UK Cyber Attacks: A Mixed Picture Amid Rising Threats
In a recent report published by Check Point, UK organizations experienced a significant disparity in cyber-attacks, reporting lower numbers than the global average for February. However, the year-on-year (YoY) increase in attacks within the UK was nearly four times higher than the global rate, raising alarms about the evolving landscape of cyber threats.
According to Check Point’s February 2026 Global Threat Intelligence report, the average organization globally faced about 2,086 cyber-attacks per week, marking a 9.8% YoY increase. In contrast, UK organizations reported an average of 1,504 attacks per week. While this figure is notably lower, it corresponds to a staggering 36% increase in attacks compared to the previous year. This steep surge in attack volume is particularly concerning for UK businesses, especially given the types of sectors that are being targeted.
Among the most frequently targeted industries in the UK are education, energy and utilities, government, healthcare, and financial services. These sectors are critical to the nation’s infrastructure and, therefore, are often attractive targets for cybercriminals. As these sectors face heightened scrutiny and regulatory pressures, the risks associated with cyber-attacks could be especially damaging both financially and operationally.
One of the most pressing threats highlighted in the report is ransomware, which continues to pose a grave risk to organizations across the UK and globally. In February, data indicated that while the bulk of ransomware victims (51%) were in the United States, the UK ranked third globally, with 3% of victims, trailing behind Canada at 6%. Such statistics underscore the international nature of cyber threats and the need for robust defensive strategies.
Check Point’s analysis points to the existence of 49 distinct ransomware groups operating last month alone. The most notorious among them, Qilin, Clop, and The Gentlemen, accounted for a considerable share of the victims. This multifaceted threat landscape is indicative of the resourcefulness of cybercriminal organizations, making it essential for both public and private sectors to invest heavily in cybersecurity.
A notable bright spot for the UK is its overall performance concerning attack volumes when compared to the global average. Latin America reported the highest volume of attacks at 3,123 per organization per week, followed by the Asia-Pacific region at 3,040, and Africa at 2,993. The UK’s relatively lower figures suggest a level of resilience, yet the alarming YoY increase necessitates continuous vigilance and strategic enhancement of cybersecurity measures.
The Rise of Generative AI and Its Risks
The report also delves into the rising risks associated with the use of Generative AI (GenAI) within corporate environments. Check Point indicated that the widespread application of GenAI tools has been linked to an increase in the occurrence of unintended data leaks. Notably, globally, one out of every 31 GenAI prompts poses a high risk of data exposure, affecting 88% of companies that regularly utilize these technologies.
A concerning statistic is that 16% of these prompts may include sensitive information, such as credentials, customer data, or intellectual property. These findings suggest a chaotic usage pattern of GenAI tools, with the average organization employing around 11 different platforms—many of which may lack adequate oversight or governance.
Further compounding these security risks, a notable study found that one in twelve employees in the UK and the US were using Chinese GenAI tools. The implications of this are significant, given that any data input into such models could potentially be at risk of sharing with Chinese authorities. This adds another layer of urgency for organizations to implement and enforce strict data management policies.
Check Point’s UK & Ireland regional director, Mark Weir, expressed that the marked increase in cyber attacks should be viewed as an ongoing concern. He emphasized the necessity of a proactive cybersecurity approach, stating, “Even when ransomware activity fluctuates, attackers maintain constant pressure across industries and regions.”
Weir advocated for a “prevention-first, real-time protection powered by AI,” which he identified as the most effective strategy to preemptively curtail attacks before they escalate into operational or financial crises.
In conclusion, while UK organizations appear to be faring better in terms of attack frequency compared to their global counterparts, the significant YoY increase raises essential questions about their cyber defenses. As the landscape of cyber threats evolves, it is crucial for organizations to remain vigilant and proactive in mitigating risks, particularly in light of the rising complications associated with the use of generative AI and recurring ransomware threats. Further insights are awaited from Check Point regarding the annual surge in attacks faced by UK companies last month.