The National Security Act 2023 targets hostile actions aimed at benefiting foreign powers. These include sabotage—a term often associated with historical accounts and World War II-era films—but which has been modernised to reflect present-day threats.

While the term might evoke images of the past, the reality of the threat is starkly contemporary. The war in Ukraine, bellicose rhetoric from Putin’s Russia and recent warnings from security agencies should alert senior executives and organisation leaders to the sharp rise in the risk of physical and digital sabotage.

Much of the current risk comes from insiders and proxies manipulated by and acting on behalf of hostile nation state agencies.  For example, just days ago, a UK national admitted to committing an arson attack on behalf of the proscribed Wagner group. In addition to threats to businesses, public services and spaces may face disruptions intended to inconvenience the public, signal Russia’s discontent with the UK’s support for Ukraine, and provoke frustration with the UK government.

Businesses and other organisations should therefore consider how to guard against potential sabotage and related hostile acts including:

  • Direct threats: Warnings of personal violence against high-profile figures, executives of businesses providing products and services to the UK Government, and/or their families.
  • Public space disruptions: Suspicious packages left in crowded areas, real or hoax bomb threats made to businesses, public organisations and transportation infrastructure.
  • Technological intrusions: Hostile reconnaissance using drones near critical or sensitive sites such as data centres, utility facilities, airports or military facilities.
  • Destruction of infrastructure: Attacks on physical cabling for telecommunications and infrastructure management, firebomb attacks on logistical infrastructure and aviation.
  • Cyber-attacks: Targeting power grids, healthcare systems, or essential supply chains, leading to widespread chaos.

While the idea of a growing network of Russian operatives, other insiders and proxies embedded within our society may seem far-fetched, establishing persistent sabotage networks was part of Russia’s wartime playbook and old games are now being brought back – albeit with new twists, adding greater use of crime gangs and the exploitation of cyber-attacks. So, it is now more likely that a range of agents, insiders and proxies will be involved encompassing those ideologically motivated  through to individuals or groups seeking financial gain.

Every business and public service organisation should evaluate how sabotage—whether overt or indirect—could disrupt their operations. The key lies in resilience, which means having an effective contingency plan (“Plan B”) that has been tested against plausible but severe scenarios. Complementary to this thinking is the Terrorism (Protection of Premises) Bill known as ‘Martyn’s Law’ which seeks to strengthen the UK’s public safety framework, addressing not only direct acts of terrorism but also ancillary risks like sabotage. Ensuring venues can manage sabotage aligns with the Bill’s and the National Security Act’s ultimate goal of protecting the public from harm. (For a helpful guide to Martyn’s Law see here: Practical Guide to Navigating Martyn’s Law)

At GSA Global, we offer expertise in addressing and mitigating physical, insider and cyber threats to businesses, people and digital assets. Leveraging extensive experience drawn from the private sector, law enforcement, military and government, we can assess your defences, identifying vulnerabilities and how best to build security and resilience. In addition, we also undertake investigations and provide practical support and advice to deal with incidents and crises created by sabotage and other attacks.