Russian-linked hackers posing as journalists targeted Ministry of Defence, government says
Russia-linked hackers posing as journalists targeted staff at Britain’s Ministry of Defence in a cyber spying operation that was spotted and thwarted, the government has revealed.
Details of the foiled hack emerged as Defence Secretary John Healey said the UK military is bolstering its own offensive capabilities to conduct cyber attacks against hostile states like Russia as part of a long-awaited review of UK defence.
The Strategic Defence Review is expected to be published on Monday. It was launched by Sir Keir Starmer last July and comes ahead of a major summit of NATO allies in June.
A major new podcast series by Sky News and Tortoise which begins on 10 June will explore the state of UK defences by running a wargame that simulates a Russian attack on the UK.
“The nature of warfare is changing,” Mr Healey told a group of journalists on a visit to a secure facility in Wiltshire where the defence team that defeated the Russian cyber attack is located.
“The keyboard is now a weapon of war and we are responding to that.”
Defence Secretary John Healey
Part of this response, announced on Thursday, includes the creation of a new cyber command to oversee offensive and defensive cyber operations.
The government also plans to invest more than £1bn on improving its ability to hunt, locate and strike targets on the battlefield, drawing on digital technology.
“In future conflict, those that prevail will be those who are not just better equipped and better trained, but better connected and also capable of innovating ahead of adversaries,” the defence secretary said.
The thwarted Russia-linked hack was one of more than 90,000 cyber attacks associated with hostile states that were directed against the UK military and other parts of defence over the past two years – a doubling from the previous two years, the Ministry of Defence said.
Part of the increase is because the military is getting better at spotting the attempts against its networks. However, it is understood the attacks are becoming more sophisticated – making them harder to combat.
Late last year, the National Cyber Security Centre (NCSC), which is part of GCHQ, alerted the Ministry of Defence to a suspected spear phishing campaign.
GCHQ’s headquarters. Pic: Shutterstock
The Global Operations Security Control Centre at MoD Corsham, in Wiltshire, which defends the Ministry of Defence’s networks in the UK and overseas, was tasked with identifying the threat.
The team worked on computers inside a large, windowless hall – filled with rows of desks and a bank of large screens along one wall.
“MoD detected a spear phishing campaign targeting staff with the aim of delivering malware,” the analysis by the NCSC said.
“The initial campaign consisted of two emails with a journalistic theme attempting to represent a news organisation. The second campaign followed a financial theme, directing targets to a commercial file share.”
The officials who were involved revealed details of the effort during the defence secretary’s visit to MoD Corsham this week.
One of the individuals said it took about an hour to spot the attack.
Asked what it felt like to discover the intrusion, the individual said “cool”.
Please use Chrome browser for a more accessible video player
‘Cyber crime costing world $9.2 trillion’
The malware was linked to a Russian hacking group called RomCom, a second official said.
The particular code that was used had not been seen before, so the British side gave it the name “Damascened Peacock”.
“Corsham is famous for peacocks,” they said.
The two officials are part of a team of cyber experts – a mix of military personnel, civil servants and civilian contractors – who work at the secure centre.
A key focus at the moment is protecting a major deployment by the Royal Navy’s aircraft carrier, HMS Prince of Wales, loaded with state-of-the-art F-35 fast jets and protected by a task force of warships, as it travels through the Red Sea off the coast of Yemen.
The carrier strike group is expected to pass through the Bab el-Mandeb Strait in the coming days – well within range of an Iranian-backed militia that has targeted British and American warships and well as commercial shipping with missiles.
Please use Chrome browser for a more accessible video player
HMS Prince of Wales begins deployment
The cyber experts, though, are trying to defend the deployment from cyber attacks.
Earlier in the month, US President Donald Trump struck a deal with Houthi militants to stop them from attacking ships, but the British side is still very alert to the potential threat.
“The strike group is going through what could be a high risk dangerous passage,” Mr Healey said.
There is “no doubt” the UK “will spend 3% of our GDP on defence” in the next parliament, the defence secretary has said.
John Healey’s comments come ahead of the publication of the government’s Strategic Defence Review (SDR) on Monday.
This is an assessment of the state of the armed forces, the threats facing the UK, and the military transformation required to meet them.
Prime Minister Sir Keir Starmer has previously set out a “clear ambition” to raise defence spending to 3% in the next parliament “subject to economic and fiscal conditions”.
Mr Healey has now told The Times newspaper there is a “certain decade of rising defence spending” to come, adding that this commitment “allows us to plan for the long term. It allows us to deal with the pressures.”
A government source insisted the defence secretary was “expressing an opinion, which is that he has full confidence that the government will be able to deliver on its ambition”, rather than making a new commitment.
The UK currently spends 2.3% of GDP on defence, with Sir Keir announcing plans to increase that to 2.5% by 2027 in February.
This followed mounting pressure from the White House for European nations to do more to take on responsibility for their own security and the defence of Ukraine.
The 2.3% to 2.5% increase is being paid for by controversial cuts to the international aid budget, but there are big questions over where the funding for a 3% rise would be found, given the tight state of government finances.
While a commitment will help underpin the planning assumptions made in the SDR, there is of course no guarantee a Labour government would still be in power during the next parliament to have to fulfil that pledge.
Please use Chrome browser for a more accessible video player
From March: How will the UK scale up defence?
A statement from the Ministry of Defence makes it clear that the official government position has not changed in line with the defence secretary’s comments.
The statement reads: “This government has announced the largest sustained increase to defence spending since the end of the Cold War – 2.5% by 2027 and 3% in the next parliament when fiscal and economic conditions allow, including an extra £5bn this financial year.
“The SDR will rightly set the vision for how that uplift will be spent, including new capabilities to put us at the leading edge of innovation in NATO, investment in our people and making defence an engine for growth across the UK – making Britain more secure at home and strong abroad.”
Sir Keir commissioned the review shortly after taking office in July 2024. It is being led by Lord Robertson, a former Labour defence secretary and NATO secretary general.
The Ministry of Defence has already trailed a number of announcements as part of the review, including plans for a new Cyber and Electromagnetic Command and a £1bn battlefield system known as the Digital Targeting Web, which we’re told will “better connect armed forces weapons systems and allow battlefield decisions for targeting enemy threats to be made and executed faster”.
Read more:
Trump to double tariffs on steel imports
Why stockpiling vapes could be dangerous
Last hospital in northern Gaza out of service
PM Sir Keir Starmer and Defence Secretary John Healey on a nuclear submarine earlier this year. Pic: Crown Copyright 2025
On Saturday, the defence secretary announced a £1.5bn investment to tackle damp, mould and make other improvements to poor quality military housing in a bid to improve recruitment and retention.
Mr Healey pledged to “turn round what has been a national scandal for decades”, with 8,000 military family homes currently unfit for habitation.
He said: “The Strategic Defence Review, in the broad, will recognise that the fact that the world is changing, threats are increasing.
“In this new era of threat, we need a new era for defence and so the Strategic Defence Review will be the vision and direction for the way that we’ve got to strengthen our armed forces to make us more secure at home, stronger abroad, but also learn the lessons from Ukraine as well.
“So an armed forces that can be more capable of innovation more quickly, stronger to deter the threats that we face and always with people at the heart of our forces… which is why the housing commitments that we make through this strategic defence review are so important for the future.”
US government argues Coinbase user James Harper has no right to block IRS access to his crypto records in Supreme Court filing.
REX Shares took a “regulatory end-around” with its Ethereum and Solana staking ETF filings, and the launch looks “imminent,” an ETF analyst says.
-
Sports3 years ago‘Storybook stuff’: Inside the night Bryce Harper sent the Phillies to the World Series
-
Sports1 year agoStory injured on diving stop, exits Red Sox game
-
Sports2 years agoGame 1 of WS least-watched in recorded history
-
Sports2 years agoMLB Rank 2023: Ranking baseball’s top 100 players
-
Sports4 years ago
Team Europe easily wins 4th straight Laver Cup
-
Environment2 years agoJapan and South Korea have a lot at stake in a free and open South China Sea
-
Environment2 years agoGame-changing Lectric XPedition launched as affordable electric cargo bike
-
Business3 years agoBank of England’s extraordinary response to government policy is almost unthinkable | Ed Conway