Cybercriminals are increasingly targeting company networks, with a notable 44% rise in attacks through internet-facing systems, according to IBM's 2026 X-Force Threat Intelligence Index released on Wednesday. The report indicates that software flaws were responsible for 40% of the cybersecurity incidents monitored last year, highlighting vulnerabilities such as missing login checks.
Mark Hughes, IBM's global managing partner for cybersecurity services, pointed out that the use of artificial intelligence (AI) is accelerating these attacks, allowing hackers to detect weaknesses more rapidly than ever before. In response to these threats, he urged organizations to implement advanced threat detection and response strategies to identify and address security gaps proactively.
The report coincides with the UK government's renewed focus on enhancing cybersecurity, especially for small and medium-sized enterprises (SMEs). Last week, officials launched a campaign promoting the 'Cyber Essentials' checklist, which encourages businesses to keep software updated and limit account access. With cyber threats estimated to cost UK businesses about £14.7 billion annually, around half of small firms reported experiencing a breach or attack in the past year.
Furthermore, IBM's findings reveal that vulnerabilities in access controls and configurations are frequently overlooked, making them easy targets for attackers. The study also raised concerns about the misuse of AI tools, noting a significant number of stolen login credentials linked to ChatGPT last year, which could potentially compromise sensitive data.