UK will be hit by potentially life-threatening cyber attack, security chief warns

There is little doubt the UK will be hit by a potentially life-threatening cyber attack at some point, the head of the National Cyber Security Centre (NCSC) has warned.

A specialist unit is repelling more than 10 attempted attacks every week, many of which are carried out by hackers in nation states "hostile" towards the UK.

Ciaran Martin said he expects the NCSC will have to deal with a “category 1” case in the future, which includes incidents resulting in severe economic or social consequences or loss of life.

Since it became fully operational two years ago, the centre’s frontline teams have dealt with 1,167 cyber incidents.

On Tuesday the NCSC will publish a report laying bare the scale of the danger it is confronting.

Mr Martin, the NCSC’s chief executive, said: “The majority of these incidents were, we believe, perpetrated from within nation states in some way hostile to the UK.

“They were undertaken by groups of computer hackers directed, sponsored or tolerated by the governments of those countries.

“These groups constitute the most acute and direct cyber threat to our national security.

“I remain in little doubt we will be tested to the full, as a centre, and as a nation, by a major incident at some point in the years ahead, what we would call a category 1 attack.”

The NCSC defines a category 1 incident as a national cyber emergency, which causes “sustained disruption” of essential services or affects national security, leading to severe economic or social consequences or to loss of life.

Although there have been several “very significant” incidents, Mr Martin said the UK has so far avoided a category 1 event.

He added: “But even if this continues, we must be alert to the constant threat from countries who will attack critically important national networks to steal information for strategic or commercial reasons, and give themselves a starting point – ‘pre-positioning’ – for a significant attack in the future.”

The assessment comes less than a fortnight after Britain accused the GRU, the Russian military intelligence service, of being behind a campaign of cyber attacks targeting political institutions, businesses, media and sport.

Mr Martin stressed there is “much, much more” to the cyber security threat faced by the UK than just Russia.

While nation state activity represents the most acute threat, he said, low-sophistication but high-volume cyber crime is the “most chronic” one.

The NCSC launched the Active Cyber Defence initiative to protect the UK from “high-volume commodity attacks” that affect people’s everyday lives.

Since its introduction, the UK share of visible global phishing attacks dropped from 5.3% to 2.4%, according to the report.

The NCSC, which is part of intelligence agency GCHQ, was established to spearhead efforts to counter the mounting danger from cyber criminals and hostile states.