Richard Horne, the Chief Executive of the National Cyber Security Centre (NCSC), issued a stark warning on April 22, 2026, stating that the United Kingdom is facing an unprecedented surge in cyberattacks orchestrated by hostile nation-states. Speaking at the annual CyberUK conference in Glasgow, Horne revealed that the majority of nationally significant cyber incidents handled by the agency now originate from Russia, China, and Iran. This marks a strategic shift from previous years, where criminal ransomware gangs were the primary drivers of high-impact disruption.
According to official figures released during the summit, the NCSC currently manages an average of four nationally significant cyber incidents every week. While criminal activity remains the most frequent threat to the broader economy, Horne emphasized that the most sophisticated and damaging operations are increasingly tied to state actors. He characterized the current environment as the most seismic geopolitical shift in modern history, warning that the UK must prepare for cyberattacks at scale should it become further entangled in international conflicts.
The NCSC head specifically identified China as a peer competitor in cyberspace, noting an eye-watering level of sophistication in its offensive operations. He also highlighted that Russia is actively exporting hybrid warfare tactics developed during the invasion of Ukraine to target Western infrastructure. Meanwhile, Iranian state-linked actors have been observed using cyber tools to suppress individuals within the UK. Horne noted that these adversaries are increasingly pre-positioning themselves within critical national infrastructure, including energy, water, and transport networks.
Technological advancements, particularly in artificial intelligence, are accelerating these threats. Security Minister Dan Jarvis, also speaking at the conference, noted that frontier AI models are enabling adversaries to discover software vulnerabilities faster than human teams can patch them. Jarvis cited internal testing of Anthropic’s Mythos Preview model, which reportedly identified thousands of previously unknown software flaws. In response, the UK government announced a 90 million pound package to bolster digital defenses and urged AI developers to partner with the state to build autonomous, national-scale defense systems.
The economic toll of such attacks was underscored by recent data. A cyberattack on Jaguar Land Rover late last year resulted in an estimated 1.9 billion pound impact on the UK’s economic growth. Similar incidents at retailers Marks and Spencer and the Co-op resulted in costs ranging between 270 million and 440 million pounds. Horne concluded by urging British businesses to integrate cybersecurity into their core corporate missions, stating that organizations failing to secure their technology base are no longer just naive but are failing to grasp the reality of the modern world.