Why BT Research Flags SMEs as Big Target for Cyber Attacks

Illuminating the pressing need for technological advancements in cybersecurity, a collaborative study by BT and Be the Business exposes a significant gap in SMEs' readiness to confront digital threats.

Data finds that nearly two in five (39%) small to medium-sized enterprises (SMEs) have not implemented cybersecurity training, despite the alarming fact that four in ten (42%) small businesses experienced cyberattacks within the past year, rising dramatically to two in three (67%) medium-sized enterprises.

Financial and operational consequences

These cyber intrusions bear heavy financial and operational burdens.

Recovering from a significant breach demands substantial resources, with costs averaging £7,960 (US$10,775) for small enterprises experiencing the most disruptive breaches.

These figures show the necessity for more sophisticated cybersecurity measures that shield digital assets and ensure business continuity.

Prevailing cybersecurity threats

Phishing remains predominant among the cyber threats, with fraudulent emails targeting 85% of UK businesses.

Moreover, ransomware incidents have escalated markedly, doubling over the previous year and currently impacting one in every 100 businesses in the year 2025.

BT's research underscores that businesses proactively enhancing their cybersecurity frameworks, which include adopting cloud-native security technologies and robust firewalls, report a 20% higher growth rate on average, signalling the economic benefits of robust digital infrastructure.

BT's Initiative in cybersecurity training

In response, BT is amplifying its security product offerings by introducing bespoke security training programs for SMEs.

These programs cater to educating businesses on next-generation cyber threats, including those facilitated by AI and quantum computing innovations.

Training also shines a light on more novel threats, such as account takeovers utilising stolen credentials and the exponential rise in “quishing” attacks, where QR codes are creatively exploited to deceive users.

Tristan Morgan, Managing Director for Security at BT, comments: “At BT, our mission is to enable UK businesses to grow and prosper, and we know the challenges SMEs face protecting themselves from growing cyber threats. These often include budget constraints and the lack of a dedicated cyber team, but for SMEs, a cyber attack isn't just an inconvenience; it poses an existential threat.

“The good news is that effective cybersecurity doesn't require corporate-grade resources. With the right training, basic security measures and awareness, SMEs can dramatically reduce their risk profile.

“The key is recognising that, in today’s digital landscape, cybersecurity is not a luxury but a foundation that enables companies to face forwards confidently, rather than forever looking over their shoulder.”

Insights from BT's cybersecurity research

The research further divulges that 18% of UK SMEs perceive threats from AI as their primary cybersecurity concern, while an encouraging 69% are contemplating employing AI to bolster their security mechanisms.

Additionally, about 46% of business leaders resort to industry experts for cybersecurity guidance, highlighting the reliance on specialised knowledge in navigating complex digital threats.

Explore the latest edition of Technology Magazine and be part of the conversation at our global conference series, Tech & AI LIVE.

Discover all our upcoming events and secure your tickets today.

Technology Magazine is a BizClik brand