Sellafield Apologises for Serious Cybersecurity Failings

Emily Davidson

By Emily Davidson

09 August 2024
Sellafield Apologises for Serious Cybersecurity Failings

Sellafield, the UK’s most hazardous nuclear site, has publicly apologised after pleading guilty to a series of severe cybersecurity breaches that could have compromised national security. These failings, which were exposed in court, revealed that 75% of Sellafield’s servers were vulnerable to cyber-attacks, leaving sensitive nuclear information unprotected for four years.

The breaches, which occurred between 2019 and 2023, were so significant that they were likened to the threat posed by Voldemort in the Harry Potter series, highlighting the critical nature of the risks involved. Sellafield admitted that its outdated IT systems, including obsolete technology such as Windows 7 and Windows 2008, contributed to these vulnerabilities.

The company has since taken substantial steps to improve its cybersecurity measures, including a complete overhaul of its IT management and the creation of a new secure data centre. Despite these efforts, Sellafield is awaiting sentencing, marking the first time a nuclear site in the UK has faced prosecution for cybersecurity offences.

Sellafield’s CEO has apologised for the failings and assured the public that these issues are being addressed to prevent future breaches. The company also emphasised that no successful cyber-attack has occurred, and no sensitive nuclear information has been lost.

This case serves as a stark reminder of the critical importance of robust cybersecurity protocols in protecting national infrastructure. Ensuring that IT systems are secure and resilient is essential in safeguarding against cyber threats that could have catastrophic consequences.

Read more here.

#Cybersecurity #Sellafield #NuclearSafety #NationalSecurity #CyberThreats #ITSecurity #CyberDefence #ONR

Latest resources

Would your business recover quickly from a cyber-attack? 
Blog

Would your business recover quickly from a cyber-attack? 

Imagine waking up to find your entire business offline, customer data compromised, and operations at a standstill. Your reputation has taken a significant hit, and you need to start rebuilding.   Cyber-attacks are not just IT’s problem; they are a threat to your business’ survival.   The faster you recover, the less damage your organisation suffers. However, […]

How to manage your software licences effectively 
Blog

How to manage your software licences effectively 

Your guide to software licence management  Managing software licences is crucial for organisations to ensure compliance and maintain operational efficiency. Without proper oversight, software licensing can lead to unnecessary and insidious expenses, reputational damage, legal risks, and inefficiencies.  “If a company does not have a good picture of their software landscape, they could end up […]

Addressing skills gaps with IT managed services 
Blog

Addressing skills gaps with IT managed services 

In a Forbes survey, 93% of businesses stated that there is a gap in IT skills in the UK job market, with 42% of these businesses citing the fast pace of technological advancements as the leading cause.  IT managed services are essential to empowering your IT teams with industry leading technology and fractional experts- and […]