In October this year, on the run up to Charity Fraud Awareness Week, the Charity Commission released a report on the state of charity cyber security in the UK. It did not paint a very positive picture
Amie McWilliam-Reynolds, Assistant Director Intelligence and Tasking, from the Charity Commission said:
"Online financial transactions, and online working generally, present a great opportunity for charities – whether in engaging supporters, raising funds, and streamlining their operations. This was demonstrated in particular during the pandemic, when the longer-term move away from cash to online fundraising accelerated.
But online financial transactions and the collection and storage of personal data also harbour risk, and we are concerned that some charities may be underestimating that risk and are therefore exposing their charity to potential fraud."
She added
"We hope that projects like Charity Fraud Awareness Week help raise awareness among trustees and charity staff of the risks they may face, and of the advice and guidance available to support them in protecting their charity from fraud."
These findings and comments are not from the Cyber Security industry but from the organisation that regulates and supports the whole charity sector – the bottom line is that doing nothing is not an option, so you need to do something now. And for all charities in the region, joining the Eastern Cyber Resilience Centre – a police led company - should be right at the very top of your list.
January is the perfect month for all of us to turn over a new leaf and set some new targets for ourselves and the organisations in which we operate. So set yourself a realistic 3-month target to bring in real change into your organisation. Identify someone (or a number of people) within the charity to take the lead in all things cyber and fraud and get the ball rolling now.
As a member of our free community, you will receive regular threat updates, invites to webinars, events, and blogs and much more.
We know that running a charity or a business isn’t just about cyber security, but it needs to become a priority in order to protect the important work that you all do.
If you are a business, charity or other organisation which is currently suffering a live cyber-attack (in progress), please call Action Fraud on 0300 123 2040 immediately. This service is available 24 hours a day, 7 days a week.
Please report online to Action Fraud, the UK's national reporting centre for fraud and cybercrime. You can report cybercrime online at any time using the online reporting tool, which will guide you through simple questions to identify what has happened. Action Fraud advisors can also provide the help, support, and advice you need.
Alternatively, you can call Action Fraud on 0300 123 2040 (textphone 0300 123 2050).
Click to Open Code Editor