42% of UK manufacturers have been a victim of cyber-crime over the last 12 months according to new research.
Published by Make UK, the manufacturers’ organisation and intelligent security software and services provider, BlackBerry, the research showed 26% reported substantial financial loss as the result of an attack, with losses ranging from £50,000 to £250,000.
As businesses adopt more digital technologies, the exposure to cyber security risks increases. Some 95% say cyber security measures are necessary for their company while two thirds said the importance of cyber security has increased in the last 12 months. However, worryingly, 54% decided not to take any further cyber security action despite the adoption of new technologies to boost production. The cost of the initial outlay on cyber security remained the main barrier for business (four in 10 companies) along with the cost of maintaining systems (35%).
UK manufacturers face a battery of cyber security risks, ranging from simple employee error through to complex targeted attacks. The top three cybersecurity vulnerabilities were identified as maintaining legacy IT (45%), a lack of cyber skills within the company (38%) and providing access to third parties for monitoring and maintenance (33%).
The research found that production stoppages were the most common result of a cyber-attack (65%), reputational damage ranking second (43%). Companies revealed that new customers now want reassurance on details of the cyber security in place before signing contracts.
Industry 4.0 and adoption of the industrial Internet of Things (IoT) is shown to be the biggest driver for one in three organisations (30%). These new IoT processes, such as automated sensors driving efficiencies, sit at the heart of manufacturing production, are seen as business-critical driving companies to spend more to protect them. However, just over a third (37%) say that concerns about cyber vulnerability have prevented the introduction of new connected technologies into their organisation, hampering potential productivity gains and holding companies back from growth.
Targeted attacks are the most common, with smaller companies often the most vulnerable yet many offering no cyber security training to staff. 62% of manufacturers now have a formal cyber security procedure in place in the event of an incident, up 11% on last year’s figures with the same number giving a senior manager responsibility for cyber security. 58% have escalated this responsibility to board level.
Stephen Phipson, CEO of Make UK, said: “Digitisation is revolutionising modern manufacturing and becoming increasingly important to drive competitiveness and innovation.
“While cost remains the main barrier to companies installing cyber protection, the need to increase the use of the latest technology makes mounting a defence against cyber threats essential. No business can afford to ignore this issue and while the increased awareness across the sector is encouraging, there is still much to be done.
“Every business is vulnerable, and every business needs to take the necessary steps to protect themselves properly.”
The composition of cyber defence across UK industry is wide – with companies investing in antivirus software and firewalls to secure internet connections. Very few companies, under one per cent, report not having any technical mitigation at all in place to protect against unwanted invasion. Russia and China are now seen as the main cyber threat for UK manufacturers (75%).