By Daniel Hunter
Small and medium sized enterprises (SMEs) are putting a third (32%) of their revenue at risk because they are falling for some of the common misconceptions around cyber security, leaving them vulnerable to losing valuable data and suffering both financial and reputational damage.
Yet new research by the Government’s Cyber Streetwise campaign shows that two thirds (66%) of SMEs don’t consider their business to be vulnerable, and just 16% say that improving their cyber security is a top priority for 2015.
When asked if they agreed with some of the most common misconceptions around keeping their business secure online, over three quarters (78%) of small businesses believed at least one. These included the following myths:
- Only companies that take payments online are at risk of cyber crime (26%) — All SMEs are at risk and whilst hacking of payment processing software is an obvious tactic, criminals are highly opportunistic and can benefit from stealing a wide range of data from businesses
- Small companies aren’t a target for hackers (22%) - Small businesses are in fact a bigger target than ever because they typically hold far more data than the average consumer, but often don’t have any additional preventative measures in place to protect themselves. Last year 33% of small businesses suffered a cyber attack from someone outside their business
This apparent lack of understanding around cyber threats is leaving many small firms vulnerable to losing valuable data and then suffering the knock-on effects, including losing customers and a damaged reputation. The Government’s Information Security Breaches Survey* also found that the average cost of the worst security breach is between £65,000 and £115,00 and can result in a business being put out of action for up to ten days.
A quarter (24%) of small businesses think that cyber security is too expensive to implement and 22% admit that they ‘don’t know where to start’, which is why Cyber Streetwise is helping business owners by providing free, simple advice from www.cyberstreetwise.com. Just three simple steps can take a business from being cyber unwise to cyber streetwise, protecting it from hackers and viruses including malware— always using strong passwords, keeping software up to date and deleting suspicious emails.
Minister for Culture and the Digital Economy, Ed Vaizey said: “Small and medium-sized firms are a key part of our long-term economic plan to back business, create jobs and secure a brighter future for Britain, and many are reaping the rewards from going digital and operating online.
"However this new research shows businesses can do more to understand and respond to cyber threats. There are some simple steps firms can take to protect themselves, their cash flow and their data. The Government is providing a range of cyber security guidance and support and I encourage all small and medium-sized firms to take these simple steps and fully benefit from our growing digital economy.”
John Allan, National Chairman of the Federation of Small Businesses (FSB), added: “Cyber crime is a major business resilience issue. Business owners and managers need to see and understand this threat clearly and take the steps necessary to protect themselves.
“We know from our own research that in the future small businesses expect to become much more dependent on web based tools. We also know that, as firms’ reliance on tools like cloud computing increases, they also become more aware of the threats these services can pose. For example, nearly a third of businesses we questioned (61%) were worried about the threat of data theft or loss. We need to give these businesses the knowledge and tools they require to prevent this from happening, and so help the continued take-up of these productivity-enhancing technologies."