Hackers targeted University of Oxford’s Covid vaccine research, cyber spies reveal

Get the free Morning Headlines email for news from our reporters across the world

Sign up to our free Morning Headlines email

Please enter a valid email address

Please enter a valid email address

SIGN UP

I would like to be emailed about offers, events and updates from The Independent. Read our privacy notice

Hackers and state agents relentlessly targeted Britain’s health and Covid-19 vaccine production sectors over the past year, according to cyber spies.

The National Cyber Security Centre (NCSC), which is part of GCHQ, said it had shut down 442 phishing scams using NHS branding, plus 80 fake NHS apps. About 4.4 billion “potentially harmful interactions” were blocked.

In one incident government tech experts were forced to step in to defend the University of Oxford’s vaccine researchers from a ransomware attack that had “the potential to cause significant disruption to the UK’s pandemic response”, the NCSC revealed in its annual report published on Tuesday.

While criminal groups exploited the pandemic in other ways, hostile governments set their sights on vaccine and medical research over the last year, it is said.

Overall about one-fifth of the 777 breakthrough attacks the NCSC dealt with in the last 12 months were targeted at vaccine or other health organisations. This total was up from 723 in the previous 12 months.

The coronavirus pandemic also gave hackers the opportunity – or “surface area” – to target businesses more widely, thanks to the mass transition to remote work and associated use of third-party computing and cloud services.

Lindy Cameron, the spy agency’s chief executive, said: “One of the trends that the NCSC has seen over the last year was a worrying growth in criminal groups using ransomware to extort organisations.

“In my view it is now the most immediate cyber security threat to UK businesses and one that I think should be higher on the boardroom agenda.”

Ms Cameron warned last month the pandemic was likely to cast a “significant shadow” for many years when it came to cyber crime.

“Some groups may also seek to use this information to undermine public trust in government responses to the pandemic, and criminals are now regularly using Covid-themed attacks as a way of scamming the public,” she said.

In its annual report the NCSC singled out China as the biggest threat to Britain’s tech security.

Beijing is “a highly sophisticated actor in cyberspace with increasing ambition to project its influence beyond its borders and a proven interest in the UK’s commercial secrets”, the agency warned.

Russia also poses a direct threat, according to the NCSC, as well as an indirect one due to the country’s status as a haven for organised criminal gangs. Iran and North Korea are less technically adept but still dangerous, it added.

Two huge cyber attacks, one called SolarWinds and another targeting Microsoft Exchange, were among “the most serious global cyber incidents we’ve seen in recent years” and attributed to Russia and China respectively, said Sir Jeremy Fleming, the head of GCHQ.