Almost 7,000 Afghan nationals are being relocated to the UK following a massive data breach by the British military that successive governments tried to keep secret with a superinjunction.
The blunder exposed the personal information of close to 20,000 individuals, endangering them and their families – with as many as 100,000 people impacted in total.
The UK only informed everyone on Tuesday – three-and-a-half years after their data was compromised.
Politics latest: Minister sorry after ‘extraordinary secrecy’ concealed data leak
The Ministry of Defence (MoD) said the relocation costs alone directly linked to the data breach will be around £850m. An internal government document from February this year said the cost could rise to £7bn, but an MoD spokesperson said that this was an outdated figure.
However, the total cost to the taxpayer of existing schemes to assist Afghans who are deemed eligible for British support, as well as the additional cost from the breach, will come to at least £6bn.
In addition, litigation against the UK arising from the mistake could add additional cost, as well as whatever the government has already spent on the superinjunction.
Details about the blunder can finally be made public after a judge lifted the injunction that had been sought by the government.
Please use Chrome browser for a more accessible video player
Defence secretary on Afghan leak
Barings Law, a law firm that is representing around 1,000 of the victims, accused the government of trying to hide the truth from the public following a lengthy legal battle.
Defence Secretary John Healey offered a “sincere apology” for the data breach in a statement to MPs in the House of Commons on Tuesday afternoon.
He said he had felt “deeply concerned about the lack of transparency” around the data breach, adding: “No government wishes to withhold information from the British public, from parliamentarians or the press in this manner.”
The previous Conservative government set up a secret scheme in 2023 – which can only now be revealed – to relocate Afghan nationals impacted by the data breach but who were not eligible for an existing programme to relocate and assist individuals who had worked for the British government in Afghanistan.
Some 6,900 Afghans – comprising 1,500 people named on the list as well as their dependents – are being relocated to the UK as part of this programme.
Afghan co-workers and their families board a plane during the Kabul airlift in August 2021. Pic: South Korean Defense Ministry/ZUMA Press Wire/Shutterstock
This comes on top of the many thousands more who are being moved until the Afghan Relocation and Assistance Policy (ARAP). A lot of these individuals are also caught up in the data breach.
The Times, which has been battling the injunction, said a total of 18,500 people have so far been relocated to the UK, including those directly impacted plus their dependents.
Read more:
‘My family is finished’: Afghan man in UK military data breach says he feels betrayed
Analysis: Retreat from Afghanistan began as a farce, then it was a scandal, now it’s a cover-up
👉 Listen to Sky News Daily on your podcast app 👈
Some 5,400 more Afghans who have already received invitation letters will be flown to the UK in the coming weeks, bringing the total number of Afghans affected by the breach being brought to the UK to 23,900. The rest of the affected Afghans will be left behind, the newspaper reported.
How did the data breach happen?
The disaster is thought to have been triggered by the careless handling of an email that contained a list of the names and other details of 18,714 Afghan nationals. They had been trying to apply to a British government scheme to support those who helped or worked with UK forces in Afghanistan that were fighting the Taliban between 2001 and 2021.
People gathered desperately near evacuation control checkpoints during the crisis. Pic: AP
The evacuation at Kabul airport was chaotic. Pic: AP
The collapse of the western-backed Afghan government that year saw the Taliban return to power. The new government regards anyone who worked with British or other foreign forces during the previous two decades as a traitor.
A source said a small number of people named on the list are known to have subsequently been killed, though it is not clear if this was a direct result of the data breach.
It is also not clear whether the Taliban has the list – only that the MoD lost control of the information.
Taliban members on the second anniversary of the fall of Kabul. Pic: Reuters
Adnan Malik, head of data protection at Barings Law, said: “This is an incredibly serious data breach, which the Ministry of Defence has repeatedly tried to hide from the British public.
“It involved the loss of personal and identifying information about Afghan nationals who have helped British forces to defeat terrorism and support security and stability in the region.
“A total of around 20,000 individuals have been affected, putting them and their loved ones at serious risk of violence from opponents and armed groups.”
The law firm is working with around 1,000 of those impacted “to pursue potential legal action”.
Read more:
British couple held in Afghanistan
ICC prosecutor calls for arrest of Taliban duo
It is thought that only a minority of the names on the list – about 10 to 15% – would have been eligible for help under the Afghan Relocation and Assistance Policy (ARAP).
The breach occurred in February 2022, when Boris Johnson was prime minister, but was only discovered by the British military in August 2023.
A superinjunction – preventing the reporting of the mistake – was imposed in September of that year.
It meant the extraordinary – and costly – plan to transport thousands of Afghans to the UK took place in secret until now.
Sir Keir Starmer’s government inherited the scandal.
Why was superinjunction lifted?
An internal review into the affair was launched at the start of this year by Paul Rimmer, a retired civil servant.
It played down the risk to those whose data is included in the breached dataset should it fall into the hands of the Taliban.
The review said it was “unlikely to substantially change an individual’s existing exposure given the volume of data already available”.
It also concluded that “it appears unlikely that merely being on the dataset would be grounds for targeting” and it is “therefore also unlikely that family members… will be targeted simply because the ‘principal’ appears… in the dataset”.
This is why a High Court judge ruled that the superinjunction could be lifted.
Mr Malik, however, said that he believes there is still a risk to those named in the breach.
He added: “Our claimants continue to live with the fear of reprisal against them and their families, when they should have been met with gratitude and discretion for their service.
“We would expect substantial financial payments for each claimant in any future legal action. While this will not fully undo the harm they have been exposed to, it will enable them to move forward and rebuild their lives.”
Latest MoD data breach
While the MoD’s data breach is by far the largest involving Afghan nationals, it is not the first.
Earlier this month, the MoD said Afghans impacted by a separate mistake could claim up to £4,000 in compensation four years after the incident happened.
Human error resulted in the personal information of 265 Afghans who had worked alongside British troops being shared with hundreds of others who were on the same email distribution list in September 2021.
In December 2023, the UK Information Commissioner fined the MoD £350,000 and said the “egregious” breach could have been life-threatening.
An Afghan man who worked for the British military has told Sky News he feels betrayed and “completely lost (his) mind” after his identity formed part of a massive data breach.
He told The World with Yalda Hakim about the moment he discovered he was among thousands of Afghans whose personal details were revealed, putting him at risk of reprisals from the Taliban.
The man, who spoke anonymously to Sky News from Afghanistan, says that for more than 10 years he worked for British forces
But now he says he regrets working alongside troops, who were first deployed to Afghanistan in 2001.
Please use Chrome browser for a more accessible video player
Afghans being relocated after data breach
“I have done everything for the British forces… I regret that – why (did) I put my family in danger because of that? Is this is justice?
“We work for them, for [the] British, we help them. So now we are left behind, right now. And from today, I don’t know about my future.”
He described receiving an email warning him that his details had been revealed.
He said: “When I saw this one story… I completely lost my mind. I just thought… about my future… my family’s.
“I’ve got two kids. All my family are… in danger. Right now… I’m just completely lost.”
👉 Listen to Sky News Daily on your podcast app 👈
The mistake by the Ministry of Defence in early 2022 ranks among the worst security breaches in modern British history because of the cost and risk posed to the lives of thousands of Afghans.
On Tuesday, a court order – preventing the media reporting details of a secret relocation programme – was lifted.
Read more from Sky News:
Minister defends handling of breach
The struggle for equality in Afghanistan
Afghan women throw babies to troops
Defence Secretary John Healey said about 6,900 Afghans and their family members have been relocated or were on their way to the UK under the previously secret scheme.
He said no one else from Afghanistan would be offered asylum, after a government review found little evidence of intent from the Taliban to seek retribution.
But the anonymous Afghan man who spoke to Sky News disputed this. He claimed the Taliban, who returned to power in 2021, were actively seeking people who worked with British forces.
“My family is finished,” he said. “I request… kindly request from the British government… the King… please evacuate us.
“Maybe tomorrow we will not be anymore. Please, please help us.”
Donald Trump has said he will “refine the trade deal” with the UK during his private trip to Scotland later this month.
The US president told reporters outside the White House on Tuesday that he will meet with Sir Keir Starmer “probably in Aberdeen”.
Politics latest: Reeves committed to ‘non-negotiable’ fiscal rules
Mr Trump is expected to travel to Scotland in the coming weeks to visit his golf courses ahead of an official state visit in September.
“We’re going to be meeting with the British prime minister, very respectful, and we are going to have a meeting with him, probably in Aberdeen, and we’re going to do a lot of different things.
“We’re going to also refine the trade deal that we’ve made.
“So we’ll be meeting mostly […] at probably one of my properties, or maybe not, depending on what happens, but we’ll be in Aberdeen, in Scotland, meeting with the prime minister.”
Donald Trump speaks to reporters outside the White House. Pic: Reuters
The UK and US signed a trade deal earlier this year that reduced car and aerospace tariffs, but questions have remained about a promise from Washington to slash steel tariffs.
In May, the White House said it would exempt the UK from plans for a 25% tariff on global steel imports but that is yet to be ratified and the levy has since been doubled on all other countries.
Mr Trump had insisted that unless Britain could finalise the details of a metals trade deal with the US by 9 July, when wider “Liberation Day” tariff pauses were expected to expire, he would slap the UK with a 50% rate as well.
Please use Chrome browser for a more accessible video player
Who will be positively impacted by the UK-US trade deal?
However that pause was extended until 1 August, with the US president saying nations would instead get letters informing them of his plans.
As Sky News’ economics and data editor Ed Conway has reported, the metals deal has floundered on two key issues, including that while the government has taken control of British Steel, the company itself still legally has Chinese owners.
Downing Street is still hoping it can secure 0% tariffs on steel.
👉 Follow Trump100 on your podcast app 👈
On Tuesday, a Downing Street spokesperson played down the significance of the meeting in Scotland, stressing it was a private trip so it “will not be a formal bilateral”.
Since taking office in January, Mr Trump has imposed tariffs on countries across the world in a bid to boost domestic production and address trade deficits.
Read more:
Trump threatens to revoke US comedian’s citizenship
Meet volunteers leading fight against Trump’s immigration raids
As well as sector specific tariffs, there is a baseline tariff of 10% for most other imports, though some countries face higher rates.
The UK was the first to hash out a deal on exemptions after a successful charm offensive by Sir Keir.
Mr Trump has praised the PM, telling the BBC earlier on Tuesday: “I really like the prime minister a lot, even though he’s a liberal.”
There are also plans for Scottish First Minister John Swinney to meet Mr Trump during his trip.
It will be followed by the official state visit between 17-19 September, when Mr Trump will be hosted by the King and Queen at Windsor Castle and accompanied by his wife Melania.
It will be Mr Trump’s second state visit to the UK, having previously been hosted during his first term in 2019.
-
Sports3 years ago‘Storybook stuff’: Inside the night Bryce Harper sent the Phillies to the World Series
-
Sports1 year agoStory injured on diving stop, exits Red Sox game
-
Sports2 years agoGame 1 of WS least-watched in recorded history
-
Sports2 years agoMLB Rank 2023: Ranking baseball’s top 100 players
-
Sports4 years ago
Team Europe easily wins 4th straight Laver Cup
-
Sports2 years agoButton battles heat exhaustion in NASCAR debut
-
Environment2 years agoJapan and South Korea have a lot at stake in a free and open South China Sea
-
Environment2 years agoGame-changing Lectric XPedition launched as affordable electric cargo bike