Half of UK Firms and Charities Failed to Report Cyber Incidents

Written By Paige Leach

According to the latest UK government survey report, cybercriminals launched 7.78 million attacks against UK businesses in 2023, nearly 1 million of which were against charity organisations. However, fewer than half of those firms reported the incidents to authorities, which researchers say is a concerning trend.


"Not having an incident response is a "red flag," regardless of the scale of the attack for any organisation."

The UK Information Commissioner's Office requires businesses and other organisations to report a cyber incident within 72 hours. Still, the reporting obligations depend on the severity of the attack on the targeted systems and the number of affected customers - reporting is voluntary since attacks on small organisations and charities tend to be less severe.

Our CTO, Ryan McConechy, shares his thoughts with BankInfoSecurity and provides guidance for smaller organisations on improving their defences. Read the article in full below.


Paige Leach
Previous

UK High Street Banks Fail Tests on App and Online Security
Next

Ransomware group threatens to publish 3TB of stolen NHS Scotland data after posting proof of attack