More than half of British firms 'report cyberattacks in 2019'

The proportion of UK firms reporting a cyber-attack has jumped, despite most businesses admitting they are under-prepared for breaches, according to research from Hiscox reported by the BBC. The insurer found 55% had faced an attack in 2019, up from 40% last year.


But almost three-quarters of firms were ranked as "novices" in terms of cyber-readiness.


Hiscox said a lot of businesses "incorrectly felt that they weren't at risk".


The firm surveyed more than 5,400 small, medium and large businesses across seven countries, including the UK, Germany, the US, Belgium, France, the Netherlands and Spain.


It said there had been a "sharp increase" in the number of cyberattacks this year, with more than 60 per cent of firms having reported one or more attacks - up from 45 per cent in 2018.


Average losses from breaches also soared from $229,000 (£176,000) to $369,000, an increase of 61 per cent.


Despite this, the insurer said the percentage of firms scoring top marks on cybersecurity had fallen, with UK organisations doing particularly badly.


British firms had the lowest cybersecurity budgets, it said, spending less than $900,000 on average compared with $1.46m across the group.


They were also joint-least likely with US firms to have a "defined role for cybersecurity" on their staff. In France, the proportion was closer to one in ten.


Gareth Wharton, head of Cyber at Hiscox, said the low UK spending could be driven by the large number of small businesses in Britain.


"They may feel like they won't be targeted, as we tend to only read about large breaches in the press. If they incorrectly feel that they won't be targeted, they may be less likely to spend on cybersecurity."


However, Hiscox also found the average cost of an attack in the UK was lower than average at $243,000, compared with $906,000 in Germany and $486,000 in Belgium.


New regulation has also prompted action, with eight in ten UK firms saying they had made changes since the introduction of tough new EU data protection rules last year.

more news

Cyberattacks: Preparing For The Inevitable


It is generally accepted that it is when, not if, large organisations will be the target of malicious cyberattacks. The importance of being prepared has been laid out in a blog post Sweat In Peace, Don't Bleed In War, written by Meredydd Hughes, a former UK chief constable with substantial crisis management experience.

read more

Varonis Blog Highlights 110 Cybersecurity Statistics


Cybersecurity company Varonis has issued its predictions for the forthcoming year with a blog post entitled 110 Cybersecurity Statics For 2020. The blog states that cybersecurity issues are becoming a day-to-day struggle for businesses. Recent trends and cybersecurity statistics reveal a huge increase in hacked and breached data from sources that are increasingly common in the workplace, like mobile and IoT devices.

read more

UK To Go On The Cyber Offensive


The UK Government is about to launch a new proactive and offensive cybersecurity team that will wage cyberwarfare against hostile nation-states and online crime organisations. It would be naive to believe that the UK has not launched cyberattacks against third parties, but the killing of Qassem Soleimani has brought this out into the open.

read more

Are You Ready For Iranian Revenge Cyberattacks?


Following the killing of Qassem Suleimani no-one can be sure of what military action Iran will take, but experts agree that its cyberattacks will increase against countries and governments it sees as hostile.

read more