Press "Enter" to skip to content

Cyber Resilience Centre for Wales predicts biggest threat to businesses in 2022

The Cyber Resilience Centre for Wales (WCRC) predicts businesses across Wales will come under increasing threat from ransomware attacks as cybercriminals continue with this lucrative business model, and attacks becoming more sophisticated.

Detective Superintendent and Director of the WCRC Paul Peters, said: “This is a danger we have seen continue to grow over the course of 2021. Falling victim to this type of malicious software prevents businesses accessing their data, which can be crippling. But cybercriminals are also stealing data before encrypting, then threatening to release it giving them greater leverage when demanding payment of a ransom.”

The WCRC  was set up in April this year as part of a network of centres across the UK to provide businesses and organisations with an affordable way to access cyber security services and guidance through membership to help protect themselves from attack.  Since it launched more and more SMEs in the region are recognising the importance of being cyber resilient, with the centre recently passing the 200th-member mark.

“I’m really pleased with the progress we are making but, in particular, the number of businesses we have managed to engage with. We have been focusing on SMEs, micro businesses and the third sector, and over three quarters of our members fall into these categories. Yet we can’t rest on our laurels, as there are many organisations out there that are leaving themselves vulnerable and our goal is to help them to protect themselves,” Paul continues.

“Although ransomware is the biggest threat, phishing is another risk and here at the centre we are hearing more and more reports of these types of emails becoming increasingly sophisticated. They appear to be more genuine and so more difficult to identify. Phishing emails are often the method used for delivering ransomware and other malware, but also can lead to business email compromise or other types of fraud.

“One of our members recently reported receiving a Welsh language phishing email, and another has had a targeted phishing email that appears to be from a recruitment company with some enticing job opportunities. So, as we enter the new year it continues to be crucial that we raise awareness of how to identify these emails and not fall victim to them.”

Paul recommends that by having a robust backup procedure in place, strong passwords with Two Factor authentication, and a strategy to raise awareness amongst staff, businesses and other organisations can significantly reduce the likelihood of falling victim to attacks.

“Many cybercriminals have recognised the advantage of approaching their victim through their supply chains, this year we have seen a number of these types of attack. For example, the July attack on US software solutions provider Kaseya. But don’t be fooled into thinking this only happens to the big companies, it also affects SMEs, micro businesses and charities here in Wales.

“In 2022 it will become increasing important that entire supply chains ensure they are not the cyber security weak link. In order to do this, businesses need to focus on raising their staff awareness so they can recognise a phishing attack as well as instigating basic cyber security measures,” concludes Paul.

The WCRC can help businesses with this. Many with supply chains will become more intrusive around cyber security, and more organisations are insisting on Cyber Essentials as a minimum cyber security standard. The centre works with Trusted Partners, who are able to help businesses achieve Cyber Essentials certification which will significantly reduce their risk to cybercrime.

To find out more information about the centre and how to get involved visit Businesses can join the Cyber Resilience Centre for Wales at no cost by signing up for its free core membership which provides access to guidance, tools and affordable services to help better protect themselves against the threat of cybercrime. The WCRC also offer a range of  membership packages  and cyber security services to suit different business needs. To keep updated with all the latest WCRC developments, follow @CRCWales on Twitter, LinkedIn or Facebook.


Notes to readers

  • 43% of small businesses have been targeted by cyber criminals – the WCRC makes it much harder for the cyber criminals to succeed.
  • The annual cost of cyber-attacks on small businesses is thought to be £4.5billion. WCRC core membership provides tips and guidance to improve cyber resilience.
  • 55% of businesses hold customers personal data electronically. The WCRC vulnerability report service helps identify potential weaknesses and vulnerabilities in companies’ websites that could lead to a cyber-attack.
  • The WCRC Trusted Partners can help organisations achieve the Cyber Essentials certification to guard against the most common cyber threats and helps to demonstrate their commitment to cyber resilience for their customers and staff.
  • WCRC offers an affordable range of cyber security services that are designed to help businesses identify their vulnerabilities, asses current plans and policies and work with their teams to build their cyber awareness.
Business Info Magazine & Site is Published by Kingswood Media 2022