HMS Queen Elizabeth aircraft carrier runs on Windows XP, vulnerable to cyberattack
The HMS Queen Elizabeth, the first of Britain’s two brand new aircraft carriers which left port on Monday for sea tests, runs on outdated Windows XP software which is vulnerable to cyberattack.
It is the same software controversially used on the UK’s nuclear armed Vanguard submarines. Windows XP has not been supported by Microsoft since 2014.
In May, a massive cyberattack struck the National Health Service (NHS), which also uses the software.
During a press visit to the 65,000-tonne carrier ahead of her test launch on Monday, journalists from the Times noticed the software was in use.
“If XP is for operational use, it is extremely risky,” Professor Alan Woodward, an IT expert at the University of Surrey, told the Times.
“Why would you put an obsolete system in a new vessel that has a lifetime of decades?”
One defense source, who told the paper the system would be refitted when the second carrier, HMS Prince of Wales, was launched in 2026, said: “Just think about the difference between year 2000 desktops compared with modern units.”
The Navy defended the presence of the ageing system, which has not received Microsoft security updates for many years.
Commander Mark Deller, who serves aboard the Queen Elizabeth in the control center where the system was spotted, said: “The ship is well designed and there has been a very, very stringent procurement train that has ensured we are less susceptible to cyber [attacks] than most.”
The news comes as it was announced the Ministry of Defense (MoD) has been told to plan to up to £20 billion ($25.5 billion) in savings over the next decade or risk losing out on major projects.
Stephen Lovegrove, the MoD permanent secretary, warned that the procurement and development of jets, submarines and tanks could also be at risk, according to the Times.