Almost half of UK business hit by cyber crime
UK-based businesses of all sizes are being urged to protect themselves against cyber crime after new government statistics showed nearly half of all UK businesses suffered a cyber breach or attack in the past year.
The Cyber Security Breaches Survey 2017 reveals nearly seven out of 10 large businesses identified a breach or attack, with the average cost to large businesses of all breaches over the period being £20,000 and in some cases reaching millions.
The survey also shows that personal data is still a lure for criminals, with businesses holding electronic personal data on customers much more likely to suffer cyber breaches than those that don't (51 per cent compared to 37 per cent).
The most common attacks detected were via fraudulent emails -- for example coaxing staff into revealing passwords or financial information, or opening dangerous attachments -- followed by viruses and malware, such as people impersonating the organization online and ransomware.
"UK businesses must treat cyber security as a top priority if they want to take advantage of the opportunities offered by the UK’s vibrant digital economy," says Ciaran Martin, CEO of the National Cyber Security Centre (NCSC). "The majority of successful cyber attacks are not that sophisticated but can cause serious commercial damage. By getting the basic defenses right, businesses of every size can protect their reputation, finances and operating capabilities."
Other findings include that almost a quarter of the businesses that suffered a breach or attack had a temporary loss of files, a fifth had software or systems corrupted, one in 10 lost access to third-party systems they rely on, and one in 10 had their website taken down or slowed. Small businesses are hit particularly hard by attacks, with nearly one in five taking a day or more to recover from their most disruptive breach.
The good news is that following a number of high profile cyber attacks, businesses are taking the threat seriously, with three quarters of all firms saying cyber security is a high priority for senior managers and directors. Nine out of 10 businesses regularly update their software and malware protection, and two thirds of businesses invest money in cyber security measures.
The NCSC is seeking to increase the UK's cyber space resilience by working with and providing expert advice tailored to organizations and businesses in every sector of the UK economy and society. "Cyber Essentials, technical advice on CiSP and regularly updated guidance on the NCSC website offers companies, big and small, simple steps that can significantly reduce the risk of a successful attack," adds Martin.