aker and N-Stalker in 2017. Solutions include Security & Connectivity Networking, Application Security, and Managed Security Services.

CS3STHLM

CS3STHLM

CS3STHLM is the Stockholm international summit on Cyber Security in SCADA and Industrial Control Systems.

Highland Capital Partners

Highland Capital Partners

Highland Capital Partners is an early stage venture capital firm focused on category-defining businesses in consumer and enterprise technology, including cybersecurity.

Leidos

Leidos

Leidos is a recognized leader in cybersecurity across the federal government, bringing more than a decade of experience defending cyber interests globally.

KnectIQ

KnectIQ

Building Trust Environments in a Zero-Trust World. KnectIQ offers KIQAssure, an Ultra High Security Solution for Data in Flight.

McCrary Institute - Auburn University

McCrary Institute - Auburn University

The McCrary Institute seeks practical solutions to real-world problems in the areas of cyber and critical infrastructure security.

ACSG Corp

ACSG Corp

ACSG Corp is a Critical Infrastructure Protection Company with a multi-disciplinary focus on building analytics software for various industry sectors.

White Tuque

White Tuque

A new way to protect your organization. White Tuque is your partner in identifying threats, understanding your risk, and ensuring your business remains resilient.

AFRY

AFRY

AFRY is a world leading engineering company, trusted as a supplier of services and solutions within the industry, energy, and infrastructure sectors as well as for authorities.

Cyber News Live

Cyber News Live

Welcome to Cyber News Live (CNL), we are dedicated to keeping everyone safe online. We provide vital information.

JLS Technology

JLS Technology

Since 2007, JLS Tech has been recognized as one of the world’s most innovative cybersecurity and technology operations leaders.

Apollo Secure

Apollo Secure

Apollo is an automated cybersecurity platform for startups and small businesses to achieve and maintain security compliance.

iConnect IT Business Solutions DMCC

iConnect IT Business Solutions DMCC

iConnect is a trusted IT Solutions and Technology Services company, proudly serving clients across the Middle East and Africa.

UMCA Technologies

UMCA Technologies

UMCA Technologies provide an AI-based solution that helps financial institutions reduce and block fraudulent financial transactions and prevent account takeovers in real time.