Perceived Vulnerability
Many charities operate with limited resources, including budget and staff for cybersecurity measures. This perception of vulnerability makes them attractive targets for cybercriminals.
Valuable Data
Charities often collect and store sensitive information about donors, beneficiaries, and financial transactions. This data can be valuable to cybercriminals for various malicious purposes, including identity theft and financial fraud.
Online Presence
With the rise of online fundraising platforms and digital payment methods, charities have an increased online presence, making them more susceptible to cyber-attacks.
Trustworthiness
Charities are perceived as trustworthy organizations by the public, which can make individuals more likely to interact with their online platforms and provide personal information. Cybercriminals exploit this trust to launch phishing attacks and other scams.
Global Reach
Many charities operate internationally, which can expose them to a wide range of cyber threats from different regions and jurisdictions.
Here are some statistics highlighting the prevalence of cyber-attacks targeting charities:
1. According to Symantec’s 2020 Internet Security Threat Report
– Nonprofit organizations, including charities, experienced an increase in email malware and phishing attacks compared to other sectors.
– Nonprofit organizations were targeted by email threats 68% more frequently than the average organization.
2. The Nonprofit Cybersecurity Incident Response Study 2019 found that
– 71% of surveyed nonprofit organizations reported experiencing at least one cyber-attack.
– 60% of those attacks targeted donors’ personal information.
– 17% of attacks targeted financial information.
3. The 2020 Cyber Readiness Report by Hiscox:
– 40% of charities surveyed reported experiencing a cyber-attack in the past 12 months.
– The average cost of a cyber-attack for a charity was estimated to be £9,470.
These statistics underscore the importance for charities to prioritize cybersecurity measures to protect their data, finances, and reputation from cyber threats.