NCC Group stories
Public release of the Mini Shai-Hulud code means copycat attacks can now hit developers, CI/CD systems and open-source supply chains.
Industrials remained the main target as the monthly ransomware total eased 7%, even as The Gentlemen surged to second place among active gangs.
Hundreds of millions of student records may be exposed, disrupting exam systems at universities and highlighting the fragility of centralised school software.
The Manchester firm is now weighing outside funding and headcount growth after repeat business pushed first-year revenue above GBP £250,000.
Ransomware activity stayed elevated in March, with NCC Group saying Qilin alone was linked to 136 attacks and drove a 43% monthly rise.
Businesses face rising exposure as AI is used to sharpen phishing, while insecure in-house tools and weak controls widen attack surfaces.
Boards are being pressed to abandon periodic patching as AI models can now uncover and chain software flaws faster than human teams can respond.
Companies face tougher, more fragmented compliance as governments tie cyber rules to national security, AI use and digital sovereignty.
Modern regulators now sit below software defences, raising the risk of attacks that could disrupt services, corrupt data or damage hardware.
Sensitive chats and uploaded files could have been quietly leaked from ChatGPT via DNS tunnelling before OpenAI fixed the flaw.
The latest data showed 635 ransomware incidents in February, but CL0P and The Gentlemen rose sharply as the threat landscape shifted.
Iran-linked cyber attacks are spreading beyond the Middle East, with firms tied to Israel or the US warned they face heightened global risk.
Global ransomware attacks jump 50% to 7,874 in 2025, with industrial firms bearing the brunt as criminal groups reshuffle their tactics.
NCC warns that insecure connected farm machinery could let cyber attacks disrupt harvests, cut yields and threaten food supply chains.
Ransomware cases dipped 17% in January, but NCC warns the threat remains high as Qilin targets critical sectors and tactics evolve.
Global ransomware attacks fell 17% in January, but NCC warns evolving tactics, AI and messaging apps mean risk is not receding.
Businesses face tighter cyber and governance expectations as ministers push a resilience Bill and voluntary digital ID schemes across the UK.
Exposure of operational technology is leaving industrial operators most vulnerable, with attacks able to halt production and disrupt essential services.
Expereo names Kevin Brown COO to drive global operational integration and digital transformation across its managed network services.
Serbus completes six-strong executive team with new finance and security chiefs to drive UK “connect and protect” critical services push.
..webp)