The continuing pandemic has created a series of emergencies for UK manufacturers according to research conducted by the Ponemon Institute and commissioned by Keeper Security.
A combination of rapidly implemented remote working, together with reduced staffing, closures and supply chain disruption led to lost revenue and productivity, with security neglected as business leaders sought to fight the most visibly pressing issues first.
More than half of manufacturing firms experienced a cyberattack in 2020, with 37 percent saying the conditions created through COVID-19 made the attacks possible.
More than 55 percent say such cybersecurity incidents resulted in the theft of sensitive information about customers or employees.
While cybercriminals were judged to be responsible for 57 percent of attacks, more than a third of manufacturers described negligent employees or contractors as the root cause of security issues.
Keeper Security CEO Darren Guccione said: “The events of the last year have hit the manufacturing sector hard, with business owners scrambling to preserve jobs and establish a route through ever-changing restrictions and world-wide challenges to their ability to succeed. Inundated with a series of critical business challenges, it has been understandably hard for manufacturers to stay on top of risks that haven’t yet created tangible damage,”
Even before Covid-19 hit the UK, supply chain, sales and distribution were becoming increasingly affected by border closures, factory stoppages and retail restrictions across the world as the virus spread rapidly. Many firms in the manufacturing sector were remiss in their approach to cybersecurity prior to the pandemic, with 44 percent admitting to being without a sufficiently rigorous security system in place prior to the pandemic.
With remote working set to continue and the use of personal devices along with it, security is becoming correspondingly worse: now, two-thirds of firms admit their IT security measures aren’t fit-for-purpose and password security is particularly weak, with 66 percent of firms not requiring remote workers to use a password manager or implement any authentication methods beyond a password. This is a particular cause for concern, given compromised and stolen passwords are the most common cause of attacks among UK manufacturers.
“Every day that security is de-prioritised or overlooked increases the risk of a serious attack that could be fatal to the business. The disruption and stoppages cyberattacks can create is only one side of the coin: the other is the fines and penalties potentially applied if customer data is compromised. Taking some simple steps, like ensuring secure, unique passwords through a password manager, doesn’t take long or require sophisticated IT expertise, but will deliver large returns for a business’s security and peace of mind for stakeholders”, said Guccione.