UK Businesses Urged to Prepare for AI-Powered Cyber Attacks
Technology Secretary Liz Kendall has issued a stark warning to British business leaders, urging them to urgently prepare for potential cyber attacks powered by artificial intelligence tools whose capabilities are doubling every four months. In a letter co-authored with Security Minister Dan Jarvis, Kendall emphasised that UK businesses of all sizes and across every sector face significant threats from these advanced cyber attacks, not just government agencies or high-profile corporations.
The Rising Threat of AI Hacking Tools
The warning comes as the potential dangers posed by powerful AI tools like Mythos, developed by Silicon Valley firm Anthropic, become increasingly apparent. Researchers have determined that this AI bot is too dangerous for public release because it can outperform some humans in specific tasks. The tool has demonstrated remarkable proficiency in computer programming, enabling it to identify bugs in decades-old code that it can then exploit for cyber attacks.
Anthropic, currently involved in a legal dispute with the US government after being labelled 'a supply chain risk', has acknowledged that Mythos has surpassed 'all but the most skilled humans at finding and exploiting software vulnerabilities'. Experts express concern that such advanced hacking capabilities could fall into malicious hands or be developed by adversarial powers like China.
Limited Access and Growing Concerns
Currently, only about a dozen companies including Apple and Microsoft have received early access to Mythos, primarily to help them identify and address potential weaknesses in their systems. However, the broader implications for cybersecurity are becoming increasingly concerning as AI capabilities accelerate at an unprecedented rate.
Kendall highlighted in her communication to business leaders that 'the trajectory is clear, and therefore it is vital that we are prepared for frontier AI model capabilities to rapidly increase over the next year, and plan accordingly for that outcome.' She stressed that 'government action alone will not be enough. Every business in the UK has a part to play.'
Changing Nature of Cyber Threats
The Technology Secretary noted a significant shift in how cyber attacks are conducted. Previously, such attacks relied on 'a small number of highly skilled criminals', but that landscape is 'shifting' dramatically. 'A new generation of AI models are becoming capable of doing work that previously required rare expertise,' Kendall explained.
She emphasised that 'criminals will not just target government systems and critical infrastructure. They will target ordinary companies, of every size, in every sector. Attackers go where defences are weakest.' This warning follows similar concerns raised earlier this month by the Bank of England and UK financial watchdogs regarding the dangers posed by new AI technologies to British banks and City of London firms.
Recent Cyber Attack Impacts on UK Businesses
The urgency of this warning is underscored by recent cyber security breaches affecting UK businesses. A government-run survey on cyber security breaches revealed that approximately 612,000 businesses and 61,000 charities were targeted across the UK last year.
Among the most significant incidents was the hack of Jaguar Land Rover, which became the costliest cyber attack in British history with an estimated £1.9 billion impact on the UK economy. This attack crippled JLR operations for months and affected as many as 5,000 organisations within its supply chain.
Other high-profile victims included retailer Marks and Spencer, which suffered a serious hack in April 2025 that disrupted online clothing and home orders, costing approximately £136 million. The Co-op experienced another significant breach, with data stolen from over 6 million customers and supply chain impacts exceeding £200 million.
These incidents demonstrate the substantial financial and operational consequences that cyber attacks can inflict on businesses of all types and sizes, highlighting the critical importance of enhanced cybersecurity preparedness in the face of rapidly evolving AI-powered threats.
