Feeds

Failing UK cyber defences need overhaul

MoD systems hit by hackers 71 times

  • alert
  • submit to reddit

Providing a secure and efficient Helpdesk

The UK's National Infrastructure Security Co-ordination Centre (NISCC) needs more powers to enforce security best practices in order to safeguard the nation's critical systems against cyber-attack, according to a former chairman of the Metropolitan Police Authority.

Lord Toby Harris of Haringey called for the appointment of a government cyber security czar and legislation to change the role of the NISCC from providing information security advice to setting and enforcing information security standards. "At present NISCC is set up to fail. Advice is not a guarantee of action," said Lord Harris.

Lord Harris conceded that this stricter regulation regime would be more expensive to maintain. Ultimately taxpayers would have to pay for better security to critical systems such as those run by utilities, food distribution networks, banks and government itself.

But inaction is not an option when even the "most secure systems appear to be vulnerable". Lord Harris said that since May 2002 71 Ministry of Defence systems had been "compromised by malicious programs". The Lovgate virus infected 4,000 MoD PCs and took four weeks to get rid of. More recently British Coast Guard systems were knocked over by the Sasser worm. "There is real and present danger not just from cyber delinquents but from cyber criminals and terrorists," he said.

Lord Harris made his comments during a keynote address at the Infosecurity trade show in London on Tuesday. The independent peer's comments reignite a debate on regulation aired at February's RSA Conference. Lord Harris' reference to the risk of an "electronic 9/11" irked some delegates who reckon politicians often overstate risks in an effort to get their point across. Tighter security regulations need to apply to suppliers as well as users and Lord Harris's call for international co-operation on the enforcement of cyber crime standards are likely to flounder on US opposition to tighter government regulations. Until UK politicians take cyber crime more seriously few of his other ideas are likely to come to fruition. ®

Related stories

Big guns back UK IT security drive
UK.gov deploys IT early warning system
Taleban can't hack UK govt
Regulate this

Choosing a cloud hosting partner with confidence

More from The Register

next story
The 'fun-nification' of computer education – good idea?
Compulsory code schools, luvvies love it, but what about Maths and Physics?
Facebook, Apple: LADIES! Why not FREEZE your EGGS? It's on the company!
No biological clockwatching when you work in Silicon Valley
Lords take revenge on REVENGE PORN publishers
Jilted Johns and Jennies with busy fingers face two years inside
Yes, yes, Steve Jobs. Look what I'VE done for you lately – Tim Cook
New iPhone biz baron points to Apple's (his) greatest successes
Happiness economics is bollocks. Oh, UK.gov just adopted it? Er ...
Opportunity doesn't knock; it costs us instead
Ex-US Navy fighter pilot MIT prof: Drones beat humans - I should know
'Missy' Cummings on UAVs, smartcars and dying from boredom
Sysadmin with EBOLA? Gartner's issued advice to debug your biz
Start hoarding cleaning supplies, analyst firm says, and assume your team will scatter
Edward who? GCHQ boss dodges Snowden topic during last speech
UK spies would rather 'walk' than do 'mass surveillance'
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.