Cyber-security threats against housing providers aren’t stabilising, they are accelerating. In 2025, ransomware, data sellers and hacktivism activity increased by 23 per cent compared with the previous year, newly-formed ransomware groups rose by 30 per cent and attacks targeting housing and construction increased by 70 per cent.
We are now also seeing the first confirmed evidence of nation-state-backed threat groups using large language models (LLMs) such as Claude to orchestrate attacks, with AI agents performing the majority of intrusion activity. The most common initial access vector remains social engineering, but it is now AI-enhanced, faster and more convincing.
East & West
At the same time, governments across the UK, the US, Canada and Australia are strengthening their cyber legislation, recognising that critical national infrastructure is increasingly digital. China, Russia, Iran and North Korea continue to operate aggressively in cyberspace.
Russia is highly likely to use cyber-criminal ecosystems to obscure attribution. Iran is focusing on supply-chain compromise using identity and cloud-based access vectors. North Korea continues to generate significant revenue through cyber-theft.
The geopolitical environment is unstable and housing organisations are part of that digital ecosystem, regardless of whether they consider themselves to be part of the critical infrastructure.
A paradigm shift
Against this background, AI is becoming embedded in housing providers’ operations. The shift from chat-based AI to agentic AI is underway. These systems no longer simply respond to prompts; they execute workflows, interact with orchestration tools such as ServiceNow, Salesforce, Microsoft 365 and Dynamics, and take action across systems.
In housing, this is already improving the triaging of tenant cases, automating responses, enhancing repairs logging and strengthening predictive maintenance. AI-driven analytics are improving damp and mould detection, optimising asset investment decisions and streamlining finance, HR and compliance processes. Operational efficiency is increasing, and services to residents are becoming more responsive and personalised.
However, AI is also becoming an infrastructure for attackers. AI-enhanced phishing, vishing and deepfake impersonation are more realistic than ever. Malware development is increasingly AI-assisted, producing more autonomous and evasive threats. Toolkits are merging, lowering the skill barrier needed to launch sophisticated attacks. Threat actor collaboration is improving. In short, AI is increasing both capability and speed on both sides of the battlefield.
Looking ahead to 2026 and 2027, the trajectory is clear. AI-enhanced social engineering will become more convincing. AI-assisted malware will evade detection more effectively. Autonomous attack chains will move quickly and broadly. Housing providers will need to defend not only their endpoints and servers, but their AI models, data lakes, IoT devices and automated workflows. The attack surface expands as automation increases.
Positive & negative scenarios
The longer-term outlook towards 2032 depends heavily on geopolitics. Let’s take both a negative and positive outlook.
In a negative scenario, the UK fails to align strategically with European partners and becomes increasingly dependent on foreign ‘hyper-scalers’ and AI providers. The US uses a ‘kill switch’ as leverage on the UK to not rejoin and turns off platforms essential for the UK to running its critical services, leaving the nation exposed to powers from the East.
AI drives up unemployment as jobs are replaced with automations and agents, increasing social pressure. The digital-skills gap continues to widen across all UK markets as businesses fail to recruit into technical roles. People with any technical skills are drafted into the UK Cyber Defence Force to protect critical national infrastructure from persistent cyber-attacks from nation rogue states. Housing providers become overwhelmed as demand rises. Funding for cyber-defence tightens while attacks become continuous. Data is disrupted daily. Rogue AI agents target LLMs with the aim of poisoning data lakes and disrupting automated building management systems. Service continuity becomes inconsistent and fragile.
In a more positive 2032 scenario, the UK rejoins a strengthened European defence and cyber pact, aligned with Canada, Australia, New Zealand, Japan and South Korea. Cyber-defence coordination improves. AI governance is balanced between innovation and protection. AI agents begin to self-heal IT estates. IoT sensors and AI models control damp and mould proactively. Air quality and compliance problems become rare rather than reactive crises. Services to residents are seamless and personalised, with AI generating work packets for both human engineers and robotic systems. Employment stabilises as human and AI collaboration matures. AI and information become a recognised strategic battleground, protected by layered defensive agents across multiple security stacks.
Preparation is all
The question for housing leaders isn’t which future will occur, but how prepared their organisation is for either scenario. Cyber-resilience must be measured and demonstrated in business terms. Intelligence-led vulnerability management, strong identity controls, disciplined patching and multi-factor authentication are no longer optional. Threat intelligence must inform defensive posture. Data governance must be mature enough to understand where information resides, how it flows and how AI agents interact with it. Training and awareness programmes must evolve to include AI-driven threats.
AI is already delivering measurable benefits to housing services in 2026. It’s improving efficiency, compliance and tenant experience. Yet it’s simultaneously reshaping the threat landscape and amplifying geopolitical risk. Between now and 2032, housing providers will transition from digitally-enabled organisations to digitally-dependent infrastructure providers.
Resilience is key
The differentiator will be resilience. Those that invest now in intelligence, governance, identity security and AI-aware controls will strengthen trust and service continuity. Those that treat cyber as a technical afterthought will find themselves exposed in an increasingly-contested digital environment.
The future of housing technology isn’t just about adopting AI. It’s about securing it, governing it and building the resilience to operate confidently in an unstable world.
Richard Holland is the field CISO at Quorum Cyber.
