Half Of All Canadian Businesses Hacked

A new survey has terrifying implications for Canadian businesses across the country.

Conducted by marketing research firm Ipsos Canada on behalf of Calgary-based accounting, tax and business consulting firm MNP LLP, the survey found that nearly 60 per cent of Canadian small business owners and C-suite executives either suspect or know for certain they were the victims of an external cyber-attack during the last year, with 50 per cent of C-suite executives indicating that they know for certain that their company experienced a breach.

An additional three in 10 suspected their company was the victim of a breach in the past year, but didn’t know for certain.

And despite the overwhelming evidence indicating otherwise, eight executives in 10 reported being confident in their business’s ability to prevent an external hacking attempt, while 93 per cent of survey respondents indicated confidence in their ability to protect customer data.

In a 7 statement, former Canadion National Police  investigator and current MNP vice president of valuations, forensics, and litigation support Greg Draper called cyberattacks “a reality of doing business,” but added that the survey underlined just how poorly Canadian businesses are equipped to address them.

“There is a significant gap between the perceived preparedness of businesses and the number of data breaches occurring,” Draper said. 

“The number and sophistication of hackers is growing at light speed, but businesses are not evolving their prevention and detection strategies at the same rate. Developing an effective defense against external fraud is an exercise in continuous improvement, not just set-it-and-forget-it. That’s the part that businesses are missing here.”

For example, Draper called it “startling” that only 54 per cent of C-suite executives and small business owners reported using cybersecurity measures such as firewalls.

The findings were especially surprising given that upcoming changes to Canadian privacy laws will require Canadian companies to log and disclose all breaches, Draper noted.

“Along with the costs of a potential business disruption or loss of confidential information, businesses will start to see the breach-related expenses climb sharply when they are forced to publically disclose them,” he said. 

“Loss of customer confidence and potential legal action, fines for non-compliance and the resources to ascertain exactly how hackers got in and then implementing new security measures – the proactive approach to mitigating external fraud risk is far more cost-effective.”

In conducting the online survey, Ipsos polled 1000 owners of small businesses with between five and 99 employees, and 100 C-suite executives at businesses with more than 100 employees, between Jan. 17 and Jan. 26, 2017.

IT World Canada

You Mighy Also Read

Four Steps To Managing Cyber Security Better:

Strategies To Prevent 85% Of Cyber Attacks:

Directors Report January 2017. Cyber Security Checklist For Management (£):

 

 

« Strategies To Prevent 85% Of Cyber Attacks
Insurers Get Much More Cautious About Cyber Risk »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Checkmarx

Checkmarx

Checkmarx provides state-of-the-art application security solutions with static code analysis software.

CSO

CSO

CSO serves enterprise security decision-makers and users with the critical information they need to stay ahead of evolving threats and defend against criminal cyberattacks.

Security Audit Systems

Security Audit Systems

Security Audit Systems is a website security specialist providing website security audits and managed web security services.

BrainChip

BrainChip

BrainChip is the leading provider of neuromorphic computing solutions, a type of artificial intelligence that is inspired by the biology of the human neuron - spiking neural networks.

infySEC

infySEC

InfySEC is an information security services organization offering Security Technology services, Security Consulting, Security Training, Research & Development.

Lithuanian National Accreditation Bureau

Lithuanian National Accreditation Bureau

Lithuanian National Accreditation Bureau is the national accreditation body for Lithuania. The directory of members provides details of organisations offering certification services for ISO 27001.

Software Diversified Services (SDS)

Software Diversified Services (SDS)

SDS provides the highest quality mainframe software and award-winning, expert service with an emphasis on security, encryption, monitoring, and data compression.

Flix11

Flix11

Flix11 is a Cyber Security & ICT Solutions focused company. We provide a range of products and services in Cyber Security, Internet of Things (IoT) and infrastructure solutions.

Cybersecurity Center for Secure Evolvable Energy Delivery Systems (SEEDS)

Cybersecurity Center for Secure Evolvable Energy Delivery Systems (SEEDS)

SEEDS conducts research and develops innovative cybersecurity technologies, tools, and methodologies that advance the energy sector’s ability to survive cyber incidents.

Intracom Telecom

Intracom Telecom

Intracom Telecom is a global telecommunication systems & solutions vendor offering a complete range of professional services and solutions including Information Security.

4Securitas

4Securitas

4Securitas is an innovative cyber security firm focused on protecting critical data at the core of every organisation.

KingsGuard Solutions

KingsGuard Solutions

KingsGuard Solutions is a San Diego Cybersecurity company that specializes in complex and innovative security solutions for companies throughout Southern California.

AddSecure

AddSecure

AddSecure is a leading European provider of secure IoT connectivity and end-to-end solutions.

Google Safety Engineering Center (GSEC)

Google Safety Engineering Center (GSEC)

GSEC Málaga is an international cybersecurity hub where Google experts work to understand the cyber threat landscape and to create tools that keep users around the world safer online.

Revytech

Revytech

Revytech is a tech company providing services in a broad range of areas including IT operations, cyber security and network engineering.

Quantum Dice

Quantum Dice

Quantum Dice is an award-winning venture-backed spinout from Oxford University’s world-renowned quantum optics laboratory.