The National Cyber Security Centre (NCSC) has released its 2025 report, and once again, ransomware “remains one of the most acute and pervasive cyber threats to UK organisations”.
Recent attacks on big names like Marks & Spencer and the Co-op have shown just how disruptive these incidents can be — with some stores even facing empty shelves as operations ground to a halt.
The NCSC report highlights that most cyber criminals don’t target specific industries (“sector agnostic”). Instead, they go after organisations they believe are:
Most likely to pay a ransom
Vulnerable to operational downtime
Holding sensitive data that could cause significant harm if leaked
In other words, any organisation could be a target. Whether you’re in retail, healthcare, finance or education — if your data or uptime matters, you’re on the radar.
Even with the takedown of LockBit in 2024 — one of the most widespread ransomware strains in the world — the threat hasn’t gone away. The NCSC’s CEO notes that the cyber crime ecosystem remains resilient and that ransomware operators are adapting and diversifying to stay ahead of international efforts to shut them down. In other words, as our defences improve, so does their offence.
The NCSC offers a range of resources designed to help organisations prepare for, mitigate, and recover from ransomware attacks. You can find the full article here, but we’ll give you a quick summary:
While prevention is essential to removing the threat of a ransomware attack, knowing what to do if one happens is just as important.
We hope you’ve liked this blog. Stay tuned for more blogs like this. Stay safe!
