Cyber risks – are businesses really ready?
The Hiscox Cyber Readiness report, a review of 3300 organisations, will be a stark warning for CEO’s of SME’s in the UK and in Europe.
The Hiscox Cyber Readiness report, a review of 3300 organisations, will be a stark warning for CEO’s of SME’s in the UK and in Europe.
Whilst prevention of cyber-attacks through security is part of the solution, the fact that the largest increase in targeted attacks, some 59%, was seen in small and medium sized businesses (up to 250 employees) is a concern.
Across the survey the most likely victim of an attack was in the technology, media and telecoms industry, which is where a significant number of start-ups develop their businesses. This sector is where there is reliance on devices and technology, and financial constraints which mean they operate without perhaps underpinning security features seen in the larger more established businesses. Of interest however is the fact that government systems are not immune – with 71% reporting attacks, up from 55% the previous year. Despite the government initiative to replace legacy systems following the Wannacry attack in 2017, the statistic seems to suggest public services and the public purse remain vulnerable and at risk.
The supply chain has rightly been exposed as a weak link – with 65% of respondents experiencing an attack in the past 12 months through their suppliers. How effectively cyber risk is mitigated down the line for example with rights to audit and suitable indemnities in supplier contracts, remains unclear.
One final key factor is the cost to business. In the UK, the average cost of all incidents was up to $243,000 (£186,000). The high incidence of data loss (customer and employee) despite GDPR, IP theft and more sophisticated ransomware and DDoS reflects the sharp 61% increased average cost across all sectors.
So, are businesses ready? With justification GDPR has pushed the issue up the agenda. The reality is with the 'clean up' cost not insignificant, most organisations cannot afford to be without a clear IT strategy and response plan, and effective security, which comes at a price. For good measure, perhaps, one should also look to take out a cyber policy?
Contact
Paul Wainwright
Partner
paul.wainwright@brownejacobson.com
+44 (0)121 237 4577
Related expertise
You may be interested in...
Legal Update
PPN 01/24: Carbon reduction contract schedule
Legal Update
Understanding the ICO's new fining guidance
Press Release
Fixing local government standards regime would help us to do our jobs, say monitoring officers at Browne Jacobson and LGiU roundtable
Press Release
Browne Jacobson advises Bluprintx on its acquisition of Definitive Results
Press Release
Browne Jacobson wins UK Impact Case of the Year at the Managing IP EMEA Awards 2024
Legal Update
AI deep fake fraud exposed - five key lessons and how we need to respond
Legal Update
Landmark judgment in OCS Group UK Limited v Community Health Partnerships Limited
Legal Update
ICO consultation on accessing care records: A legal perspective
Legal Update
Government updates guidance on holiday rules: What employers need to know
Legal Update
Forest Risk Commodities regulations: Steps food businesses should take
Legal Update
Subsidy control guidance update - welcome guidance on “small subsidies” introduced
Legal Update
Cyber-attacks in UK universities: Why failing to prepare is no longer an option
Opinion
R (Willmott) v Eastbourne Council: High Court rules council can deny social housing to disabled ex-tenant over anti-social behaviour
Legal Update
Artificial intelligence – shaping a sustainable future
Published Article
Government's asset sale plan: Short-term fix or long-term disaster?
Legal Update - Public matters newsletter
Public matters - March 2024
Press Release
Spring Budget 2024: Browne Jacobson reaction
Legal Update
Not quite a blanket ban on mobile phones in schools: DfE guidance insights
Legal Update
ASA ruling on Calvin Klein FKA Twigs advertisement
Press Release
Browne Jacobson successful for National Lottery in Court of Appeal
Legal Update
Charity law update – March 2024
Opinion
Caregivers at work: Navigating new carer's leave regulations
On-Demand - Shared Insights
Shared Insights: Sexual safety in the workplace — how leaders can help to create a sexual safety culture
Opinion
EHRC publishes new guidance on menopause and the workplace
Legal Update
Gatekeepers under the DMA – TikTok’s battle to have its designation revoked
Press Release
Browne Jacobson supports establishment of East Midlands Combined County Authority
Press Release
At the forefront of society’s biggest issues - a reflection of our public sector work throughout 2023
Legal Update
Churchill v Merthyr Tydfil Council: A game changing decision for local authorities
Legal Update
The Home Affairs Committee launched another inquiry into fraud - Stop! Think Fraud
Legal Update
Progress on the Automated Vehicles Bill
Press Release
Browne Jacobson’s intellectual property lawyers ranked in World Trademark Review 2024
Legal Update
UK falls to lowest position for corruption – so what’s going wrong?
Legal Update
Streamlined routes for subsidies
Legal Update - Public matters newsletter
Public matters - January 2024
Legal Update - Procurement Act
Procurement reform: Making poor performance a thing of the past
Legal Update
Data protection in higher education: what to expect in 2024
Legal Update
Veganism and manufacturing: IP protection
Legal Update
Veganism and manufacturing: Advertising pitfalls
Legal Update
The rise of AI in construction
