Related Posts
BBC Panorama Exposes the Devastating Reality of Ransomware Attacks
by Lisa Ventura MBE FCIIS, Chief Executive and Founder of Cyber Security Unity
A shocking new BBC Panorama investigation reveals how one weak password brought down KNP – previously known as Knights of Old, a 158-year-old haulage company, resulting in over 700 job losses and highlighting the escalating cyber threat facing UK businesses.
The programme, “Fighting Cyber Criminals”, aired on BBC One on 21 July 2025 and provides unprecedented access to the National Cyber Security Centre (NCSC) as they battle international ransomware gangs. Reporter Richard Bilton investigates the online crimewave and meets the secret agents trying to stop the hackers.
The Knights of Old Catastrophe
In 2023, KNP was running 500 lorries, most of them being under the brand name Knights of Old. The company said its IT complied with industry standards and it had taken out insurance against a cyber-attack.
But a gang of hackers, known as Akira, got into their system leaving staff unable to access any of the data needed to run the business. The only way to get the data back, said the hackers, was to pay and they demanded a ransom estimated to be in the region of £5m. Former KNP director Paul Abbott revealed that hackers managed to gain entry to the computer system by guessing an employee’s password through a “brute forcing” technique.
The company, which had been operating since 1865 and employed around 750 staff, was forced into administration just weeks after the June 2023 attack. Despite installing these tools – and continuing to win new business after the attack – KNP struggled to restore financial data in time to satisfy its lender, which Abbott said tipped the company into administration.
Major Retailers Also Under Attack
The programme doesn’t just focus on smaller companies. Marks & Spencer, Co-op and Harrods have all been targeted. Public bodies, hospitals and schools have also come under attack from hackers who take critical systems offline and demand massive ransoms.
The Scale of the Problem
The statistics are alarming:
- There were an estimated 19,000 ransomware attacks on UK businesses last year, according to the government’s cyber-security survey
- The National Cyber Crime Agency is dealing with a new ransomware attack every single day, and the number of cyber-attacks they deal with has risen exponentially
- Ransom payments made to Akira typically start at $5m (£3.7m) and that they had successfully negotiated 20 cases with Akira, with an average payout of $2m (£1.5m)
Exclusive Access to the National Cyber Security Centre (NCSC)
Panorama was given exclusive access to the spies on the front line in the battle against the cyber criminals. The programme shows how NCSC operatives use intelligence sources to try to spot attacks and eject hackers from computer systems before they can deploy ransomware.
However, the scale is overwhelming. The NCSC is part of GCHQ, one of the UK’s three main security services alongside MI5 and MI6. The hackers are not doing anything new, says “Sam” (not his real name), who runs a NCSC team dealing with day-to-day attacks. They are just looking for a weak link to exploit.
Key Lessons for Business Leaders
Paul Abbott, now working as a cyber security consultant after losing his company, warns: “There needs to be more understanding of the risks at board level. Directors need to have a good understanding of what questions to ask and what answers to look for when it comes to cyber security”.
The programme emphasises that basic security measures remain crucial:
- Strong password policies and multi-factor authentication
- Regular security audits by external experts
- Understanding that cyber security is a business continuity issue, not just an IT problem
- Board-level awareness and investment in cybersecurity
In addition, just 6% of UK businesses had Cyber Essentials certification in 2022, and 1% have Cyber Essentials Plus certification, which is largely due to low awareness of the schemes. Cyber Essentials certification can therefore significantly reduce cyber security incidents. For example, large wealth management company saw an 80% reduction in incidents after requiring its supply chain partners to certify, according to the National Cyber Security Centre. Furthermore, organisations with Cyber Essentials are 92% less likely to make a cyber insurance claim.
The Human Cost
Beyond the statistics, the programme highlights the devastating human impact. Jeff Maslin, who drove trucks for Knight Of Old, says drivers are still owed weeks’ worth of wages. “I know people who lost their house, lost their car and ended up divorced,” he says.
Government Response
The programme comes at a time when Parliament’s Joint Committee on the National Security Strategy warned there was a high risk of a “catastrophic ransomware attack at any moment”. The government is considering new legislation that would ban public bodies from paying ransoms and require private companies to report attacks and seek permission before paying.
Conclusion
The BBC Panorama investigation serves as a stark warning to all businesses: cyber security is not optional, and the consequences of inadequate protection can be existential. As one expert noted in the programme, while larger companies may have resources to recover, for smaller businesses, ransomware attacks represent an existential threat.
The message is clear: whatever you think you’ve done to protect your business; get it checked by experts. Because as the Knights of Old case tragically demonstrates, it only takes one weak password to destroy a century-and-a-half of business legacy.
Watch the full programme: BBC Panorama: Fighting Cyber Criminals is available on BBC iPlayer.