Top Highlights
- Hostile nations like Russia, Iran, and China are now conducting the most serious cyberattacks targeting the UK, with state-linked hacking groups focusing on critical infrastructure and strategic assets.
- The UK’s NCSC handles about four significant cyber incidents weekly, with the most serious threats stemming from state-sponsored operations rather than criminal activities like ransomware.
- Russia, Iran, and China are displaying advanced cyber capabilities, with Russia applying tactics from its Ukraine conflict to target the UK and Europe at scale, while Iran represses dissidents and China exhibits military-grade sophistication.
- UK authorities warn that in a conflict scenario, organizations will face unavoidable large-scale cyberattacks without the possibility of ransom recovery, urging them to bolster defenses and understand their cyber risk exposure.
[gptA technology journalist, write a short news story divided in two subheadings, at 12th grade reading level about ‘Most serious cyberattacks against the UK from Russia, Iran and China, cyber chief will say’in short sentences using transition words, in an informative and explanatory tone, from the perspective of an insightful Tech News Editor, ensure clarity, consistency, and accessibility. Use concise, factual language and avoid jargon that may confuse readers. Maintain a neutral yet engaging tone to provide balanced perspectives on practicality, possible widespread adoption, and contribution to the human journey. Avoid passive voice. The article should provide relatable insights based on the following information ‘
GLASGOW, Scotland (AP) — The most serious cyberattacks in the U.K. are now carried out by hostile nations including Russia, Iran and China, the head of the U.K.’s National Cyber Security Centre (NCSC) will say in a speech Wednesday.
Richard Horne, the head of the NCSC — part of the U.K’s signals intelligence agency GCHQ — will warn that the U.K. is living through “the most seismic geopolitical shift in modern history.” British businesses, he will say, need to prepare themselves to defend against cyberattacks because the U.K. could be targeted “at scale,” if it became involved in an international conflict, according to a preview of his speech shared with reporters.
In recent months, authorities in Sweden, Poland, Denmark and Norway have all warned that hackers linked to Russia have targeted their critical infrastructure including power plants and dams.
Horne will say the NCSC currently handles around four “nationally significant” cyber incidents a week and while criminal activity, such as ransomware, remains the most common problem, the most serious threat comes from cyberattacks carried out directly or indirectly by other states.
In December, Blaise Metreweli, the head of Britain’s Secret Intelligence Service, or MI6, said the world is more dangerous and contested now than it has been for decades and that the U.K. is operating in a space between peace and war.
“Let’s be clear, cyberspace is part of that contest,” Horne will say.
China’s intelligence and military agencies display an “eye-watering level of sophistication in their cyber operations,” while Iran is “almost certainly using cyber activity to support the repression of British individuals on our streets who are seen as a threat to the regime,” Horne will say in his speech at the CyberUK conference in the Scottish city of Glasgow.
Moscow, meanwhile, is using tactics and techniques honed during its war in Ukraine and is “moving them beyond the battlefield,” Horne will say, pointing to “sustained Russian hybrid activity” targeting the U.K. and Europe. Companies, he will say, must learn how cyber operations have been used in conflict situations in order to boost their own resilience.
In a conflict situation, Horne will say, the U.K. would likely face cyberattacks at scale but — unlike with ransomware — companies will not be able to pay their way out in order to recover data and access to systems. For that reason, he will say, every organization needs to understand the “full extent” of the risk they face and improve their cyber defenses before it is too late.
On Friday, Swedish authorities said that a pro-Russian group with links to Russia’s security and intelligence services was behind a cyberattack on a heating plant last year.
Carl-Oskar Bohlin, Sweden’s minister for civil defense, compared it to incidents in Poland in December, when coordinated cyberattacks hit combined heat and power plants supplying heat to almost 500,000 customers, as well as wind and solar farms. Poland later said evidence indicated hackers were “directly linked to the Russian services.” Norwegian authorities also warned that a hack in April 2025 which affected water flows from a dam was linked to Russia while in December, Danish authorities said another attack on a water utility company in 2024 left some houses without water.
The four cyberattacks are among more than 155 incidents of disruption — including arson, sabotage and espionage — linked to Russia or its proxies by Western officials and tracked by The Associated Press since Moscow’s full scale invasion of Ukraine in February 2022.
Other incidents linked to Russia by European officials include an attack on German air traffic control, attempts to gain access to Signal and WhatsApp accounts belonging to officials and journalists and attempts by hackers linked to Russian military intelligence to steal users’ sensitive data by exploiting a weakness in some internet routers.
‘. Do not end the article by saying In Conclusion or In Summary. Do not include names or provide a placeholder of authors or source. Make Sure the subheadings are in between html tags of
[/gpt3]
Continue Your Tech Journey
Stay informed on the revolutionary breakthroughs in Quantum Computing research.
Access comprehensive resources on technology by visiting Wikipedia.
Cybercrime-V1
