With all the money the UK government pay to large IT companies (IBM, Amazon, Microsoft) and charlatan consultants (IBM, KPMG, E&Y, etc etc) do you think we'll see a penny of that money back after breaches in the shitty software they've implemented? Will we fuck.
I'm sure Rushi has a mate who can fix it for us. .... for a price.
From what I can tell it was precisely because the Electoral Commission was not spending money with these kind of folks that they were breached. They were running on old software, poorly configured with minimal spend. They had just failed a security audit.
That might be the case here, fair. However it's borderline inept that the UK government cannot maintain a dedicated security and audit team for our data. The fact that they have to rely to large consultancy firms that bind the government into inadequate long term contracts is a depressing shame.
If you're interested check out the history of GDS and why it failed on its initial remit of encouraging more small to medium vendors. I'm not saying that would have helped here, but it highlights the problem of mega large multinational consultancy firms and their stranglehold over providing government services. The amount of money wasted will make your heart bleed.
My impression is that the UK has very little "in house" IT skill. A lot of UK digital infrastructure is pretty shoddy because of a longstanding over reliance on external contracting combined with a lack of a decent technical core within the civil service. It feeds into a cycle where fixing things would be too expensive, even though maintaining broken and old stuff is expensive and difficult even without crises like these. It's a mess.
China! Don't be so naughty.
We could probably use that as a slogan.
This is the best summary I could come up with:
The UK could impose sanctions on individuals believed to be involved in these acts of state-backed interference, one of which was a separate attack on the Electoral Commission in which Beijing accessed the personal details of about 40 million voters.
With the UK under pressure to respond, multiple reports suggested that sanctions against individuals thought to be connected with the alleged activity are under strong consideration.
They include former Conservative leader Sir Iain Duncan Smith, the former minister Tim Loughton, the crossbench peer Lord Alton and the SNP MP Stewart McDonald, the Times reported.
At an Ipac meeting on Friday, Luke de Pulford, its executive director, said: “About a year ago the Belgian and French foreign ministries publicly confirmed [Chinese state] sponsored cyber-attacks against our members.
The legislation, designed to ensure the UK’s investigatory powers framework remains adequate in the face of evolving threats, includes measures to make it easier for agencies to examine and retain bulk datasets.
If passed, it will update elements of the Investigatory Powers Act 2016 found to require a refresh by a statutory review published by the Home Office in February 2023.
The original article contains 417 words, the summary contains 187 words. Saved 55%. I'm a bot and I'm open source!
United Kingdom
General community for news/discussion in the UK.
Less serious posts should go in !casualuk@feddit.uk or !andfinally@feddit.uk
More serious politics should go in !uk_politics@feddit.uk.
Try not to spam the same link to multiple feddit.uk communities.
Pick the most appropriate, and put it there.
Posts should be related to UK-centric news, and should be either a link to a reputable source, or a text post on this community.
Opinion pieces are also allowed, provided they are not misleading/misrepresented/drivel, and have proper sources.
If you think "reputable news source" needs some definition, by all means start a meta thread.
Posts should be manually submitted, not by bot. Link titles should not be editorialised.
Disappointing comments will generally be left to fester in ratio, outright horrible comments will be removed.
Message the mods if you feel something really should be removed, or if a user seems to have a pattern of awful comments.