|It’s like an ‘perpetual state of war’ where individual ‘battles’ may be won but one knows there will always be others to be ‘fought’|
The Cyber Security Breaches Survey 2017 reveals nearly 7 in 10 large businesses identified a breach or attack, with the average cost to large businesses of all breaches over the period being £20,000 and in some cases reaching £ms. The survey also shows businesses holding electronic personal data on customers were much more likely to suffer cyber breaches than those that do not (51% compared to 37%).
The most common breaches or attacks were via fraudulent emails - for example coaxing staff into revealing passwords or financial information, or opening dangerous attachments - followed by viruses & malware, such as people impersonating the organisation online and ransomware.
Businesses also identified these common breaches as their single most disruptive breach, and the vast majority of them could have been prevented using the Government-backed, industry supported Cyber Essentials scheme, a source of expert guidance showing how to protect against these threats.
Small businesses can also be hit particularly hard by attacks, with nearly 1 in 5 taking a day or more to recover from their most disruptive breach. Cyber Essentials, technical advice on CiSP and regularly updated guidance on the NCSC website offers companies, big & small, simple steps that can significantly reduce the risk of a successful attack.All businesses which hold personal data will have to make sure they are compliant with the new General Data Protection Regulation (GDPR) legislation from May 2018. This will strengthen the right to data protection, which is a fundamental right, and allow individuals to have trust when they give their personal data.