More than 70 per cent of the advanced threat groups targeting the UAE are linked to state-sponsored actors, according to Dr. Mohamed Hamad Al Kuwaiti, Head of the UAE Government Cybersecurity Council.
Speaking to the Emirates News Agency (WAM), Dr. Al Kuwaiti said the UAE faces between 90,000 and 200,000 attempted cyber breaches daily. He noted that the country’s national cybersecurity framework is designed to detect and neutralise threats proactively without disrupting services or compromising sensitive data.
Since the start of 2026, authorities have recorded 128 confirmed cyber incidents across government and private entities. These included ransomware attacks, data breaches, website defacement, and distributed denial-of-service (DDoS) attacks. All cases, he said, were addressed under unified national response protocols to contain risks and restore operational stability.
Government and Financial Sectors Most Targeted
Government administration and the financial services sector were among the most frequently targeted areas. Real estate, construction, professional services, logistics, hospitality, education, and luxury retail were also affected to varying degrees.
Threat analysis indicates that 71.4 per cent of tracked advanced persistent threat (APT) groups involved in attacks were state-sponsored. The remaining actors were split between cybercriminal networks and hacktivist groups.
By geographic origin, Asia accounted for approximately two-thirds of state-linked threat actors, followed by Europe. Smaller proportions originated from cross-regional or Middle Eastern networks.
Authorities also identified that nearly half of coordinated cyber activities were organised through Telegram channels, while others operated through open web forums and dark web infrastructure.
Deepfakes and Digital Disinformation
Dr. Al Kuwaiti warned that deepfake technologies and fabricated digital content are increasingly being used to undermine trust, manipulate markets, and damage reputations.
While no official figure has been released on deepfake incidents directly targeting the UAE, authorities have observed the use of synthetic media depicting public figures in fraudulent contexts.
He said geopolitical tensions across parts of the Middle East and North Africa have intensified online narratives targeting the UAE, with AI-driven disinformation contributing to faster spread of rumours and coordinated digital activism.
National Cybersecurity Strategy 2025–2031
The UAE approved its National Cybersecurity Strategy 2025–2031 in February 2025, outlining a comprehensive framework to strengthen digital resilience. Central to the strategy is the National Security Operations Centre, which integrates multiple monitoring hubs nationwide to enable real-time intelligence sharing and coordinated response.
According to Dr. Al Kuwaiti, the strategy combines advanced technical detection systems, regulatory frameworks governing AI use, public awareness initiatives, and talent development programmes aimed at strengthening national cybersecurity capabilities.
The UAE also maintains active international cooperation channels for intelligence sharing and coordinated response to cross-border cyber threats, reinforcing its commitment to safeguarding digital infrastructure while supporting global cyber stability.
Daniel Carter covers UAE startups, venture capital, and AI innovation, delivering strategic, investigative reporting on emerging technology ecosystems.
