Key facts
- Over 200 cyber incidents targeted UK critical national infrastructure in the past year.
- State-linked assailants were responsible for 75% of these attacks.
- Russia, China, and Iran are identified as hostile states targeting key services.
- AI advancements are predicted to increase the cyber threat to infrastructure.
- Cybersecurity fundamentals such as rapid recovery are crucial for organizations.
The UK's critical national infrastructure has been subjected to over 200 cyber incidents in the past year, with state-linked adversaries responsible for approximately three-quarters of these attacks, according to the National Cyber Security Centre (NCSC).
Richard Horne, CEO of the NCSC, stated that hostile states, including Russia, China, and Iran, are increasingly targeting systems that underpin essential UK services such as the nuclear deterrent, power plants, hospitals, and airports. He characterized the situation as an "ongoing contest with capable adversaries" that spans a broad operational area, akin to a large sports field rather than a confined space.
Horne anticipates that advancements in artificial intelligence will likely exacerbate these threats, potentially exposing cyber vulnerabilities in national infrastructure, with a significant crystallization of this threat expected around 2028. He emphasized the importance for organizations to focus on fundamental cybersecurity practices, particularly the ability to recover swiftly from attacks, noting that vulnerabilities tolerated in peacetime will inevitably be exploited during conflict.
Concerns about AI-enabled cyber-attacks have been amplified by developments like Anthropic's Claude Mythos model, though experts caution that many breaches still stem from persistent risks like weak authentication and unpatched known vulnerabilities. Horne described the cyber threat as pervasive, affecting individuals from boardrooms to home environments, and expressed confidence in prevailing if the nation collectively embraces the challenge with urgency.
These warnings echo previous concerns, including a 2024 statement by then Chancellor of the Duchy of Lancaster Pat McFadden, who highlighted the potential weaponization of AI against the UK and Russia's targeting of key infrastructure, including power grids. In April, Horne also warned of potential "hacktivist attacks at scale" during conflict, comparable to major ransomware incidents. Last year, Blaise Metreweli, head of MI6, similarly described the UK as being in a state of "between peace and war" amid rising tensions with Russia.
The NCSC has recommended that consumers transition from passwords to passkeys for enhanced security against modern cyber threats.