Today, the US Congress made headlines with a bold letter accusing the UK of launching a foreign cyberattack using political tactics. The letter points to a secret demand from the UK Home Office last month, urging Apple to bypass its Advanced Data Protection system, allowing British intelligence access to secure files.
In a direct appeal to Tulsi Gabbard, the newly appointed US Director of National Intelligence, Senator Ron Wyden from Colorado and Representative Andy Biggs from Arizona insisted that the US reconsider its longstanding partnership with the UK if this demand isn’t reversed. “If the U.K. doesn’t back off, we urge you to reevaluate U.S.-U.K. cybersecurity arrangements,” they said.
This unusual alliance between Wyden, a liberal Democrat focused on healthcare and environmental issues, and Biggs, a staunch Trump supporter known for leading the “MAGA squad”, highlights the gravity of the situation. Wyden serves on the Senate Intelligence and Finance Committee, while Biggs chairs the House Judiciary Subcommittee on Crime and Federal Government Surveillance. Their joint criticism of British tactics stands out in the current polarized political climate.
The letter was also sent to Peter Mandelson, the incoming British Ambassador, but there’s been no official comment from the British Embassy, Home Office, or the DNI. Wyden and Biggs are pressing the DNI to clarify whether the US government accepts the UK’s claim of imposing “gag orders” on American companies for user data requests. They also want to know if UK authorities informed the US about the January notice before it hit the news.
This UK move against Apple jeopardizes recent progress in information sharing. The US and UK spent four years negotiating a Data Access Agreement in 2022, allowing Apple to provide data from UK iCloud accounts without compromising user security, provided advanced security features were turned off. This agreement, part of the CLOUD Act, was a significant milestone for both countries, enhancing their ability to combat serious crime while respecting privacy standards.
Claims now suggest that the UK’s push for access has led it to act without necessary legal precautions. Sources say the recent notice didn’t get the required scrutiny from the Technical Advisory Panel, which comprises vetted experts in cryptosecurity and computer science. If true, both the Judicial Commissioner who approved the notice and the Home Secretary may have been misled, prompting a reevaluation of the notice’s issuance process.
The letter also referenced Gabbard’s earlier statements on encryption, emphasizing that backdoors could jeopardize Americans’ civil liberties. They urged her to enforce an ultimatum: reverse this dangerous demand or face serious repercussions.
Experts in cryptography supported this stance, warning that the UK’s order could inadvertently put sensitive data at risk of exploitation by adversaries like Beijing. Matt Green, a noted cryptographer at Johns Hopkins University, argued that the US should legislate against allowing foreign nations to request encryption backdoors. This would create challenges for companies like Apple, but it could also be a necessary safeguard.