ZeroFox Intelligence Flash Report - Series of UK Cyberattacks Inspires New Cybersecurity Law

ZeroFox Intelligence Flash Report - Series of UK Cyberattacks Inspires New Cybersecurity Law

Product Serial: F-2025-11-14b

TLP:CLEAR

In this Flash report, ZeroFox researchers report on the new Cyber Security and Resilience Bill proposed to the UK Parliament to enhance the United Kingdom’s existing cybersecurity law and improve defenses against cyberattacks that are increasingly targeting European Union (EU) critical infrastructure.

Standing Intelligence Requirements

For the most up-to-date list of ZeroFox’s Intelligence Requirements, please visit:

https://cloud.zerofox.com/intelligence/advisories/14956

Link to Download

View the full report here

Key Findings

• On November 12, 2025, the Labour Party proposed a Cyber Security and Resilience Bill to the UK Parliament to enhance the United Kingdom’s existing cybersecurity law and improve defenses against cyberattacks that are increasingly targeting European Union (EU) critical infrastructure.
• A series of recent cyberattacks against UK-based organizations and critical infrastructure underpin how captive the UK economy is to its industry leaders and the depth of vulnerabilities stemming from cybersecurity gaps impacting them.
• Western political priorities have demonstrated an increased focus on protecting critical infrastructure, as evidenced by U.S. and UK policies targeting the intersection of cybersecurity and national security vulnerabilities.
• ZeroFox has projected ransomware and digital extortion (R&DE) incidents targeting European critical infrastructure in 2025 will increase at least 1.7 percent year-over-year. There were at least 286 attacks in all of 2024 and at least 243 so far in 2025; if trends continue, there will likely be at least 291 incidents by the end of this year.