Half Of British SMEs Have Lost Vital Data

Uploaded on 2024-04-02 in NEWS-Cybersecurity News, FREE TO VIEW

Almost half (48%) of small and medium-sized businesses in the UK have lost or lost access to company or customer data in the last five years, according to research from Beaming, a specialist internet service provider for businesses. 

Businesses with between 10 and 250 people have borne the brunt of data loss, which has cost UK companies more than £5.3 billion since 2019. 

These costs include financial penalties, expenses associated with recovering data and replacing people or assets involved in incidents, and lost productivity during periods in which the business could not operate as usual. Furthermore, 59% of finance businesses, which includes financial services providers and accountants, admitted to losing data between 2019 and 2023, more than any other sector.  

The most expensive data loss incidents were experienced in the manufacturing sector, where the median cost of incidents exceeded £60,000. 

Beaming’s  new report Data Backup & Business Continuity: The Good the Bad and the Ugly, includes expert guidance to help businesses improve their backup and business continuity practices. Sonia Blizzard, Managing Director of Beaming, said: “Data loss occurs for all sorts of reasons, including hardware theft or failure, cybercrime, data management errors and events such as fire or floods... A robust data backup strategy is fundamental to risk management and business continuity planning. It safeguards critical data, supports recovery efforts, and helps maintain a business’s resilience and reputation in the face of these challenges.”

Beaming’s research reveals some alarming facts about poor cybersesecuirty in the SME sector.

  • Up to a quarter of businesses make no effort to back up company data. 12% keep one copy of data only, either on individual users’ computers or a single server in the office. 
  • A similar proportion of leaders said they were unaware of any backup plans in their businesses. And just one in four UK businesses currently consistently pursue good backup practices. 
  • 22% of companies systematically back up data to a specialist offsite facility or provider, with full knowledge and control of backup procedures and where their data is held. 
  • 34% maintain an air-gapped data backup physically isolated from the internet and 29% encrypt data as it travels between their primary data centre or business site and backup location. 
  • Around half of businesses engage in bad backup practices, making copies of data in a flawed way. 53% do not encrypt their data. 31% make backups, but not frequently enough, and 17% keep copies in the exact location as the original data, leaving them vulnerable to events such as fire or flood. 
  • 25% backup manually to external hard drives or discs, a process that can be inconsistent and prone to human error. 
  • 28% of businesses rely on cloud providers’ standard storage approaches, which tend to replicate data rather than provide multiple backup options and retention periods can be insufficient for those with extended compliance requirements. Firms using this option usually cannot apply bespoke security settings or ensure data is stored fully compliant with rules like the General Data Protection Regulation.

Implementing a solid data backup strategy is essential for business continuity. By following best practices, businesses can significantly enhance their ability to recover from data loss or system failures and ensure continuous operation in the face of unforeseen events.   

Image: Ideogram

You Might Also Read: 

Key Security Risks For Small Businesses:

DIRECTORY OF SUPPLIERS - Backup & Disaster Recovery:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Two Sides Of AI In The Industrial Internet of Things
Universities Are Stepping Up Training For More Front-Line Workers »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Zentek Digital Investigations

Zentek Digital Investigations

Zentek has been providing digital forensics services to the public and private sector for computers and mobile devices since 2004.

CERT.br

CERT.br

The Brazilian national Computer Emergency Response Team

Bittium

Bittium

Bittium provides proven information security solutions for mobile devices and portable computers.

FedRAMP

FedRAMP

FedRAMP, is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.

Computer Forensic Services

Computer Forensic Services

Computer Forensic Services are digital evidence specialists. Practice areas include Information Security, e-Discovery, Law Enforcement Support and Litigation.

Future of Cyber Security Europe

Future of Cyber Security Europe

Future of Cyber Security Europe is a European wide event examining the latest cyber security strategies and technologies.

CyberGhost

CyberGhost

CyberGhost is a Virtual Private Network services provider offering secure encrypted access to the internet.

CYDES

CYDES

CYDES is the first event in Malaysia to showcase advanced solutions and technologies to address cyber defence and cyber security challenges for the public and private sectors.

PreEmptive Solutions

PreEmptive Solutions

PreEmptive Protection hit the sweet spot between cost, convenience and functionality by helping you protect and secure your apps in a smarter way.

Seadot Cybersecurity

Seadot Cybersecurity

Seadot offer cybersecurity services to organizations with a high demand for regulatory compliance and security.

Symmetry Systems

Symmetry Systems

Symmetry Systems is a provider of data store and object-level security (DSOS) solutions that give organizations visibility into, and unified access control of, their most valuable data assets.

BreachQuest

BreachQuest

BreachQuest brings together cybersecurity experts with decades of experience identifying security flaws, penetrating networks, and responding to incidents.

Purple Knight

Purple Knight

Purple Knight is a free Active Directory security assessment tool built and managed by an elite group of Microsoft identity experts.

Rocky Mountain Cybersecurity

Rocky Mountain Cybersecurity

Rocky Mountain Cybersecurity's mission is to provide value by dramatically improving the cybersecurity posture of our clients and business partners.

Entech

Entech

Entech is a managed IT service provider. We work behind the scenes on your network to ensure data security and integrity.

Disecto Technologies

Disecto Technologies

At Disecto, we provide SaaS based Data Discovery, Classification and a remediation solution for data privacy compliance.