During the current Covid-19 pandemic it has become clear that there has been no let-up in the frequency of Cyber-attacks and associated security breaches.
Evidence from the UK government (https://www.gov.uk/government/statistics/cyber-security-breaches-survey-2020) indicates that in the last year:
• 46% of businesses and 26% of charities or charitable organisations report a breach or cyber-attack.
• The number of organisations experiencing weekly issues has increased from an estimated 22% in 2017 to over 32% in 2020.
• Around 20% of all organisations that have reported a breach or cyber-attack have reported either a loss of data or income, or in some cases both.
Analysis of data from the ICO suggests that up to 90% of data breaches are a result of human error. One of the biggest high-profile cases in recent months due to the size of the financial penalty imposed by the ICO, the data breach at British Airways, was reportedly due to the opening of a phishing email. As companies invest vast amounts of resources on processes and systems – “technology” - the old adage that 'any system is only as good as the people using it', comes to mind. As the “new normal” has become working from home, with Zoom and Teams online replacing face to face office contact, investing in staff and their training and support, albeit remotely, has become more important than ever. Empowering all staff with increased knowledge of simple routine processes and policies they should follow, is now more vital than ever to minimise the risks of data breaches and cyber-attacks as otherwise the levels for 2021 will show further significant increases and the financial and data loss costs could be even higher.