Log In Get Started
World April 30, 2026 10:09 AM

Nearly Half of UK Firms Report Cyber Incidents as AI Raises Alarm

Government survey shows 43% of businesses experienced breaches in 2025/26, with phishing remaining dominant

By Jordan Park
Nearly Half of UK Firms Report Cyber Incidents as AI Raises Alarm

A government survey published Thursday found roughly 612,000 British businesses reported at least one cyber breach or attack in the prior 12 months, with 43% of firms affected in 2025/26 - the same rate as 2024/25. Phishing was the most reported vector, impacting 38% of businesses. The report notes a decline from 50% in 2023/24, while ministers and security officials warn of heightened risks associated with AI and possible state-linked activity.

Key Points

  • Survey results: 612,000 UK businesses reported at least one cyber breach or attack in the past 12 months; 43% experienced a breach or attack in 2025/26, unchanged from 2024/25.
  • Phishing remains the most common breach type, affecting 38% of businesses, the same rate as the previous year; overall reported breaches fell from 50% in 2023/24.
  • Government officials warn that AI is intensifying cyber threats and note the potential for more state-linked attacks, with ministers issuing an open letter about AI-related cyber risks.

The United Kingdom's latest government Cyber Security Breaches Survey, published Thursday, shows that an estimated 612,000 businesses reported at least one cyber breach or attack during the last 12 months. The headline finding: 43% of businesses experienced a breach or attack in 2025/26, an unchanged rate from 2024/25.

The survey identifies phishing as the most commonly reported type of incident, affecting 38% of businesses - the same proportion recorded in the prior year. The data also points to a reduction in overall reported breaches compared with 2023/24, when half of businesses - 50% - said they had experienced a breach or attack.

Government officials are urging corporate leaders to take further action to shore up defences. Britain’s minister for cyber security emphasized that artificial intelligence is amplifying the threat landscape and called on businesses to respond accordingly. That public admonition follows other recent government-level warnings: the head of the UK cyber security agency signalled last week that cyber attacks potentially connected to hostile states could increase, and ministers issued an open letter to businesses addressing AI-related cyber threats.

While the survey quantifies the incidence of breaches and highlights phishing as the prevalent method, the published material does not provide additional breakdowns of sectoral impact, cost burdens, or remediation outcomes beyond the figures cited above. As a result, the broader economic and market implications remain described in general terms by officials rather than detailed in the survey results made public on Thursday.

Taken together, the survey and subsequent government statements underline two persistent themes: the steady share of businesses reporting cyber incidents year-on-year from 2024/25 to 2025/26, and the continuing prominence of phishing as an attack vector. Officials also link the evolving role of AI and possible state-linked activity to a more severe threat environment, prompting calls for heightened vigilance among business leaders.

Readers should note that the publicly released survey numbers form the basis of the reporting above; where the published material is limited, that limitation is reflected rather than supplemented with additional detail.

Risks

  • Escalating threat complexity tied to AI - could increase exposure for businesses that lack updated defensive measures; impacts corporate IT and cybersecurity service demand.
  • Potential rise in state-linked cyber attacks - raises uncertainty for businesses and public-sector partners about the scale and origin of future incidents; impacts national security and critical infrastructure concerns.
  • Limited public detail in the published survey - constrains assessment of sector-specific losses, recovery costs, and long-term market effects, leaving businesses and investors with incomplete visibility.

More from World

Met Gala Draws High-Profile Arrivals as Protesters Target Bezos Sponsorship May 4, 2026 Three Die After Small Plane Crashes Into Residential Building in Belo Horizonte May 4, 2026 Quarantine at Sea: Passengers Stranded as Suspected Hantavirus Claims Three Lives aboard M/V Hondius May 4, 2026 U.S. Intelligence Sees No Material Change in Iran’s Nuclear Timeline Despite Recent Campaign May 4, 2026 Judge Criticizes Jail Conditions for Man Accused in Trump Gala Shooting Attempt May 4, 2026