The Department for Science, Innovation & Technology published its annual Cyber Security Breaches Survey on 30 April.
Drawing on research conducted between August and December 2025, this latest edition reveals a landscape that is stable but far from secure. While the overall number of reported breaches has levelled off, many organisations continue to face significant exposure due to gaps in governance, planning, and supply chain oversight.
This report distils the survey’s key findings and explores what they mean in practice. It provides clear insights into current threat trends, the impact of cyber incidents, and the steps organisations should take to strengthen their resilience in an increasingly complex digital environment.
Key findings include:
- Breaches remain widespread
Over four in ten businesses (43%) and nearly three in ten charities (28%) experienced a cyber breach or attack in the past year, highlighting that cyber incidents are still a common occurrence. - Governance and planning gaps persist
Many organisations lack strong cyber governance, with limited board-level accountability, low levels of formal risk assessments, and insufficient incident response planning. - Preparation gaps increase exposure
A majority of organisations lack formal incident response plans and many operate without cyber insurance, meaning they are less equipped to respond effectively when breaches occur.
To delve deeper into the findings and recommendations from the Cyber Security Breaches Survey 2026, and to understand how your organisation can enhance its cyber security measures, read the full report.