UK faces surge in major cyber attacks, NCSC warns
John E. Kaye
- Published
- News

The UK’s cyber threat level has reached unprecedented intensity, with the National Cyber Security Centre reporting 204 “nationally significant” incidents in the past year — the equivalent of four major attacks every week
Britain is now facing an average of four “nationally significant” cyber incidents every week, according to new figures from the National Cyber Security Centre (NCSC).
In its latest annual review, the agency said it handled 204 major incidents in the 12 months to September 2025, more than double the 89 recorded the previous year, underscoring what it described as an “alarming” escalation in both scale and severity.
The NCSC defines “nationally significant” incidents as those with the potential to disrupt critical services, compromise sensitive data, or affect large sections of the public or economy. Officials said the trend reflected the increasing sophistication and persistence of threat actors targeting UK networks.
Dr Richard Horne, Chief Executive of the NCSC, said: “Cyber security is now a matter of business survival and national resilience. With over half the incidents handled by the NCSC deemed nationally significant, our collective exposure to serious impacts is growing at an alarming pace.”
Industry experts said the findings should prompt a step change in how organisations approach security.
Tim Hemsley, DFIR Operations Director at cyber firm Zensec, said: “The NCSC’s data underlines what we’re seeing across our client base — a steady escalation in both the frequency and impact of serious cyber incidents. Threat actors are adapting faster than many organisations’ defences. The key isn’t just to prevent attacks, but to build operational resilience so that when — not if — a breach occurs, the organisation can absorb the shock and continue operating.”
Zensec said the data showed that disruption is now a probability rather than a risk, urging firms to treat cyber resilience as a board-level issue. The company advised that governance, investment, and preparedness — including incident simulation — should form part of every organisation’s core strategy.
The NCSC’s findings come amid heightened concern over the security of public infrastructure and private-sector supply chains, with officials warning that both state-sponsored and criminal groups are targeting UK institutions more aggressively.
According to Zensec, “cyber resilience is now a business imperative” and must be embedded across every layer of corporate governance as Britain adapts to what the NCSC describes as an “unprecedented” threat environment.
READ MORE: ‘ISF warns of a ‘corporate model’ of cybercrime as criminals outpace business defences‘. Cybercrime has matured into an industry that mirrors legitimate enterprise, complete with supply chains and customer service. The industrialisation of hacking, amplified by artificial intelligence, demands a total rethink of how organisations manage people, technology and risk, warns Steve Durbin of the Information Security Forum.
Do you have news to share or expertise to contribute? The European welcomes insights from business leaders and sector specialists. Get in touch with our editorial team to find out more.
TOP STORIES
-
Volunteers collect 11m rare seeds to restore Scotland’s native forests -
Trump threatens 'immediate 100pc tariffs' on European countries over tech taxes -
World’s biggest golf tour lands global eSIM deal with Yesim -
Facebook owner Meta signs Texas solar deal with Turkish renewables firm -
UK universities take top four places in European global rankings -
Hurghada gets new 442-room Red Sea resort as Britons chase year-round sun -
Home routers named ‘Europe’s forgotten internet security risk’ -
New documentary explores water safety as Europe confronts soaring drowning deaths -
Venice tourists say £43 day-trip fee will turn city into ‘playground for the rich’ -
King Charles to reveal personal tax bill for first time -
AI lab says brain-like engine could slash chatbot bills by 98 per cent -
Explorer who pulled out of Titan sub dive says damning report proves disaster was inevitable -
Britain to rank among Europe’s hottest places as 40C heatwave closes in -
Sir Keir Starmer says he will become a family man after quitting as UK PM -
EasyJet rejects reported £4.7bn takeover approach from U.S investment firm -
Street-by-street maps to reveal where England’s poorest communities face worst environmental risks -
Stanley Johnson: the Government must ‘follow Ukraine back into Europe’s green network’ -
Ukraine joins European environment network in major conservation step after war damage to land and wildlife -
Titan firm never proved doomed hull was safe, damning report finds -
Europe’s €4bn Frankfurt terminal named among world’s most beautiful airports -
The fist-bumping, selfie-taking humanoid guide that could usher sightseeing tours into the AI age -
EU says ‘time for change’ on child social media safety after survey links platforms to youth distress -
China offers UK coastal rescue lessons as Yancheng wetlands hailed by conservation figures -
UK’s under-16s social media ban risks giving parents false comfort, experts warn -
What Elon Musk’s US$1,100,000,000,000 fortune could buy



























