25% of UK businesses lack basic hacking safeguards

Over 20% of British firms were hit with a cyber attack last year, report finds

code

One in five UK businesses were targeted by cyber attacks over the past year, many of which lacked basic security measures to prevent the loss of personal data, according to a recent survey.

Today's report by the British Chamber of Commercerevealed that of 1,200 British businesses, 20% had suffered a cyber attack in the last 12 months.

Companies with more than 100 employees were the most likely to be hit (42%), compared to smaller firms (18%). The growing number of cyber attacks over the past year have led to a growing sense of unease among burgeoning UK businesses, with over 20% believing the threat is stifling company growth.

"Cyber attacks risk companies' finances, confidence and reputation, with victims reporting not only monetary losses but costs from disruption to their business and productivity," said Adam Marshall, director general of the British Chamber of Commerce.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

However, the survey also found that only a quarter (24%) of businesses have cyber security accreditations in place, or basic safeguards to prevent hacking attempts, despite the growing threat of attacks and the number of highly publicised data breaches over the past year.

"Firms need to be proactive about protecting themselves from cyber attacks," added Marshall. "Accrediations can help businesses asses their own IT infrastructure, defend against cyber security breaches and mitigate the damage caused by an attack. It can also increase confidence among the businesses and clients who they engage with online."

Telecom provider TalkTalk was hit with a record 400,000 fine in 2016 for its own security failings, which led to the hack of more than 150,000 customer details, including the sensitive financial data of more than 15,000 people. UK data protection regulator, the Information Commissioner's Office, believed the company could have prevented the hack had it invested in basic security precautions.

Stephanie Weagle, VP at Corero Network Security, said: "Attackers will always find new exploits and new attack methods of disrupting financial opportunity, extortion, accessing personally identifiable data and disrupting an organisations online availability."

"Cyber attack activity is prevelant today, more than ever - especially when it comes to DDoS attacks. These attacks are taking centre stage as the techniques have become much more sophisticated in nature," added Weagle.

Marshall called for greater clarity when it comes to dealing with the aftermath of a cyber attack, as 63% of UK businesses are reliant on IT providers for resolving issues, compared to 12% of banks and 2% of law enforcement, which typically rely on in-house expertise, the survey found.

Advertisement - Article continues below

This will become particularly important given the impending move to the EU's General Data Protection Regulation(GDPR) in May 2018, which will require any company handling EU citizens' personal data to comply with tougher legislation.

"Companies are reporting a reliance on IT support providers to resolve cyber attacks," said Marshall. "More guidance from government and police about where and how to report attacks would provide businesses with a clear path to follow in the event of a cyber security breach."

Featured Resources

Digitally perfecting the supply chain

How new technologies are being leveraged to transform the manufacturing supply chain

Download now

Three keys to maximise application migration and modernisation success

Harness the benefits that modernised applications can offer

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

The 3 approaches of Breach and Attack Simulation technologies

A guide to the nuances of BAS, helping you stay one step ahead of cyber criminals

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/29068/is-your-company-taking-enough-accountability-on-cybersecurity
Security

Are you taking enough accountability on cyber security?

18 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019
Visit/security/29204/how-can-you-protect-your-business-from-crypto-ransomware
Security

How can you protect your business from crypto-ransomware?

4 Nov 2019

Most Popular

Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020
Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020
Visit/policy-legislation/general-data-protection-regulation-gdpr/354577/data-protection-fines-hit-ps100m
General Data Protection Regulation (GDPR)

Data protection fines hit £100m during first 18 months of GDPR

20 Jan 2020