Editor, IFSEC Global

March 29, 2020

Sign up to free email newsletters

Download

A Barbour guide to business continuity

Industry reports

Infographic: Cyber Security Breaches Survey 2020 released

The Cyber Security Breaches Survey has recently been released for 2020, highlighting key findings from the UK’s Department of Culture, Media and Sport detailing business and charity action on cyber security, and the costs and impacts of cyber breaches and attacks. Below, you’ll find an infographic surmising key takeaways, as well as reaction from around the industry. 

cyber-security-breaches-report-2020-Infographic

Access the full Cyber Security Breaches Survey 2020.


Responses from the industry

Jérôme Robert, Director at Alsid

“We welcome the overall conclusions of the report, namely that organisations’ IT estates seem to be better protected than they were a year ago. Likewise it’s good news that UK organisations are more resilient today, bouncing back from attacks more quickly than shown in the findings of previous reports. But there is still some cause for concern. The report points out that successful attacks and data breaches still cause significant harm to businesses, and that the battle is not won – and never will be. Positive progress is great, but it should not be seen as a reason for companies to take their foot off the accelerator when it comes to IT security. Cybercriminals and threats are constantly evolving, as is the landscape within which they operate.

“Take the current COVID-19 pandemic which is gripping the world: massive changes in workstyles driven by remote working are a gift for hackers. Likewise we talk a lot about the rise of AI applications to boost security, but don’t forget that cybercriminals also have access to AI which they can use to launch more dangerous, targeted attacks in higher volumes thanks to automation. Ransomware is seen as a common threat these days and it is downplayed in the report, but daily headlines show how punishing it can be.

Tim Thurlings of bluedog Security Monitoring

“These figures show that cybersecurity is an ongoing problem for businesses at the best of times. While many companies are accustomed to having some staff working remotely, the sudden switch to homeworking will have tested their contingency plans and it is clear that many are not fully prepared.”

Margarete Mcgrath, Chief Digital Officer at Dell Technologies

“The latest release of the Department for Digital, Culture, Media and Sport Cyber Security Breaches Survey suggests there is more that must be done by businesses to increase resiliency and preparations for when – not if – they are targeted.  In today’s evolving threat landscape, businesses must take a holistic approach to building business resilience supported by investment in cyber resilience and business continuity activities that will enable businesses to further minimise their losses when they suffer an attack. Areas that businesses should prioritise include safeguarding critical data, improving data isolation protocols, investing in artificial intelligence (AI) and machine learning (ML) tools that can keep businesses one step ahead of malicious actors and having automated disaster recovery processes in place.

“Education and business readiness are also vital. Businesses should undertake regular senior leadership wargaming activities to build awareness and readiness and continually assess supplier and partner risks. They also need to consider how they protect emerging technologies. According to the findings of our recent Global Data Protection Index, 98% of businesses are investing in technologies such as the Internet of Things and AI, but 52% of those reported a lack of data protection solutions for these technologies. We predict that this will be a huge priority in the months and years ahead.”

Simon Newman, Head of Cyber and Business Services for PCPI

“The statistics lay bare the nature and scale of the problem affecting UK businesses. It’s worrying that almost half of all businesses have suffered at least one cyber attack or breach within the last 12 months and that a third of those businesses take no action at all to reduce their vulnerability after they have fallen victim.

“There are also some worrying messages for Government and the law enforcement community. Just 2% of businesses turn to Government for information about cyber security which is reflected in a lack of awareness about government-backed schemes, including Cyber Essentials. It’s clear that we need to work more smartly together in support of the National Cyber Security Strategy. We need to ensure that businesses have access to trusted, impartial and up to date advice that will help them reduce their vulnerability to the overwhelming majority of cyber crime.”

“There are however, some encouraging signs that businesses are responding to the threat. With 80% of businesses seeing cyber security as a high priority, businesses are becoming better at understanding how cyber-crime may affect them and are increasingly likely to implement cyber policies within their organisation. Staff are also playing their part in reporting suspected attacks or breaches, helping businesses deal with them more quickly, thereby reducing the potential impact.”

‘Secure by Default’ in the Age of Converged Security: Insights from IFSEC 2019

From data security to the risks and opportunities of artificial intelligence, the conversations at IFSEC International shape future security strategies and best practices. This eBook brings you exclusive insights from these conversations, covering:

  • A Global Political and Security Outlook from Frank Gardner OBE
  • Surveillance Camera Day: Tony Porter launches ‘Secure by Default’ requirements for video surveillance systems
  • Using Drones to Secure the Future
  • Autonomous Cars and AI: Relocating human incompetence from drivers to security engineers?
  • The Ethical and Geopolitical Implications of AI and Machine Learning

Related Topics

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments