Please note that this is a page from a previous version of Continuity Central and is no longer being updated.

To see the latest business continuity news, jobs and information click here.

Business continuity information

UK organizations leaving the door open for information security attacks due to failures in staff training

A quarter of UK office workers do not know what phishing is and almost a fifth of UK organizations do not provide any training to help staff understand security threats, a survey from PhishMe has revealed.

The survey, which was conducted by One Poll in December 2013 and looked at the attitudes of 1,000 UK office workers, revealed that UK organizations are ‘taking a lackadaisical approach to security training’, with 19 percent not providing any staff security training whatsoever, and 24 percent not providing basic security training, including induction training, classroom training, employee security policy training or phishing training.

The recent spate of cyber attacks against some of the world’s leading brands have highlighted the significant impact cybercrime can have on organizations. Businesses cannot afford to ignore the importance of staff security training given the odds of compromise. Failure to do so can result in significant financial losses to organizations, as well as loss of intellectual property, confidential customer data, and customer trust.

Commenting on the findings, Rohyt Belani, CEO of PhishMe, said: “Phishing is one of the biggest security threats to organizations and it is critical that staff are given continuous training on how to identify evolving threats. Attackers use techniques such as spear-phishing where they create very credible looking malware-bearing emails and target specific individuals within an organization, based on publicly available information. A disengaged employee population makes it increasingly difficult for organizations to defend against advanced cyber attacks.”

“Organizations that provide staff with immersive security training are able to leverage them as a line of defence and a robust attack detection mechanism, to better protect their networks. Even if a company has all the latest security technologies in place to protect their systems, human susceptibility is still one of the leading causes of a successful breach.”


•Date: 3rd February 2014 • UK •Type: Article • Topic: ISM

Business Continuity Newsletter Sign up for Continuity Briefing, our weekly roundup of business continuity news. For news as it happens, subscribe to Continuity Central on Twitter.

How to advertise How to advertise on Continuity Central.

To submit news stories to Continuity Central, e-mail the editor.

Want an RSS newsfeed for your website? Click here