Massive cyberattacks highlight the need for countries to increase investment in digital security
- Cybercrime: history and classification
- Global cyber threat: South Korea and the United Kingdom affected
- National cybersecurity in the spotlight
According to Microsoft, 54 cyberattacks occur every second, or nearly 600 million per day. In April and May, South Korea and the United Kingdom suffered massive attacks that exposed the growing vulnerability of Internet users. In addition, experts warn that the largest data breach in history compromised more than 3 billion user accounts.
Cybercrime is a new threat that is beginning to dominate the headlines, alongside geopolitical conflicts, territorial disputes, peace negotiations, treaties and alliances. The need to address this phenomenon is becoming increasingly apparent.
There is no doubt that technology is no longer just a neutral element but has become a tool with a real impact on our societies. Its rapid growth has made it commonplace and almost indispensable in everyday life. However, its misuse by certain actors has turned it into a means through which risks and negative consequences for countries can also arise.
While its initial goal was to make our lives easier, today it is also seen as a double-edged sword, capable of putting society at risk. Faced with this reality, are nations really prepared to protect their citizens' data and information?
Cybercrime: history and classification
According to the US Department of Justice, cybercrime falls into three broad categories: attacks where computers are used as weapons; intrusions into networks with the aim of gaining unauthorised access; and crimes in which, although the computer is not the main target, it plays a key role, such as in the storage of illegal files. In most cases, the main motivation behind these crimes is financial.
Although it may seem like a recent phenomenon, cybercrime has been around for decades. It dates back to 1834, when two criminals managed to infiltrate the French telegraph system to obtain financial market information. Later, between the 19th and 20th centuries, attacks targeting telephone networks were recorded, such as the famous ‘phreaking’ (illegal manipulation of telephone systems). However, it was not until the 1990s that computer viruses and emails became common vehicles for malware and phishing.
Nevertheless, in the last ten years, this threat has escalated dramatically. Cybercrime has expanded on a large scale and, according to experts, represents a market worth more than 1.5 trillion dollars annually
Global cyber threat: South Korea and the United Kingdom affected
In mid-April, South Korean information technology and telecommunications leader SK Telecom suffered a serious data breach that compromised USIM cards, smart cards used in mobile phones to manage and protect subscriber data. The Ministry of Science and ICT reported that the BPFDoor malware, often associated with Chinese cyberattackers, was used. The company has not yet been able to accurately calculate the financial impact of the attack, although it is considering replacing the cards of up to 24 million users.
Last week, SK Telecom CEO Ryu Young-sang warned that the company could lose up to 5 million monthly customers if it waives early termination penalties. ‘The average early termination fee per subscriber is estimated to be at least 100,000 won, which means that SK Telecom could face up to 250 billion won in total compensation if all affected users are exempt,’ he explained.
Meanwhile, in the United Kingdom, well-known chains Marks & Spencer, Co-op and Harrods were also victims of cyberattacks that affected their online operations. The first incident was detected in late April by M&S customers, who reported payment failures and delays in their orders. The company confirmed that it was a cyberattack and apologised for the inconvenience.
During the incident, personal information such as addresses, phone numbers and purchase history was leaked. However, the company assured that payment details and passwords were not compromised. The attack was attributed to the Scattered Spider group, which used an illicit platform known as DragonForce. The same group was also behind the attacks on Co-op and Harrods, although these were less serious.
National cybersecurity in the spotlight
According to The Korea Times, following the attack that affected more than 25 million people, there was strong social and institutional pressure to strengthen cybersecurity at the national level. Meanwhile, the UK government, in its official statistics report for this year, indicated that more than 43% of businesses and around 30% of charities reported having been victims of some form of digital security attack in the last 12 months.
In 2018, the Centre for Long-Term Cybersecurity at the University of California, Berkeley, and the CNA Public Research Institute (an independent, non-profit organisation dedicated to researching and analysing national security) worked together to create scenarios for possible futures for cybersecurity in 2025. Among their conclusions, they highlighted that advanced technologies (such as semiconductors, artificial intelligence and quantum computing) have become strategic assets in global competition.
In addition, the study points out that collaboration between governments and the private sector will be key to protecting information. In this context, digital identity is emerging as one of the main areas of conflict. The proliferation of false content generated by artificial intelligence complicates the distinction between truth and falsehood, undermining public trust and posing a growing challenge to national security.
Recent attacks in South Korea and the United Kingdom confirm what is now impossible to ignore: cybersecurity has become a global challenge that knows no borders. In a context where cybercriminals operate with the same structure and sophistication as a legal company, the protection of data and systems can no longer depend exclusively on individual efforts. Cooperation between governments, companies and strategic sectors is not only necessary, but urgent.
Strengthening alliances and creating international collaboration networks must be a priority. Every country that joins, every company that invests in digital defence contributes to shielding an increasingly vulnerable ecosystem. In this new battlefield, it is not just about protecting information, but about defending public trust and social stability. Because in an increasingly digital world, security is no longer an option: it is a shared responsibility.