Some 65 per cent of small companies fail to take action after a cyber attack, despite nearly half of them having suffered a breach in the last year.
This is according to the 2018 Hiscox small business cyber risk report.
It also found that 50 per cent of organisations blame budget constraints for their lack of action.
The report revealed that 47 per cent of more than 1,000 small businesses surveyed had suffered at least one cyber attack in the past year. Meanwhile, 44 per cent of those that reported experiencing a cyber attack during this time suffered two to four attacks, and eight per cent reported being targeted in five or more attacks.
Hiscox found that small businesses estimated their average cost for incidents in the last year to be $34,604 (£26,006). Showing that the cost of a cyber incident increases as companies grow, large organisations (with more than 1,000 employees) reported that the annual average cost of cyber crime was $1.05 million.
The report recommends that small businesses take steps to prevent, detect and mitigate potential cyber attacks. The authors wrote: “These steps are not overly complex or costly, and small businesses can significantly protect themselves by taking action.”
Hiscox advises that businesses involve and educate employees at all levels about cyber security. It added that companies should have “a formal budgeting process in place” and that they should “ensure cyber security is considered and prioritised in decision making”.
In order to improve their capability to detect cyber attacks, the report advises businesses to include intrusion detection and ongoing monitoring on all critical networks. It recommended that organisations “track violations, including those that are successful and thwarted, and generate alerts using both automated monitoring and manual logging”.
Share This Post, Choose Your Platform!
With over 25 years in the business telecoms industry and an unrivalled reputation of delivering excellent, personal customer service, Arrow is one of very few companies in the UK able to provide a full telecoms, IT and energy consultancy and service proposition.
Savings through automation, scale, improved service. We’ve got that covered. But the true value comes with empathy, through empowerment, collaboration. It’s connecting people that drives us forward. It’s people that make tomorrow happen.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.