Overview

• A single guessed password enabled the Akira ransomware group in 2023 to encrypt KNP Logistics’ systems, grounding 500 lorries and forcing the 158-year-old firm into insolvency.
• The breach left 700 employees jobless after negotiators valued the ransom at an unaffordable £5 million.
• National Crime Agency data shows weekly ransomware incidents have surged to 35–40, driven by ransomware-as-a-service platforms and social engineering.
• The government plans to ban ransom payments by public bodies and require private companies to report incidents and secure approval before paying hackers.
• Paul Abbott, KNP’s former director, now leads public warnings on credential hygiene after admitting he never told the employee whose weak password prompted the attack.