Britain’s government has confirmed that the Foreign, Commonwealth and Development Office was hit by a cyber attack back in October. Trade Minister Sir Chris Bryant said in interviews on Friday that the weakness was spotted quickly and fixed, and that the risk to people’s personal data seems low.
The incident, first reported by The Sun, is still under investigation. Officials have not named who carried out the hack and warned the public not to jump to conclusions.
The breach targeted systems run by the Foreign Office and was found internally in October, leading to an immediate security response.
Speaking to Sky News and Times Radio, Sir Chris said that although The Sun claimed a China-linked hacker group called “Storm 1849” got into government data, investigators still don’t know for sure who was behind it.
He stressed that a hack “certainly” happened, but early findings suggest that no one’s personal information has been harmed. Officials said the issue came from a technical flaw in one platform used by the Foreign Office. They say it was discovered and shut down quickly by the IT team.
Some media reports suggested tens of thousands of documents, including visa information, might have been accessed. But government spokespeople would not confirm those details, saying the facts are still being checked.
Sir Chris said many of the stories circulating are “speculation” and that a lot remains unknown as the investigation continues.
The Foreign Office has not confirmed what kind or how much data may have been accessed. In a short statement, the government said protecting data and digital systems remains a top priority. Officials also informed the Information Commissioner’s Office, as required in serious cyber cases.
According to The Sun, the attack was carried out by Storm 1849, a group linked in the past to cyber activity against UK targets. The government, however, has not confirmed any connection to a state actor, and Sir Chris refused to say the attack came from China or any specific country. “It’s not entirely clear who is responsible,” he said, pointing out how hard it can be to trace hackers with certainty.
This confusion comes at a time of growing geopolitical tension. British officials have named China-linked groups in earlier attacks, including against the Electoral Commission and emails belonging to MPs and peers in 2024.
The Foreign Office hack follows a run of major cyberattacks in the UK this year. Companies such as Jaguar Land Rover and Marks & Spencer experienced serious disruption in 2025. Ministers have been calling for stronger cyber protections as these attacks become more common.
Politicians have reacted differently to the news. Opposition parties criticised the government’s handling of the issue, saying people deserve clearer information and tougher action against foreign hackers. The government argued that it has acted appropriately and says the case fits into a wider pattern of digital threats that need careful, balanced responses.
The breach also comes during a delicate diplomatic period. Prime Minister Sir Keir Starmer is planning a trade trip to Beijing in January 2026, focusing on economic cooperation, even as cybersecurity worries continue to grow.
