- Decade-old vulnerabilities nonetheless drive thousands and thousands of assaults throughout UK networks
- Hackers choose straightforward targets left open by outdated, unpatched programs
- AI-driven scans expose weak networks at unprecedented velocity and scale
Throughout the UK, hundreds of organisations proceed working laptop programs with safety holes that have been first recognized over ten years in the past.
Cybercriminals are taking full benefit of this negligence, launching relentless waves of assaults towards these unprotected entry factors.
SonicWall’s 2025 UK cyber risk knowledge claims a single vulnerability in broadly deployed Hikvision IP cameras accounted for 67 million assault makes an attempt nationwide, about 20% of all main intrusions detected throughout British networks throughout the complete 12 months.
Article continues under
It’s possible you’ll like
Attackers exploit what organisations already know however ignore
“In the meantime, Zombie Tech continues to hang-out UK networks,” mentioned Spencer Starkey, Govt Vice President for EMEA at SonicWall.
“We’re seeing thousands and thousands of assaults tied to a single long-known vulnerability, alongside continued exploitation of points first disclosed greater than a decade in the past.”
Attackers don’t want subtle zero-day exploits when organisations depart decade-old doorways broad open.
The Hikvision digital camera vulnerability is just not new, nevertheless it stays efficient as a result of too many networks haven’t been patched.
Curiously, about 80% of IT leaders declare that they’ll spot a breach inside eight hours of it occurring – nevertheless, proof reveals that intrusions sometimes go unnoticed for 181 days on common.
This hole is crucial as a result of intrusions usually go unnoticed when groups assume programs are safe.
Typically, ransomware quantity within the UK fell by 87% throughout 2025, however that seemingly optimistic statistic hides a darker pattern.
What to learn subsequent
The variety of organisations efficiently compromised truly rose by 20%, which means attackers are hitting fewer targets however inflicting extra harm per profitable breach.
“On the floor, the 87% drop may appear like progress, however the actuality is extra alarming,” Starkey mentioned. “Extra organisations are being efficiently hit, and attackers are doing it with far larger precision.”
Smaller organisations are disproportionately affected, with ransomware current in 88% of SMB breaches in comparison with simply 39% at massive enterprises.
The geographic focus of those assaults is stark, with England experiencing practically the entire UK’s ransomware incidents.
London and the South East account for the overwhelming majority of profitable hits, reflecting the place essentially the most beneficial targets are situated.
The rising variety of AI instruments is an issue, as bots are actually producing 36,000 scans per second throughout UK networks, inflicting AI-enabled assaults to extend by 89% in 2025.
Cybercriminals now mix automation with precision focusing on, making it simpler for them to seek out and exploit outdated programs at scale.
What organisations have to do concerning the zombie tech drawback
To sort out this challenge, organisations ought to begin by conducting a direct stock of all related gadgets which will have been put in years in the past after which forgotten.
Each system in that stock should be checked towards identified vulnerability databases, with precedence given to patching any challenge that has public exploit code accessible.
Any system that can not be patched ought to be changed with trendy alternate options that obtain common safety updates.
Community segmentation must also be carried out to isolate legacy gadgets so that they can’t be used as entry factors to extra crucial programs.
Firewalls should be examined recurrently to make sure they’re truly blocking the visitors patterns related to identified vulnerabilities, relatively than merely logging them.
Comply with TechRadar on Google Information and add us as a most well-liked supply to get our skilled information, critiques, and opinion in your feeds.
