(London: His Majesty’s Revenue and Customs (HMRC) has blocked over 100 million malicious emails in the past three years, as cyber threats against UK government services continue to escalate.

The data was obtained through a Freedom of Information (FOI) request, where HMRC disclosed detailed figures on the volume of malicious emails blocked from November 2021 to September 2024. The data shows a sharp rise in cyberattacks, highlighting the growing threat to UK government services.

According to new data obtained, HMRC blocked 23,751,742 email attacks between November 2021 and October 2022.

This figure surged to 40,346,532 between November 2022 and October 2023, followed by 40,903,820 blocked emails from November 2023 to September 2024.

Overall, HMRC has blocked 105,002,094 emails in the past three years.

Andy Ward, SVP International, Absolute Security, commented:  “These numbers show just how relentless cybercriminals are when it comes to targeting government institutions. Email remains one of the main ways attackers try to break into systems—whether through malware, spam or other tactics designed to exploit vulnerabilities.”

“To tackle these threats effectively, organisations need a strong cyber resilience strategy. This means real-time monitoring of systems, advanced threat detection, and the ability to act fast when something goes wrong. Security teams need to be able to isolate and shut down compromised systems immediately to stop attacks from spreading. With cyber threats becoming more sophisticated, having the right tools and defences in place is more important than ever to protect the UK’s Government Departments.”

Despite these increasing threats, HMRC has confirmed that changes to its email security systems mean it can no longer categorise email threats by type, such as phishing, malware, or spam. This shift in technology makes it more challenging to assess the evolving cyber risks faced by the department.

Sawan Joshi, Group Director of Information Security at FDM Group, commented: "HMRC’s efforts to block malicious emails show the relentless nature of cyber threats, highlighting the need for robust security measures and a highly skilled workforce."

"Protecting critical systems isn’t just about implementing the right technology—it’s about having the right expertise in place. Employees must be equipped with the necessary skills to not only detect and respond to threats but also to communicate risks effectively and strengthen business resilience. For organisations, investing in upskilling staff in cybersecurity training is critical.

THE EDITORIAL TEAM

Vigilance

Posted On Monday, 14 April 2025 11:32

• Partnership enhances UK Connect’s offer to Britain’s biggest construction companies

• UK Connect CTO Joe Budnar-Hunt: “Cybersecurity integration is more important than ever before”

• BlueFort CTO Josh Neame: “Delighted to work with UK Connect’s suite of major construction clients”

Official cybersecurity partner

UK Connect, a leading connectivity and communications solutions provider, has announced a strategic partnership with BlueFort, the UK's premier independent Security Solutions Partner, to significantly enhance cybersecurity protection for construction industry clients.

THE EDITORIAL TEAM

Cyber Security & e-Crime

Posted On Monday, 14 April 2025 11:29

Read more ...

Cyber threats remain high as Government pushes new legislation to boost resilience

LONDON: Four in ten (43 per cent) of UK businesses and 30 per cent of charities experienced a cyber attack or data breach in the last 12 months, according to the latest Cyber Security Breaches Survey. While this marks a slight decrease from last year’s 50%, the threat level for medium and large businesses remains alarmingly high.

THE EDITORIAL TEAM

Industry News

Posted On Monday, 14 April 2025 11:23

Read more ...