Europe, and the UK in particular, is facing a sharp rise in cyberattacks.

Recently, companies including Orange, Colt and Bouygues Telecom have all reported breaches, highlighting the growing scale and sophistication of these threats.

Within the past year, 612,000 UK businesses reported a breach, with the average cost reaching £3,550. Meanwhile, 87% of UK organisations remain vulnerable to attacks in the age of AI, research has revealed. 

The reason? According to industry experts, outdated infrastructure, organisational complacency, and the rapid adoption of artificial intelligence (AI) have created a perfect storm, one that cybercriminals are exploiting. 

However, while AI can help defend these networks, the tool is also allowing attackers to turn cybersecurity into a high-stakes battlefield. 

The UK: a high-value target 

According to GRC International Group’s head of information security,  Adam Seamons, the UK is a prime target for these cyberattacks due to its role as a global financial hub and its fast pace of AI adoption. 

“Attackers see value and opportunity in the UK,” Seamons says. 

Meanwhile, he also claims companies now embrace AI for convenience or efficiency, without fully understanding the risks it brings. As the tool becomes embedded in more software by default, the potential for unintentional data leaks or misuse multiplies, he says. 

“The challenge is that many businesses still treat AI as a clever add-on rather than recognising it as a system-level agent with far-reaching access,” he explains. 

“AI tools act like over-privileged accounts with no common sense – they’ll do exactly what they’re told, even if that means exposing sensitive data. We’re already seeing examples of AI unintentionally leaking private information because no one has put boundaries in place.  

“As AI becomes embedded into more software by default, those risks multiply. The answer is governance: treat AI like any high-privilege user. Limit what it can see, monitor what it’s doing, and apply a Zero Trust mindset. The technology itself isn’t the problem, it’s how casually we allow it into our systems without proper controls.” 

Professor Katerina Mitrokotsa, who leads the Cybersecurity and Applied Cryptography group at the University of St. Gallen agrees, claiming UK businesses are still missing basic security and almost leaving the door open. 

“It’s a perfect storm. Many organisations are hampered by outdated infrastructure and unpreparedness, giving opportunity to threat actors.” 

AI: Help or hinder  

Despite the promise of AI, experts agree that technology alone is insufficient.. Instead, the tool is reshaping the cyber landscape for both attackers and defenders.  

“AI has enabled actors with limited technical skills to conduct complex operations like developing ransomware that would previously have required years of training, “ Bridewell CTO, Martin Riley, notes. 

This comes as a recent Anthropic report revealed threat actors are using AI to develop, market, and distribute ransomware with advanced evasion capabilities, selling packages for £300-£900, despite lacking fundamental coding abilities. 

“Lower-skilled adversaries are abusing AI to automate tasks that once required advanced expertise, including script generation, technical problem solving, and malware development,” Riley says. 

AI can detect vulnerabilities faster than humans, automate defensive responses, and even counterattack in real-time.  

The concept of “machine-versus-machine warfare” highlights the transformative potential of AI: cybersecurity is no longer just about human analysts reacting to threats, but about AI systems operating in real time. 

“AI-enabled detection is essential, but resilience is just as crucial: layered security, robust containment and efficient recovery processes can determine whether an incident is a disruption or a disaster,” explains Ade Taylor, head of security services at Roc Technologies. 

“Offline backups remain a vital failsafe, though organisations should also invest in cloud-native redundancy and rapid restoration to minimise downtime. 

“Human factors certainly still matter. Even the most advanced AI cannot fully compensate for an untrained or hesitant workforce. Ongoing security awareness, coupled with a culture where staff can quickly report mistakes without fear, remains a vital part of the defensive toolkit,” he notes. 

Meanwhile, Taylor adds that ultimately, AI is neither purely good nor evil. 

“It’s a force multiplier for whichever side wields it best. In today’s environment, success depends on combining smart technology with sound processes, preparing for the worst and adapting at the speed of change,” he notes. 

The human element remains key 

Mitrokotsa also highlights the human element in cybersecurity: it’s not only about technology but also about awareness, leadership and investment in the right talent.  

This comes as no matter how advanced, AI still lacks context. 

The tool cannot tell if a login at an unusual hour is a threat or just an executive traveling, nor can it differentiate between a real network problem and a routine system update. Additionally, the tool cannot weigh the legal risks of blocking a transaction or shutting down a service. 

This is where human expertise is essential. Security professionals bring intuition and critical thinking that AI cannot replicate, drawing on past knowledge and experience, allowing them to make decisions that balance ethical, legal and business considerations. 

Threat actors exploit the weakest link in any organisation, often targeting third-party vendors or employees with social engineering attacks rather than directly attacking secure systems, Mitrokotsa explains. 

“Cyberattacks are not just IT issues- they are leadership and people issues. Long-term resilience requires investment in skilled cybersecurity practitioners and education for the next generation,” she says. 

People are the solution 

AI is reshaping both attacks and defences, and many organisations still struggle with old systems and human errors. 

“The only way to ensure long-term resilience is by improving some of the deeper issues: people.  

“Once we acknowledge the need for more cybersecurity practitioners, we also need specialists that not only understand how to respond to cyber threats, but also those who can think like a cybercriminal and anticipate and prevent potential attacks,” Mitrokotsa states. 

Related stories

Salesforce faces cyberattack extortion

Colt becomes latest telecom giant to be hit by cyberattack

Cyberattack grounds Heathrow and other major European airports: What happened?