UK Businesses Face Alarming Rise in Nation-State Cyber Attacks Amidst AI Threats
According to a newly released report by Armis, over half (54%) of UK companies fell victim to nation-state attacks in the past year, prompting a rise in anxiety among IT leaders concerning the potential dangers posed by artificial intelligence (AI). This startling statistic is drawn from the 2026 Armis Cyberwarfare Report, which relies on interviews with 1,900 global IT decision-makers (ITDMs), with 500 respondents specifically from the UK, as well as proprietary data collected from Armis Labs.
The report highlights a significant escalation in the number of UK ITDMs reporting state-sponsored attacks, marking an increase from 47% in the previous year’s assessment. Notably, geopolitical tensions are perceived as a catalyst for this surge in cyber warfare threats. Approximately 80% of the surveyed ITDMs believe that escalating geopolitical conflicts have heightened the risk of cyber warfare. This figure has seen an increase from 74% compared to last year’s report. A staggering 92% of those interviewed expressed concern over the ramifications of a potential full-scale cyber war. Furthermore, more than three-quarters (76%) of respondents believe that state actors have the capability to incapacitate critical infrastructure globally.
The interviews that form the foundation of this report occurred in November and December of 2025, a timeframe during which tensions in international relations were notably high. Alarmingly, there appears to be a growing sentiment among organizations that the concept of "mutually assured disruption" is no longer an adequate deterrent against state actors. This mindset reflects a changing landscape where traditional deterrence strategies may no longer suffice.
Recent incidents, such as a pronounced uptick in Iranian assaults against both physical and digital infrastructures—including a significant attack on medtech firm Stryker—underscore the urgency of these concerns. The Handala group, associated with Iran, boasted online about erasing “over 200,000 systems, servers, and mobile devices,” while also exfiltrating a staggering 50TB of data from the US-based company. Such attacks not only illustrate the destructive potential of state-sponsored cyber initiatives but also contribute to fears surrounding the future of cybersecurity.
The Weaponization of AI: A Growing Concern
One of the predominant worries among UK ITDMs is the potential for adversaries to exploit advancements in AI for malicious purposes. Approximately 69% of those surveyed concurred that the weaponization of AI technology would make cyber conflict a more consistent element of global geopolitics. Interestingly, nearly half (48%) acknowledged that their organizations had experienced an AI-generated or led attack in the previous year. However, alongside these admissions, a considerable number of respondents expressed reservations about their capacity to respond effectively.
Specifically, 45% confessed that they lack the expertise to implement and manage AI-driven security solutions, while an almost identical portion (46%) cited budgetary constraints as a limiting factor. Nadir Izrael, the CTO at Armis, articulated this predicament by describing cyber warfare as a “constant condition.” He emphasized that while attackers are leveraging machine-speed capabilities, many organizations still rely on outdated assumptions and frameworks ill-equipped to address the current threat landscape.
As Izrael noted, the convergence of advanced nation-state capabilities, the acceleration of AI, and ongoing security vulnerabilities presents a formidable challenge. For many organizations, he suggested, the pressing concern is less about whether they will be targeted by a cyber warfare attack and more about their preparedness and ability to safeguard their environments when such an event occurs.
The Landscape of Cybersecurity Risks
The report also identifies specific nation-states perceived as posing the greatest cybersecurity threats. Russia (62%), China (53%), and North Korea (35%) topped the list of concerns among UK ITDMs. Notably, nation-states can exacerbate risks for their geopolitical rivals by offering sanctuary to cybercriminals conducting attacks on foreign targets, as exemplified by Russia’s activities.
Moreover, the report highlighted a worrying trend regarding ransomware attacks. In the past year, the average ransom payment at UK companies with over 1,000 employees surged from £5.6 million ($7.5 million) to £7.7 million ($10.3 million). Alarmingly, 44% of respondents indicated that their average ransomware payout now exceeds their annual cybersecurity budgets. Such statistics illustrate the pressing need for organizations to adopt a more robust approach to cybersecurity in an era increasingly characterized by sophisticated, state-sponsored threats.
As these findings reveal, the intersection of geopolitical instability, the rise of AI, and the evolving landscape of cyber warfare presents a complex array of challenges for UK businesses. The imperative for a proactive stance towards cybersecurity has never been clearer.