Most British Workers Are Unaware Of Cyber Threats

One of the key ways to defend your organisation against cyber attacks involves your own employees. 

In Britain, there isa significant lack of awareness among workers about cyber security, this is despite 60% of workers admitting they have fallen victim to a cyber attack, according to a new study by business security platform, Armis.

Armis surveyed  2,000 UK employees and found that only around a quarter (27%) are aware of the associated cyber risks, while one in 10 (11%) don’t worry about them at all.  The most prevalent types of attacks experienced by workers or their organizations were phishing (27%), data breaches (23%) and malware (20%). 

Despite 60% of respondents admitting to having been affected by a cyber attack, the study found a general lack of awareness towards cyber security. The study also revealed growing concerns about the scale of the cyber-threats facing the UK. A large-scale cyber-attack was ranked as the fourth biggest future concern (21%) among the respondents, equal to the UK going to war. Two-fifths (40%) said they would like to see a minister for cyber security installed to ensure the issue is focused on more at a government level.

The survey found that Russian-backed cyber criminals are considered the biggest threat to Britain's cyber security (20%) by the respondents, followed by financially motivated cyber criminals (17%)  followed by Chinese-backed cyber criminals (16%).

It’s clear that cybersecurity awareness and training must be made a priority within the UK government... This is an issue that must be addressed from the top down. Moving forward, more emphasis should be placed on security awareness training as well as technology controls that give organisations a full picture of risk exposure." commented Conor Coughlan, General Manager EMEA at Armis.

Organisations need to invest the time and resources into both employee education and security technology as a two-pronged approach toward combating attacks.

According to the specialist incident response firm BreachQuest, organisations should take the following measures:

  • Hire dedicated security awareness people that aren't engineers but rather marketing professionals who know how to engage an audience to educate your employees.
  • Implement technical tools that prevent people from making easily preventable errors.
  • Set up multifactor authentication, especially for email systems, VPNs and privileged accounts.
  • Remove local admin privileges for standard users.
  •  Adopt a password manager across your organisation to improve and ease password security for all employees.

"Organisations need to understand the importance of investing in the right security to protect themselves and their customers and to avoid experiencing any downtime." according to Coughlan.

To protect themselves and your business against phishing campaigns, malware and other types of attacks, your workers should be regularly trained to have an effective level of awareness of cyber incidents and security best practices. 

Armis:       Techrepublic:     Security Magazine:     Infosecurity Magazine:    Techjury:     Ein News:   

You Might Also Read: 

Britain Is Fighting A Ransomware Epidemic:

 

« British Plan To Become A ‘Global Cyber Power’ In 2022
Britain's HMRC Tax Agency Admits Numerous Data Breaches »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Centre for Secure Information Technologies (CSIT)

Centre for Secure Information Technologies (CSIT)

CSIT is a UK Innovation and Knowledge Centre (IKC) for secure information technologies. Our vision is to be a global innovation hub for cyber security.

Endace

Endace

Endace is a leader in network visibility, network recording and packet capture solutions for security, network and application performance monitoring.

Digital DNA

Digital DNA

Digital DNA provides Law-Enforcement-Grade Computer Forensics, Cyber Security and E-Discovery Investigations.

PCI Compliance Guide

PCI Compliance Guide

The PCI Compliance Guide is one of the leading educational websites available focused exclusively on PCI compliance.

Cyberwrite

Cyberwrite

Cyberwrite was founded to provide underwriters around the world a unique and innovative Cyber Underwriting platform.

ID Quantique (IDQ)

ID Quantique (IDQ)

ID Quantique is a world leader in quantum-safe crypto solutions, designed to protect data for the long-term future.

Naukrigulf

Naukrigulf

Naukrigulf.com is one of the fastest growing job sites in the Gulf, with thousands of registered job seekers and a robust CV database across many sectors, including cybersecurity.

Cynexlink

Cynexlink

Cynexlink offers Managed IT Services with Security, Network, Storage & Cloud solutions for all size of business.

24By7Security

24By7Security

24By7Security are Cybersecurity & Compliance Specialists with extensive hands on experience helping businesses build a defensive IT Infrastructure against all cyber security threats.

Axxum Technologies

Axxum Technologies

Axxum Technologies is a premier provider of Network Communications and Information Technology Security Solutions.

Transmit Security

Transmit Security

The Transmit Security Platform provides a solution for managing identity across applications while maintaining security and usability.

AVANTEC

AVANTEC

AVANTEC is the leading Swiss provider of IT security solutions in the areas of cloud, content, network and endpoint security.

Cardonet

Cardonet

Cardonet is an IT Support and IT Services business offering end-to-end IT services, 24x7 IT Support to IT Consultancy, Managed IT and Cyber Security.

PKI Solutions

PKI Solutions

PKI Solutions offers Public Key Infrastructure (PKI) products, services, and training to help ensure the security of organizations now and in the future.

Cranium

Cranium

AI is being implemented into every business process, but nobody knows whether their AI is secure. Our mission is to deliver security and trust to the AI revolution.

US Department of State - Bureau of Cyberspace & Digital Policy

US Department of State - Bureau of Cyberspace & Digital Policy

The Bureau of Cyberspace and Digital Policy leads and coordinates the Department’s work on cyberspace and digital diplomacy to encourage responsible state behavior in cyberspace.