Over 50% of SMEs have no cyber prevention
A new report has found that more than half (52%) of UK small businesses have no cybercrime prevention methods in place.
As the InfoSecurity Magazine website notes, the report from CSID, published earlier this month, discovered that such firms are failing to implement any "preventative methods" to ensure the safety of business data and sensitive information from cyber-attack.
Along with this high figure, it was also found that 85% of the same firms do not plan to increase their spend on data security, despite awareness of the risks associated with cybercrime being well documented. Just under half (47%) actively followed what was being written about their business online, and 15% had a robust social media policy in place.
The top concerns for SMEs were damage to a business' reputation, undetected malware and risks associated with phishing.
Commenting on the findings, Andy Thomas, the managing director of CSID's European division, stated: "Understanding and educating employees about the security threats associated with establishing and running a business should be the first step in mitigating [cyber] risk."
Considering that in 2012, 50% of all cyber-attacks were aimed at businesses with fewer than 2,500 employees, and there are over 1.5 million victims of cybercrime every day, the risk to SMEs is high.
To demonstrate how easy it can be for cyber-attacks to happen, CSID created an online presence for a fake business called Jomoco and had employees 'leak' supposed sensitive information relating to the company. It took hackers around one hour to use this information to lock the social media and email accounts of the fake employees, as well as change the Jomoco website that had been set up.
Global consumer cybercrime costs around $110 billion (£70 billion); SMEs should therefore consider protecting themselves against such risks.