1. Things you need to know about the new ‘Conversations’ PM system:

    a) DO NOT REPLY TO THE NOTIFICATION EMAIL! I get them, not the intended recipient. I get a lot of them and I do not want them! It is just a notification, log into the site and reply from there.

    b) To delete old conversations use the ‘Leave conversation’ option. This is just delete by another name.
    Dismiss Notice

UK spy agencies outsource top-secret storage to Amazon

Discussion in 'off topic' started by paulfromcamden, Oct 26, 2021.

  1. paulfromcamden

    paulfromcamden Baffled

    This seems, er, surprising. What could possibly go wrong?

    Amazon strikes deal with UK spy agencies to host top-secret material

    The UK’s three spy agencies have contracted AWS, Amazon’s cloud computing arm, to host classified material in a deal aimed at boosting the use of data analytics and artificial intelligence for espionage. The procurement of a high-security cloud system has been championed by GCHQ, the UK’s signals intelligence body, and will be used by sister services MI5 and MI6, as well as other government departments such as the Ministry of Defence during joint operations.

    GCHQ told the Financial Times it would not discuss its business relationships with technology suppliers. AWS declined to comment.
    gavreid likes this.
  2. JensenHealey

    JensenHealey pfm Member

    AWS likely to be more reliable than any home-grown attempt at data storage?
    docstocker and Jezzer like this.
  3. Colin L

    Colin L High-tech low-life

    One hopes they keep a back-up in the garage in case things turn nasty
  4. JustJohn

    JustJohn pfm Member

    Sounds like the plot of a new James Bond film. Nefarious international organisation dupes national security services into surrendering priceless data. Can 007 stop the dastardly plan before it's too late?
  5. gavreid

    gavreid pfm Member

  6. gintonic

    gintonic 50 shades of grey pussy cats

  7. unclefz

    unclefz pfm Member

    Just be careful what you put in your shopping cart in future.
  8. wacko

    wacko pfm Member

    Govt is a bunch of amoral nasties. Putin kills who he wants on UK streets. Is anything in the UK top secret ? I'm more concerned about whether top secret has a hyphen or not.
  9. johnhunt

    johnhunt pfm Member

    I have been in commercial data centres with special caged off high security areas within them , holding who knows what? Suspect this has been going for years
  10. paulfromcamden

    paulfromcamden Baffled

    Maybe - though I used to spend quite a lot of weekends in those cages working for banks and trading systems ;-)
    johnhunt, unclefz and Sue Pertwee-Tyr like this.
  11. MUTTY1

    MUTTY1 Waste of bandwidth

    At least Amazon has a vested interest in propping the ‘West’ up. Sad fact is commerce can buy the best brains so GCHQ is probably making the best of a bad job.
  12. unclefz

    unclefz pfm Member

    Me too - many an hour lying on the floor of noisy data centres as there were no portable laptop stands or seats!

    Been locked in too haha.
    paulfromcamden likes this.
  13. Nero

    Nero Call me 'Goose'

    I’ve been into a couple of Azure datacenters (sic) and It was easier getting a visitor pass to Porton Down. IMHO the easiest way into any datacenter is through an ethernet cable and I guess AWS are better at spotting that than most.
  14. foxwelljsly

    foxwelljsly Hawkwind and Fire

    There are very strict requirements for classified data storage, as long as they are met, then I fail to see the problem.

    If it were my data, I'd advocate to use professionals like AWS rather than maintain that capability internally.
  15. snowflake

    snowflake Former Albino Ape

    And I have been in those cages :)

    AWS is a pretty secure, sure it will take a massive error or zero day to break it.

  16. MUTTY1

    MUTTY1 Waste of bandwidth

    For Boris Johnson’s eyes only… AWS is probably the least of our worries….
  17. Hook

    Hook Blackbeard's former bo'sun.

    Alexa, show me all assets within 200 kilometers of Brussels. Alexa, launch project Rejoin.
  18. paulfromcamden

    paulfromcamden Baffled

    From last year. Perhaps this sort of thing also regularly happens to state-owned infrastructure and it's just not reported. Who knows.

    A sophisticated hacker group pwned Amazon Web Services (AWS) servers, set up a rootkit that let them remotely control servers, then merrily funnelled sensitive corporate data home to its command and control (C2) servers from a range of compromised Windows and Linux machines inside an AWS data centre.

    That’s according to a report from the UK’s Sophos published late last week, which has raised eyebrows and questions in the security industry. The attackers neatly sidestepped AWS security groups (SGs); which, when correctly configured, act as a security perimeter for associated Amazon EC2 instances.

    Security experts agreed that the attacker, likely a nation state actor, could have used the bespoke rootkit to funnel data off most servers, whether in the cloud or on-premises.
  19. dan m

    dan m pfm Member

    Wouldn’t the data be encrypted before being sent to the cloud? More worrying is if the data is doubly encrypted by ransomware.
  20. JTC

    JTC PFM Villager...

    Better GCHQ entrust it to AWS than pass the buck to Crapita or somesuch.....
    paulfromcamden likes this.

Share This Page


  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice