7 July London bombings intelligence review
The intelligence reports concluded that while MI5 had previously encountered two of the 7/7 bombers, they were considered "peripheral" to other plots, and the failure to stop them was a result of resource prioritisation rather than a "negligent" intelligence failure.
Following the 7 July 2005 bombings, the Intelligence and Security Committee (ISC) was tasked with investigating what the UK security services (MI5) and police knew about the attackers before the event. Unlike the Coroner’s Inquest, which focused on the victims and the immediate response, the ISC report dealt with the "secret" history of the plot. The investigation was released in two main phases: a preliminary report in May 2006 and a more detailed, 100-page review in May 2009 titled "Could 7/7 Have Been Prevented?"
The 2006 report revealed that Mohammad Sidique Khan (the ringleader) and Shehzad Tanweer had appeared on the periphery of "Operation Crevice"—a previous surveillance operation into a different fertiliser bomb plot in 2004. However, they were not identified as high-priority targets at that time. The 2009 review went deeper, investigating why MI5 had not "joined the dots" on Khan, whose name had appeared in multiple databases linked to various addresses and telephone numbers.
The inquiry found that MI5 was operating under immense pressure, with its resources stretched to the limit by an ever-growing list of "A-list" terror targets. Khan and Tanweer were categorized as "desirable" rather than "essential" to investigate. The report concluded that MI5 had behaved reasonably given the intelligence they had and the finite resources at their disposal. It rejected claims of a "cover-up" but was critical of the lack of transparency regarding national threat levels, which at the time were kept secret from the public.
By 2026, this report is viewed as the catalyst for the modern "data-led" approach to British counter-terrorism. It led to a massive expansion of MI5’s budget and staff, as well as the creation of the Joint Terrorism Analysis Centre (JTAC). It also forced a fundamental shift in how the government communicates danger to the public, moving away from secret classifications to the public threat-level system (Critical, Severe, etc.) that remains in use today.
Key numbers at a glance
12
Recommendations
42
Months to complete
Cost in millions (if known)
52
Deaths (direct)
Recommendations
Recommendation Category | Summary of Advice | Current Implementation Status |
Threat Transparency | Publicly disclose the national threat level to increase public awareness and vigilance. | Implemented (The 5-tier threat level system became public in 2006). |
Data Integration | MI5 to implement better IT systems to "join the dots" between peripheral subjects. | Implemented (Significantly enhanced by the 'Exploiting Data' strategy, 2025). |
MI5 Regionalization | Expand MI5’s presence outside of London to better monitor regional threats. | Implemented (Regional hubs, including MI5 North, established). |
Intelligence Oversight | Strengthen the ISC’s powers to access operational files, not just summaries. | Implemented (Enacted via the Justice and Security Act 2013). |
Resource Allocation | Significant increase in funding to ensure "peripheral" leads can be properly vetted. | Implemented (MI5 staff nearly tripled between 2005 and 2024). |
Podcasts by Inquests and Inquiries
Podcasts by other providers
Downloadable files
Links to other resources
Intelligence Review: Could 7/7 Have Been Prevented?
ISC Government Response: Response to the 2009 ISC Review (Cm 7618)
Select videos
Some useful videos (if available)
Video slider
Useful playlist (if available)