The Impact Of Cybercrime On UK Business

Uploaded on 2018-04-30 in NEWS-Cybersecurity News, GOVERNMENT-Law Enforcement, FREE TO VIEW

Figures published by the government in 2017 revealed that almost half of all UK firms were hit by a cyber breach or attack in the previous year. Business leaders must be fully prepared in the increasingly complicated fight against breaches of data, hacking and phishing scams.

The number of attacks is rising each year, and it has been estimated that online fraud and cybercrime cost the UK over £11bn in 2016. All of which explains why the issue of cyber security is no longer just a priority for the IT department, but also for the boardroom…

The IoD Open House event in March, amongst other topics, shed light on the often confusing world of online security and data protection, with a number of speakers, sessions, and panel discussions.

Here are seven shocking cyber security facts to bear in mind when considering your business presence online:

1. The UK’s 5.4 million small businesses are collectively attacked more than seven million times a year

This costs the UK economy a staggering £5.26bn, according to a survey carried out by the Federation of Small Businesses. Although 93 per cent of small businesses have some kind of cyber security in place, around 66 per cent have been a victim of cyber-crime in the last two years. During that period, those affected have been victims on four occasions on average.

2. One of the biggest threats to data safety can come from BYOD ¬– “bring your own device”

In many cases when staff bring personal devices such as laptops, tablets and smartphones into work, they are not protected by the company’s security network, which presents an opportunity for hackers to directly access company data through these devices. Be particularly vigilant in the period after Christmas when new devices are being used for the first time.

3. ‘Whaling’ has become a boom industry

In 2016, Austrian aerospace parts maker FACC was swindled out of a colossal €42m (£37m) by hackers using a phishing scam known as ‘whaling’. This scam targets a company’s CEO or finance by tricking them into rushing through a large payment for a fake acquisition.

According to a report by the Federal Bureau of Investigation (FBI) in June last year, identified losses from this type of scam came to £3.1bn (£2.4bn) and had risen by 1,300 per cent in 18 months.

4. Over 43 per cent of IoD members don’t know where their company’s data is physically stored

The IoD conducted a Policy Voice Survey in 2016 focusing specifically on cyber security, investigating how fast the pace of technology is changing our members’ attitudes and views on cyber security.

The fact that so many respondents didn’t know where their data is stored is a truly frightening statistic. It effectively means businesses are losing control of their organisation’s data, which may well be the biggest asset of a business.

5. 72 per cent of respondents to the IoD’s Policy Voice survey have received a bogus invoice

This shows the extent of social engineering and how the internet can be used to defraud businesses. Along with false house purchase completion requests for solicitors, this is truly alarming, and is why human interaction with technology needs to be failsafe, and why cyber is becoming a largely human problem.

6. Cyber-crime accounted for almost 30 per cent of all crimes recorded in the UK from July 2016 to July 2017

Figures issued by Office for National Statistics revealed an alarming fact about the extent of online crime in this country. There were also 2.5 million incidents of bank and credit card fraud. It should also be noted that these are only cases reported to the authorities; the real figure is undoubtedly and significantly higher.

7. On average, it takes 120 days for a business to know that its data has been compromised

According to a UK government report published in 2016, 25 of the large firms who detected a cyber security breach or attack in the past year experienced a breach at least once per month.

Institute of Directors

You Might Also Read: 

UK Police Cybercrime Training:

Cybercrime Costs Londoners £26m Every Month:

Cybercrime Costs Over $600 Billion Annually:

« Leaked Emails Expose Russian Exploits In Ukraine
SpaceX Plan For 4k Satellite Broadband Network »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Ascentor

Ascentor

Ascentor specialises in independent information and cyber security consultancy. We’re experienced industry experts, providing cyber security services since 2004.

Corero Network Security

Corero Network Security

Corero Network Security is dedicated to improving the security of the Internet through the deployment of its innovative DDoS & Network Security Solutions.

Integrity360

Integrity360

Integrity360 provide fully managed IT security services as well as security testing, integration, GRC and incident handling services.

Kramer Levin

Kramer Levin

Kramer Levin is a full-service law firm with offices in New York and Paris. Practice areas include Cybersecurity, Privacy and Data Protection.

Atea

Atea

Atea is the market leader in IT infrastructure for businesses and public-sector organizations in Europe’s Nordic and Baltic regions.

UK Cyber Security Forum

UK Cyber Security Forum

UK Cyber Security Forum is a community interest group for cyber security companies in the UK.

GeoLang

GeoLang

GeoLang’s Ascema platform protects sensitive information at the content level by identifying, classifying and tracking data across the corporate infrastructure.

Findings

Findings

Findings (formerly IDRRA) is a scalable AI powered assessment platform that streamlines security compliance across sectors, jurisdictions and regulatory frameworks.

Blueskytec (BST)

Blueskytec (BST)

Blueskytec has applied its experience of over three decades of working in the field of embedded systems and encryption to provide a scalable and appropriate technology for cyber-physical devices.

Guidehouse

Guidehouse

Guidehouse is a leading global provider of consulting services to the public and commercial markets with broad capabilities in management, technology, and risk consulting.

Sekuro

Sekuro

Sekuro is your leading governance and cyber security partner. Building organisational resilience. Enabling fearless innovation.

SecAlliance

SecAlliance

SecAlliance is a cyber threat intelligence product and services company.

Flexxon

Flexxon

Flexxon is the industry leader to develop NAND flash storage devices. Our key focus is to innovate memory devices ensuring data security and reliability.

Troye Computer Systems

Troye Computer Systems

Troye provide a complete range of digital workspace solutions that empower people to do their very best work in a safe and secure manner anywhere, anytime, using any device.

Badge

Badge

Badge authenticates you on-demand for every application, on any device, without storing any secrets.

ACDS (Advanced Cyber Defence Systems)

ACDS (Advanced Cyber Defence Systems)

ACDS was founded in the belief that cyber security can be done better. We’re combining emerging technologies and proven methods to bring a new approach to tackling the growing threat landscape.