The head of the UK’s domestic counter-intelligence and security agency, MI5, will today deliver a warning to the general public about the threats posed by cyber espionage.
Ken McCallum, who last year succeeded Sir Andrew Parker as Director General, will emphasise the importance of vigilance among regular people in the UK, who are being increasingly approached by foreign intelligence agencies.
The MI5 has recorded more than 10,000 cyber espionage incidents in the last five years, with many taking place on networking social media platform LinkedIn.
McCallum is expected to say that “UK victims of state espionage range way wider than just government”, in a speech scheduled for today at MI5’s Thames House headquarters.
“We see the UK’s brilliant universities and researchers having their discoveries stolen or copied; we see businesses hollowed out by the loss of advantage they’ve worked painstakingly to build. Given half a chance, hostile actors will short-circuit years of patient British research or investment. This is happening at scale. And it affects us all. UK jobs, UK public services, UK futures,” he will say.
McCallum will also urge businesses engaged in export, scientific research, and the high-tech sector to be aware of the potential risks of falling victim to cyber espionage. These could include "frustration and inconvenience”, but also “loss of livelihood, potentially up to loss of life".
However, McCallum is to add that these companies “don’t have to be scared; but be switched on”.
RELATED RESOURCE
The Forrester Wave: Top security analytics platforms
The 11 providers that matter most and how they stack up
McCallum will also appeal for action across the government as well as the general public: "We must, over time, build the same public awareness and resilience to state threats that we have done over the years on terrorism," he will say.
The warning comes three months after the Centre for the Protection of National Infrastructure (CPNI) launched the Think Before You Link campaign, which aims to increase awareness of foreign agents targeting officials with access to sensitive information.
The project shares concerns that once a request has been accepted, the victim's colleagues will be more likely to accept a follow-up request as it looks like they share a mutual acquaintance. Nearly all government departments and some key industries are thought to have been targeted by fake LinkedIn accounts.
-
Global IT spending set to exceed $6 trillion in 2026News Several key areas are expected to drive the bulk of investment next year
-
Data engineers have never been more important, as businesses are starting to find outNews An MIT survey for Snowflake shows the changing role of data engineers – and their rise in influence
-
Foreign states ramp up cyberattacks on EU with AI-driven phishing and DDoS campaignsNews ENISA warns of hacktivism, especially through DDoS attacks
-
A new 'top-tier' Chinese espionage group is stealing sensitive datanews Phantom Taurus has been operating for two years and uses custom-built malware to maintain long-term access to critical targets
-
‘States don’t do hacking for fun’: NCSC expert urges businesses to follow geopolitics as defensive strategyNews Paul Chichester, director of operations at the UK’s National Cyber Security Centre, urged businesses to keep closer tabs on geopolitical events to gauge potential cyber threats.
-
Three ways to evolve your security operationsWhitepaper Why current approaches aren’t working
-
Beat cyber criminals at their own gameWhitepaper A guide to winning the vulnerability race and protection your organization
-
Quantifying the public vulnerability market: 2022 editionWhitepaper An analysis of vulnerability disclosures, impact severity, and product analysis
-
Same cyberthreat, different storyWhitepaper How security, risk, and technology asset management teams collaborate to easily manage vulnerabilities
-
Business value of ServiceNow security operationsWhitepaper Experience transformational gains from automating workflows and data-sharing among IT, security, and risk teams to rapidly remediate threats
