- New guide gives expert advice on how small businesses can easily avoid common online dangers
- Cyber security “should be as second nature as cashing up or locking the doors at night”
- Minister for Digital and Federation of Small Businesses welcome simple, practical and effective new guidance
UK small businesses can shield themselves from potential online attacks thanks to a new guide created by the National Cyber Security Centre (NCSC).
Research by the Department for Digital, Culture, Media and Sport (DCMS) earlier this year found that nearly half (45%) of all micro/small businesses identified a cyber security breach or attack in the last year. Despite this among the quarter of micro/small businesses that consider it a low priority, over a third (35%) have nonetheless identified a breach.
Launched today [Wednesday, 11 October], the NCSC Small Business Guide includes five simple steps organisations can follow to improve their cyber security and better protect themselves from loss online.
The expert advice comes in categories focused on backing-up data, using strong passwords, protecting against malware, keeping devices safe and avoiding phishing attacks.
Alison Whitney, the NCSC’s Director for Engagement, said:
“Cyber security can feel daunting for a small business, which is why we’ve made the UK’s most easy-to-access guide to help them thrive online.
“Protecting against malware, backing up data and avoiding phishing attacks should be as second nature to a small firm as cashing up or locking the doors at night.
“Whether you own a bakery, a building firm or you sell products online, our advice will help all business owners avoid threats that can cost time, money and reputation.”
Employing more than 12.5 million people and representing 99% of all private sector businesses in the UK, small businesses are at the heart of the nation’s economy.
Minister for Digital, Matt Hancock said:
“In the past year, nearly half of small businesses know they experienced a cyber attack, and many more did, but don't know it. As the great opportunities of the digital revolution open up to more and more areas of our lives, it is absolutely crucial businesses small and large are protected against this threat.
“The NCSC is a world leader in providing cyber security advice that is both simple and effective. By following NCSC’s steps such as backing up data and always downloading software updates, organisations of any size can take quick action to improve their cyber security at a low cost."
Mike Cherry, National Chairman at the Federation of Small Businesses (FSB), said:
“Cyber crime is one of the fastest growing risks to small businesses and support to tackle it is essential. FSB research shows cyber attacks on small businesses now cost the economy over £5bn a year. Without the time, resources and in-house expertise, it can be challenging to know the best, and even most basic, steps of defence.
“We therefore welcome this simple and practical guidance to help small businesses protect themselves against common cyber threats in the first place.
“Clear guidance is an important part of increasing the cyber resilience of the small business community, and we hope to see all future information consolidated in one place so that small firms know exactly where to turn for the most up-to-date cyber security advice.”
The government’s Cyber Aware campaign recommends simple ways SMEs can protect themselves online, including installing the latest software and app updates and using a strong, separate password for email.
Traders looking to improve their cyber security further can also seek certification under the Cyber Essentials scheme, which helps protect against common internet threats and demonstrates to customers and prospective clients they take the protection of their data seriously.
- The UK Government is fully committed to defending against cyber threats and address the cyber skills gap to develop and grow talent. The NCSC was created as part of the five year National Cyber Security Strategy (NCSS) announced in 2016, supported by £1.9billion of transformational investment.
- The NCSC provides a single, central body for cyber security at a national level and is the UK’s technical authority on cyber. It manages national cyber security incidents, carries out real-time threat analysis and provides tailored sectoral advice. GCHQ is the parent body for the Centre, meaning that it can draw on the organisation’s world-class skills and sensitive capabilities.
- The UK Government’s behavioural change campaign for cyber security, Cyber Aware, promotes simple measures that small businesses and individuals can adopt to stay more secure online. Cyber Aware’s technical advice is provided by the NCSC.