BCC: Mainly big business hit by cyber-attacks, but all need to improve security

image_pdfimage_print

BCC publishes the results from its digital survey, which shows that one in five businesses has been the victim of a cyber-attack in the past year.

One in five businesses have fallen victim to cyber-attacks in the past year, according to the results of a survey released today (Tuesday) by the British Chambers of Commerce (BCC).

The survey of more than 1,200 businesses across the UK found that 20% had been hit by a cyber-attack in the last 12 months. Big businesses are far more likely than their smaller counterparts to be victims of attacks (42% of companies with more than 100 staff, compared to 18% of companies with fewer than 99 employees).

The results indicate that businesses are most reliant on IT providers (63%) to resolve issues after an attack, compared to banks and financial institutions (12%) or police and law enforcement (2%).

The findings show that 21% of businesses believe the threat of cyber-crime is preventing their company from growing.

The survey also shows:

  • Only a quarter (24%) of businesses have cyber security accreditations in place
  • Smaller businesses are far less likely to have accreditation (10% of sole traders and 15% of those with 1-4 employees) than big businesses (47% with more than 100 employees).
  • Of the businesses that do have accreditations, half (49%) believe it gives their business a competitive advantage over rival companies, and a third (33%) consider it important in creating a more secure environment when trading with other businesses

From May 2018, all businesses who use personal data will have to ensure they are compliant with the new General Data Protection Regulation (GDPR) legislation.

Dr Adam Marshall, Director General of the British Chambers of Commerce (BCC), said:

“Cyber-attacks risk companies’ finances, confidence and reputation, with victims reporting not only monetary losses but costs from disruption to their business and productivity. While firms of all sizes – from major corporations to one-man operations – fall prey to attacks, our evidence shows that large companies are more likely to experience them.

“Firms need to be proactive about protecting themselves from cyber-attacks. Accreditations can help businesses assess their own IT infrastructure, defend against cyber-security breaches and mitigate the damage caused by an attack. It can also increase confidence among the businesses and clients who they engage with online.

“Businesses should also be mindful of the extension to data protection regulation coming into force next year, which will increase their responsibilities and requirements to protect personal data. Firms that don’t adopt the appropriate protections leave themselves open to tough penalties.  

“Companies are reporting a reliance on IT support providers to resolve cyber-attacks. More guidance from government and police about where and how to report attacks would provide businesses with a clear path to follow in the event of a cyber-security breach, and increase clarity around the response options available to victims, which would help minimize the occurrence of cybercrime.”

Ends

Notes to editors:

The British Chambers of Commerce (BCC) surveyed 1,285 business people from all regions of the UK online in January 2017 to understand how cybercrime is impacting on UK businesses. Of the businesses surveyed, 96% were SMEs, 22% operate in the manufacturing sector, and 78% operate in the services sector.

The British Chambers of Commerce (BCC) sits at the heart of a powerful network of 52 Accredited Chambers of Commerce across the UK, representing thousands of businesses of all sizes and within all sectors. Our Global Business Network connects exporters with nearly 40 markets around the world. For more information, visit: www.britishchambers.org.uk

Media contacts:

Allan Williams – Senior Press Manager

020 7654 5812 / 07920583381

Orla Hennessy – Press and Communications Officer

020 7654 5813 / 07825746812

Leave a Reply

Your email address will not be published.