The United Kingdom has warned of a growing wave of cyberattacks linked to hostile states, highlighting a shift that could ripple into the crypto sector. Speaking at the CYBERUK conference in Glasgow, Richard Horne, chief executive of the National Cyber Security Centre (NCSC), said the agency is handling around four nationally significant incidents each week.
Today, #CYBERUK26 has begun with NCSC CEO Dr Richard Horne’s keynote speech.
The UK is now facing a “perfect storm” for cyber security against the backdrop of a new “technological revolution”.
Catch up on the full speech :https://t.co/Ny1wO3JsDB
&https://t.co/SUF6rU0guA pic.twitter.com/CMZs76VtBL— NCSC UK (@NCSC) April 22, 2026
Nation-state cyber threats intensify
While ransomware remains the most common threat, Horne noted that the most severe attacks are increasingly tied to nation-states, including China, Iran, and Russia. These operations, he said, are often aimed at critical infrastructure across the UK and Europe.
The warning comes against a backdrop of rising geopolitical tension. MI5 previously disclosed it had disrupted more than 20 Iran-linked plots since 2022, reinforcing concerns that cyber operations are increasingly being used as tools of statecraft. Analysts also point to the risk of large-scale hacktivist campaigns in the event of conflict, potentially causing disruption comparable to major ransomware incidents.
AI expands the attack surface and defence race
Artificial intelligence is accelerating both sides of the cyber equation. Horne said AI is enabling faster discovery of system vulnerabilities, lowering the barrier for complex attacks.
At the same time, the UK government is leaning into AI-driven defences. Security Minister Dan Jarvis called on tech firms to collaborate on building advanced cyber resilience tools, alongside a £90 million investment aimed at strengthening national infrastructure and business security.
For crypto markets, the warning signals of rising systemic risk. State-backed cyber groups have historically targeted digital assets due to their liquidity and cross-border nature. A shift toward more sophisticated, AI-assisted attacks could increase the frequency and scale of exploits on exchanges, DeFi protocols, and custodial platforms.
In November 2025, Google’s Threat Intelligence Group (GTIG) reported a new wave of cyberattacks driven by artificial intelligence, revealing that both criminal networks and state-backed hacking teams are now deploying malware that can rewrite and adapt itself on the fly.
Enjoyed this piece? Bookmark DeFi Planet, explore related topics, and follow us on Twitter, LinkedIn, Facebook, Instagram, Threads, and Coin MarketCap Community for seamless access to high-quality industry insights.
“Take control of your crypto portfolio with DeFi Planet PRO, DeFi Planet’s suite of analytics tools.”
