Last week, a small business in Maidenhead fell victim to a cyberattack that resulted in a significant financial loss of approximately £20,000. Hackers took control of the clothing company’s Facebook account, leaving the business locked out of their page overnight and unable to engage with their customer base.

This incident highlights a growing vulnerability in the UK, which is increasingly targeted by cybercriminals. According to the 2023 cyber security breaches report by the UK Official Statistics, 32% of businesses and 20% of charities experience cyberattacks as frequently as once a week. Alarmingly, 7% of businesses report being targeted several times a day.

In response to this concerning trend, Vivek Dodd, a cybersecurity expert from Skillcast, emphasises the importance of implementing strong cybersecurity measures.

Recent research reveals that around 88% of data breaches result from employee mistakes, highlighting their preventability. He advises that businesses in the UK should prioritise safeguarding their digital assets to prevent similar attacks and mitigate potential losses.

Vivek said:

Human error continues to be the driving force behind an overwhelming majority of cybersecurity problems. The UK is ripe for cybercrime, making it even more important to implement robust cybersecurity measures because, without proper defences and employee training, businesses across the country remain vulnerable to attacks.

Vivek Dodd, cybersecurity expert

How can your business reduce the threat of cyberattacks?

  1. Ensure password security

One of the most common causes of a cybersecurity breach is weak passwords, with people often reusing them for multiple or all accounts. To reduce potential risks, encourage your team to use complex passwords and update them regularly.

  1. Use multi-factor authentication

Multi-factor authentication means that to access software or conduct a transaction, at least one more means of personal verification is needed. This could be as simple as entering a memorable word or using a passcode from a text message or dedicated App.

  1. Keep software up-to-date

Be wary of any software that is not company-wide or on mobile devices. Patches to fix security issues are regularly issued and not actioning them leaves you wide open to cyberattacks. Software updates are important not only for system speed but also for protection against cyber threats.

  1. Only use approved connections and devices

Cyberattacks have become a greater threat than ever with the rise of hybrid working. Employees now spend more time working remotely or on the go. At home, they may be inclined to use their own devices or access networks that are not secure. It is critical to avoid this to ensure maximised protection against cyber threats.

  1. Train your team to spot cybersecurity warning signs

Conduct regular training sessions to inform employees of common cyber threats and potential warning signs. Implementing clear security policies and procedures that employees must follow when they suspect a cyberattack is important.

  1. Conduct regular risk assessments

Regularly assessing an organisation’s cybersecurity risks is crucial to small business compliance. This process allows for identifying and prioritising vulnerabilities that attackers may target. Organisations can better safeguard their systems and data from potential cyber threats by staying proactive in risk assessment.

Implementing these measures can help reduce the risk of cyberattacks and protect your business from the potentially devastating consequences of a security breach.

Joanne Swann, Content Manager, WorkWellPro
Editor at Workplace Wellbeing Professional | Website | + posts

Joanne is the editor for Workplace Wellbeing Professional and has a keen interest in promoting the safety and wellbeing of the global workforce. After earning a bachelor's degree in English literature and media studies, she taught English in China and Vietnam for two years. Before joining Work Well Pro, Joanne worked as a marketing coordinator for luxury property, where her responsibilities included blog writing, photography, and video creation.