4 May 2018
The government has, for the first time, released official statistics on charity action on cyber security and the costs and impacts of cyber breaches and attacksThe Cyber Security Breaches Survey 2018 helps organisations understand better the nature and significance of the cyber security threats they face. The findings reinforce the conclusions of the National Cyber Security Centre’s (NCSC) Cyber Threat Assessment: UK Charity Sector that was published in March 2018. Namely, virtually all charities are reliant on online services, many charities are falling victim to cyber attacks, and smaller charities have less awareness of the risks they face from cyber attacks. This strengthens further the case for action by charities to prevent these attacks. The most common cyber attacks against charities were receiving fraudulent emails, being directed to fraudulent websites, attempts by scammers to impersonate a charity online and malicious software being found on their system. With the average cost of a breach to a charity being £1,030. The NCSC, in partnership with bodies across the sector, recently launched the Cyber Security: Small Charity Guide. This is a series of simple, quick and free or low cost steps that charities can take to protect themselves from cyber attacks. The guidance has been written with charities and the way they operate front and centre to ensure that it’s proportionate and implementable. We encourage all trustees and staff to adopt this guidance in their charity as a matter of urgency to prevent these attacks and the potentially devastating impact they can have on an organisation. For more technical guidance, please see the NCSC’s Ten Steps to Cyber Security or the government endorsed Cyber Essentials certification scheme.