Cyber Brief: Key UK Cybersecurity Developments

Today's cybersecurity brief highlights the evolving landscape of digital threats and regulatory challenges. From AI-driven risks to GDPR compliance and recent high-profile cyberattacks, these stories underscore the importance of proactive cybersecurity measures for UK organisations. Understanding these developments can help businesses navigate the complexities of modern cybersecurity threats and regulatory requirements.

AI Shift in Cyber Risk: A Call for Action

The National Cyber Security Centre (NCSC) has released a report highlighting the increasing risks associated with AI in cybersecurity. The report, published on 22 June 2026, urges leaders to prioritise AI risk management as AI-driven attacks become more sophisticated. The NCSC emphasises the need for robust AI governance frameworks and continuous monitoring to mitigate these emerging threats.

For UK businesses, this report underscores the necessity of integrating AI risk management into their cybersecurity strategies. As AI technologies become more prevalent, the potential for AI-driven attacks increases, posing significant risks to data integrity and privacy. Organisations must ensure they have the right expertise and tools to address these challenges effectively.

Why it matters

For UK businesses, this is a prompt to review AI governance and risk management frameworks. Ensuring AI systems are secure and monitored can help mitigate potential threats and protect sensitive data.

Source: NCSC UK

Understanding GDPR's Right to Erasure

IT Governance UK has published an article on 23 June 2026, detailing GDPR's Article 17, known as the 'Right to Erasure'. This provision allows individuals to request the deletion of their personal data under certain conditions. The article explains the implications for businesses and the necessary steps to comply with such requests.

For UK organisations, understanding the Right to Erasure is crucial for GDPR compliance. Non-compliance can lead to significant fines and reputational damage. Businesses must ensure they have processes in place to handle data deletion requests efficiently and in accordance with GDPR requirements.

Why it matters

This is a prompt for UK organisations to review their data management policies and ensure they can comply with data deletion requests under GDPR. Implementing clear procedures can prevent potential penalties.

Source: IT Governance UK

Transport for London Cyber-Attack Guilty Pleas

The Guardian reports that two British cybercriminals have pleaded guilty to a 2024 cyber-attack on Transport for London. The attack, linked to the Scattered Spider hacking group, resulted in £39 million in damages and affected millions of commuters. The guilty pleas were entered on 22 June 2026, marking a significant development in the case.

This incident highlights the persistent threat of cyberattacks on critical infrastructure. UK businesses, particularly those in transport and public services, must prioritise cybersecurity measures to protect against similar threats. The case serves as a reminder of the potential financial and operational impacts of cybercrime.

Why it matters

For many organisations, this is a reminder to review their cybersecurity posture, especially in protecting critical infrastructure. Ensuring robust defences can mitigate the risk of costly cyberattacks.

Source: The Guardian

FortiBleed Campaign Targets FortiGate Firewalls

The Hacker News reports on 23 June 2026 about the FortiBleed campaign, a large-scale credential-harvesting operation targeting FortiGate firewalls. The operation, attributed to a Russian-speaking group, has affected over 430,000 firewalls globally since February 2026. The campaign involves collecting credentials and exploiting exposed services.

For UK businesses using FortiGate firewalls, this campaign highlights the importance of securing network devices and regularly updating security configurations. The widespread nature of the attack underscores the need for vigilance and proactive defence strategies to protect sensitive information.

Why it matters

This is a prompt for organisations using FortiGate firewalls to review their security configurations and ensure all devices are patched and monitored for unusual activity.

Source: The Hacker News

Today's Key Actions

• Review AI governance and risk management frameworks to ensure AI systems are secure and monitored.
• Ensure data management policies comply with GDPR's Right to Erasure and can handle data deletion requests efficiently.
• Assess cybersecurity measures to protect critical infrastructure, focusing on robust defences against potential attacks.
• Review security configurations for FortiGate firewalls and ensure all devices are patched and monitored for unusual activity.
• Ensure clear ownership of cybersecurity responsibilities across the organisation to facilitate effective risk management.

Secarma Insight

Mature security practice is built on consistent vigilance, clear ownership, and proactive management of risks. By integrating robust governance frameworks and staying informed about emerging threats, organisations can enhance their resilience against cyberattacks. Remember, effective cybersecurity is not about reacting to incidents but preventing them through disciplined practices and informed decision-making. This approach helps businesses navigate the complexities of the digital landscape with confidence and assurance.