0370 270 6000

Cyber risks – are businesses really ready?

14 June 2019

The Hiscox Cyber Readiness report, a review of 3300 organisations, will be a stark warning for CEO’s of SME’s in the UK and in Europe.

Whilst prevention of cyber-attacks through security is part of the solution, the fact that the largest increase in targeted attacks, some 59%, was seen in small and medium sized businesses (up to 250 employees) is a concern.

Across the survey the most likely victim of an attack was in the technology, media and telecoms industry, which is where a significant number of start-ups develop their businesses. This sector is where there is reliance on devices and technology, and financial constraints which mean they operate without perhaps underpinning security features seen in the larger more established businesses. Of interest however is the fact that government systems are not immune – with 71% reporting attacks, up from 55% the previous year. Despite the government initiative to replace legacy systems following the Wannacry attack in 2017, the statistic seems to suggest public services and the public purse remain vulnerable and at risk.

The supply chain has rightly been exposed as a weak link – with 65% of respondents experiencing an attack in the past 12 months through their suppliers. How effectively cyber risk is mitigated down the line for example with rights to audit and suitable indemnities in supplier contracts, remains unclear.

One final key factor is the cost to business. In the UK, the average cost of all incidents was up to $243,000 (£186,000). The high incidence of data loss (customer and employee) despite GDPR, IP theft and more sophisticated ransomware and DDoS reflects the sharp 61% increased average cost across all sectors. 

So, are businesses ready? With justification GDPR has pushed the issue up the agenda. The reality is with the 'clean up' cost not insignificant, most organisations cannot afford to be without a clear IT strategy and response plan, and effective security, which comes at a price. For good measure, perhaps, one should also look to take out a cyber policy? 

Related opinions

The Future of Mediation

In an effort to build a stronger justice system, a shift in priorities has emerged away from adversarial court battles and more towards opportunities for consensual resolution. As one of the most popular forms of Alternative Dispute Resolution (ADR), mediation has become increasingly encouraged.

View blog

Procurement Bill — what’s new in 2022?

The Procurement Bill (the Bill) has now been with us for about four months, during which time there have been a huge number of amendments proposed in the House of Lords (circa 320). Lately, there has been less mention of it — unsurprising, really, given everything else going on in politics recently — but here’s a summary of some of the key issues and themes so far.

View blog

IR35 rules to be scrapped from April 2023

The Chancellor’s recent mini-budget provided a significant announcement for business as it was confirmed that the off-payroll working rules (known as “IR35”) put in place for public and private sector businesses from 2017 and 2021 will be scrapped from April 2023.

View blog

Cameras in convenience stores: a potential hornet’s nest..?

A convenience retailer has opted to install cameras (the “Facewatch” system) at a limited number of its English stores to reduce crime and protect its staff.

View blog

Mailing list sign up

Select which mailings you would like to receive from us.

Sign up