These attacks, which can cause significant business disruption and financial loss for businesses and consumers, have more than doubled already this year.

Cyber-attacks are having a significant impact on both UK citizens and the economy. According to NCSC, of the 429 cyber incidents from September 2024-August 2025, 204 were categorised as ‘nationally significant’, representing a 130% increase on the previous year’s 89.

Sheila Pancholi, national lead for technology and cyber risk assurance, RSM UK, said: “Rapid adoption of generative AI means safeguarding of data is vital. In the current threat landscape, no business can assume they are safe.

“They should adopt the mindset of when, not if, a cyber-attack will occur. Businesses need to ensure cyber risk and anti-fraud measures are robust, and should develop and scenario test their cyber incident plans regularly.”

Plans should include clear allocation of roles and responsibilities, internal and external communication strategies, and what procedures (‘playbooks’) to invoke when computer systems are compromised. They should also consider wider regulatory compliance reporting requirements, and the inclusion of key third party suppliers where relevant. 

Ms Pancholi added: “A detailed and well tested cyber incident response plan is essential to respond quickly and recover from an attack, protecting customers, reducing down time and minimising financial loss. It’s important to ensure paper-based copies of cyber plans are accessible in the event systems are compromised, in line with recent NCSC advice.”

Ben Bilsland, head of technology industry, RSM UK said: “We are seeing UK Tech businesses prioritise cyber-security as a crucial area of spend and internal investment. The threat of disruption and corruption of data is a real challenge to business growth.

“While this threat is of real concern, the UK is also the home of some of the world’s leading cyber security businesses. This means that UK tech companies are acting as a crucial line of defence for businesses globally against cyber threat.”