Ministers Ramp Up Pressure on UK Businesses Over Cyber Defenses
Ministers have intensified their calls for UK businesses to bolster their cyber defenses, driven by growing concerns that the next generation of artificial intelligence could exponentially increase hacking threats. In a significant push led by cyber minister Baroness Lloyd of Effra, nearly 200 business leaders were urged to sign a new "cyber resilience pledge" as fears mount that powerful AI tools could expose vulnerabilities at unprecedented speeds.
Anthropic's Mythos Model Triggers Widespread Alarm
This intervention follows the release of Anthropic's closely monitored Mythos model, which has sparked alarm across governments, banks, and regulators. Early testing indicates that the AI can identify and exploit software weaknesses far more rapidly than human hackers. Bank of England governor Andrew Bailey recently warned that the technology could "crack the whole cyber risk world open," while Baroness Lloyd emphasized, "AI is giving attackers capabilities that would have seemed extraordinary just a year ago, and no organization can afford to be complacent."
Boardrooms on High Alert as Risks Escalate
The government-backed pledge mandates firms to treat cybersecurity as a board-level responsibility, adopt baseline protections such as Cyber Essentials, and enroll in the National Cyber Security Centre's early warning systems. Ministers express deep concern over the lack of preparedness, with only one percent of UK businesses currently holding Cyber Essentials certification, despite repeated warnings about cyber risks.
Meanwhile, testing by the UK's Security Institute reveals that Anthropic's Mythos model represents a significant advancement, capable of executing multi-step cyber attacks and autonomously exploiting weak systems in controlled environments. According to the institute, these capabilities could soon become widely accessible, heightening the risk of more frequent, faster, and more sophisticated attacks on businesses.
Cybercrime Treated with Same Seriousness as Physical Attacks
Security minister Dan Jarvis is expected to warn this week that cybercrime should be regarded with the same gravity as physical assaults. "If this damage had been caused by an old-school physical attack, it would have been the equivalent of hundreds of masked criminals... smashing up computers and driving cars right off the forecourt," he is set to declare.
The risks are already materializing, with over half of UK firms experiencing state-backed cyber attacks last year, and nearly half reporting they have already faced AI-powered attacks. The National Cyber Security Centre has also cautioned about a growing "severe cyber threat," where attacks could result in prolonged outages and substantial financial losses.
Widening Gap Between Attackers and Business Resilience
Despite these escalating threats, many companies lack the expertise or budget to implement advanced defenses, creating a widening gap between the speed of attackers and the resilience of businesses. Ministers are now urging firms to take proactive measures before the threat intensifies further, stressing that preparation cannot be improvised once a major incident occurs.
"Cyber-resilience isn't just a technical issue; it's a board responsibility," Lloyd asserted. "We're asking every boardroom in Britain to prove they treat it as one."
