UK needs to develop offensive cyber capabilities, says Hammond

Chancellor warns that the country needs a way to respond to cyber attacks from foreign powers

Philip Hammond photo

Phillip Hammond today said that the UK needs to develop cyber weapons in order to respond to nation-state attacks, or risk starting a military conflict.

Speaking at Microsoft's Future Decoded conference in London's ExCel Centre, the UK Chancellor emphasised the need for offensive cyber security capabilities, primarily to respond to cyber attacks by foreign governments.

The comments come ahead of the official announcement of the government's new National Cyber Security Strategy, which is expected to highlight several key national security and defence issues as well as protections for companies and private citizens.

"A small number of hostile foreign actors have developed and deployed offensive cyber capabilities, including destructive ones," he said. "These capabilities threaten the security of the UK's critical national infrastructure and our industrial control systems."

He also warned that without similar offensive technologies, the UK would be forced to either do nothing or to respond with military force in the event of an attack. "That is a choice we do not want to face, and a choice we do not want to leave as a legacy to our successors. That is why we need to develop a fully-functioning, operational cyber counter-attack capability."

Hammond appeared to have a specific foreign power in mind and made reference earlier in his speech to both the TV 5 Monde hack and the BlackEnergy attack on the Ukranian power grid - both of which have been linked to Russian state-sponsored hackers.

According to the chancellor, any future wars will be preceded by a concerted campaign of cyber attacks, designed to assess the nation's strengths and weaken its defences in preparation of a full-scale attack.

The comments were slightly contradictory to the views of Dr Ian Levy, technical director of the National Cyber Security Centre, however. Also speaking at Future Decoded, Levy warned that cyber security needed to be demystified, and accused the industry of stoking unnecessary fears in order to sell "magic amulets".

Hammond is expected to announce the full scope of the National Cyber Security Strategy later today, which is set to introduce measures to improve the nation's security infrastructure and defences, along with the pool of available experts within the workforce.

The investment will partly be used to train and retain security talent. Over 50 security specialists will be hired to the National Crime Agency's cybercrime unit, with a scheme also set up to up-skill "high-aptitude professionals".

The government will establish an innovation fund for security startups too, encouraging the development of new security applications and technologies.

Automatic defence systems have also been set up with the help of private-sector companies, which will help stop malware, phishing campaigns and other security threats before they reach the general public.

"This is a hugely important announcement which makes it clear that cyber security will be at the heart of the UK's industrial strategy," said industry body TechUK. "It is absolutely vital that Britain's businesses are cyber secure."

TechUK CEO Julian David added "Although we have some of the best cyber security capabilities in the world, we cannot be complacent about the evolving cyber threat. This new strategy is a robust and comprehensive response from Government to the growing cyber threats that we face. It is now time for businesses across the country to step up and play their part in keeping their businesses and the UK as a whole secure."

Featured Resources

How virtual desktop infrastructure enables digital transformation

Challenges and benefits of VDI

Free download

The Okta digital trust index

Exploring the human edge of trust

Free download

Optimising workload placement in your hybrid cloud

Deliver increased IT agility with the cloud

Free Download

Modernise endpoint protection and leave your legacy challenges behind

The risk of keeping your legacy endpoint security tools

Download now

Recommended

Podcast Transcript: What’s so hard about public sector IT?
public sector

Podcast Transcript: What’s so hard about public sector IT?

3 Dec 2021
The IT Pro Podcast: What’s so hard about public sector IT?
public sector

The IT Pro Podcast: What’s so hard about public sector IT?

3 Dec 2021
Majority of UK's top business leaders are failing to manage supply chain security risks
supply chain management (SCM)

Majority of UK's top business leaders are failing to manage supply chain security risks

16 Nov 2021
HPE inks $2 billion high-performance computing deal with the NSA
high-performance computing (HPC)

HPE inks $2 billion high-performance computing deal with the NSA

1 Sep 2021

Most Popular

How to move Microsoft's Windows 11 from a hard drive to an SSD
Microsoft Windows

How to move Microsoft's Windows 11 from a hard drive to an SSD

4 Jan 2022
Microsoft Exchange servers break thanks to 'Y2K22' bug
email delivery

Microsoft Exchange servers break thanks to 'Y2K22' bug

4 Jan 2022
Solving cyber security's diversity problem
Careers & training

Solving cyber security's diversity problem

5 Jan 2022