The UK government has highlighted a growing cyber threat from Russian-backed actors. These groups have already attacked UK media, telecoms, and vital national infrastructure, and they are preparing for even more serious assaults.
At the NATO Cyber Defence Conference in London, Pat McFadden, the Chancellor of the Duchy of Lancaster, emphasized the risks posed by these cyber attacks. He warned that Russia could, for instance, cause widespread blackouts. “This is part of the hidden war they are fighting in Ukraine. Over the past year, Russia’s military and its networks of cyber criminals have not only increased their attacks but broadened their targets to include members of NATO and allies. Their goal is to weaken the countries that support Ukraine.”
McFadden pointed out how Moscow’s cyber tactics involve gangs and hacktivists that operate with a level of freedom, provided they align with Russian interests. He mentioned that these groups had even targeted South Korea in retaliation for monitoring Russia’s actions regarding North Korean troops.
He reported that Russian-affiliated groups were responsible for at least nine significant cyber attacks on NATO countries, including serious strikes on critical infrastructures. These groups act unpredictably and without regard for international consequences, posing a risk of substantial disruption.
Meanwhile, Jamie MacColl from the Royal United Services Institute (RUSI) noted that McFadden’s comments represent a shift in how the UK government discusses cyber threats. He remarked that some claims, like the possibility of Russia “turning off the lights for millions,” might be overstated. “This kind of rhetoric runs the risk of creating unnecessary panic and doesn’t accurately reflect the capabilities of cyber operations,” he said. He urged the government to adopt a more balanced approach in its communications and strengthen its understanding of cyber security realities.
James Sullivan, also from RUSI, warned that doomsday scenarios, such as widespread power outages, could erode public trust in essential services. He stressed the need for clear communication about the actual risks and impacts of cyber incidents, which often unfold slowly rather than dramatically.
During the conference, McFadden announced the launch of a new artificial intelligence (AI) cyber lab, backed by £8.22 million from the government. This lab aims to unite experts from various sectors to study AI’s implications for security and develop better tools for defense.
The Laboratory for AI Security Research (LASR) plans to collaborate with leading institutions, including GCHQ and universities, and seeks partnerships within NATO and the Five Eyes alliance. McFadden also unveiled a £1 million investment in incident response capabilities to aid allies in dealing with cyber threats.
Stephen Doughty, the minister responsible for Europe and North America, highlighted the vast potential of AI. He noted that to leverage AI effectively, the government must also be aware of its risks.
Spencer Starkey from SonicWall added a cautionary note, emphasizing that while AI can enhance cyber security, it can also be exploited by malicious actors. He pointed out that the same ability AI has to analyze large data sets could be weaponized against us. He proposed the idea of using AI in cyber defenses to counteract threats in real time, suggesting a future where AI continuously combats cyber attacks without pauses or breaks.