UK Government Confirms Cyber Breach at Foreign Office as Investigation Continues
Trade minister acknowledges October hack targeting sensitive systems, emphasises ongoing probe amid diplomatic sensitivities
The United Kingdom government has confirmed that its Foreign, Commonwealth and Development Office was the target of a cyber-attack in October, and officials say a thorough investigation is underway to establish the full circumstances and implications of the breach.
Trade Minister Chris Bryant told broadcasters that the incident was first identified late last year and described it as a serious event that government security teams have been examining ever since, while stressing that there remains a "fairly low risk" that personal data of individuals was compromised.
Details of the perpetrator and the precise method of intrusion have not been officially attributed, but media reports cited by ministers indicate that a hacking group known as Storm 1849, which has been linked in open reporting to Chinese cyber networks, may have been involved.
Bryant cautioned against speculation about the identity or state affiliation of the attackers, saying it was not yet possible to draw definitive conclusions, and emphasised that authorities were working to close vulnerabilities rapidly and ensure the integrity of government digital infrastructure.
The cyber-security incident, which reportedly affected visa-related records and other Foreign Office systems, comes at a sensitive moment in Britain’s international relations and domestic political discourse on national security.
Prime Minister Keir Starmer’s government has maintained a dual approach of diplomatic engagement with China — with a planned visit to Beijing scheduled for late January — alongside assertions of vigilance against threats to British interests.
The Foreign Office and other agencies are continuing their internal review, working with national cyber-security teams to assess the scope of the breach and implement strengthened protections.
Senior officials have reiterated that protecting confidential government data and maintaining confidence in public systems remain top priorities as the investigation progresses and new measures are considered to bolster defences against future intrusions.
Trade Minister Chris Bryant told broadcasters that the incident was first identified late last year and described it as a serious event that government security teams have been examining ever since, while stressing that there remains a "fairly low risk" that personal data of individuals was compromised.
Details of the perpetrator and the precise method of intrusion have not been officially attributed, but media reports cited by ministers indicate that a hacking group known as Storm 1849, which has been linked in open reporting to Chinese cyber networks, may have been involved.
Bryant cautioned against speculation about the identity or state affiliation of the attackers, saying it was not yet possible to draw definitive conclusions, and emphasised that authorities were working to close vulnerabilities rapidly and ensure the integrity of government digital infrastructure.
The cyber-security incident, which reportedly affected visa-related records and other Foreign Office systems, comes at a sensitive moment in Britain’s international relations and domestic political discourse on national security.
Prime Minister Keir Starmer’s government has maintained a dual approach of diplomatic engagement with China — with a planned visit to Beijing scheduled for late January — alongside assertions of vigilance against threats to British interests.
The Foreign Office and other agencies are continuing their internal review, working with national cyber-security teams to assess the scope of the breach and implement strengthened protections.
Senior officials have reiterated that protecting confidential government data and maintaining confidence in public systems remain top priorities as the investigation progresses and new measures are considered to bolster defences against future intrusions.
