Protecting Charities from Cyber Threats
Many smaller charities are unaware of the threat of cyber attacks on their organization. While it may seem like something that would only happen to a larger organisation with more assets, the value of information can be dangerously overlooked.
There are several motives to carry out a cyber-attack on a small charity and a number of people who could do it:
Suppliers and third parties—It’s common for charities to outsource the responsibilities of running, maintaining and securing their data.
Terrorists—Terrorist groups are likely to deface websites and publish victims’ personal details online, which is a process known as doxing.
Nation states—Nation states use cyber-crime to further their agendas.
Insiders—Disgruntled staff with access to their employer’s data may commit cyber-crimes seeking money or simply for revenge.
Hacktivists—Hackers may target charities if they disagree with the charity’s purpose or are motivated by a specific cause.
In the event of a cyber-attack the personal details of staff, volunteers, donors or beneficiaries of the charity are all put at risk.
The NCSC (National Cyber Security Centre) published their small charity guide in March 2018, outlining how small charities can help themselves when it comes to cyber security. To summarise their findings, they recommended you:
• Back up your data and protect it with strong passwords.
• Protect your organisation from malware.
• Keep your smartphones and tablets safe.
However, in the event of a breach, your charity could still be liable in accordance with the GDPR (General Data Protection Regulation). The cost of the consequential fines could easily sink a small non-profit organisation.
For more information on cyber insurance, visit us at cyberguru.co.uk
While for more information on insurance for charities and non-profit organisations, visit Insync here.