Most British Workers Are Unaware Of Cyber Threats

One of the key ways to defend your organisation against cyber attacks involves your own employees. 

In Britain, there isa significant lack of awareness among workers about cyber security, this is despite 60% of workers admitting they have fallen victim to a cyber attack, according to a new study by business security platform, Armis.

Armis surveyed  2,000 UK employees and found that only around a quarter (27%) are aware of the associated cyber risks, while one in 10 (11%) don’t worry about them at all.  The most prevalent types of attacks experienced by workers or their organizations were phishing (27%), data breaches (23%) and malware (20%). 

Despite 60% of respondents admitting to having been affected by a cyber attack, the study found a general lack of awareness towards cyber security. The study also revealed growing concerns about the scale of the cyber-threats facing the UK. A large-scale cyber-attack was ranked as the fourth biggest future concern (21%) among the respondents, equal to the UK going to war. Two-fifths (40%) said they would like to see a minister for cyber security installed to ensure the issue is focused on more at a government level.

The survey found that Russian-backed cyber criminals are considered the biggest threat to Britain's cyber security (20%) by the respondents, followed by financially motivated cyber criminals (17%)  followed by Chinese-backed cyber criminals (16%).

It’s clear that cybersecurity awareness and training must be made a priority within the UK government... This is an issue that must be addressed from the top down. Moving forward, more emphasis should be placed on security awareness training as well as technology controls that give organisations a full picture of risk exposure." commented Conor Coughlan, General Manager EMEA at Armis.

Organisations need to invest the time and resources into both employee education and security technology as a two-pronged approach toward combating attacks.

According to the specialist incident response firm BreachQuest, organisations should take the following measures:

  • Hire dedicated security awareness people that aren't engineers but rather marketing professionals who know how to engage an audience to educate your employees.
  • Implement technical tools that prevent people from making easily preventable errors.
  • Set up multifactor authentication, especially for email systems, VPNs and privileged accounts.
  • Remove local admin privileges for standard users.
  •  Adopt a password manager across your organisation to improve and ease password security for all employees.

"Organisations need to understand the importance of investing in the right security to protect themselves and their customers and to avoid experiencing any downtime." according to Coughlan.

To protect themselves and your business against phishing campaigns, malware and other types of attacks, your workers should be regularly trained to have an effective level of awareness of cyber incidents and security best practices. 

Armis:       Techrepublic:     Security Magazine:     Infosecurity Magazine:    Techjury:     Ein News:   

You Might Also Read: 

Britain Is Fighting A Ransomware Epidemic:

 

« British Plan To Become A ‘Global Cyber Power’ In 2022
Britain's HMRC Tax Agency Admits Numerous Data Breaches »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ThetaRay

ThetaRay

ThetaRay’s solution for Industrial cyber security protects against unknown cyber-attacks that target industry and critical infrastructure.

Ideagen

Ideagen

Ideagen provides information management, safety, risk and compliance software solutions that allow organisations to achieve operational excellence, regulatory compliance and reduce risk.

Total Defense

Total Defense

Total Defense solutions include anti-malware, anti-virus, intrusion prevention & mobile security.

RazorSecure

RazorSecure

RazorSecure offers products and services to enhance railway cyber security, by protecting and monitoring networks and key systems.

Bridewell

Bridewell

Bridewell provide cost effective Security & Risk Assurance Services across Information Security, Cyber Security, Technology Risk, Security Testing and Data Privacy.

Global Cyber Security Capacity Centre (GCSCC) - Oxford University

Global Cyber Security Capacity Centre (GCSCC) - Oxford University

GCSCC's work is focused on developing a framework for understanding what works, what doesn’t work and why – across all areas of cybersecurity capacity.

Astaara

Astaara

Astaara is an integrated insurance services and risk management advisory business incorporating cyber risk advisory, underwriting and analytics.

Avertium

Avertium

Avertium is the managed security and consulting provider that companies turn to when they want more than check-the-box cybersecurity.

ToucanX

ToucanX

ToucanX has eliminated remote attack vectors without sacrificing productivity. We’ve brought embedded near real time virtualization to the enterprise endpoint.

Prodera Group

Prodera Group

Prodera Group is a specialist technology consulting partner trusted to help navigate the complex and dynamic lifecycle of change and transformation.

cleverDome

cleverDome

cleverDome has created the first community built and proven model that redefines the standards for protecting the most confidential data and information of consumers in the cloud.

ramsac

ramsac

ramsac provide secure, resilient IT management, cybersecurity, 24 hour support and IT strategy to businesses in London and the South East.

Red Goat Cyber Security

Red Goat Cyber Security

Red Goat Cyber Security have created excellent, informative and interactive Social Engineering Awareness training which is suitable for all levels of staff.

SMARTEST

SMARTEST

SMARTEST is a world-class IT solutions provider active in the most challenging and demanding industries such as the oil and gas industries.

Cyrex

Cyrex

Cyrex is a Web3 security and development company. Our mastery over decentralized applications, smart contracts and blockchain will keep you secure across Web3.

UberEther

UberEther

UberEther are a dedicated group of software developers and consultants developing and deploying the next generation of identity management and cloud solutions.