The United Kingdom is experiencing an unprecedented level of cyber threats, with the National Cyber Security Centre (NCSC) responding to a record-breaking average of almost four ‘nationally significant’ cyberattacks each week. This data comes from the NCSC’s latest annual review, which covers the two-year period from September 2021 to August 2023.

During this timeframe, the NCSC, a part of GCHQ, managed a total of 2,000 cyber incidents. Of these, 396 were classified as ‘nationally significant,’ a designation reserved for attacks that disrupt essential services, affect a large portion of the population, or impact the UK’s economy or national security. This averages out to nearly 100 incidents per month, with the most severe attacks occurring at a steady rate of four per week.

Targeted Sectors and State-Sponsored Actors

The NCSC’s report identifies the most frequently targeted sectors in the UK. The public sector received the highest volume of attacks, followed by academia and managed service providers (MSPs). The review also names the primary state-sponsored adversaries posing a threat to UK interests. These include cyber units associated with Russia, China, Iran, and North Korea.

The report highlights several high-profile incidents attributed to these actors. This includes a spear-phishing campaign targeting politicians, civil servants, and journalists, as well as a significant attack on the UK’s electoral register, which has been attributed to China. Malicious cyber activity from these states has been a persistent and aggressive threat against the nation’s critical infrastructure.

The Rise of Ransomware and High-Profile Breaches

Ransomware remains a primary tool used in many of these attacks. The NCSC report details how ransomware attacks have directly impacted UK organizations, leading to significant disruptions. Notable incidents during the reporting period include the attacks on the Royal Mail and the British Library, both of which caused severe and lasting operational issues.

The findings underscore a sustained and elevated threat level against the UK. The NCSC’s work involved not only responding to these incidents but also providing guidance and support to organizations across the country to bolster their defenses against the increasing volume and sophistication of cyberattacks.