Sellafield Apologises for Serious Cybersecurity Failings

Emily Davidson

By Emily Davidson

09 August 2024
Sellafield Apologises for Serious Cybersecurity Failings

Sellafield, the UK’s most hazardous nuclear site, has publicly apologised after pleading guilty to a series of severe cybersecurity breaches that could have compromised national security. These failings, which were exposed in court, revealed that 75% of Sellafield’s servers were vulnerable to cyber-attacks, leaving sensitive nuclear information unprotected for four years.

The breaches, which occurred between 2019 and 2023, were so significant that they were likened to the threat posed by Voldemort in the Harry Potter series, highlighting the critical nature of the risks involved. Sellafield admitted that its outdated IT systems, including obsolete technology such as Windows 7 and Windows 2008, contributed to these vulnerabilities.

The company has since taken substantial steps to improve its cybersecurity measures, including a complete overhaul of its IT management and the creation of a new secure data centre. Despite these efforts, Sellafield is awaiting sentencing, marking the first time a nuclear site in the UK has faced prosecution for cybersecurity offences.

Sellafield’s CEO has apologised for the failings and assured the public that these issues are being addressed to prevent future breaches. The company also emphasised that no successful cyber-attack has occurred, and no sensitive nuclear information has been lost.

This case serves as a stark reminder of the critical importance of robust cybersecurity protocols in protecting national infrastructure. Ensuring that IT systems are secure and resilient is essential in safeguarding against cyber threats that could have catastrophic consequences.

Read more here.

#Cybersecurity #Sellafield #NuclearSafety #NationalSecurity #CyberThreats #ITSecurity #CyberDefence #ONR

Latest resources

A Guide to Cyber Recovery Cleanrooms
News

A Guide to Cyber Recovery Cleanrooms

At Celerity, we’re committed to helping organisations navigate the complexities of emerging technologies that drive resilience and compliance. That’s why we’re excited to share this insightful article from our partner, Predatar. Written by CEO Alistair Mackenzie, it explores the growing importance of cyber recovery cleanrooms, their benefits, and how to cut through the noise to make informed decisions.

Celerity Secures Spot on Crown Commercial Service G-Cloud 14 Framework to Drive Public Sector Digital Transformation 
News

Celerity Secures Spot on Crown Commercial Service G-Cloud 14 Framework to Drive Public Sector Digital Transformation 

Celerity is delighted to have been named as a supplier on the Crown Commercial Service (CCS) G-Cloud framework, with the latest iteration, G-Cloud 14, commencing on 9th November 2024 and running through April 2026.

Play your virtualisation cards right with Red Hat OpenShift 
Blog

Play your virtualisation cards right with Red Hat OpenShift 

If you’re the customer of one very large virtualisation vendor, you may feel like you’ve been dealt a pretty bad hand over the last few months. With the long-term impact of new licensing and support programmes up in the air, organisations are seeking guidance from IT service providers on how they can best plan for, and manage, their virtualised infrastructure going forward.