UK Cybersecurity Threat Remains High as AI Amplifies Risks, Government Report Finds
The UK government’s Cyber Security Breaches Survey 2025-26 reveals persistent and severe cyber threats, with 43% of businesses, 28% of charities, and 69% of large firms reporting breaches or attacks in the past year. Nearly a third (29%) of respondents faced incidents at least weekly, underscoring the ongoing challenge.
The report arrives amid a surge in high-profile attacks, including breaches at Marks & Spencer, Co-op Group, and Jaguar Land Rover, as well as growing concerns over offensive AI. Cybersecurity minister Liz Lloyd warned that AI is sharpening the threat landscape, urging business leaders to prioritize defenses. In response, the government has targeted over 180 major UK companies with a call to adopt the upcoming Cyber Resilience Pledge a voluntary initiative requiring board-level accountability, enrollment in the NCSC’s free Early Warning service, and Cyber Essentials certification across supply chains.
While some trends show improvement ransomware attacks dropped to 1% from 3% the prior year, and phishing incidents fell to 38% from 42% in 2023-24 phishing remains the most common and disruptive threat. Impersonation attacks also declined, affecting 12% of businesses (down from 17% in 2023-24) and fewer charities. However, the financial and reputational fallout of breaches has worsened: 5% of businesses reported revenue or share value losses (up from 2%), while reputational damage rose to 3% from 1%.
The survey highlights a paradox: while defenses may be strengthening in some areas, attackers are leveraging AI to refine tactics, keeping pressure on organizations across sectors.
Source: https://www.computerweekly.com/news/366642507/Almost-half-of-UK-businesses-hit-by-cyber-attacks
The Co-operative Bank cybersecurity rating report: https://www.rankiteo.com/company/the-co-operative-bank
JLR cybersecurity rating report: https://www.rankiteo.com/company/jaguar-land-rover_1
Marks and Spencer cybersecurity rating report: https://www.rankiteo.com/company/marks-and-spencer
"id": "THEJAGMAR1777573989",
"linkid": "the-co-operative-bank, jaguar-land-rover_1, marks-and-spencer",
"type": "Cyber Attack",
"date": "4/2025",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'retail',
'location': 'UK',
'name': 'Marks & Spencer',
'size': 'large',
'type': 'business'},
{'industry': 'retail',
'location': 'UK',
'name': 'Co-op Group',
'size': 'large',
'type': 'business'},
{'industry': 'automotive',
'location': 'UK',
'name': 'Jaguar Land Rover',
'size': 'large',
'type': 'business'},
{'location': 'UK', 'type': 'businesses (general)'},
{'location': 'UK', 'type': 'charities'}],
'attack_vector': ['AI-enhanced attacks', 'phishing'],
'date_publicly_disclosed': '2025-2026',
'description': 'The UK government’s Cyber Security Breaches Survey 2025-26 '
'reveals persistent and severe cyber threats, with 43% of '
'businesses, 28% of charities, and 69% of large firms '
'reporting breaches or attacks in the past year. The report '
'highlights the impact of AI on cyber threats, including '
'high-profile breaches at Marks & Spencer, Co-op Group, and '
'Jaguar Land Rover.',
'impact': {'brand_reputation_impact': '3% of businesses reported reputational '
'damage',
'financial_loss': True,
'revenue_loss': '5% of businesses reported revenue or share value '
'losses'},
'lessons_learned': 'AI is sharpening the threat landscape, and board-level '
'accountability is critical for cyber resilience. Phishing '
'remains the most common and disruptive threat, while '
'ransomware attacks have declined.',
'post_incident_analysis': {'corrective_actions': 'Implement Cyber Resilience '
'Pledge, enhance monitoring, '
'and achieve Cyber '
'Essentials certification.',
'root_causes': 'AI-enhanced cyber threats, lack of '
'board-level accountability, and '
'persistent phishing attacks.'},
'recommendations': 'Adopt the Cyber Resilience Pledge, enroll in NCSC’s Early '
'Warning service, and achieve Cyber Essentials '
'certification across supply chains.',
'references': [{'source': 'UK Government Cyber Security Breaches Survey '
'2025-26'}],
'response': {'enhanced_monitoring': 'NCSC’s free Early Warning service'},
'stakeholder_advisories': 'Government urges business leaders to prioritize '
'defenses and adopt the Cyber Resilience Pledge.',
'title': 'UK Cybersecurity Threats and AI Amplification',
'type': ['phishing', 'ransomware', 'impersonation']}