Office for Nuclear Regulation

Guardian news article

4 December, 2023

An article has appeared in today’s Guardian relating to cyber security shortfalls at Sellafield.

As a regulator, we have seen no evidence that Sellafield’s systems have been hacked by state actors in the way described in the report.

We have been clear that there are areas where improvements are required to achieve the high standards of safety and security we expect to see, but there is no suggestion that this is compromising public safety.

We will continue to hold Sellafield Ltd to account to ensure these improvements are made through a range of regulatory action and enforcement.

With new leadership in place at Sellafield Ltd, we have seen positive signs of improvement in recent months but will continue to apply robust regulatory scrutiny as necessary to ensure the ongoing safety of workers and the public.

In relation to cyber security, Sellafield Ltd is currently not meeting certain high standards that we require, which is why we have placed them under significantly enhanced attention.

Some specific matters are subject to an ongoing investigation process, so we are unable to comment further at this time.