Nearly All UK Businesses Experienced Cyber Attacks in the Past Year

Cybersecurity Practices
Nearly All UK Businesses Experienced Cyber Attacks in the Past Year

Published:

Reading time: 3 min.

The Rising Tide of Cybersecurity Breaches: Understanding the Risks of Remote Workforces

In the ever-evolving landscape of cybersecurity, a recent report has unveiled a staggering statistic: nearly all businesses with at least 2,000 employees experienced a breach by cyber attackers in the past year. This alarming trend highlights the vulnerabilities that large organizations face, particularly in the context of remote and hybrid work environments. According to the report, 46% of respondents identified remote and hybrid workers as the primary risk factor contributing to these breaches.

The Challenges of Dispersed Workforces

The shift to remote and hybrid work has transformed the traditional workplace, but it has also introduced significant security challenges. Dispersed workforces often rely on unsecured networks and personal devices, making it difficult for IT teams to enforce consistent security protocols across multiple locations. Stephen Amstutz, director of Innovation at Xalient, emphasized that inconsistent policies can create exploitable gaps in security.

For instance, the Volt Typhoon cybercrime group launched botnet attacks on U.S. critical infrastructure companies in January, compromising hundreds of small and home office routers. Many of these routers had reached end-of-life status and were personal devices that IT teams could not oversee, illustrating the risks associated with unmanaged technology in a remote work setting.

Inconsistent Security Standards and Outdated Infrastructure

The “Blueprint for Future-proofing Your Network in 2025 and Beyond” report sheds light on the security gaps prevalent in U.K. businesses. A staggering 85% of respondents acknowledged that new threats are taking advantage of these vulnerabilities, with 99% reporting a security attack in the last year.

The report highlights several key factors contributing to these breaches:

  • Remote and Hybrid Workers: 46% of respondents cited remote and hybrid workers as the primary reason for cyber attacks.
  • Roaming Workers: 37% attributed breaches to employees working from various locations.
  • Branch or Subsidiary Operations: 39% pointed to vulnerabilities in branch or subsidiary operations.

Inconsistent security standards and outdated infrastructure, particularly among third-party vendors, can create weak links in an organization’s security chain. A notable example is the exploitation of the MOVEit file transfer application by the Clop ransomware group, which gained initial access through a SQL injection vulnerability. This incident underscores the importance of maintaining up-to-date security measures across all platforms.

The Human Element: Skills Shortages and Recruitment Challenges

While technical vulnerabilities play a significant role in cybersecurity breaches, human factors are equally critical. Nearly 80% of respondents in the Xalient survey identified the recruitment and retention of specialist security personnel as a key challenge. The U.K. has been reported to lag behind other European countries in terms of technical skills, with a significant increase in “skills-shortage vacancies” in the information and communications sector.

The report revealed that 42% of respondents found it difficult to detect threats and protect against ransomware, which is 4% higher than the global average. Additionally, 40% struggled to enforce policies consistently due to insecure networks, a challenge exacerbated by the shift to remote work. Amstutz noted that traditional networks were designed with the assumption that users were located in corporate offices, making it difficult to adapt to the new reality of remote work.

The Role of Secure Access Service Edge (SASE)

As organizations grapple with these challenges, many are turning to Secure Access Service Edge (SASE) as a potential solution. SASE is a cloud-based architecture that combines network security and wide-area networking capabilities, allowing businesses to securely connect users to applications and data regardless of their location. This approach offers a more cohesive security framework for dispersed workforces compared to traditional architectures that rely on separate firewalls and VPNs.

Despite its potential, the adoption of SASE in the U.K. remains low, with only 8% of respondents indicating they had implemented it to secure remote access. This figure is notably lower than the global average of 14%. The primary reasons for considering SASE include:

  • Rising Costs of Traditional Networking Architecture: Many organizations are finding traditional systems increasingly expensive to maintain.
  • Performance Issues with Business-Critical SaaS Applications: As reliance on cloud applications grows, performance becomes a critical concern.
  • Desire to Move Away from Legacy VPNs: Organizations are seeking more modern solutions to enhance security and connectivity.

Conclusion: A Call to Action for Businesses

The findings from the report serve as a wake-up call for businesses, particularly those with large, dispersed workforces. As cyber threats continue to evolve, organizations must prioritize the implementation of robust security measures that address the unique challenges posed by remote work. This includes investing in updated infrastructure, adopting cohesive security frameworks like SASE, and addressing the skills gap in cybersecurity personnel.

In an age where cyber threats are increasingly sophisticated, proactive measures are essential to safeguard sensitive data and maintain the integrity of business operations. By fostering a culture of security awareness and investing in the right technologies, organizations can better protect themselves against the rising tide of cyberattacks.

Related articles

Recent articles

Latest news

© 2024 BasicFundas.com [ CYBERSECURITY NEWS UPDATES ] All Rights Reserved.