View all newsletters
Sign up to our newsletters

Support 110 years of independent journalism.

  1. Spotlight on Policy
1 November 2019updated 30 Jul 2021 8:59am

Spotlight Leader: Even tech experts are only human

By Spotlight

One Thursday in early December 2018, some 32 million mobile users in the United Kingdom were faced with a 21st century existential nightmare: for hours they were unable to make calls, send texts or use the 4G network.

The outage affected people signed up to O2, Giffgaff and other operators using the Telefonica network. The effects were so widespread that, as far afield as Japan, mobile users lost smartphone coverage for a full five hours.

The culprit was not some sophisticated cyber ware or malicious hack, however. As the day unfolded, the issue turned out to have been perhaps the most obvious plot-twist to the story: human oversight. The root of the mega-outage was an expired digital certificate in a management software by Ericsson, the Swedish telecommunications firm. This was not the first time the company was blamed for a smartphone blackout. In 2012, O2 said an outage that also affected millions of customers was down to a fault in central user database provided by Ericsson.

Not only do such incidents cause a major headache for mobile users, but a mistake like letting a certificate expire can leave firms vulnerable to hackers, cyberattacks and further breaches. No organisation operating today can afford to be complacent about cyber security. According to the Cyber Security Breaches Survey 2019, released in April, some 27 per cent of UK business and charities had experienced a cyberattack in the past 12 months, down from 43 per cent the previous year.

Human fallibility is at the heart of many such incidents, with hackers exploiting over-worked employees on the receiving end of a daily barrage of emails. That same poll found that of UK cyberattacks, 80 per cent were phishing-related, and almost a third involved hackers impersonating senior management via email. Research by Kroll, a risk solutions provider, found that 88 per cent of UK data breaches last year were the result of human error. Meanwhile, a poll by US software company Centrify found that 77 per cent of UK workers have no basic training in cyber security.

But, as the 2018 outage shows, the most sophisticated technology is vulnerable to the shortcomings of those who use it. Tech can’t innovate human error out of existence. Alongside technological security solutions, employers need to support staff in recognising when they might be vulnerable to malicious intent. And to make sure they renew that digital certificate.

To access the full Spotlight supplement, click here.

Content from our partners
The promise of prevention
How Labour hopes to make the UK a leader in green energy
Is now the time to rethink health and care for older people? With Age UK

Select and enter your email address Your weekly guide to the best writing on ideas, politics, books and culture every Saturday. The best way to sign up for The Saturday Read is via saturdayread.substack.com The New Statesman's quick and essential guide to the news and politics of the day. The best way to sign up for Morning Call is via morningcall.substack.com Our Thursday ideas newsletter, delving into philosophy, criticism, and intellectual history. The best way to sign up for The Salvo is via thesalvo.substack.com Stay up to date with NS events, subscription offers & updates. Weekly analysis of the shift to a new economy from the New Statesman's Spotlight on Policy team. The best way to sign up for The Green Transition is via spotlightonpolicy.substack.com
  • Administration / Office
  • Arts and Culture
  • Board Member
  • Business / Corporate Services
  • Client / Customer Services
  • Communications
  • Construction, Works, Engineering
  • Education, Curriculum and Teaching
  • Environment, Conservation and NRM
  • Facility / Grounds Management and Maintenance
  • Finance Management
  • Health - Medical and Nursing Management
  • HR, Training and Organisational Development
  • Information and Communications Technology
  • Information Services, Statistics, Records, Archives
  • Infrastructure Management - Transport, Utilities
  • Legal Officers and Practitioners
  • Librarians and Library Management
  • Management
  • Marketing
  • OH&S, Risk Management
  • Operations Management
  • Planning, Policy, Strategy
  • Printing, Design, Publishing, Web
  • Projects, Programs and Advisors
  • Property, Assets and Fleet Management
  • Public Relations and Media
  • Purchasing and Procurement
  • Quality Management
  • Science and Technical Research and Development
  • Security and Law Enforcement
  • Service Delivery
  • Sport and Recreation
  • Travel, Accommodation, Tourism
  • Wellbeing, Community / Social Services
Visit our privacy Policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications.
THANK YOU