Summary: The U.K. government has officially designated data centers as critical national infrastructure to enhance their security against cyber threats, particularly in light of increasing reliance on cloud computing and AI technologies. This move aims to protect sensitive user data during potential cyberattacks and involves the establishment of a dedicated team to monitor and respond to threats.
Threat Actor: Russian-speaking threat actors and Chinese hackers | Russian-speaking threat actors, Chinese hackers
Victim: U.K. critical infrastructure | U.K. critical infrastructure
Key Point :
- The U.K. government has formed a critical national infrastructure team to oversee data center security.
- Data centers will now be subject to enhanced security standards to protect citizens’ data from cyber threats.
- Nation-state hackers, particularly from Russia and China, are identified as significant threats to the U.K.’s critical infrastructure.
- The government aims to facilitate the growth of data centers to support the domestic AI sector.
Critical Infrastructure Security
,
Geo Focus: The United Kingdom
,
Geo-Specific
British Government Says Data Centers Are ‘Essential for Functioning of Society’
The U.K. government on Thursday designated data centers as part of its critical national infrastructure in a move intended to prevent the loss of sensitive user data during disruptive cyberattacks.
See Also: Essential Elements to Consider when Choosing a Micro-Segmentation Solution
British Technology Secretary Peter Kyle announced the government set up a dedicated critical national infrastructure team consisting of senior public officials to monitor threat to data centers.
The designation is the first addition to a list of “national assets” deemed “essential for functioning of society” that the British government has made in almost a decade. The United Kingdom is home to close to 400 or more than 500 data centers, according to estimates. Most are clustered in London and its immediate vicinity.
A shift to cloud computing combined with the advent of data-thirsty artificial intelligence tools have sparked a global demand for more data centers. The newly elected Labour government pledged in its election manifesto to remove “planning barriers” to new data centers in order to ensure the growth of a domestic AI sector.
The newly announced data center security team will monitor and anticipate potential cyberthreats. It will also work with the U.K. National Cyber Security Center for incident response.
NCSC CEO Felicity Oswald on Thursday said U.K. critical infrastructure is a “high-priority” target for nation state hackers. A 2023 NCSC analysis said Russian-speaking threats actors including state-aligned hackers and ransomware groups, as well as Chinese hackers backed by Beijing, pose the biggest threat to the U.K.’s critical infrastructure (see: UK NSCS Highlights Risks to Critical Infrastructure).
“Data centers will now be held to higher standards of security, resilience and risk management, which is essential for safeguarding the vast amounts of citizens’ data stored in the U.K.’s data centers, ensuring it is treated with the same priority as other key national resources,” said Jordan Schroeder, managing CISO at Glasgow-based Barrier Networks.
Jon Mort, CTO of London-based Adaptavist Group, called the measure a vital step that can help the government and private players to ensure the security of data centers from evolving threats tied to the rapid adoption of artificial intelligence and cloud.
Source: https://www.govinfosecurity.com/uk-labels-data-centers-as-critical-national-infrastructure-a-26278