Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cloud Security

UK Spy Chiefs Seal Cloud Data Deal With Amazon: FT

UK intelligence agencies have entrusted classified data to Amazon’s cloud computing arm AWS in a deal designed to vastly speed up their espionage capabilities, the Financial Times reported on Tuesday.

UK intelligence agencies have entrusted classified data to Amazon’s cloud computing arm AWS in a deal designed to vastly speed up their espionage capabilities, the Financial Times reported on Tuesday.

The secret contract was signed this year and experts estimate its value at £500 million ($690 million) to £1 billion, the newspaper said, citing people familiar with the discussions.

It was said to be spearheaded by Britain’s cybersecurity agency GCHQ, which had wanted to find a UK cloud provider but decided that none had the requisite capability as Amazon Web Services.

The arrangement reportedly covers MI5, the UK’s domestic security service, and MI6, its foreign arm, as well as other government branches.

Amazon itself will not have access to the data, according to the report.

It will allow UK intelligence “to get information from huge amounts of data in minutes, rather than in weeks and months”, Ciaran Martin, formerly head of GCHQ’s National Cyber Security Centre, told the FT.

There was no comment from Amazon, GCHQ or the UK government.

The US Central Intelligence Agency (CIA) struck a cloud data deal with AWS in 2013 and last year expanded the contract to allow bids from Google, IBM, Microsoft and Oracle.

Written By

AFP 2023

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cloud Security

VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.

Application Security

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.

Application Security

Many developers and security people admit to having experienced a breach effected through compromised API credentials.

Cloud Security

Microsoft and Proofpoint are warning organizations that use cloud services about a recent consent phishing attack that abused Microsoft’s ‘verified publisher’ status.

Cloud Security

Orca Security published details on four server-side request forgery (SSRF) vulnerabilities impacting different Azure services.

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Cloud Security

Cloud Disaster Recovery - Ingredients for a Recipe that Saves Money and Offers a Safe, More Secure Situation with Greater Accessibility