Below is a list of 26 major cyberattacks on UK companies and public bodies since just 2020. There will of course be more which have gone unreported, or on a smaller scale. At the time of going to pixel, Jaguar Land Rover has still only launched a “phased restart” of its IT systems following a massive breach. Bear this in mind when Cabinet ministers regurgitate talking points about how they take cybersecurity seriously, and it will be very, very different when it comes to mandatory digital ID. Do you believe them?
Read the full, long list below…
2020
EasyJet – data breach
Hackers accessed the airline’s booking system using stolen credentials.
Approximately 9 million customer records affected (names, emails, travel plans).
Around 2,200 had payment card details accessed.
Virgin Media – data exposure
A misconfigured database left customer information publicly accessible for months.
Approximately 900,000 customer records exposed (names, addresses, contact details, subscription info).
Interserve – data breach
A phishing attack on the outsourcing firm led to employee data being compromised.
Approximately 113,000 staff affected (contact details, bank info, national insurance numbers).
2022
NHS (via Advanced Software Group) – ransomware
Conti group encrypted systems of an NHS software supplier, disrupting services.
Millions of patients potentially affected.
Patient data accessed and leaked.
£3 million ICO fine issued in 2025.
British Army – account takeover
Official social media accounts were hijacked and used for unauthorised posts.
South Staffordshire Water – data breach
Russian hackers accessed internal systems and leaked data in an extortion attempt.
Volume of exposed data not disclosed.
MI5 – DDoS attack
Russian group launched a denial-of-service attack, briefly disabling the agency’s website.
Temporary public-facing outage.
2023
Royal Mail – ransomware
LockBit group encrypted systems, halting international mail tracking.
Service disruption lasted several days.
Recovery costs estimated over £10 million.
Ministry of Defence – data theft
Russian hackers compromised a fencing contractor to access sensitive documents.
Thousands of MoD files leaked, including information on nuclear and prison sites.
Electoral Commission – data breach (disclosed August)
Russian state actors accessed electoral registers through compromised email and file-sharing platforms.
Breach began in 2021.
Around 40 million voter records affected (names, addresses, voting history).
2024
Southern Water – unauthorised access
Hackers breached servers and extracted customer data.
Estimated 100,000 to 200,000 customers affected (names, billing info, addresses).
NHS Dumfries and Galloway – ransomware
Inc Ransom group stole and leaked staff and patient data.
Around 150,000 households affected.
3 terabytes of data published, including x-rays, test results, and personal information.
Leicester City Council – ransomware
Attack caused IT outages and led to the publication of sensitive files.
Over 1.3 terabytes of data leaked, including rent statements, passport scans and child protection records.
Ministry of Defence – data breach
Chinese hackers targeted a payroll contractor and accessed personnel data.
Approximately 272,000 current and former staff affected (names, bank details, home addresses).
NHS (via Synnovis pathology supplier) – ransomware
Qilin group disrupted pathology services in London and leaked patient data.
1,693 procedures and 10,054 appointments delayed.
Around 400 gigabytes of patient information leaked.
Billericay School – ransomware
Attack disabled all IT systems and forced temporary school closure.
Student records compromised, including names, addresses, medical notes and parent contact information.
NHS (via CrowdStrike outage) – software failure
A faulty update from CrowdStrike caused widespread IT failures across NHS systems.
Millions of patients indirectly affected through delayed or cancelled appointments and record access.
Locata (housing platform) – phishing attack
A breach enabled phishing campaigns targeting tenants in Manchester, Salford and Bolton.
Thousands of residents targeted.
Transport for London (TfL) – data breach
Suspicious activity exposed customer data through internal systems.
Around 5,000 customers potentially affected (contact details and possible payment information).
2025
Unknown UK business – data theft.
Hackers stole and leaked records from an unidentified company.
Approximately 18.8 million personal records exposed.
Royal Mail (via Spectos supplier) – data breach
German contractor was compromised, impacting Royal Mail’s UK operations.
Around 144 gigabytes of internal and customer data leaked (names, addresses, tracking information).
Legal Aid Agency – data breach
Sensitive records from more than a decade of legal aid cases were compromised.
Included personal, legal and financial data.
Marks & Spencer (M&S) – ransomware
DragonForce group encrypted systems, causing a prolonged disruption.
Customer data stolen.
Online operations were offline for 46 days.
Estimated £300 million financial impact.
Co-op – ransomware and system crash
Attack forced 2,300 stores into manual operations.
Widespread disruption to point-of-sale and supply chain systems.
Possible customer data exposure.
Heathrow Airport (via Collins Aerospace) – cyber-attack
Cyber-attack on a shared check-in and baggage system affected multiple European airports including Heathrow.
Hundreds of flights delayed across Heathrow, Brussels and Berlin.
Disruption suspected to be linked to a cyber-criminal group.
Jaguar Land Rover – cyber-attack
Attack in August forced a full IT shutdown across global operations.
Production halted across three UK factories.
Staff sent home and suppliers impacted, with some at risk of collapse.
Back-end systems and invoicing have only partially resumed as of late September.
order-order.com (Article Sourced Website)
#Suffered #Major #Cyberattacks #Years