Most UK businesses have suffered cyber attacks due to employee error
A study by Gallagher has found that 60% of cyber attacks on UK businesses have been caused by employee error.
Of the employee error-related cyber attacks on UK businesses, 14% of incidents resulted in customer data being stolen.
30% of respondents affected said that their company’s system went down for four to five days, while a third said their business was out of action for up to three days.
Additionally, one in seven (14%) of respondents said that the cyber attack or data breach impacted their business’s reputation, while one in eight (12%) experienced a financial impact.
A further 14% said that an attack resulted in customer data being stolen, and despite the risk of fines under the EU General Data Protection Regulation (GDPR), only 39% of UK decision makers have invested in expert advice to assist them in mitigating security issues.
“Virtually all businesses are at risk of a cyber attack, and as this research shows, it is often an employee mistake which causes the problem,” said Tom Draper, head of cyber at Gallagher. “Cyber criminals have become increasingly sophisticated with ways of trying to obtain access to data or a company’s system, and it’s hard to remove the risk of human error entirely.
“However, by businesses taking a comprehensive, multi-layered approach to cyber security – including ensuring they have the appropriate insurance in place, establishing effective training programmes for employees and implementing technologies that secure the most sensitive data – they can save both money and resources in the long run, while also helping to mitigate the potential threat of an attack.”
Despite the high proportion of UK businesses experiencing cyber attacks caused by employee error, 71% of respondents stated that human error when it comes to security is a worry, while 64% said that they remind employees regularly about the risk of cyber crime.
In addition, 42% of business leaders said that they have installed off-the-shelf preventative technology, while 39% opted for a tailored product.
In regards to what kinds of attacks UK businesses encountered as a result of employee error, malware (39%) was the most common, followed by phishing emails (35%) and data breaches (28%).
1000 UK business leaders were surveyed by Gallagher for this study.
Industry: Cyber Security
- Security infrastructure Engineer - Firewall | IDS | NAC | Cloud. Exclusive project, £75,000+
- United Kingdom
Security infrastructure Engineer - Firewall | IDS | NAC | Cloud. Exclusive project DCL Search exclusive Identifier Project. To join a financial services business. Key hire to be part of / influence the cyber security capability and direction within the business. Hands on experience managing / monitoring / upgrading / implementing / using the following; · Firewalls: SonicWall and or Palo Alto · NAC: Cisco OR Macmon · WAF | CASB | MDM Experience with SIEM monitoring / vulnerability analysis also highly desirable. MUST have current hands on experience with vulnerability management tooling and best practice. Current Financial services is a nice to have. Learn new skills working within a collaborative team. Grow as a security professional.
- Outside IR 35 CONTRACT SC CLEARED Cyber Security Operations Analyst SPLUNK ES- UK REMOTE- £500 a day.
6 month contract Outside IR35 Operational Cyber Security Analyst. Hands on Splunk Security Enterprise and Security clearance is required As is someone that holds SC clearance. SOC and Vulnerability management experience. Vulnerability Analysis / Management - Tenable
- SOC Manager Security Operations. SIEM, Threat / Vulnerability, IR, SOC Service- Exclusive
- United Kingdom
SOC Manager- SIEM, Threat / Vulnerability, Incident response. Exclusive Project. Management and on growth growth of Security Operations Centre capability. Managing and maturing the team, technical services line and fronting client engagements where needed. An in-depth technical background is essential, experience across SOC SIEM/ Threat Hunting (IR) tools, processes, techniques, operational is a MUST. The role will include, but not limited to; evolving the technical process, building operational capability, managing and hiring team, involved at a high level overviewing policy/playbooks, fine turning of the go-to-market collateral etc.
- Contact 12 month- Security Operations- Tanium Engineer / Analyst.
- United Kingdom
- Dependent on experience
Security Operations engineer / Analyst with Tanium for a 12 month contract. Experience configuring using, managing, supporting troubleshooting Tanium's suite of end point solutions is essential. The opportunity is due to a client expanding its international capability to a follow the sun model. To be involved in spinning up a European capability. Based in the UK. English essential and ideally being fluent in French.