惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Hacker News: Ask HN
Hacker News: Ask HN
WordPress大学
WordPress大学
T
The Blog of Author Tim Ferriss
The GitHub Blog
The GitHub Blog
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
博客园 - 聂微东
A
About on SuperTechFans
Stack Overflow Blog
Stack Overflow Blog
雷峰网
雷峰网
Microsoft Azure Blog
Microsoft Azure Blog
腾讯CDC
爱范儿
爱范儿
酷 壳 – CoolShell
酷 壳 – CoolShell
博客园 - 【当耐特】
V
Visual Studio Blog
有赞技术团队
有赞技术团队
U
Unit 42
D
Docker
小众软件
小众软件
F
Full Disclosure
I
Intezer
Scott Helme
Scott Helme
P
Privacy International News Feed
P
Proofpoint News Feed
Engineering at Meta
Engineering at Meta
Google DeepMind News
Google DeepMind News
B
Blog
Martin Fowler
Martin Fowler
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Vercel News
Vercel News
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Spread Privacy
Spread Privacy
宝玉的分享
宝玉的分享
S
Security Affairs
www.infosecurity-magazine.com
www.infosecurity-magazine.com
月光博客
月光博客
C
Cisco Blogs
云风的 BLOG
云风的 BLOG
Schneier on Security
Schneier on Security
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
T
Threat Research - Cisco Blogs
量子位
Hacker News - Newest:
Hacker News - Newest: "LLM"
H
Heimdal Security Blog
N
Netflix TechBlog - Medium
H
Hacker News: Front Page
P
Proofpoint News Feed
G
GRAHAM CLULEY
V
Vulnerabilities – Threatpost
S
Schneier on Security

The Record from Recorded Future News

Taiwan charges two businessmen over alleged role in Chinese espionage campaign Former UK privacy chief preparing legal action against woman who reported him, minister says Spain arrests alleged supporter of pro-Russian hacktivist groups after FBI tip EU unveils cyber plan to reduce reliance on foreign AI systems Supreme Court allows Texas app law requiring age verification to take effect Britain plans to build autonomous AI 'Cyber Shield' to defend nation Major Japanese telco says cyberattack exposed 12 million emails UK cyber pledge draws only a handful of top firms despite ministerial appeal Canadian spy agency reports hacking three criminal groups in 2025 Attackers vote themselves $20 million in BONK cryptocurrency Major medical device manufacturer notifies nearly 4 million of breach Japanese teen arrested over cyberattack that disrupted anime streaming service Ukrainian media outlets now among 'priority targets' for Russian hackers Spyware found on phone of European Parliament member probing it Supreme Court decision threatens EU-US data transfer agreement Teen suspect in Scattered Spider hacks is extradited to US US lifts export controls on Anthropic’s frontier cybersecurity AI models Japanese insurer, brewer, manufacturer and telecom disclose cyber breaches CIA chief highlights major shifts in agency’s tech approach House passes kids’ online safety bill, but Senate approval unlikely An intelligence budget 'super user' job is now in the hands of Russ Vought Justices rule that cellphone location histories are protected by the Fourth Amendment US racks up about 400 wins over illegal World Cup streaming sites US posts $10 million reward over Russian cyber campaign targeting Signal, WhatsApp Ukraine to use seized crypto from cybercrime group to buy war bonds Russia accuses Apple of ‘political censorship’ after VK apps removed from App Store Turla group adds more malware to Russia’s espionage efforts against Ukraine Russia used social engineering to breach prominent messaging accounts, Ukraine says FCC votes to toughen rules in bid to better protect undersea cables DHS chief says president has met with potential CISA nominee; agency plans to hire 600 Another Russian dairy company reportedly disrupted by cyberattack Ukraine's state postal operator reports app disruption after cyberattack Russia used Cellebrite phone-hacking tool to crack down on dissident after firm cut off country Three ‘cybercrime as a service’ operations undercut by Microsoft, law enforcement German rail services resume after wireless communications outage Indian auto giant Bajaj Auto hit by ransomware incident Five Eyes agencies sound alarm about AI’s threat to cybersecurity Feds seize alleged cyber-scam infrastructure connected to Southeast Asian company Trump directs federal agencies to protect US data from quantum threats Compromise kids online safety bill unveiled by House leaders, with key omission Two Scattered Spider members plead guilty over cyberattack that crippled London transit Tata Electronics confirms cyberattack after alleged Apple, Tesla documents appear online Suspected cyberattack triggers false emergency alerts across parts of Brazil Police raid malware network tied to Russia's Evil Corp hacker group UK's information commissioner resigns over ‘inappropriate humour’ Bulgaria allowed surveillance tech firm to sell products to repressive regimes, report says Australian sugar producer works to restore operations as ransomware group claims attack Hostile states behind three-quarters of attacks on Britain's critical infrastructure, cyber chief warns EU grants Ukraine access to cybersecurity reserve for major attacks Warner warns of CISA cuts, staffing gaps in letter to acting chief GitHub dismissed security reports on flaws now exploited by supply-chain worm, researchers say India's Telegram ban draws criticism from Durov as company challenges order in court India temporarily blocks Telegram over medical exam cheating fears UK to ban social media access for children under 16 Estonia to quarantine emails sent from Russian .ru domain /maine-turns-off-breach-portal-fake-reports Cyberattack on Russian tech firm Astral disrupts business, government services for week Finland brings charges against cargo ship officers for cutting submarine cables Anthropic says US government forced it to disable cybersecurity AI models Belarus-linked hackers target Gmail accounts of Polish public figures and their families Bankruptcy admin approves settlement fund of $47 million for 23andMe data breach victims Major US surveillance program poised to lapse after legislative deadlock South Korea hits Coupang with record $409 million fine over data breach Cyber Force not included in Senate defense policy roadmap British high school sends students home following cyberattack Hacker linked to Void Blizzard faces charges over cyberespionage campaign University of Nottingham confirms cyber incident as Shiny Hunters group claims data theft CISA to require federal agencies to patch some cyber vulnerabilities within 3 days Cyberattack shuts down major Australian sugar mills, disrupting harvest Microsoft ships largest Patch Tuesday on record, with one bug under active attack UK weakens proposed telecoms defenses against Chinese hackers after industry pushback CISA to transform how it assesses cyber vulnerabilities and risks, Andersen says Hackers pose as women seeking romance to spy on Russian soldiers UK gives big tech 3 months to create device controls to block nude images of kids EU unveils tech sovereignty package to cut reliance on US, Chinese suppliers Apple removes Russia’s state-backed messaging app Max from its store Trump considers Palantir exec to lead CISA FTC considers setting aside or modifying $150 million privacy penalty against X Russia seeks to label two anti-Kremlin hacker groups as ‘extremist’ Supreme Court rules FCC fines punishing telecom giants for sharing location data were legal UN food agency investigates breach exposing data of Gaza aid recipients Researcher publishes GitHub token-stealing exploit, blames Microsoft’s disclosure process Five Eyes warn Chinese spies are using job sites to recruit insiders CISA directive for AI executive order to be released this week, Andersen says DHS chief signals efforts to reshape CISA New cyber force would cost up to $11 billion to start, commission says White House unveils pared-back AI executive order Russia claims foreign spy agencies hacked officials' phones Red Hat removes tainted packages after software pipeline compromise Spain arrests suspected hacker for publishing personal data of police, prosecutors and cyber officials Microsoft says it will not pursue security researchers after zero-day backlash Inspector general finds NIST mistakes have made vulnerability database ineffective NSA selects new leads for key cybersecurity posts Afghan finance officials targeted by suspected Pakistani cyberespionage campaign Unknown hacker group targeted Russian maritime universities, diplomats for nearly two years Microsoft calls zero-day releases ‘never justifiable’ as researcher threatens to drop more Cruise giant Carnival confirms data breach affecting nearly 6 million people Canadian man gets 33 years for using social media to coerce US children into sending sexual content Chinese-speaking fraud gang could be stealing millions from 2026 World Cup fans Russia conducting daily attacks on UK 'from seabed to cyberspace,' spy chief warns
Launch of UK's National Cyber Action Plan delayed amid Labour leadership crisis
Alexander Martin · 2026-07-03 · via The Record from Recorded Future News

Britain's National Cyber Action Plan, the government's forthcoming strategy for defending the wider economy against state-backed and criminal hacking, has been delayed again following Prime Minister Keir Starmer's resignation, according to multiple sources with knowledge of the matter.

The plan had been due for publication on Monday, the sources said. It has been postponed amid the uncertainty over the governing Labour Party’s leadership contest, which opens July 9.

A government spokesperson told Recorded Future News it remained committed to publishing the National Cyber Action Plan.

“Protecting national security is our first duty, which is why we're taking action: strengthening our defenses through the Cyber Security and Resilience Bill, improving businesses' security with the national Cyber Resilience Pledge, and providing expert support to organizations across the country every day through the National Cyber Security Centre,” they said.

One part of the launch is still expected to proceed. On Tuesday, a number of FTSE 350 companies are set to sign the government's Cyber Resilience Pledge, a voluntary commitment to improve their digital defenses.

Initially intended as an update to Britain’s National Cyber Strategy 2022, the document was first promised by then-Chancellor of the Duchy of Lancaster Pat McFadden to be due before the end of 2025. By April 2026, the target had moved to “this summer” by the Security Minister Dan Jarvis, and the document had been rebranded from a “strategy” to an “action plan.”

McFadden made his 2025 announcement in Manchester, the city whose then-mayor, Andy Burnham, is now the frontrunner to succeed Starmer following the Makerfield by-election that preceded the prime minister's resignation. As of publication, no other candidates have put themselves forward for the leadership.

The National Cyber Action Plan is the latest enterprise in the British government’s cyber policy program to be delayed due to what some fear is political disinterest.

The Cyber Security and Resilience Bill, an update to the country's critical-infrastructure cyber laws, took more than four years to reach Parliament and is now not expected to be enforced until 2028 — a decade on from the NIS Regulations it was written to replace.

The core provisions of the CSRB had already been completed back in 2022 under Rishi Sunak, whose government incorrectly described the laws as “updated” before failing to include them in that year's King's Speech setting out the government’s parliamentary agenda and leaving the draft bill ultimately unintroduced to parliament.

When Starmer's government first moved to bring the bill forward in September 2025, it was then delayed again amid a cabinet reshuffle.

Separately, a set of ransomware proposals — mandatory reporting for all victims, a licensing regime for extortion payments and a ban on ransoms for critical infrastructure operators — was due to go out to consultation in mid-2024, before being scuppered when Sunak called a general election.

Priorities

The delay is likely to contribute to ongoing concerns that cybersecurity remains a low political priority within Westminster.

During the 2024 election campaign, a ransomware attack on the pathology provider Synnovis by the Russia-linked Qilin group forced London hospitals to declare a critical incident, cancelling operations and appointments. Despite its political relevance, neither main party addressed the attack in any detail during their campaigns.

“Fundamentally, until there is a major incident … [cybersecurity] is just not going to get the coverage or the political will it deserves,” Jamie MacColl, a research fellow at the Royal United Services Institute, said at the time.

Tim Stevens, who leads the cybersecurity research group at King's College London, said cyber had “always been a de-politicized” issue in Britain treated as “low politics.” He added: “Once you make it a political issue, if you don't fix it, it can come back and bite you on the ass.”

In September 2025, a cyberattack on Jaguar Land Rover — one of Britain's largest manufacturers, accounting for roughly 4% of the country's goods exports — halted all vehicle production for more than a month in what the Cyber Monitoring Centre called the most economically damaging cyber event ever to hit the UK.

The nonprofit estimated the shutdown cost the British economy £1.9 billion ($2.5 billion) and affected more than 5,000 organizations across JLR's supply chain; the company itself later reported it had been left £680 million ($896 million) out of pocket.

The disruption was severe enough that the government stepped in to underwrite a £1.5 billion ($2 billion) loan to help JLR support its suppliers — even as the Cyber Security and Resilience Bill it had drafted years earlier remained unintroduced, having been shelved that same month amid the cabinet reshuffle.

National Cyber Action Plan

The plan’s contents have not been officially disclosed. Recorded Future News understands it will include three pillars focusing on Threat, Growth and Resilience.

The clearest public indication of the government’s approach came in a lecture to the Royal United Services Institute (RUSI) in June by the NCSC’s chief executive Richard Horne, three weeks before the plan’s intended launch.

Horne called for a full court press across what he termed the “near, mid and far spaces” of cyberspace — a framing people familiar with the plan expect to shape its structure.

He defined the near space as the defense of individual organizations, the far space as offensive action against adversaries and the “mid space” as the shared “cloud, technology and telecommunications infrastructure,” most of which he said was “in private hands.”

In that space, he said, the government would partner with providers to “harden the mid space and disrupt attacker activity.”

Horne said the NCSC was working toward a National Cyber Defense Capability to “join up intelligence and actions in the far, mid and near space in real time” in what he called “an agentic AI world.” Between June 2024 and May 2026, he said, the NCSC handled more than 200 incidents affecting critical national infrastructure and its supply chain, 75% of them linked to state actors.

Another key aspect of the action plan is the Cyber Resilience Pledge which will see companies commit to making cybersecurity a board-level responsibility, joining the NCSC's Early Warning service — which sees British intelligence provide tip-offs to victims about imminent ransomware attacks — and requiring Cyber Essentials certification across their supply chains.

Government ministers have written to the chairs and chief executives of hundreds of firms, including all FTSE 350 companies, urging them to sign. The launch event on Tuesday is still expected to go ahead, although it is unclear how many of those companies will be in attendance.

Get more insights with the

Recorded Future

Intelligence Cloud.

Learn more.

Recorded Future

No previous article

No new articles

Alexander Martin

Alexander Martin

is the UK Editor for Recorded Future News. He was previously a technology reporter for Sky News and a fellow at the European Cyber Conflict Research Initiative, now Virtual Routes. He can be reached securely using Signal on: AlexanderMartin.79