Protecting Charities from Cyber Threats

Protecting Charities from Cyber Threats

Many smaller charities are unaware of the threat of cyber attacks on their organization. While it may seem like something that would only happen to a larger organisation with more assets, the value of information can be dangerously overlooked.

There are several motives to carry out a cyber-attack on a small charity and a number of people who could do it:

Suppliers and third parties—It’s common for charities to outsource the responsibilities of running, maintaining and securing their data.

Terrorists—Terrorist groups are likely to deface websites and publish victims’ personal details online, which is a process known as doxing. 

Nation states—Nation states use cyber-crime to further their agendas.

Insiders—Disgruntled staff with access to their employer’s data may commit cyber-crimes seeking money or simply for revenge. 

Hacktivists—Hackers may target charities if they disagree with the charity’s purpose or are motivated by a specific cause.

In the event of a cyber-attack the personal details of staff, volunteers, donors or beneficiaries of the charity are all put at risk.

The NCSC (National Cyber Security Centre) published their small charity guide in March 2018, outlining how small charities can help themselves when it comes to cyber security. To summarise their findings, they recommended you:

• Back up your data and protect it with strong passwords.

• Protect your organisation from malware.

• Keep your smartphones and tablets safe.

However, in the event of a breach, your charity could still be liable in accordance with the GDPR (General Data Protection Regulation). The cost of the consequential fines could easily sink a small non-profit organisation.

For more information on cyber insurance, visit us at

While for more information on insurance for charities and non-profit organisations, visit Insync here


9 Albany Park, Cabot Lane, Poole, Dorset, BH17 7BX
t. +44 (0)330 1240730
e. This email address is being protected from spambots. You need JavaScript enabled to view it.

© Insync Insurance Solutions Ltd 2016 All rights reserved. Cyberguru is a trading style of Insync Insurance Solutions Ltd which is authorised & regulated by the Financial Conduct Authority where our reference number is 766691. Our registered office is Midland House, 2 Poole Road, Bournemouth, Dorset BH2 5QY and we are registered in England under company number 08810662. Should you have cause to complain, and you are not satisfied with our response to your complaint, you may be able to refer it to the Financial Ombudsman Service, which can be contacted as follows: The Financial Ombudsman Service Exchange Tower, London, E14 9SR | Tel: 0800 023 4567 or 0300 123 9 123 | | Terms of Business