Most British Workers Are Unaware Of Cyber Threats

Uploaded on 2021-12-29 in TECHNOLOGY--Resilience, GOVERNMENT-National, FREE TO VIEW

One of the key ways to defend your organisation against cyber attacks involves your own employees. 

In Britain, there isa significant lack of awareness among workers about cyber security, this is despite 60% of workers admitting they have fallen victim to a cyber attack, according to a new study by business security platform, Armis.

Armis surveyed  2,000 UK employees and found that only around a quarter (27%) are aware of the associated cyber risks, while one in 10 (11%) don’t worry about them at all.  The most prevalent types of attacks experienced by workers or their organizations were phishing (27%), data breaches (23%) and malware (20%). 

Despite 60% of respondents admitting to having been affected by a cyber attack, the study found a general lack of awareness towards cyber security. The study also revealed growing concerns about the scale of the cyber-threats facing the UK. A large-scale cyber-attack was ranked as the fourth biggest future concern (21%) among the respondents, equal to the UK going to war. Two-fifths (40%) said they would like to see a minister for cyber security installed to ensure the issue is focused on more at a government level.

The survey found that Russian-backed cyber criminals are considered the biggest threat to Britain's cyber security (20%) by the respondents, followed by financially motivated cyber criminals (17%)  followed by Chinese-backed cyber criminals (16%).

It’s clear that cybersecurity awareness and training must be made a priority within the UK government... This is an issue that must be addressed from the top down. Moving forward, more emphasis should be placed on security awareness training as well as technology controls that give organisations a full picture of risk exposure." commented Conor Coughlan, General Manager EMEA at Armis.

Organisations need to invest the time and resources into both employee education and security technology as a two-pronged approach toward combating attacks.

According to the specialist incident response firm BreachQuest, organisations should take the following measures:

  • Hire dedicated security awareness people that aren't engineers but rather marketing professionals who know how to engage an audience to educate your employees.
  • Implement technical tools that prevent people from making easily preventable errors.
  • Set up multifactor authentication, especially for email systems, VPNs and privileged accounts.
  • Remove local admin privileges for standard users.
  •  Adopt a password manager across your organisation to improve and ease password security for all employees.

"Organisations need to understand the importance of investing in the right security to protect themselves and their customers and to avoid experiencing any downtime." according to Coughlan.

To protect themselves and your business against phishing campaigns, malware and other types of attacks, your workers should be regularly trained to have an effective level of awareness of cyber incidents and security best practices. 

Armis:       Techrepublic:     Security Magazine:     Infosecurity Magazine:    Techjury:     Ein News:   

You Might Also Read: 

Britain Is Fighting A Ransomware Epidemic:

 

« British Plan To Become A ‘Global Cyber Power’ In 2022
Britain's HMRC Tax Agency Admits Numerous Data Breaches »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Riverbed Technology

Riverbed Technology

The Riverbed Network and Application Performance Platform enables organizations to visualize, optimize, accelerate and remediate the performance of any network for any application.

CERT-MU

CERT-MU

CERT-MU is the Mauritian National Computer Security Incident Response Team.

ThaiCERT

ThaiCERT

ThaiCERT is the national Computer Security Incident Response Team (CSIRT) for Thailand.

Xcitium

Xcitium

Xcitium (formerly Comodo) is and industry leading provider of state-of-the-art endpoint protection solutions. Our Zero threat platform isolates and removes all ransomware & malware infectictions.

SISA

SISA

SISA is a global forensics-driven cybersecurity solutions company, trusted by leading organizations for securing their businesses with robust preventive and corrective cybersecurity solutions.

Jiran Security

Jiran Security

Jiran Security provides data and application security solution over email, mobile device and endpoints.

BlueKrypt

BlueKrypt

BlueKrypt is a consulting firm for the security of IT systems and their management.

Exponential-e

Exponential-e

Exponential-e provide Cloud and Unified Communications services and world-class Managed IT Services including Cybersecurity.

Pinpoint Search Group

Pinpoint Search Group

Pinpoint Search Group's recruiters specialize in Information Management, Cyber Security, Cloud and Robotic Process Automation (RPA).

Converge Technology Solutions

Converge Technology Solutions

Converge Technology Solutions Corp. is a North American IT solution provider delivering advanced analytics, cloud, cybersecurity, and managed services solutions.

ThreatReady Resources

ThreatReady Resources

ThreatReady reduces an organization’s risk by delivering cyber security awareness training based on the latest, state-of-the-art learning science to effectively drive long-term cyber-safe behavior.

doIT Solutions

doIT Solutions

doIT solutions specialize in IT security and infrastructure, security automation, data center, and cybersecurity.

Cyber Tzar

Cyber Tzar

Cyber Tzar is a new approach at dealing with an old problem; assessing and managing risks to your IT estate.

Bright Data

Bright Data

Bright Data Inc is the world’s #1 web data platform, enabling organizations to research, monitor, analyze data, and make better decisions.

IPKeys Cyber Partners

IPKeys Cyber Partners

IPKeys Cyber Partners, together with the IPKeys Power Partners unit, provide Cyber Security and CIP Compliance for utilities, grid operators and public safety organization across the USA.

Qryptonic

Qryptonic

Qryptonic pioneers next-generation cybersecurity by leveraging the unparalleled capabilities of quantum computing to defend against evolving threats.