In light of the government’s Cyber Security in Charities report showing a lack of preparedness among charities in matters of cybersecurity, Matt Walmsley, EMEA Director at Vectra commented below.
Matt Walmsley, EMEA Director at Vectra:
“The third sector is the weak link in the chain when it comes to data security. With limited resources, charities are considered fair game for today’s cybercriminals. Today’s report reinforces the fact that the lack of robust data security measures and processes is being capitalised on.
“Hackers will go after any organisation that possesses a hoard of personal information. This is not helped by the sector’s revealed lack of preparation or investment in cybersecurity. Banks, the traditional targets of cyberattack, while still high-value are increasingly seen as difficult and risky for hackers. This makes unprepared, ‘soft target’ organisations such as charities all the more attractive.
“Charities must remember that, in addition to the social good they strive towards, they also have a duty of care to protect the personal information of their donors. Charities will not be spared from new data protections rules under GDPR, and some may be unable to weather the storm should they fail to meet their obligations. With widespread IT and security outsourcing to cloud-based services and third-party providers, many charities may be introducing significant supply chain risk and punching holes in an already meagre security posture. Strong data management, security policies and investment in the latest threat detection and response technologies must be top of the agenda.”