An undisclosed advanced persistent threat (APT) actor possibly backed by the Chinese government is suspected of involvement in a serious supply chain data breach at the UK's Ministry of Defence (MoD), but the UK has declined to formally attribute the cyber attack stating national security concerns.
In recent days, the Ministry of Defence has identified indications that the malign actor gained access to part of the armed forces payment network... It is operated by a contractor and there is evidence of potential failings by them, which may have made it easier for the malign actor to gain entry.
For reasons of national security, we can't release further details of the suspected cyber activity behind this incident. However, I can confirm to the House that we do have indications that this was the suspected work of a malign actor and we cannot rule out state involvement.
[
add
]
[
|
|
...
]