The events of the last two years, such as the pandemic and the Russian invasion of Ukraine, apparently did not cause enough interest in data security issues. Only 17 percent of Hungarian companies have a cyber security policy and procedures in case of a cyber attack. In this regard, Hungary is far worse than the Poles and the Czechs. The smaller the company, the worse the situation is, says Gábor Szappanos, Sophos’ cyber security expert.
Where they employ more than 250 people, almost 70 percent of managers, directors or board members have not received cybersecurity training. For medium-sized companies, this ratio reached 85 percent. The problem also affects every third small business employing up to 50 people.
The latest news of the economy and business life in the Napi.hu newsletter.
We have sent you an email! Open it and click the Subscribe link to confirm your subscription.
You will then receive the Napi.hu Newsletters morning and evening.
Comparing data from Hungary (80 percent of respondents are untrained), 57 percent of respondents in the Czech Republic have not received cyber security training, while in Poland only 28 percent have not completed training. The Hungarian data is extremely worrying, as these people are responsible for data protection in every third company.
A popular manipulation technique
77 percent of Hungarian company managers have encountered spam or suspicious messages in their workplace e-mail mailboxes. The Sophos survey also shows that 34 percent of managers have received fake text messages, while 41 percent have encountered phishing attempts related to login data.
Phishing is one of the most popular manipulation techniques used by cybercriminals. This involves persuading the victim through well-crafted messages to hand over their credentials or perform certain actions, such as clicking on a link to a website that infects the system with malware. According to a survey commissioned by Sophos, nearly half of managers have encountered phishing in the past 12 months. In the Czech Republic and Poland, where the survey was also conducted, the ratio was 60 percent and 50 percent, respectively.
The survey showed that phishing affected 55 percent of managers of companies with more than 250 employees. In the case of small companies with no more than 50 employees, 53 percent of employees in senior positions are affected. Directors (61 percent) and managers (46 percent) attempted to obtain confidential data most often. In the case of board members, 4 out of 10 people were found to have messages from fraudsters. The industries most frequently attacked by phishing are services (62 percent), administration (54 percent) and industry (53 percent).