In the new report of the British Analytical Center for Defense Issues of RUSI (Royal United Services Institution), alarming data is presented on the consequences of cyber attacks using minor programs for small business owners. It is noted that such attacks have a significant psychological effect on staff, up to the advent of suicidal thoughts.
The study revealed that cyber attacks not only entail financial losses, but also lead to deep stress and post-traumatic stress disorder (PTSD) among employees. In one of the cases described in the report, the company from the engineering industry was forced to hire a support team to combat PTSD after cyber attacks.
The results of the study of the UK National Cybersecurity Center (NCSC) are based on an interview with the victims of the Cyberata from various specializations (public sector, industry, finance, insurance, etc.). One of the respondents talked about the case when a person was experiencing suicidal thoughts due to the transferred cyber attack. Although such cases remain relatively rare, they cause serious concern.
Small business owners are especially vulnerable, since their personal and professional life is closely intertwined. Many of them believe that they are personally responsible for what happened and doubt the correctness of their business management. The report also emphasizes that stress caused by cyber attacks often remains unnoticed even in large organizations. IT experts, especially those who feel responsible for the emergence of problems, experience burnout and even go on sick leave or quit.
Companies affected by data leakage are required to report them to the Information Commissioner’s Office (ICO). Failure to do so can result in fines of up to 4% of their worldwide turnover. Despite the requirements to report cyber attacks, the NCSC and ICO expressed concern about the fact that the victims of minor programs often hide incidents from law enforcement agencies and regulators.