CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

UK Introduces Cyber Security and Resilience Bill to Strengthen National Defenses

First reported
Last updated
2 unique sources, 7 articles

Summary

Hide ▲

The UK government has introduced the Cyber Security and Resilience Bill, aiming to upgrade the 2018 NIS Regulations and bolster national cyber defenses. The bill proposes stricter security requirements for essential services, expanded incident reporting, and enhanced regulatory powers. It also includes new regulations for managed service providers and critical suppliers, with tougher penalties for serious offenses. The legislation follows multiple high-profile breaches and aims to address growing cyber threats, including those from AI and unsupported equipment. The bill aims to address annual damages of nearly £15 billion ($19.6 billion) from cyberattacks, with the average significant cyberattack costing over £190,000, totaling roughly £14.7 billion each year. The National Cyber Security Centre (NCSC) reported a 130% increase in "nationally significant" cyber incidents in 2025 compared to 2024. The Technology Secretary will have the authority to direct regulators and organizations to take actions when national security is threatened. Additionally, the UK has announced a new cybersecurity strategy backed by over £210 million ($283 million) to boost cyber defenses across government departments and the wider public sector. This includes establishing a dedicated Government Cyber Unit to coordinate risk management and incident response, setting minimum security standards, improving visibility of cyber risks, and requiring departments to maintain robust incident response capabilities. A new Software Security Ambassador Scheme will promote best practices, with major firms such as Cisco, Palo Alto Networks, Sage, NCC Group, and Santander joining as ambassadors. The UK has also announced plans to ban public-sector and critical infrastructure organizations from paying ransoms following ransomware attacks. The Public Bill Committee is asking for written views from industry experts to scrutinize the Cyber Security and Resilience Bill (CSRB). The CSRB is the long-awaited successor to the NIS Regulations 2018 and promises a NIS2-style revamp of UK cyber regulation for critical infrastructure sectors. The bill has completed its second reading in parliament and has reached the committee stage, where it will be subject to further review. The committee is expected to report by March 5, after which the bill will receive its third reading in the House of Commons, before reaching the Lords in spring/summer. Royal Assent is scheduled for late 2026. The bill seeks to implement several key updates to the NIS Regulations 2018, including an expanded scope to include MSPs, datacenters, large load controllers, and other organizations yet to be defined by regulators. The bill includes stricter rules around incident reporting timelines and a wider scope for reportable incidents. The bill mandates in-scope organizations to manage supply chain risk more proactively and meet 'proportionate and up-to-date security requirements' drawn from the NCSC Cyber Assessment Framework (CAF). The bill provides stronger powers for regulators and potentially higher penalties. Trend Micro's UK cybersecurity director, Jonathan Lee, welcomed the consultation and emphasized the importance of involving frontline workers in making the legislation effective. Lee noted several areas where the bill needs revising, including clearer risk-based definitions for managed services and critical suppliers, streamlined incident-reporting thresholds, consistency across regulators, and transparent information-sharing mechanisms. Mark Bailey, partner at Charles Russell Speechlys, agreed that there are significant gaps in the legislation, particularly in secondary legislation covering areas like incident reporting thresholds, critical supplier definitions, and managed service provider obligations.

Timeline

  1. 07.01.2026 14:15 1 articles · 6d ago

    UK Announces New Cybersecurity Strategy to Strengthen Public Sector Defenses

    The UK has announced a new cybersecurity strategy backed by over £210 million to boost cyber defenses across government departments and the wider public sector. This includes establishing a dedicated Government Cyber Unit to coordinate risk management and incident response, setting minimum security standards, improving visibility of cyber risks, and requiring departments to maintain robust incident response capabilities. A new Software Security Ambassador Scheme will promote best practices, with major firms such as Cisco, Palo Alto Networks, Sage, NCC Group, and Santander joining as ambassadors. The UK has also announced plans to ban ransom payments by public-sector and critical infrastructure organizations following ransomware attacks.

    Show sources
    Open in new tab
  2. 25.11.2025 12:45 3 articles · 1mo ago

    House of Commons Committee Calls for Enhanced Economic Security Measures

    The House of Commons Business and Trade Committee published a report titled 'Toward a new doctrine for economic security', highlighting the growing risks of economic warfare and cyber-threats to the UK. The report cited cyber-threats over 100 times, emphasizing their impact on critical national infrastructure (CNI), private companies, and institutions. The committee recommended introducing legislation to mandate the Software Security Code of Practice and empower enforcement agencies to monitor compliance. They also proposed allowing businesses to claim tax relief on IT services that enhance operational resilience, including cybersecurity software and data protection solutions, and suggested consulting on proposals for a mandatory cyber-incident reporting regime. The report argues that voluntary measures are insufficient and recommends making software developers liable for avoidable vulnerabilities, incentivizing greater investment in cyber-resilience, and introducing mandatory cyber-incident reporting to build a clearer national threat picture.

    Show sources
    Open in new tab
  3. 12.11.2025 11:40 6 articles · 2mo ago

    UK Introduces Cyber Security and Resilience Bill to Parliament

    The UK government has introduced the Cyber Security and Resilience Bill, proposing stricter security requirements for essential services, expanded incident reporting, and new regulations for managed service providers. The bill aims to address recent cyber threats and breaches, including ransomware attacks on critical infrastructure and state-sponsored cyber-espionage efforts. The bill also includes turnover-based penalties for serious breaches and grants the Technology Secretary authority to direct actions when national security is threatened. Additionally, the House of Commons Business and Trade Committee has called for legislation to mandate the Software Security Code of Practice and proposed tax relief for businesses investing in cybersecurity measures. The National Cyber Security Centre (NCSC) reported a 130% increase in "nationally significant" cyber incidents in 2025 compared to 2024, underscoring the urgent need for enhanced cybersecurity measures. The UK has also announced a new cybersecurity strategy backed by over £210 million to strengthen public sector cyber defenses, including establishing a dedicated Government Cyber Unit, setting minimum security standards, improving visibility of cyber risks, and requiring robust incident response capabilities. A new Software Security Ambassador Scheme will promote best practices, with major firms such as Cisco, Palo Alto Networks, Sage, NCC Group, and Santander joining as ambassadors. The UK has also announced plans to ban ransom payments by public-sector and critical infrastructure organizations following ransomware attacks. The Public Bill Committee is asking for written views from industry experts to scrutinize the Cyber Security and Resilience Bill (CSRB). The CSRB is the long-awaited successor to the NIS Regulations 2018 and promises a NIS2-style revamp of UK cyber regulation for critical infrastructure sectors. The bill has completed its second reading in parliament and has reached the committee stage, where it will be subject to further review. The committee is expected to report by March 5, after which the bill will receive its third reading in the House of Commons, before reaching the Lords in spring/summer. Royal Assent is scheduled for late 2026. The bill seeks to implement several key updates to the NIS Regulations 2018, including an expanded scope to include MSPs, datacenters, large load controllers, and other organizations yet to be defined by regulators. The bill includes stricter rules around incident reporting timelines and a wider scope for reportable incidents. The bill mandates in-scope organizations to manage supply chain risk more proactively and meet 'proportionate and up-to-date security requirements' drawn from the NCSC Cyber Assessment Framework (CAF). The bill provides stronger powers for regulators and potentially higher penalties. Trend Micro's UK cybersecurity director, Jonathan Lee, welcomed the consultation and emphasized the importance of involving frontline workers in making the legislation effective. Lee noted several areas where the bill needs revising, including clearer risk-based definitions for managed services and critical suppliers, streamlined incident-reporting thresholds, consistency across regulators, and transparent information-sharing mechanisms. Mark Bailey, partner at Charles Russell Speechlys, agreed that there are significant gaps in the legislation, particularly in secondary legislation covering areas like incident reporting thresholds, critical supplier definitions, and managed service provider obligations.

    Show sources
    Open in new tab

Information Snippets

Similar Happenings

NCSC Releases Playbook to Embed Cyber Essentials in Supply Chains

The UK's National Cyber Security Centre (NCSC) has released a playbook urging businesses to integrate Cyber Essentials (CE) into their supply chains. The playbook provides a seven-step guide to help organizations embed CE, including understanding supply chain risks, defining supplier security profiles, and incentivizing CE adoption. The NCSC also highlighted the availability of free cyber-liability insurance for businesses with a turnover under £20m that are CE certified. The playbook emphasizes the importance of securing supply chains, as only 14% of firms are aware of the potential risks posed by their immediate suppliers. The NCSC noted that 43% of organizations suffered a cyber-attack in the past year, underscoring the need for improved baseline security postures.

Open in new tab

Portugal Updates Cybercrime Law to Exempt Security Researchers

Portugal has amended its cybercrime law to provide legal protection for good-faith security research. The new provisions in Article 8.o-A, titled "Acts not punishable due to public interest in cybersecurity," exempt security researchers from criminal liability under strict conditions. These conditions include the purpose of identifying vulnerabilities, not seeking economic benefit beyond professional compensation, immediate reporting, and adhering to ethical research practices. The law also specifies prohibited techniques and data handling requirements. This update aligns Portugal with similar legal frameworks in Germany and the U.S., recognizing the importance of security research in improving cybersecurity. Additionally, the UK is exploring similar legal protections for ethical hackers under the Computer Misuse Act.

Open in new tab

UK's Share and Defend Service Blocks Nearly 1 Billion Malicious Site Attempts

The UK's National Cyber Security Centre (NCSC) Share and Defend service has blocked nearly one billion attempts to access scam websites in less than a year. This service, launched in May 2024, proactively blocks access to malicious websites through ISPs like BT, TalkTalk, Vodafone, and others. The system uses threat intelligence and indicators of compromise (IOCs) to prevent early-stage cyber-attacks. The announcement was made by British Security Minister Dan Jarvis during the Financial Times’ Cyber Resilience Summit: Europe on December 3, 2025. The service is part of the UK government's broader cybersecurity strategy, aiming to protect businesses and citizens from cyber threats.

Open in new tab

UK Mobile Carriers to Block Spoofed Phone Numbers in Fraud Crackdown

Britain's largest mobile carriers have agreed to upgrade their networks to block spoofed phone numbers within a year. This initiative, part of the new Telecoms Charter, aims to combat fraud by preventing scammers from impersonating trusted entities. The upgrades will also include advanced call tracing technology to assist law enforcement in tracking down fraudsters. The carriers involved include BT EE, Virgin Media O2, Vodafone Three, Tesco Mobile, TalkTalk, and Sky. The agreement also includes commitments to improve support for scam victims and enhance data sharing with police. The UK government reports that 96% of mobile users check caller ID before answering, and three-quarters block calls from unknown international numbers, highlighting the need for this initiative.

Open in new tab

Increased Physical and Cyber Threats to US Power Grid

The US power grid faces escalating physical and cyber threats. Grid operators are urged to integrate cybersecurity and physical security strategies. Cyberattacks on utilities rose 69% in 2024, while physical attacks increased 71% in 2022. Both threat types are driven by various factors, including geopolitical tensions and the expanding attack surface due to grid modernization. The convergence of IT, OT, and physical security is crucial for protecting critical infrastructure. Industry experts and regulators emphasize the need for unified security strategies to mitigate risks and ensure continuous service.

Open in new tab