The rise in ransomware attacks targeting U.K. organizations over the past year has been a cause for concern, as highlighted by the British government in a recent report. Despite the overall decrease in cyberattacks, the increase in ransomware incidents between 2024 and 2025 has raised alarms about the evolving threat landscape.
According to a survey that covered a wide range of sectors, including businesses, charities, and educational institutions, the prevalence of ransomware crimes has now reached around 1% of businesses in the U.K. This equates to an estimated 19,000 businesses expected to be impacted by ransomware in 2025. The severity of these attacks was exemplified by high-profile cases, such as the ransomware attack on a National Health Service hospital in Northwest England, which severely disrupted operations. Additionally, an attack on an IT vendor led to blood shortages in hospitals nationwide, underscoring the real-world consequences of such cyber threats.
These incidents have shed light on the increasing danger ransomware poses to critical public services and healthcare systems. Despite the government’s findings that a small percentage of large and medium-sized businesses have paid ransoms following attacks, the overall reporting of cyber incidents remains low. Only a third of organizations have guidelines for reporting breaches, despite U.K. laws mandating disclosure within 72 hours if personal data is exposed. This lack of reporting hampers efforts to understand the full scope of the ransomware problem and impedes effective countermeasures.
In response to these challenges, the U.K. government has put forth new measures to tackle the ransomware threat more effectively. Proposed regulations, likely to be included in the Cyber Security and Resilience Bill, may include a ban on ransom payments by public sector organizations and compulsory incident reporting. Under these proposed rules, government bodies and critical infrastructure operators would be required to report ransomware incidents within 72 hours, aiming to enhance transparency, bolster defenses, and minimize the impact of ransomware on both public and private sectors.
By increasing accountability and enforcing stricter reporting protocols, the U.K. government hopes to fortify the nation’s resilience against ransomware attacks and safeguard critical systems and services from further disruptions. The proposed measures signify a proactive approach to addressing the evolving cyber threat landscape and fostering a more secure digital environment for all sectors of society. As ransomware continues to pose a significant risk to organizations worldwide, collaborative efforts and stringent regulations are essential in mitigating its impact and ensuring the stability of essential services and infrastructure.