Why the Public Sector Faces Heightened Cyber Security Risks

Why the Public Sector Faces Heightened Cyber Security Risks

The UK Public Sector is increasingly vulnerable to cyber breaches due to a combination of factors, including the sensitive nature of the data it holds, the complexity and age of its IT systems, and ongoing challenges in cybersecurity skills and funding. Recent data highlights the severity of these risks, with a significant rise in cyberattacks impacting critical public services such as healthcare and local government. As the digital landscape continues to evolve, understanding these vulnerabilities is crucial for enhancing cyber resilience in the public sector.

Sensitive Data and Critical Services

The Public Sector manages vast amounts of sensitive information, including personal data, health records, and financial details. This makes it an attractive target for cybercriminals seeking financial gain or political leverage. For instance, the ransomware attack on Synnovis, an independent pathology supplier to the NHS, resulted in the theft of patient data, including names, dates of birth, NHS numbers, and descriptions of blood tests. Such incidents demonstrate the potential for significant disruption to critical services, as seen in the postponement of over 10,000 outpatient appointments and nearly 2,000 elective procedures due to the Synnovis attack. The impact of these breaches extends beyond data theft, affecting the delivery of essential public services and undermining public trust.

Legacy IT Systems and Complexity

Many Public Sector organisations rely on outdated legacy IT systems, which are more susceptible to cyber-attacks due to a lack of modern security updates and integration with contemporary cybersecurity tools. As of March 2024, the UK government was using at least 228 legacy systems, with no comprehensive understanding of their vulnerability to cyber threats. This complexity, combined with limited budgets, exacerbates the risk of successful attacks. The British Library, for example, experienced a cyber-attack in October 2023, resulting in significant recovery costs and ongoing efforts to rebuild its systems (which is still ongoing 18 months after the initial cyber-attack). The use of outdated systems not only increases the risk of breaches but also complicates the process of implementing robust cybersecurity measures.

Cyber Skills Gap and Funding Challenges

A significant barrier to improving cyber resilience in the public sector is the shortage of skilled cybersecurity professionals. In 2023-24, one in three cybersecurity roles in government were vacant or filled by temporary staff, with over 50% of roles in some departments unfilled. Financial constraints also hinder efforts to upgrade systems and invest in cybersecurity, as departments often lack fully funded plans to remediate legacy IT assets. Budget constraints further exacerbate these vulnerabilities, limiting cybersecurity investments and leaving systems outdated. The National Audit Office (NAO) has called for urgent action to address these gaps, emphasising the need for a comprehensive cross-departmental implementation plan for the Government Cyber Security Strategy.

Increased Targeting by Cybercriminals

The UK Public Sector has been increasingly targeted by cybercriminals in 2024, with attacks often involving ransomware, phishing, and distributed denial-of-service (DDoS) attacks. These attacks are not just opportunistic; they are often carried out by sophisticated actors, including state-sponsored groups and hacktivists, who see the public sector as a valuable target for financial gain and political leverage. The Ministry of Defence’s payroll system breach, which exposed sensitive information of 270,000 military personnel, highlights the vulnerability of government systems to third-party breaches. Similarly, the cyberattack on Transport for London (TfL) compromised customer data, leading to service disruptions and highlighting the potential for significant disruption to critical infrastructure. As digitalisation increases, public sector entities become more attractive targets due to their large amounts of sensitive data and critical services.

Conclusion

The UK Public Ssector faces a heightened risk of cyber breaches due to a combination of factors, including sensitive data, outdated IT systems, cybersecurity skills gaps, and increased targeting by sophisticated cybercriminals. Recent incidents, such as the Synnovis ransomware attack and the Leicester City Council cyber incident, demonstrate the real-world impact of these vulnerabilities. Addressing these challenges requires urgent action, including prioritising cybersecurity investments, upgrading legacy systems, and filling critical skills gaps. The UK Government’s proposed Cyber Security and Resilience Bill aims to strengthen cyber defences, but more needs to be done to protect critical infrastructure and public services from the evolving threat landscape. As the digital landscape continues to evolve, enhancing cyber resilience in the public sector is not just a necessity but a critical imperative for safeguarding both data and services.

If you would like to discuss any of the topics covered in the above article please get in touch with our experienced team – info@somniacsecurity.com

Sources:

https://www.linkedin.com/pulse/cybersecurity-uk-year-review-look-ahead-2025-richard-starnes-htm3e
https://www.procurementservices.co.uk/media-hub/blogs/cyber-security-an-increasing-concern-for-the-uk-public-sector-how-should-we-respond
https://www.infosecurityeurope.com/en-gb/blog/threat-vectors/top-attacks-uk-public-sector-2024.html
https://www.bbc.co.uk/news/articles/c9777v4m8zdo
https://www.nao.org.uk/press-releases/cyber-threat-to-uk-government-is-severe-and-advancing-quickly-spending-watchdog-finds/
https://www.government-transformation.com/data/nao-calls-for-urgent-action-as-government-faces-escalating-cyber-threat
https://www.spglobal.com/ratings/en/research/articles/241024-cyber-risk-brief-u-k-public-sector-is-increasingly-under-threat-13300903
https://www.sharp.co.uk/news-and-events/blog/the-biggest-uk-cyber-attacks-of-2024
https://conosco.com/in-the-news/nhs-cyber-attacks-june-2024
https://www.bbc.co.uk/news/articles/czd9glyx414o
https://cyberconfex.co.uk
https://www.ciisec.org/news/public-sector-cybersecurity-needs-urgent-action/
https://igpp.org.uk/event/Public_Sector_Cyber_Security_Conference_2025
https://www.gov.uk/government/publications/government-response-on-cyber-governance/government-response-to-the-call-for-views-on-cyber-governance
https://www.gov.uk/government/news/world-leading-ai-cyber-security-standard-to-protect-digital-economy-and-deliver-plan-for-change
https://www.ncsc.gov.uk/report/impact-of-ai-on-cyber-threat
https://www.cyberuk.uk
https://assets.publishing.service.gov.uk/media/61f0169de90e070375c230a8/government-cyber-security-strategy.pdf
https://www.techuk.org/what-we-deliver/events/public-sector-cyber-security-west-2025.html
https://www.nao.org.uk/wp-content/uploads/2025/01/government-cyber-resilience-summary.pdf
https://committees.parliament.uk/work/8823/government-cyber-resilience/
https://www.gov.uk/government/publications/ai-and-software-cyber-security-market-analysis
https://cognisys.co.uk/blog/the-biggest-cyber-attacks-and-vulnerabilities-from-january-2025/
https://tenintel.com/ransomware-attacks-uk-government-action/
https://www.gov.uk/government/statistics/cyber-security-breaches-survey-2024/cyber-security-breaches-survey-2024
https://www.england.nhs.uk/london/2024/09/26/update-on-cyber-incident-clinical-impact-in-south-east-london-thursday-26-september-2024/
https://www.whitecase.com/insight-alert/ransomware-payments-new-legislative-proposals-uk
https://www.ncsc.gov.uk/collection/ncsc-annual-review-2024/chapter-01
https://www.getronics.com/nhs-cyber-attack-2024/
https://www.cm-alliance.com/cybersecurity-blog/january-2025-recent-cyber-attacks-data-breaches-ransomware-attacks
https://www.england.nhs.uk/2024/06/synnovis-cyber-attack-statement-from-nhs-england/
https://digital.nhs.uk/blog/transformation-blog/2024/how-to-stay-one-step-ahead-of-a-cyber-attack
https://hansard.parliament.uk/commons/2025-01-23/debates/F37DEC43-8836-40A7-A034-5731DC6AE7EA/CyberSecurity
https://www.littlefish.co.uk/cyber-security/public-sector-cyber-security/
https://cybermagazine.com/cyber-security/is-uk-government-ready-for-cyber-threats
https://www.cybercrowd.co.uk/news/top-5-uk-cybersecurity-headlines-from-january-2025-insights-and-actions-for-businesses/
https://www.upguard.com/blog/biggest-data-breaches-uk
https://www.gov.uk/government/statistics/cyber-security-breaches-survey-2024/cyber-security-breaches-survey-2024-education-institutions-annex