Research shows staff training key to protecting UK business from cyber-attack

55 percent of UK workers can’t recall receiving cybersecurity training, despite cyber-attacks affecting over half of UK business in 2016.

  • 6 years ago Posted in
New research, commissioned by Accenture, has revealed staff training can help businesses reduce the risk of cyber attacks. At the same time, new figures reveal the cost of cyber crime in the UK has risen by more than 19% over the last year to reach ?6.4 million.
 
Accenture releases the research in the wake of a series of high-profile cyber-attacks to hit businesses and public services. A government report published earlier this year found that just under half of UK businesses were affected by a cyber-attack in 2016, and that the most common type of attack was fraudulent emails, responsible for 72 percent of attacks.
 
A survey of 2,000 people, found over half of UK workers (55 percent) cannot recall ever receiving training on cyber threats from their employer, leaving many unsure how to prevent, identify or respond to an attack. The study suggests basic training could have a huge impact on security, making this a missed opportunity for UK businesses. Seventy percent of those who had received training said it improved their ability to recognise and respond to cyber threats, and one in four (23 percent) thought training was the most effective protection against phishing and scams, more so than the police and authorities doing more to hunt hackers (four percent).
 
There is evidence the workforce is becoming savvier on cyber issues, but clear areas of exposure remain. One of the most serious risks is from sophisticated phishing campaigns, identified as one of the biggest threats of 2017 in Accenture’s Cyber Threatscape Report, released earlier this year. This latest research showed one in five workers (19 percent) are not sure they could identify a phishing email and this rises to a third on social media (32 percent).
 
Rick Hemsley, Managing Director, Accenture Security, comments:
“Large businesses in the UK can expect to face more than eighty cyber-attacks each year, with one in three breaching security. It’s therefore no surprise that companies are investing more than ever in security solutions. However, this research shows that no matter how much they spend, businesses that fail to educate staff about cybersecurity put themselves at greater risk of being hacked.”
 
Effective investment will not only enable practical solutions like stronger spam filters, cloud-based e-mail analytics, virus scanners and firewalls. It will ensure employees have the tools they need to recognise threats, including phishing scams, through prevention training and awareness programs. Ultimately, an organisation’s security is only as strong as its weakest link, which in many cases could be its own workforce.”
 
Other findings include:
  • Nearly half of UK workers (46 percent) said they either can’t recall ever updating security software on their work device or haven’t been prompted to do so.
  • one in four (20 percent) would take over an hour to escalate an issue if they suspected a cyber risk on their work device.
Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Atos has launched Atos OneCloud Sovereign Shield, a set of solutions, methodologies, and...
New distribution agreement set to bolster Westcon-Comstor’s Zero Trust offering in more markets...
Research from Avast has found that employees in almost a third (31%) of Small and Medium...
This year, over half of MSPs or their end customers have been attacked by ransomware but only 53%...
Trend Micro has published new research revealing that 90% of IT decision makers claim their...
Cyber consultants call on businesses to act now, or risk budgets shrinking further in ‘real...