Forty four percent of small businesses in the UK have been a victim of cyber crime, including internet scams, identity fraud, phishing and data theft. This is one of the key findings of new research  commissioned by Get Safe Online announced today.
 
Of those businesses affected, more than a third (36%) have suffered a computer virus and almost one in five (18%) have been a victim of internet scams such as phishing, spyware or hacking in the last two years.

Furthermore, as online scams become increasingly sophisticated, the research also highlighted that only 5 percent of small businesses have access to dedicated IT support,  either internally or via an outsourced provider. Instead, many business owners have to take it upon themselves to keep up with the latest online security issues.

As small business enterprises of all kinds, from local tradesmen through to small retailers, become increasingly reliant on technology to run their businesses, the research also showed that cyber crime and other IT problems could be having a significant impact on the UK’s small business community. Notably, sixty percent of those surveyed said their businesses would grind to a halt if their IT system failed. Of those who had experienced online crime or other IT-related problems, almost a fifth (19%) said they lost revenue as a result of downtime, the average figure cited as £1,540. This equates to a staggering £750 million in estimated losses across the UK small business population as a whole. 

Today, Get Safe Online, a joint government and industry initiative, is calling on smaller enterprises to make sure they’re taking adequate steps to protect their business.

Sharon Lemon, Head of e-Crime at the Serious Organised Crime Agency (SOCA) added: “It is relatively simple for businesses, however small, to keep one step ahead of the crooks. I urge all small businesses to use the new leaflet at www.getsafeonline.org to secure their online business today. The cost to livelihoods and the economy is too high to ignore the threat of cyber crime.”

The research also found that two-thirds (66%) of businesses surveyed store vital documents on their PCs and 69% also store their customer details on IT equipment, yet less than a third (32%) consider themselves to be fully up-to-date with current PC/internet security issues. This makes not only business owners, but also their customers, vulnerable to the risks of online security.

It’s not all bad news, however, as managing director of Get Safe Online, Tony Neate explains: “The good news is that small businesses are taking the general basic steps to protect themselves – for example, 97% of those surveyed in our research protect their IT equipment with anti-virus software.

“However, as cyber crime becomes more sophisticated, basic measures aren’t enough on their own. Businesses also must look at access control, data encryption and secure password practices, as well as looking at other measures such as staff training. But, it’s also important to remember that by taking a few simple precautions, online risks needn’t overshadow the huge benefits that the internet brings to UK businesses, “ Neate adds.

John Dunsmure, managing director of the British Chamber of Commerce, added: “It’s crucial that businesses know the risks and take steps to protect themselves, particularly in the case of smaller businesses, when often someone’s livelihood can hang in the balance. It’s good to see initiatives like Get Safe Online recognising the particular challenges faced by smaller businesses.”

Nick Staib, senior manager for internet banking in HSBC, a founding sponsor of the Get Safe Online initiative, added: “Many of our customers are small businesses for whom online security is an increasingly critical issue. This campaign reflects the commitment that we all need to make to addressing online security in this area.”

The Get Safe Online campaign recommends ten simple steps for small business to protect themselves online:

1. Protect your IT equipment from theft
2. Secure remote access
3. Prevent data theft using removable devices
4. Use encryption
5. Protect your e-commerce website
6. Avoid the risks when selling commercially on auction sites
7. Control access to critical information
8. Prevent business fraud
9. Comply with the Data Protection Act
10. Bookmark www.getsafeonline.org to keep up to date

The Get Safe Online campaign, which is now in its third year, is the UK’s first national internet security awareness campaign. A joint initiative between the government, the Serious Organised Crime Agency (SOCA) and private sector sponsors from the worlds of technology, retail and finance, the campaign raises awareness of the need for internet security, and provides information, advice and updates through its website www.getsafeonline.org.

Notes to editors

• As of today, small and micro-businesses can visit www.getsafeonline.org and download a specially-designed leaflet which provides advice on the key areas of online security. They are also encouraged to visit the website on a regular basis to make sure they are up-to-date with the latest online safety measures. 
• As part of its commitment to the small business community, Get Safe Online is holding discussions with a group of the key organisations that represent the interests of smaller businesses this week to discuss how they can work together to support the community in protecting itself against online crime.
• Get Safe Online is supported by HM Government, the Serious Organised Crime Agency (SOCA), Microsoft, BT, eBay.co.uk, HSBC, secureTrading, and Cable & Wireless.
• Conducted online by of 1,008 businesses (1-9 employees) conducted by Vanson Bourne across the UK, May 2007

Key findings from the research include:

• 60% of small businesses would grind to a halt if their PCs were taken down by cyber crime or IT related issues.
• 44% of small businesses surveyed have been a victim of cyber crime, including internet scams, identity fraud, phishing and data theft.  
• Over a third (36%) of micro-businesses have suffered from a computer virus
• Nearly a fifth (18%) have been victims of phishing, spyware or hackers in the last two years. 
• Almost a fifth (19%) said they lost revenue as a result of downtime, the average figure cited as £1,540. This equates to a staggering £750 million in estimated losses across the UK micro-business population.
• Two-thirds (66%) of businesses surveyed store vital documents on their PCs and 69% also store their customer details on IT equipment - less than a third (32%) consider themselves to be fully au fait with current PC/internet security issues.
• Only 5% of small businesses have access to dedicated IT support, internally or externally.
• Sixty percent of those surveyed said their businesses would grind to a halt if their IT system failed. 
• Half (49%) of small businesses are unable to track who is accessing what information on their PCs
• 26% of businesses surveyed did not have measurements in place to safeguard their IT systems i.e. only authorised users can access them

If you want further information please visit www.getsafeonline.org/go/media and download the small and microbusiness leaflet.