UK will retaliate against state-sponsored cyber attacks, Chancellor warns

"... the ability to trace and retaliate in kind ..."

Tricky with cyberattacks on national infrastructure that are traced to North Korea - nothing much really worth to counter-attack...

Scary

The option to 'retaliate' against cyber attacks, state sponsored, state enabled or with no relation to the source state at all whilst not in a state of war is downright scary.

Defend all you like.

Investigate and subject perpetrators to the law.

Threatening 'retaliatory measures' against a state, that may not actually have sponsored anything but had a rogue actor or hacker spoofing sources, by bricking their power grid for instance is Trumping at its worst.

It sounds like Theresa May's glove puppet speaking ...

How?

Send all that Huawei kit bck to the Reed Army and ask for a refund?

No doubt we'll send stern letters which will then be swiftly retracted at the return threat of not buying something expensive made by a mate of a cabinet minister.

Or the Chinese will just turn off all our Huawei kit to stop us being naughty.

SPF, DKIM and DMARC - better late than never

He pointed to the recent rollout of software to cut to zero an estimated 50,000 fraudulent emails a day from hackers purporting to be from HMRC offering tax refunds in order to obtain people's bank details.

This blog post from February details the government's move to SPF/DKIM/DMARC. I assume this is what the chancellor is referring to. Since SPF has been generally adopted since about 2009 and DKIM since at least 2012, what on earth have civil servants been doing all that time?

Snake oil salesperson on a suicide mission? Hammond on a Ego ACID* Trip

“We will deter those who seek to steal from us, or harm our interests,”

Define more specifically the "we" and "us" and the "interests" please, Mr Hammond, if you dare to care and share and reveal what you fear being exposed to attack and take over/assault and destruction.

Methinks you dare and care not to share the truth of those enterprises and thus be you destined to fail spectacularly with a winning lead program and will deter no one and nothing from doing whatever is needed for a better future.

*ACID ..... https://en.wikipedia.org/wiki/ACID

England will be forced to surrender

Surprisingly, a herd of criminals and morons - hackers attacked the prim aristocrats. Yes, I think it is humiliating for MI5.

If it will be professionals, England will be forced to surrender.

And what is the retaliation method going to be?

Refuse to sign trade deals with said States?

Respond with what, umbrellas and rolled up copies of the Telegraph ?

Send people to kill them (and be killed) with guns and bombs, or deface their websites and point and laugh. It's a tough call.

Retaliation

I can see an upside here...

The UK gov retailates against the IoT botnet army taking down vital infrastructure by destroying pwned CCTV cameras & so making a small but welcome dent in the oppressive UK surveillance state.

Not to mention nobbling hipsters thermostats, webcams etc, etc.

Win Win situation.

Britain will strike back against nations launching cyber attacks on the UK’s critical national infrastructure

Hard to imagine a bigger invitation for false flag attacks. With attribution methods widely disclosed in many, many research papers from the AV vendors, Crowdstrike, Mandiant and all the rest, I would be absolutely astonished if no state actors had yet tried to include some subtle misdirection in their TTPs, IOCs and whatnot. And if the only person your misdirection has to convince is President Trump, well,.. this is just asking for it.