New analysis from Securitas’ Risk Intelligence shows activist activity has accelerated sharply over the past year, evolving from external protest into sustained, multi-front campaigns that now target not only companies, but their people, partners and operations.
Crucially, the findings highlight a growing convergence between external activism and internal workforce pressures – a shift that is elevating the risk of insider-enabled disruption, including data leaks, operational interference and misuse of corporate systems.
Organisations perceived to be falling short on ESG commitments – including net zero delivery and DEI – continue to attract significant activist attention.
But the risk landscape is now broadening, as restructuring, automation and technology-driven job losses fuel labour rights activism and heighten employee sensitivity.
Securitas Risk Intelligence indicates these dynamics are creating conditions where activist campaigns can be amplified from within.
“This is no longer about isolated protests – it’s sustained, strategic pressure,” said Mike Evans, Director of Securitas’ Risk Intelligence Centre.
“Businesses are being targeted across multiple fronts simultaneously – from coordinated social media campaigns and reputational pressure, to supply chain disruption, executive targeting and internal data exposure.”
For businesses, the implications extend far beyond physical security. Risks now include sustained reputational pressure, impacts to investor and consumer confidence, increased executive protection costs, operational disruption, and heightened legal and regulatory exposure.
Securitas warns that many organisations remain structurally unprepared for this shift, particularly where security, HR, risk and communications functions operate in silos.
Instead, experts are urging a more integrated, intelligence-led approach. This includes assessing how corporate decisions and public positioning may trigger activist mobilisation; monitoring workforce sentiment alongside external sentiment; and strengthening early detection of insider risk.
“Organisations relying on reactive, site-specific responses risk falling behind events,” Evans concluded.
“As activist tactics continue to evolve, Securitas’ Risk Intelligence emphasises that businesses must move beyond siloed approaches. A joined-up, proactive strategy – combining external intelligence with internal insight – will be critical to anticipating risk, protecting operations, and building long-term resilience.” For more information on the security risks dominating the threat landscape, read Securitas’ Annual Intelligence Estimate 2026.
