National Cyber Security Centre
Revamped cyber guide will help small businesses work securely online
The NCSC Small Business Guide has been revamped for 2020 as well as the response and recovery guidance.
- The NCSC’s ‘Small Business Guide’ sets out key areas for business cyber security
- Timely revamp will help organisations now operating online due to coronavirus
- Latest in a raft of measures from the NCSC, a part of GCHQ, to help small businesses thrive online
Small businesses will benefit from a revamped version of a popular guide telling them how to stay safe online that was published yesterday by cyber experts.
The National Cyber Security Centre’s (NCSC) re-launched Small Business Guide sets out five key areas for businesses to help improve their cyber security.
The new-look guidance arrives at a time when many organisations have moved their operations online due to the coronavirus pandemic. It highlights accessible and actionable steps to take which have little to no cost.
The five steps in the Guide, the original version of which was published in 2017, include advice on protecting passwords and avoiding email phishing attacks.
Sarah Lyons, NCSC Deputy Director for Economy and Society Engagement, yesterday said:
“Cyber security can seem overwhelming for some small business owners, but it’s never been more important to ensure that measures are in place to protect against online threats.
“That’s why the re-launch of our Small Business Guide is so timely, and I would strongly encourage businesses to consult it, whether they have previously done so or not.
“By acting on the guide’s five key recommendations, small businesses can significantly reduce their chances of falling victim to a cyber attack and help to keep their day-to-day operations running smoothly.”
The five recommended areas of focus are:
- Backing up your data: Top tips include keeping a back-up of data separate, reading our Cloud Security guidance, and backing up regularly.
- Protecting from malware: Top tips include switching on firewalls, preventing staff downloading dodgy apps, and controlling how USBs can be used.
- Keeping your smartphones (and tablets) safe: Top tips include making sure devices can be wiped remotely, not connecting to unknown Wi-Fi networks and keeping device software up-to-date.
- Using passwords to protect your data: Top tips include avoiding predictable passwords, using two-factor authentication, and changing default passwords.
- Avoid phishing attacks: Top tips include checking for obvious signs of phishing, reporting all attacks, and testing resilience using our Exercise in a Box tool
Earlier this year, a survey by the Department for Digital, Culture, Media and Sport (DCMS) found around half of micro and small businesses (52%) reported falling victim to a cyber security breach or cyber attack in the past year. The average cost to these businesses was nearly £1,000 – rising to more than £3,000 for some.
The Small Business Guide is part of a collection of NCSC guidance which has been reviewed and refreshed to offer up-to-date tips on implementing key security controls.
This includes the Small Business Guide: ‘Actions’ resource, which breaks down the recommendations into individual steps, and our Response and Recovery guidance which outlines how to prepare, manage, resolve and report an incident if one does occur.
Latest News from
National Cyber Security Centre
NCSC welcomes EU cyber sanctions against Russia following 2015 attack on Germany’s Parliament23/10/2020 13:15:00
EU cyber sanctions against Russia following a 2015 attack on Germany's Parliament have been welcomed by the NCSC.
Revamped cyber toolkit launched to support retailers improve defences22/10/2020 09:15:00
The British Retail Consortium’s (BRC) refreshed toolkit, developed alongside experts at the NCSC, will help retailers boost cyber defences.
UK and partners condemn GRU cyber attacks against Olympic and Paralympic Games20/10/2020 14:15:00
Russia warned by UK and allies against further destructive cyber attacks.
NCSC statement: Hackney Borough Council incident14/10/2020 09:15:00
The latest NCSC statement concerning an incident affecting Hackney Borough Council.
Sixth Huawei Cyber Security Evaluation Centre oversight board report published02/10/2020 16:15:00
The sixth Huawei Cyber Security Evaluation Centre oversight board report has now been published.
Cyber-savvy schools in Northern Ireland and North East given chance to join UK's finest30/09/2020 14:15:00
Applications open for schools in Northern Ireland and North East England to gain recognition for excellence in cyber security education through the CyberFirst Schools initiative.
Going for gold! Tech-savvy schools recognised for putting cyber skills first23/09/2020 11:15:00
Thirteen schools certified under the CyberFirst Schools initiative which rewards excellence in cyber security education.
Cyber security alert issued following rising attacks on UK academia18/09/2020 15:15:15
The NCSC has issued an alert to the academic sector following a spate of online attacks against UK schools, colleges and universities.