The Impact Of Cybercrime On UK Business

Figures published by the government in 2017 revealed that almost half of all UK firms were hit by a cyber breach or attack in the previous year. Business leaders must be fully prepared in the increasingly complicated fight against breaches of data, hacking and phishing scams.

The number of attacks is rising each year, and it has been estimated that online fraud and cybercrime cost the UK over £11bn in 2016. All of which explains why the issue of cyber security is no longer just a priority for the IT department, but also for the boardroom…

The IoD Open House event in March, amongst other topics, shed light on the often confusing world of online security and data protection, with a number of speakers, sessions, and panel discussions.

Here are seven shocking cyber security facts to bear in mind when considering your business presence online:

1. The UK’s 5.4 million small businesses are collectively attacked more than seven million times a year

This costs the UK economy a staggering £5.26bn, according to a survey carried out by the Federation of Small Businesses. Although 93 per cent of small businesses have some kind of cyber security in place, around 66 per cent have been a victim of cyber-crime in the last two years. During that period, those affected have been victims on four occasions on average.

2. One of the biggest threats to data safety can come from BYOD ¬– “bring your own device”

In many cases when staff bring personal devices such as laptops, tablets and smartphones into work, they are not protected by the company’s security network, which presents an opportunity for hackers to directly access company data through these devices. Be particularly vigilant in the period after Christmas when new devices are being used for the first time.

3. ‘Whaling’ has become a boom industry

In 2016, Austrian aerospace parts maker FACC was swindled out of a colossal €42m (£37m) by hackers using a phishing scam known as ‘whaling’. This scam targets a company’s CEO or finance by tricking them into rushing through a large payment for a fake acquisition.

According to a report by the Federal Bureau of Investigation (FBI) in June last year, identified losses from this type of scam came to £3.1bn (£2.4bn) and had risen by 1,300 per cent in 18 months.

4. Over 43 per cent of IoD members don’t know where their company’s data is physically stored

The IoD conducted a Policy Voice Survey in 2016 focusing specifically on cyber security, investigating how fast the pace of technology is changing our members’ attitudes and views on cyber security.

The fact that so many respondents didn’t know where their data is stored is a truly frightening statistic. It effectively means businesses are losing control of their organisation’s data, which may well be the biggest asset of a business.

5. 72 per cent of respondents to the IoD’s Policy Voice survey have received a bogus invoice

This shows the extent of social engineering and how the internet can be used to defraud businesses. Along with false house purchase completion requests for solicitors, this is truly alarming, and is why human interaction with technology needs to be failsafe, and why cyber is becoming a largely human problem.

6. Cyber-crime accounted for almost 30 per cent of all crimes recorded in the UK from July 2016 to July 2017

Figures issued by Office for National Statistics revealed an alarming fact about the extent of online crime in this country. There were also 2.5 million incidents of bank and credit card fraud. It should also be noted that these are only cases reported to the authorities; the real figure is undoubtedly and significantly higher.

7. On average, it takes 120 days for a business to know that its data has been compromised

According to a UK government report published in 2016, 25 of the large firms who detected a cyber security breach or attack in the past year experienced a breach at least once per month.

Institute of Directors

You Might Also Read: 

UK Police Cybercrime Training:

Cybercrime Costs Londoners £26m Every Month:

Cybercrime Costs Over $600 Billion Annually:

« Leaked Emails Expose Russian Exploits In Ukraine
SpaceX Plan For 4k Satellite Broadband Network »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Zymr

Zymr

Zymr specialize in cloud computing solutions including Cloud Security, Cloud Mobility, Cloud Apps, Cloud Infrastructure and Cloud Orchestration.

TÜV Informationstechnik (TÜViT)

TÜV Informationstechnik (TÜViT)

TÜViT is a leading service provider in the IT sector offering unbiased and independent tests and certifications of IT products, hardware, software, systems and processes.

Zix

Zix

Zix offers secure email encryption, threat protection, archiving, DLP and BYOD security for hospitals, financial services, government, and more.

TSARKA

TSARKA

TSARKA (formerly the Center for Analysis & Investigation of Cyber Attacks - CAICA) is a leader in cybersecurity in Central Asia, playing a key role in protecting government and private IT assets.

EUROCONTROL

EUROCONTROL

EUROCONTROL is a pan-European, civil-military organisation dedicated to supporting European aviation. We help our stakeholders protect themselves against cyber threats.

MISP Project

MISP Project

The MISP threat sharing platform is a free and open source software helping information sharing of threat intelligence including cyber security indicators.

Clario Tech

Clario Tech

Clario is a simple, comprehensive, personalized protection app. It comes with a full suite of intelligent security software and intelligent people to help you live a better, safer digital life.

Vijilan Security

Vijilan Security

Vijilan provides 24/7 SOC services to MSPs/VARs. Our Security Operations Center is global, and our services are exclusive to the Channel.

Cyphere

Cyphere

Cyphere is a cyber security company that helps to secure most prized assets of a business. We provide technical risk assessment (pen testing/ethical hacking) and managed security services.

Vietnamese Security Network (VSEC)

Vietnamese Security Network (VSEC)

Vietnamese Security Network (VSEC) is an information security company providing website vulnerability scanning and monitoring services.

ATSG

ATSG

ATSG is a global leader in transformational technology solutions for today’s digital enterprise. Cybersecurity ranging from Advisory & Assessment to Fully Managed Detection and Response Services.

Conceal

Conceal

Conceal’s mission is to stop ransomware and credential theft for companies of all sizes by developing innovative solutions that provide social engineering protection in any browser.

AKIPS

AKIPS

AKIPS develops the world's most scalable network and infrastructure monitoring software, delivered as a turn-key software appliance.

GoCloud Systems

GoCloud Systems

GoCloud is an IT consulting firm. We provide IT strategy and cloud adoption services to the New Zealand Government, Non-Profit Organisations and private industry.

CASwell

CASwell

Caswell is an industry-leading OEM/ODM specializing in networking, security, SD-WAN, NFV, telecommunication and IoT applications.

ThreatMate

ThreatMate

ThreatMate empowers businesses with comprehensive tools to detect, protect, and remediate against cyber threats.