Overconfident companies should treat online attacks as ‘inevitable’, says Deloitte
Online security experts at Deloitte have warned unprotected companies that when it comes to harmful online attacks it’s not a question of ‘if’, but a question of ‘when’ they will suffer attacks.
A study conducted by the firm found that 88% of businesses operating in the Technology, Media and Telecommunications (TMT) sector don’t believe they’re vulnerable to online crimes such as data theft. Somewhat at odds with this number, a smaller 68% claimed that they fully understood the risks posed by online crime.
Worryingly however, further figures show that over half of the companies in the TMT sector don’t have adequate security measures in place. It’s therefore no surprise to find that the majority – 59% – had experienced a security incident in the last year (according to infosecurity-magazine.com).
Even worse, yet another study (from ashdowngroup.com) found only 48% of SMEs surveyed offered security-related training to their employees. Yet this was despite 70% highlighting a lack of security awareness among their employees as a top threat.
With attacks inflicting billions of pounds worth of damage on UK businesses each year, Deloitte said companies should treat breaches as par for the course and invest considerable time in response planning: “Companies need to act as if a breach is inevitable and have a documented response plan in place so they can react when it does happen,” stated James Alexander, lead partner for TMT security at the firm. “Unfortunately not enough companies are doing this so we think companies are being overconfident in their resilience.”
Find out more about the importance of online security here