Heads in the Sand: Small Businesses Convinced a Cyber-attack Will Never Happen to Them

News provided by

Kaspersky Lab

18 Jul, 2014, 14:32 GMT

LONDON, July 18, 2014 /PRNewswire/ --

One in three micro-firms helpless in the face of cybercrime 

Small businesses in the UK are woefully unprepared for an IT security breach despite relying increasingly on mobile devices and storing critical information on computers, according to new study by Kaspersky Lab. A third (31 per cent) says they would not know what to do if they had an IT security breach tomorrow, four in ten say they would struggle to recover all data lost and a quarter admit they would be unable to recover any.  Most small firms are convinced a cyber-attack would simply never happen to them.  

The study[i], of micro firms from hairdressers and builders to doctors' surgeries and legal firms, found that two-thirds (68 per cent) have internet-connected laptops and half allow IT-enabled mobile and remote working. Vital business data including confidential customer, supplier and financial records as well as IP is stored and processed on computers.  

An overwhelming 82 per cent say they are not a target for attack because they're too small or don't have anything worth stealing. However, the threat to smaller firms is significant and real. According to the Federation of Small Business[ii], 41 per cent of small firms were hit by cybercrime in 2013, with one in ten the victim of online fraud and one in five affected by a computer virus.  

"While it is encouraging to see the extent to which micro firms are embracing the latest technologies, this must go hand in hand with a strong approach to internet security," said Kirill Slavin, UK MD at Kaspersky Lab. "One in ten of those surveyed admitted that an IT security breach would probably cost them their business. This must be addressed, and quickly. Micro firms don't have to become IT security experts. Most of the time it's the IT equivalent of remembering to lock all the doors and windows when you go out, make sure you have some additional protection and not to leave valuables where others can easily see and get to them."

"Cyber-fraud affects one in eight small businesses every year with fraud losses to SMEs estimated at nearly £20bn. Criminals try to steal goods and the business identity through letters, a phone call, or via email. Increasingly, cybercrime is a principal priority risk for businesses. Typical scams include opportunities to acquire new customers who you supply but never receive payment from, or to purchase items from new suppliers that never deliver after having been paid. Fraud can happen to any type of business in many different ways, impacting their revenue, reputation and the long-term health of the business, with no business being too small to be targeted.  The most important investment a business can make is to take the time to identify where they may be at risk from fraud and reduce those risks where possible to stay in control," commented Alex Grant, Barclays, Managing Director of Fraud Prevention.

Kaspersky Lab and Barclays Bank have drafted the following guidance for micro-firms:

Your business security five-a-day  

Spend just five minutes a day checking the following five things to help keep your business safe

  1. Passwords - Check that all internet-enabled devices and computers that carry your business data are protected by strong passwords, regardless of whether the equipment is company or employee-owned.
  2. Attachment Awareness - Understand the dangers that can lurk in emails, web-links USB sticks, CDs etc. and consider introducing extra software that will filter out or contain suspicious-looking items.
  3. Educate all employees - Make sure everyone knows on how to stay safe online; including how to use strong passwords, spot suspect emails or sites, and protect company information.  
  4. Back-up - Every day make sure the information you store on computers is backed-up and secure. Imagine how your business would cope if you had to get through the day without it.
  5. Security systems - Take full advantage of any user-friendly internet security software that that has been specially created for small firms such as your own to secure devices such as smartphones, laptops, tablets, computers, WiFi and networks. Don't forget about physical security as well - keep things out of sight and the site locked up.

To respond to the very latest online threats and keep small firms safe Kaspersky Lab has upgraded and enhanced its popular Kaspersky Small Office Security solution. For more information, visit http://www.kaspersky.co.uk.

i. Opinion Matters for Kaspersky Lab, questioned 250 UK businesses with up to 10 employees in following sectors: professional services, arts & culture, IT & telecoms, retail, catering and leisure, healthcare, manufacturing & utilities, architecture & engineering, sales & media, marketing & creative, finance, travel & transport, education and other, in November 2013.

ii. 2013 survey of small businesses by the Federation of Small Businesses, the Home Office and the Department for Innovation and Skills.

About Kaspersky Lab

Kaspersky Lab is the world's largest privately held vendor of endpoint protection solutions. The company is ranked among the world's top four vendors of security solutions for endpoint users*. Throughout its more than 15-year history Kaspersky Lab has remained an innovator in IT security and provides effective digital security solutions for large enterprises, SMBs and consumers. Kaspersky Lab, with its holding company registered in the United Kingdom, currently operates in almost 200 countries and territories across the globe, providing protection for over 300 million users worldwide. Learn more at http://www.kaspersky.co.uk.

* The company was rated fourth in the IDC rating Worldwide Endpoint Security Revenue by Vendor, 2011. The rating was published in the IDC report "Worldwide Endpoint Security 2012-2016 Forecast and 2011 Vendor Shares" (IDC #235930, July 2012). The report ranked software vendors according to earnings from sales of endpoint security solutions in 2011.

Follow us on Twitter
www.twitter.com/kasperskyuk

Like us on Facebook
http://www.facebook.com/Kaspersky

Editorial contact:
Berkeley PR
Lauren White
kasperskylab@berkeleypr.co.uk
Telephone: +44-(0)118-909-0909
1650 Arlington Business Park
RG7 4SA, Reading

Kaspersky Lab UK
Ruth Knowles
Ruth.Knowles@kasperskylab.co.uk
Telephone: +44(0)7590-440-433
2 Kingdom Street
W2 6BD, London