UK Commits £90m to Cybersecurity and Calls for New ‘Resilience Pledge’

The UK government has unveiled a £90m ($120m) injection into UK cybersecurity funding, aimed at bolstering the nation’s defenses against rising digital threats. Announced at the National Cyber Security Centre (NCSC) CYBERUK conference on April 22, Security Minister Dan Jarvis emphasized that the funds would primarily support small and medium-sized enterprises (SMEs). Alongside the financial commitment, Jarvis urged major organizations to sign a new Cyber Resilience Pledge, set to launch this summer.

Why This UK Cybersecurity Funding Matters for SMEs

SMEs often lack the resources to defend against sophisticated cyberattacks. This £90m package aims to help them adopt the Cyber Essentials standard, a government-backed certification that protects against common threats. According to NCSC data, quarterly certifications surpassed 10,000 for the first time last summer. Jonathan Ellison, NCSC Director for National Resilience, noted that uptake grew by 20% in the last financial year—the program’s best performance yet. However, he acknowledged that more work is needed to reach smaller businesses.

This investment is a step in the right direction, but critics argue it’s insufficient. James Neilson, SVP of International at OPSWAT, called the funding “nice on paper” but “nowhere near enough” to address the scale of the problem. He pointed out that many SMEs have no dedicated security teams, making it not just a funding issue but a knowledge gap. Trevor Dearing, director of critical infrastructure at Illumio, echoed this, saying businesses need “practical guidance on how to protect sensitive data and keep critical services running when incidents occur.”

What Is the Cyber Resilience Pledge?

The cyber resilience pledge is a voluntary commitment for large organizations to take three concrete actions: make cybersecurity a board-level responsibility, sign up to the NCSC’s free Early Warning service, and require Cyber Essentials certification across their supply chains. This initiative aims to create a ripple effect, encouraging better practices throughout the ecosystem. However, some experts question whether voluntary pledges will drive real change.

Board-Level Responsibility: A Key Requirement

Making cybersecurity a board-level issue ensures leadership accountability. This aligns with global trends where regulators increasingly hold executives responsible for breaches. By signing the pledge, organizations signal that cyber resilience is a strategic priority, not just an IT concern.

Supply Chain Security Through Cyber Essentials

Requiring Cyber Essentials certification from suppliers helps close vulnerabilities in the supply chain. This is particularly important given that many attacks target smaller vendors to gain access to larger networks. The NCSC’s Early Warning service, meanwhile, provides free threat alerts, helping organizations respond faster to incidents.

Critics Call for Stronger Incentives, Not Just Advice

While the government’s approach is welcomed, industry voices argue it relies too heavily on gentle encouragement. Jonathan Lee, Director of Cyber Strategy at TrendAI, told Infosecurity at CYBERUK: “The government and the NCSC are saying the right things, but we have to move from this position of gently encouraging organizations to providing some incentive.” He suggested exploring tax credits for businesses that invest in resilience, noting that “if we can incentivize people to do that, that would be a good thing.”

Currently, UK businesses developing innovative cybersecurity solutions can claim Research and Development (R&D) tax relief to reduce Corporation Tax or receive cash payments. However, this scheme is limited to tech developers, not the broader SME base that needs support. As James Neilson pointed out, “SMEs either have small security teams or none at all, so it’s not just a funding issue but also a knowledge issue.”

What’s Next for UK Cybersecurity Funding?

The £90m investment and the Resilience Pledge represent a dual strategy: immediate financial aid for SMEs and a long-term cultural shift for larger organizations. Yet, as the debate over incentives continues, the government may need to revisit its approach. For now, businesses should explore Cyber Essentials certification and consider joining the NCSC’s Early Warning service to strengthen their defenses.

In a landscape where cyber threats evolve daily, the UK’s commitment is a positive step—but whether it’s enough remains to be seen. As Jonathan Lee put it, “We’re told it’s a team sport and everyone needs to work together.” The question is whether the government’s playbook will inspire the whole team to act.

Hackers Are Mass-Exploiting the cPanel Bug to Gain Control of Thousands of Websites

A critical flaw in cPanel and WebHost Manager (WHM) is now being actively exploited by hackers, who have already compromised thousands of servers. The cPanel bug exploitation has escalated rapidly, with attackers gaining full control over vulnerable systems and deploying ransomware. This widespread attack underscores the urgency for administrators to patch immediately.

How the cPanel Bug Exploitation Works

The vulnerability, tracked as CVE-2026-41940, allows attackers to bypass authentication and hijack servers via the control panel. According to Shadowserver, a nonprofit that monitors cyber threats, around 550,000 servers remain potentially vulnerable as of Monday. Although the number of compromised instances has dropped from 44,000 to roughly 2,000, this decline may reflect victims taking systems offline or patching.

Security researchers first flagged active attacks on Thursday, noting that hackers were exploiting the bug to take full control of servers. Bleeping Computer reported that Google indexed dozens of websites displaying ransom notes from a group claiming to have encrypted files. Some of those sites have since been restored, but the damage highlights the scale of the cPanel bug exploitation.

Ransomware and Response to the cPanel Vulnerability

The ransom notes included a chat ID for victims to contact the attackers. TechCrunch reached out to the hackers but received no immediate response. Meanwhile, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2026-41940 to its Known Exploited Vulnerabilities (KEV) catalog on Thursday, urging federal agencies to patch by Sunday. CISA has not confirmed whether all agencies complied.

Attacks may have begun long before the disclosure. KnownHost CEO Daniel Pearson revealed that his company detected exploitation attempts as early as February 23. This timeline suggests that threat actors were probing for weaknesses weeks before the official advisory. A cPanel spokesperson acknowledged receipt of inquiries but did not provide further comment.

What Administrators Should Do About the cPanel Bug

To mitigate the cPanel bug exploitation, administrators must apply the latest patch immediately. The vulnerability affects all versions prior to the security update. Additionally, consider implementing multi-factor authentication and restricting access to the control panel via IP whitelisting. Monitor server logs for unusual activity, such as unauthorized login attempts or file encryption processes.

For those using cPanel, it is crucial to verify that your hosting provider has applied the fix. If you manage your own server, update through the WHM interface or command line. Ignoring this patch could lead to data loss, ransomware demands, or complete server takeover. For more on securing web servers, check out our guide on web server security best practices.

Broader Implications of the cPanel Vulnerability

This incident highlights the ongoing risk of unpatched software in the hosting ecosystem. The cPanel bug exploitation is part of a larger trend where attackers target widely used management tools. As Shadowserver data shows, the number of vulnerable servers remains high, leaving many sites exposed. Businesses should conduct regular vulnerability assessments and maintain an incident response plan.

Furthermore, the involvement of ransomware groups adds financial pressure on victims. Paying ransoms is not recommended, as it funds criminal activity and does not guarantee data recovery. Instead, focus on backups and disaster recovery strategies. For additional insights, read our article on ransomware prevention strategies.

In conclusion, the cPanel bug exploitation is a critical threat that demands immediate action. By patching promptly and adopting robust security measures, administrators can protect their websites from compromise. Stay informed about emerging vulnerabilities through reliable sources like CISA and Shadowserver.

NCSC SilentGlass Device: A New Shield for Monitors Against Cyber Attacks

In a bold move to address a frequently overlooked vulnerability, the UK’s National Cyber Security Centre (NCSC) has introduced SilentGlass, a hardware device designed to protect monitors from cyber attacks. Launched at the CYBERUK conference on April 22, this plug-and-play solution actively blocks malicious signals between video cables and screens. For businesses and government agencies alike, the SilentGlass device cyber attacks prevention marks a significant step forward in securing everyday IT infrastructure.

What Is SilentGlass and How Does It Work?

SilentGlass is a compact, ready-to-use device that sits between HDMI or DisplayPort connections and monitor screens. Its primary function is to filter out unexpected or harmful data, ensuring only legitimate video signals pass through. The NCSC has approved it for high-threat environments, meaning it meets rigorous security standards.

Already deployed on government estates, SilentGlass is now available for purchase by any organization. The NCSC partnered with Goldilock Labs, a UK-based cybersecurity innovator, and Sony UK to manufacture and sell the device globally. This collaboration highlights how government intellectual property can transition into commercial products.

Why Monitors Are a Prime Target for Cyber Attacks

Monitors often handle sensitive data, making them attractive entry points for threat actors. According to the NCSC, cybercriminals may exploit weak monitor security to infiltrate networks for disruption or financial gain. The lack of mitigations in this area has left a gap that SilentGlass aims to close.

Ollie Whitehouse, CTO at NCSC, emphasized the device’s impact: “Display screens and monitors are everywhere in modern business environments, and SilentGlass will help protect previously vulnerable IT infrastructure with unprecedented ease.” This sentiment underscores the urgency of addressing the SilentGlass device cyber attacks threat vector.

The Role of Goldilock Labs and Sony UK

Goldilock Labs won a competitive contract to manufacture SilentGlass. Stephen Kines, co-founder of Goldilock Labs, noted: “SilentGlass addresses a gap that has been widely overlooked. The hardware interfaces people rely on every day have rarely been treated as security boundaries.” This partnership ensures the device is affordable and easy to deploy for critical national infrastructure (CNI) and businesses.

Similarly, Sony UK brings manufacturing expertise to scale production. The trio expects rapid global adoption by governments and risk-conscious organizations. For more on securing hardware, read our guide on hardware security best practices.

CYBERUK 2026: A Perfect Storm of Cyber Threats

SilentGlass debuted at CYBERUK 2026, held in Glasgow, Scotland. Richard Horne, CEO of the NCSC, warned of a “perfect storm” combining new technologies and geopolitical risks. This context makes the SilentGlass device cyber attacks solution timely. The conference also highlighted other UK cybersecurity innovations, reinforcing the nation’s commitment to digital defense.

In addition, the NCSC pointed to SilentGlass as a model for commercializing government IP. This approach not only strengthens national security but also boosts economic prosperity by launching UK companies onto the global stage.

How to Implement SilentGlass in Your Organization

Deploying SilentGlass is straightforward: plug it into the video port between your computer and monitor. It requires no software installation, making it ideal for high-security settings like government offices, financial institutions, and healthcare facilities. The device is designed for continuous operation, actively blocking threats without user intervention.

Furthermore, its low cost and ease of use make it accessible to small and medium businesses. For those exploring monitor security, consider reading our article on cyber threats to display screens for additional context.

Final Thoughts on SilentGlass

SilentGlass represents a practical solution to a persistent cyber risk. By targeting the often-ignored monitor interface, the NCSC and its partners have created a tool that enhances security without complicating workflows. As cyber threats evolve, such hardware-based defenses will become increasingly vital. The SilentGlass device cyber attacks protection is now available globally, offering peace of mind to organizations of all sizes.

To stay updated on cybersecurity innovations, check our cybersecurity news section. For purchasing details, visit the NCSC or Goldilock Labs websites.