natanaelginting - stock.adobe.co
The UK is to expand the successful Ukraine Cyber Programme (UCP) with up to £25m between now and 2025 to support Ukraine’s cyber security defences, helping Kyiv’s ability to detect, respond to and prevent Russian cyber attacks, and protect its critical national infrastructure and frontline government services
The package, which comprises £16m in UK funding and the potential for a further £9m contribution from international partners, will also help to develop and support Ukraine’s forensic cyber capabilities, helping to analyse system compromises, attribute attacks to known threat actors, and build evidence to better the chances of successfully prosecuting Russian threat actors in the future.
The existence of the UCP was previously classified, and the government only revealed its existence in November 2022. It was stood up in the days immediately after Russia’s invasion of Ukraine on 24 February, and in the past 16 months has contributed world-leading expertise drawn from both the private and public sector to the Ukraine’s digital defence.
It has helped Ukraine fight off a number of cyber attacks orchestrated by the Russian state, including destructive wiper malware attacks.
Prime minister Rishi Sunak said: “Russia’s appalling attacks on Ukraine are not limited to their barbaric land invasion, but also involve sickening attempts to attack their cyber infrastructure that provides vital services, from banking to energy supplies, to innocent Ukrainian people.
“This funding is critical to stopping those onslaughts, hardening Ukraine’s cyber defences and increasing the country’s ability to detect and disable the malware targeted at them.”
Joseph Jarnecki, research fellow at the Royal United Services Institute (Rusi) think tank, said the new spending reflected the continued importance of Ukraine’s cyber defence to the war effort.
“The programme represents a new, more direct form of international cyber support as it procures cyber security providers to directly deliver technical products and services for national cyber defence. Moreover, it prioritises immediate operational effects to strengthen Ukraine’s cyber defence over longer-term efforts to improve Ukrainian national capacities,” he said.
However, added Jarnecki, while the UCP has been quite impactful, it remains important to contextualise its efforts.
“The decisive factors in Ukraine’s cyber defence have been its own preparations as well as the large-scale support from big tech companies such as Microsoft, Google, and AWS. The UCP has been effective in plugging gaps but does not achieve systemic effects. Additional funding for the UCP will increase the scope and scale of its activities. For example, expanding the number of networks where UCP implementors can respond to cyber incidents,” said Jarnecki.
Jarnecki said the UCP had the potential to be a valuable learning opportunity for the British government for dealing with future cyber crises – recent years have seen large-scale cyber campaigns against other states besides Ukraine, including Albania and Costa Rica.
He argued that the UK could and should start building structures and processes today to muster international cyber support in anticipation of future hostile cyber campaigns against friendly states, and could be doing much more to engage with Nato allies. Jarnecki described Nato’s ability to respond when a member state experiences a large scale cyber attack as “insufficient” and said the alliance needed a clearer approach to providing cyber support.
The funding announcement comes as Sunak prepares to make the case later this week for the private sector to do more to help push back Russia’s war of aggression by supporting and investing in Ukraine.
Although support in the form of arms and ammunition has proved highly effective at helping Ukraine disrupt and degrade Russia’s forces – the UK has also announced a further £250m funding boost to help provide an air defence package, and last month Kyiv took delivery of the UK-developed Storm Shadow long range missile system – Sunak will argue it is just as important vital the international community hardens Ukraine’s defences to help it protect and grow inward investment in its economy.
The UK government should learn from the UCP for future cyber crises. Ukraine will not be the last cyber crisis on a national scale. Recent years have seen crippling cyber campaigns against Costa Rica, Albania, and Vanuatu. The UK should build structures and processes now to provide international cyber support, in anticipation of future hostile cyber campaigns against allies and partners.
Read more about IT in Ukraine
- With the passing of the first anniversary of Russia’s invasion of Ukraine, we reflect on the ongoing cyber war, and ask what security leaders can learn from the past 12 months.
- Software and services companies are adding personnel and expanding their offerings, as venture funds invest in tech startups with an eye toward building ‘Ukraine 2.0’.
- The Ukrainian authorities responded to more than 2,000 major cyber incidents during 2022, and are blocking thousands more potential attacks every day.