2025: The Year of the Cyber Hack - A Wake-up Call for British Businesses
As we reflect on the year 2025, it's clear that businesses have faced unprecedented challenges. From soaring employment costs to supply chain disruptions and economic shocks, it's been a tough year. But one of the most significant and costly issues has been the rise of cyber attacks, which have left a lasting impact on British companies.
A recent government report reveals a shocking statistic: nearly half of British businesses (43%) and a significant number of charities (30%) have experienced some form of cybersecurity breach or attack in the past year. These attacks range from phishing scams to full-scale digital shutdowns, resulting in hundreds of millions of pounds in losses.
The list of affected organizations reads like a who's who of British industry, including household names like Marks and Spencer, Adidas, Co-op Group, Heathrow Airport, Harrods, and Jaguar Land Rover (JLR). Each of these companies has publicly confirmed falling victim to cyber hacks, and the problem extends beyond the corporate world. Even the German parliament and the UK government's Foreign Office were not immune, with the latter suffering a breach in October.
The Moving Target
Cyber attacks are like a moving target, with seemingly limitless capabilities. It's not a one-time battle; attackers keep coming back with different tactics and from all corners of the globe. As Jason Soroko, a cybersecurity expert and host of the Root Causes podcast, puts it, "For cyber attacks, 2025 was brutal. 2026 will be worse."
So, what's the cost of these hacks? It's not just about breaking into digital vaults and stealing cash. Data has become an incredibly valuable asset, and damage to economic or manufacturing operations can create opportunities for competitors to step in and meet the demand. State-level involvement further complicates the picture.
The impact on businesses goes beyond lost sales. There's the damage to their reputation, potential reimbursement costs, the loss of clients to rivals, and the significant expenses incurred in fixing and upgrading their systems.
Cybersecurity Ventures, a leading source of data and research in the field, estimates that the entire cybersecurity "industry" was worth a staggering $10.5 trillion (£7.8 trillion) this year alone. That's equivalent to the third-largest economy in the world, trailing only the US and China.
For individual companies, the financial impact is often revealed through public accounting estimates. M&S initially estimated a profit hit of around £300m but later revised it to just under half that amount, having received £100m in insurance payouts. JLR, on the other hand, had not renewed its cyber insurance specifically and is estimated to bear a cost of £200m. The Co-op's cyber attack resulted in the theft of data from over 6 million customers, with an expected final cost of around £120m.
The Biggest Issues and Why Firms Struggle
There are several reasons why companies struggle to keep cyber crime at bay. Attacks can be multi-faceted, striking at different times and with a proactive advantage. Defenders must react to what the attackers are doing, which puts them at a disadvantage.
"Attackers now deploy AI at a speed defenders simply haven't matched. It's an asymmetry that widens by the month. Defenders have been slow to adopt stronger authentication, which is like failing to fit better locks on the doors. The attackers take advantage of this," explains Mr. Soroko, who works with online security firm Sectigo.
Cybersecurity Ventures predicts that the frequency of ransomware attacks will continue to rise, hitting once every two seconds by 2031. It's a daunting task to stop these attacks, and that's just the digital aspect.
What happens when humans become involved? We've seen people fall victim to scams through texts and emails. Why would it be any different for employees at work?
"We're currently seeing youths socially engineering their way into global businesses. After online research and exploiting other breaches to obtain information, a single phone call to a help desk can be enough to persuade them to reset passwords or MFA tokens. This opens the door for criminals to move across systems and escalate their access," says Tim Rawlins, security director at the cyber firm NCC Group.
The Critical Response
The Co-op's decision to "pull the plug" and lock out the hackers is a notable example of a company's initial response. While it limited the hackers' access, it also restricted the company's own ability to respond effectively. The government's cyber report highlights that even large firms often lack a set course of action when faced with such attacks. Only 53% of medium-sized businesses and 75% of large ones have an incident response plan, according to the report.
"Following breaches, organizations can't afford knee-jerk fixes. They must work with cyber experts to rebuild their systems safely, understanding how the hackers infiltrated, what they accessed, and how the breach is impacting critical business systems," adds Mr. Rawlins.
The Next Big Risks
The pace of technological change means companies are facing a constant battle against "the same, but different." Hackers exploit security gaps, individuals unknowingly open files, and external contributors accidentally provide access. Companies must defend against the unseen, and attackers can choose their targets at any time.
Moody's, the global ratings firm, warns that cyber attacks on banks, in particular, "are rising and becoming more sophisticated." Imagine the impact of not being able to make payments, withdraw cash, or check your balance. While most banks have robust defenses, those using outdated technological infrastructure present an ongoing concern.
It's a never-ending race to keep security systems updated. For some businesses next year, the question will shift from keeping attackers out to containing the damage once the defenses are breached. The answer to this question could mean the difference between success and failure, worth millions.
