The UK is in the midst of a deepening cyber crisis. Hundreds of government passwords have been found for sale on the dark web, alongside a record surge in online attacks that experts say could undermine national security and public trust.
A new report has uncovered more than 700 leaked government email addresses and passwords linked to nine official domains over the past year. The findings, reported in The Independent, have sparked alarm that hackers could use the information to infiltrate critical national systems – from power grids to police databases.
Worrying exposure across Whitehall
According to the report, several major government departments have been caught up in the leaks:
- Ministry of Justice – 195 passwords leaked
- Department for Work and Pensions (DWP) – 122 passwords leaked
- Ministry of Defence (MoD) – 111 passwords leaked.
Other government bodies – including the Home Office, HMRC, Department for Transport, Foreign Office, Department of Health and Social Care and UK Parliament – also had login details exposed.
Cyber experts say the breaches expose “dangerous vulnerability gaps” across Whitehall, warning that the UK is becoming “a prime target for cyber criminals” and hostile states.
Four major cyber-attacks every week
The findings come as GCHQ’s National Cyber Security Centre (NCSC) publishes its latest Annual Review, revealing the scale of the threat facing the UK.
- The NCSC handled 204 nationally significant cyber-attacks in the year to September 2025, up from 89 the previous year.
- That’s an average of four major cyber incidents every week, many linked to state-sponsored or highly organised criminal groups.
- Eighteen of those incidents were “highly significant”, meaning they had the potential to disrupt essential services or compromise national security — a 50% year-on-year increase.
Dr Richard Horne, Chief Executive of the NCSC, said: “Cyber security is now a matter of business survival and national resilience.” Adding:“The best way to defend against these attacks is for organisations to make themselves as hard a target as possible. That demands urgency from every business leader: hesitation is a vulnerability, and the future of their business depends on the action they take today. The time to act is now.”
The government has written to senior executives at major UK companies, urging them to prioritise cyber resilience.
Rising threat across government and business
This surge in cyber activity follows a year of high-profile breaches affecting both public institutions and household names.
- The Legal Aid Agency confirmed that hackers accessed personal data from applicants dating back to 2007
- Flutter Entertainment, the parent company of Paddy Power and Betfair, confirmed a data breach exposing customer information from both betting platforms.
- Major retailers including Marks & Spencer, and the Co-op have been hit by ransomware groups operating via the dark web.
- Jaguar Land Rover was hit by a ransomware attack, disrupting operations and raising concerns about data security within the UK’s automotive industry.
The Information Commissioner’s Office (ICO) said that with cyber-attacks on the rise, “government departments and agencies must uphold the highest standards of security” to protect public data. The National Audit Office has also warned that government cyber resilience remains “immature” and that “serious incidents are likely to happen regularly”.
From leaked government credentials to corporate data breaches, the UK’s cyber threat level is rising fast. Experts say both public bodies and private businesses must act now to strengthen their defences, because it only takes one weak password or unpatched system to bring critical services to a halt.
