On October 23 2024 cybersecurity experts, local businesses, and charity representatives gathered at the Great North Ambulance in Teesside for a North East Chamber of Commerce knowledge event. This initiative, sponsored by the North East Business Resilience Centre (NEBRC), aimed to educate local businesses on cybersecurity risks and practical protection tips.
The NEBRC, a not-for-profit partnership of police, academia, and the private sector, sponsored this event alongside the North East Regional Cyber Crime Unit, insurance provider Aon, and local cybersecurity specialists Melius Cyber. Together, they provided actionable insights and threat briefings, underscoring the importance of cybersecurity for all businesses, especially small and medium enterprises (SMEs).
Recent data reveals that nearly 50% of UK businesses experience at least one cyber-attack each year, with small businesses often suffering the most significant impacts. However, many threats can be mitigated by implementing basic cybersecurity controls and continuously improving over time. Through such measures, businesses can not only reduce their vulnerability to attacks but also recover more effectively if one occurs.
Phishing remains the most prevalent form of attack, with cybercriminals leveraging increasingly sophisticated tactics to steal usernames and passwords, often targeting cloud and email accounts. Once they gain access, they frequently take over accounts to send further malicious emails or extract sensitive data. A crucial insight shared was the growing trend of attackers attempting to bypass multi-factor authentication (MFA), emphasising that they are highly interested in cloud and email accounts due to the valuable data they contain. All businesses irrespective of size use such services and are being attacked – such attacker behaviour shows how the mindset of “I have nothing worth stealing” or “I’m too small to be attacked” are unfortunately not true.
The event also highlighted the risks associated with oversharing on social media, where sensitive information can easily be exploited in cyber-attacks. Additionally, Aon discussed the benefits of cyber insurance, which can be invaluable during a security incident. A comprehensive cyber insurance policy typically includes access to an incident response team that helps identify the attack’s origin, assesses its impact, and provides guidance on strengthening defences. This support can be crucial for businesses to recover and prevent future incidents, and policies often include legal assistance as well.
Melius Cyber shared information on proactive technical tools, such as measures to prevent email account takeovers and continuous vulnerability scanning. Vulnerability scanning enables organisations to identify and address weaknesses in their networks before cybercriminals can exploit them. This approach fosters a proactive stance toward cybersecurity, making businesses far more resilient.
One of the day’s major takeaways was the realisation that robust cybersecurity practices not only protect businesses but can also help them grow by building customer trust and differentiating them from competitors. Companies with strong cybersecurity measures are gaining a distinct competitive edge, as customers increasingly prioritise working with businesses that protect their data effectively.
There is an abundance of local support available for businesses looking to strengthen their cybersecurity. Local and regional police teams provide cybersecurity assistance, and support is available through free tools like Police Cyber Alarm. The NEBRC also offers free core membership, which includes a monthly newsletter with practical tips and local event information. In addition, the NEBRC collaborates offers low-cost cybersecurity services and works with cybersecurity experts who work directly with your business to bolster its defences. For more information or questions about NEBRC resources, you can reach out via email at [email protected].