LONDON — The UK government has launched an investigation after confirming that the Foreign, Commonwealth and Development Office (FCDO) was hit by a data hack in October, raising fresh concerns about the security of sensitive government systems.
Trade Minister Chris Bryant confirmed the incident on Friday, telling British media that officials have been examining the breach for months and that the issue has since been contained.
“I can confirm that there was a hack related to the FCDO,” Bryant said during an interview with BBC radio, adding that the breach was considered “fairly low risk.”
Investigation Ongoing, Details Limited
The UK government has not disclosed what data may have been accessed or how many individuals were affected. Bryant downplayed the severity of the hack but acknowledged that cybersecurity teams moved quickly once the breach was detected.
“We’ve been investigating since October since this happened, and we closed down the problem,” he said.
A government spokesperson later reiterated that the incident is being taken seriously.
“We have been working to investigate a cyber incident. We take the security of our systems and data extremely seriously,” the spokesperson said, without elaborating on the nature of the compromised information.
Reports Suggest Possible China-Linked Group
The disclosure follows reporting by The Sun, which claimed that a cyber group known as Storm-1849 may have been responsible for the attack. The group has previously been accused of targeting critics of Beijing and government institutions in Western countries.
When asked whether Chinese hackers were involved, Bryant declined to speculate.
“I don’t know,” he said, stopping short of confirming or denying any foreign state involvement.
British officials have grown increasingly cautious about attributing cyber incidents publicly, particularly when they could escalate diplomatic tensions.
Comes After Major UK Data Leak Earlier This Year
The Foreign Office hack comes just months after a separate and highly damaging data breach involving the UK Ministry of Defence (MoD).
In July, it emerged that an MoD official had accidentally leaked a document containing personal details of nearly 19,000 Afghan nationals who had applied to be relocated to the UK following the Taliban takeover in 2021.
That leak also exposed sensitive information about more than 100 British citizens, including intelligence officers and special forces personnel, prompting urgent security reviews and criticism from opposition lawmakers.
The back-to-back incidents have intensified scrutiny over how the UK government handles classified data and protects vulnerable individuals.
Cyber Threats Targeting UK Institutions
The UK has faced a growing wave of cyberattacks in recent years, with both criminal groups and state-linked hackers increasingly targeting public and private institutions.
Hospitals, the Royal Mail, major retailers, luxury brands, and government agencies have all been hit by cyber incidents, some of which disrupted essential services or exposed personal data.
Security experts say that government departments dealing with foreign policy and defense are particularly attractive targets due to the sensitive information they hold.
The National Cyber Security Centre (NCSC) has repeatedly warned that phishing attacks, ransomware, and state-sponsored cyber espionage remain persistent threats.
Pressure Mounts on Government Cyber Defenses
Although officials described the Foreign Office breach as low risk, critics argue that repeated incidents highlight systemic weaknesses in cybersecurity across government departments.
Opposition figures and digital security advocates are calling for stronger safeguards, improved staff training, and greater transparency when breaches occur.
As investigations continue, officials have not ruled out further disclosures if new information emerges about the scope or origin of the attack.
