Cybersecurity Industry Must Strengthen Collaboration Amid Rising Geopolitical Threats

In an era of increasing protectionism and sovereignty-focused policies, cybersecurity organizations must improve collaboration to combat emerging threats, says Sir Jeremy Fleming, former director of the UK’s Government Communications Headquarters (GCHQ).

Geopolitical Impact on Cybersecurity

Speaking at Palo Alto Networks’ Ignite event in London on March 13, Fleming emphasized that geopolitical tensions are having a significant impact on technological developments. Nation-state cyber-attacks are rising, posing serious threats to global security.

“These domains are so interconnected today that it should not only concern technologists but also company boards and C-suite executives,” Fleming stated.

Growing Ransomware Threat

Having led GCHQ from 2017 to 2023, Fleming noted that the cyber threat landscape is more volatile than ever. Ransomware and cybercrime remain the top threats to organizations in the UK, the US, and beyond.

“There is no sign that ransomware attacks are slowing down,” he said. “Law enforcement is struggling to dismantle these groups in a meaningful way.”

However, Fleming reassured organizations that basic cybersecurity measures can significantly mitigate risks, including those involving AI-driven threats.

Nation-State Cyber Threats on the Rise

Fleming highlighted three key trends in state-sponsored cyber activity:

1. Targeting Critical Infrastructure – Long-term covert cyber intrusions, such as Salt Typhoon campaigns, are increasing.

2. Information Warfare – Misinformation and disinformation are becoming key geopolitical tools.

3. Mega Data Breaches – Large-scale hacks, like the ByBit cryptocurrency exchange attack, are becoming more frequent.

While Fleming avoids terms like “cyber warfare,” he acknowledged that cyber intrusions and information operations have played a role in conflicts such as the war in Ukraine, often as part of broader military strategies.

The Need for Cyber Intelligence Sharing

Fleming stressed the importance of adapting to this new cybersecurity landscape. He offered two key recommendations:

1. Integrate Geopolitical Intelligence – Businesses should combine geopolitical threat intelligence with cyber threat intelligence to understand risks better.

2. Enhance Cybersecurity Collaboration – No single company, including major security firms, can provide comprehensive insights alone.

“Sharing information on a larger scale and at a faster pace will allow the cybersecurity industry to detect nation-state activities before they cause severe damage,” Fleming concluded.

As cyber threats continue to evolve, strengthening industry-wide cooperation will be essential to ensuring global digital security.