A key message is that fewer companies have identified breaches or attacks than before, perhaps because the introduction of GDPR has had a positive impact on their cyber security posture. The report does say that where organisations have lost data or assets through security breaches, the resulting costs have consistently risen since 2017. The survey continues to disappoint in the sense that most
organisations, particularly smaller ones, are not aware of Government
initiatives such as Cyber Aware, 10 Steps to Cyber Security, and Cyber
Help is at hand, Consult MB Ltd in Weston-super-Mare, North Somerset conducts much of its cyber security work based on ’10 Steps’ and Cyber Essentials. Check out our services options for more details.
UK charities play a make a major contribution in supporting their chosen groups throughout the UK. For many people, the support from charities is literally a lifeline. Their work, however, also necessitates that they hold personal, commercial and financial information which has a clear value to cyber-criminals. Coupled with a reliance on IT, this sadly means charities are as vulnerable to cyber-attacks as any other business
Addressing resilience within charitable organisations can be
a challenge. Many do not perceive themselves as open to the cyber-threat; a
threat which, in reality, is unbiased as to an organisation’s size or sector.
Whilst targeted attacks are still commonplace, so too are attacks which target
a vulnerability rather than a specific person or organisation. Be it targeted
or not, the consequences of a cyber-breach can be devastating.
The IASME Consortium, a leading Accreditation Body for the
government backed Cyber Essentials certification scheme, is launching a
week-long campaign aimed at encouraging registered charities to improve their
resilience to on-line threats. Together with participating certification
bodies, IASME is offering discounted certifications on schemes which
demonstrate charities have recognised best practice protections in place.
IASME’s support for the third sector will take place between 29 April and 3 May
The IASME Consortium package includes the widely recognised
Cyber Essentials scheme. This scheme assesses against 5 core technical controls
which, had they been in place, would have prevented the majority of successful
attacks in recent years. The 5 technical controls are anti-malware, access
control, patching, secure configuration and firewalls.
IASME will also be offering its own award-winning governance
standard as part of the promotion. IASME Governance, which includes a Cyber
Essentials assessment and a GDPR check, is an information security management
standard which is more practical for SMEs than the traditional ISO27001. Taken
simultaneously with Cyber Essentials, IASME governance covers additional
protections such as physical security, data back-ups and staff awareness.
Dr Emma Philpott, Chief Executive of The IASME Consortium
stated, “Charities work tirelessly to secure donations for fantastic causes.
Having the right safeguards against unscrupulous cyber activity can help
protect the donations and also any sensitive information that a charity might
The IASME Consortium licenses a network of certification
bodies including Consult MB Ltd, based in North Somerset. Consult MB Ltd owner,
Mike Brett , stated, “We had no hesitation in participating in this campaign.
Charities do so much to help society and we want to help ensure that every
available penny goes to where it can make a real difference.”
Interested charities can find further information and apply via Consult MB Ltd.
Attended an interesting seminar, arranged by Lloyds Bank hosted at Weston College, on Fraud and Cyber threats. Lots of useful tips and advice for small businesses. Also, lots of alarming statistics around fraud and cyber-crime.
Lloyds say a financial fraud is committed once every 17s (yes seconds!).
Consult MB Ltd, based in Somerset, has successfully completed the exacting process to become a licensed Certification Body for the National Cyber Security Centre (part of GCHQ) Cyber Essentials and Cyber Essentials Plus schemes. Consult MB Ltd also gained licensed Certification Body status for IASME Governance, an affordable information assurance management scheme.
With cyber threats increasing in both volume and sophistication, Cyber Essentials and IASME Governance validate that a business has introduced proven cyber security and information assurance controls in line with recommended good practice. The Information Commissioners Office (ICO) includes Cyber Essentials on its security check list for GDPR compliance.
The Government’s Cyber Security Breaches Survey 2018 states, “Over four in ten businesses (43%) and two in ten charities (19%) experienced a cyber-security breach or attack in the last 12 months”. The Government recognise the challenge from the current cyber threat and have the ambition to tackle it head on. Cyber Essentials is very much at the heart of their National Cyber Security Strategy.
Previously, our focus was on the design and implementation of cyber defences for large enterprises. We’re delighted to have achieved licensed Cyber Essentials Certification Body status, and can assist the local business community in implementing and validating their own cost effective security measures.