Raj Singh is a councillor at Reading Borough Council. He works as a cybersecurity and AI expert with clients in the private and public sectors.
On 24 January 2024, thee UK National Cyber Security Centre (NCSC) warned that the frequency of cyber attacks on Britain is rising. These threats are already costing the UK economy a £27 billion annually. The spread of AI and Deepfake technologies will further worsen the problem. To stay ahead of these challenges, we must take immediate and comprehensive action to safeguard our economy.
Last October, Ken McCallum, the head of MI5, sounded the alarm on escalating cyber threats from foreign states, notably China, which aimed to steal the UK’s high-tech secrets. Furthermore underscoring the escalating threat, the aftermath of the Ukraine conflict has seen a surge in cyber-attacks orchestrated by Russian criminal gangs. These have targeted prominent UK businesses such as British Airways, the BBC, and Boots. The personal details of tens of thousands of people have been stolen and a ransomware rampage has resulted in the theft of one million NHS patient records.
According to government figures, 32 per cent of businesses and 24 per cent of charities have experienced breaches or attacks in the past 12 months. This percentage is significantly higher for medium-sized businesses (59 per cent), large businesses (69 per cent), and high-income charities (56 per cent). These findings suggest that these organisations are more vulnerable to cybercrime.
Local councils, like Sefton, are waging an unrelenting battle against over 30,000 monthly cyber-attacks. This is diverting precious resources away from front-line services. But the implications of cyberattacks extend far beyond financial losses. They encompass the erosion of trust, disruptions to critical services, and compromised national security.
Last year, the Electoral Commission was the target for a sophisticated cyber attack, which resulted in unauthorised access to their internal emails and voter data. The organisation has teamed up with the NCSC and external experts to investigate the incident and enhance the security of its IT systems. But there is a significant concern at the possibility that foreign state actors may intensify highly sophisticated cyberattacks ahead of upcoming elections to undermine democratic processes.
Fortunately, the Conservatives have implemented noteworthy measures to promote collaboration and establish guidelines for business leaders. They have allocated £2.6 billion towards implementing the National Cyber Strategy, including launching the ‘Future Council’ programme to build cyber resilience. This strategy aims to address the increasing threat of cyber attacks.
However, no single law is devoted to cybersecurity in the UK. Instead, the legal framework is scattered across various existing Acts and the regulations that flow from them.
If we examine cybersecurity laws and regulations worldwide, Germany is a model to emulate, especially for critical infrastructure. Non-compliance can mean hefty penalties for businesses – up to €20 million or 4 per cent of global earnings. In extreme cases, that can rise to imprisonment for up to 10 years.
We must acknowledge the pressing need for a fundamental shift in our digital security framework. Stronger standards must be established across critical sectors, accompanied by robust assessments, regular audits, and the implementation of cutting-edge technologies to ward off evolving threats.
As Conservatives, we are well-positioned to understand the needs of small and medium-sized enterprises. We should expand regulatory frameworks, but offer targeted assistance such as financial incentives, training programs, and shared resources to help them to be implemented. Strengthening legal frameworks with proportionate penalties for cybercriminals is crucial, serving as a deterrent.
As the UK faces the mounting economic consequences of cybercrime, the call for proactive regulatory changes has become increasingly urgent. By fortifying our nation’s resilience through robust cybersecurity standards and by supporting businesses, we can forge a more secure digital landscape.
The cost of inaction reaches beyond financial terms, posing a threat to the integrity of critical systems, the protection of sensitive data, and our overall national well-being. The time to act is now, not merely to respond threats, but to take proactive measures to ensure our security and prosperity against evolving cyber-threats.
Raj Singh is a councillor at Reading Borough Council. He works as a cybersecurity and AI expert with clients in the private and public sectors.
On 24 January 2024, thee UK National Cyber Security Centre (NCSC) warned that the frequency of cyber attacks on Britain is rising. These threats are already costing the UK economy a £27 billion annually. The spread of AI and Deepfake technologies will further worsen the problem. To stay ahead of these challenges, we must take immediate and comprehensive action to safeguard our economy.
Last October, Ken McCallum, the head of MI5, sounded the alarm on escalating cyber threats from foreign states, notably China, which aimed to steal the UK’s high-tech secrets. Furthermore underscoring the escalating threat, the aftermath of the Ukraine conflict has seen a surge in cyber-attacks orchestrated by Russian criminal gangs. These have targeted prominent UK businesses such as British Airways, the BBC, and Boots. The personal details of tens of thousands of people have been stolen and a ransomware rampage has resulted in the theft of one million NHS patient records.
According to government figures, 32 per cent of businesses and 24 per cent of charities have experienced breaches or attacks in the past 12 months. This percentage is significantly higher for medium-sized businesses (59 per cent), large businesses (69 per cent), and high-income charities (56 per cent). These findings suggest that these organisations are more vulnerable to cybercrime.
Local councils, like Sefton, are waging an unrelenting battle against over 30,000 monthly cyber-attacks. This is diverting precious resources away from front-line services. But the implications of cyberattacks extend far beyond financial losses. They encompass the erosion of trust, disruptions to critical services, and compromised national security.
Last year, the Electoral Commission was the target for a sophisticated cyber attack, which resulted in unauthorised access to their internal emails and voter data. The organisation has teamed up with the NCSC and external experts to investigate the incident and enhance the security of its IT systems. But there is a significant concern at the possibility that foreign state actors may intensify highly sophisticated cyberattacks ahead of upcoming elections to undermine democratic processes.
Fortunately, the Conservatives have implemented noteworthy measures to promote collaboration and establish guidelines for business leaders. They have allocated £2.6 billion towards implementing the National Cyber Strategy, including launching the ‘Future Council’ programme to build cyber resilience. This strategy aims to address the increasing threat of cyber attacks.
However, no single law is devoted to cybersecurity in the UK. Instead, the legal framework is scattered across various existing Acts and the regulations that flow from them.
If we examine cybersecurity laws and regulations worldwide, Germany is a model to emulate, especially for critical infrastructure. Non-compliance can mean hefty penalties for businesses – up to €20 million or 4 per cent of global earnings. In extreme cases, that can rise to imprisonment for up to 10 years.
We must acknowledge the pressing need for a fundamental shift in our digital security framework. Stronger standards must be established across critical sectors, accompanied by robust assessments, regular audits, and the implementation of cutting-edge technologies to ward off evolving threats.
As Conservatives, we are well-positioned to understand the needs of small and medium-sized enterprises. We should expand regulatory frameworks, but offer targeted assistance such as financial incentives, training programs, and shared resources to help them to be implemented. Strengthening legal frameworks with proportionate penalties for cybercriminals is crucial, serving as a deterrent.
As the UK faces the mounting economic consequences of cybercrime, the call for proactive regulatory changes has become increasingly urgent. By fortifying our nation’s resilience through robust cybersecurity standards and by supporting businesses, we can forge a more secure digital landscape.
The cost of inaction reaches beyond financial terms, posing a threat to the integrity of critical systems, the protection of sensitive data, and our overall national well-being. The time to act is now, not merely to respond threats, but to take proactive measures to ensure our security and prosperity against evolving cyber-threats.