UK government ministers have expressed strong confidence that sensitive visa applicant information was not stolen during a significant cyber attack on the Foreign, Commonwealth & Development Office (FCDO).
The breach, which occurred in October 2025, sparked fears that thousands of confidential documents had been accessed. Reports have alleged the intrusion was carried out by a Beijing-linked hacking group known as Storm 1849.
Investigation and Official Response
Business Minister Sir Chris Bryant publicly confirmed the hack had taken place, but was cautious about attributing blame. Speaking to Times Radio, he stated: "There certainly has been a hack, I can say that, I'm not able to say whether it is directly related to Chinese operatives or indeed the Chinese state."
He moved to reassure the public regarding the safety of personal data, adding: "We are very confident that in the investigation that we've done so far, that nobody, no individual, will have been harmed or compromised by what has happened."
A government spokesperson emphasised that work to investigate the cyber incident is ongoing and that the security of systems and data is taken "extremely seriously".
Links to Wider Chinese Cyber Threats
The hacking group implicated in the reports, Storm 1849, is not new to UK authorities. It was publicly named in March 2024 in connection with cyber attacks targeting MPs and the Electoral Commission.
This latest incident adds to a backdrop of heightened security concerns regarding China. It follows the collapse of a high-profile Chinese spying case and stark warnings from MI5 about threats to national security posed by the communist state.
Furthermore, the parliamentary intelligence watchdog recently urged the government to stop "dragging its heels" on whether to officially designate China as a heightened threat.
Broader Context and Ongoing Scrutiny
The FCDO breach is part of a worrying trend of sophisticated cyber attacks against UK institutions. Sir Chris Bryant noted the investigation, which began in October, is complex and time-consuming, similar to recent incidents affecting Jaguar Land Rover, Marks & Spencer, and the British Library.
The situation underscores the delicate balance the government seeks between addressing security threats and managing diplomatic relations with Beijing. The revelation of this data breach fuels ongoing political and security debates about the UK's approach to China in an increasingly volatile digital landscape.
