Overview
- Britain’s NCSC handled 429 incidents in the year to late summer, including 204 deemed nationally significant (more than double) and 18 classed as highly significant, averaging four nationally significant cases each week.
- UK ministers wrote to FTSE leaders and other major firms urging board-level responsibility, business continuity rehearsals, sign-up to the NCSC’s Early Warning service, supplier compliance with Cyber Essentials, and keeping hard copies of critical data.
- Ransomware and intrusions hit Marks & Spencer, the Co-op and Jaguar Land Rover; JLR halted production for nearly six weeks and received a £1.5 billion government loan guarantee to support suppliers.
- Australia’s ASD recorded 1,200 incidents in 2024–25 (up 11%), reported a doubling of healthcare ransomware with 95% success in the cases it responded to, and highlighted rising business costs and the China-linked APT40’s targeting of regional networks.
- Officials warned of growing attacker use of AI, identified China as a highly capable threat alongside Russia, Iran and North Korea, and cautioned about possible state pre‑positioning against critical infrastructure.