Non-profit organizations (NPOs) are unfortunately not immune to cybercrime. While their missions may be noble, they often lack the resources and cybersecurity expertise of larger organisations, making them attractive targets for attackers. Here are some specific examples of cybercrime targeting NPOs:

Data Breaches:

  • In 2019, a UK children’s charity suffered a data breach that exposed the personal information of over 25,000 donors. The Information Commissioner’s Office (ICO) fined the charity £230,000 for failing to protect its donors’ data.

Ransomware Attacks:

  • In 2021, a charity that supports older people in the UK, was hit by a ransomware attack that encrypted its files and disrupted its operations. The charity refused to pay the ransom and was able to restore its systems from backups, but the attack caused significant disruption and financial loss.
  • In 2022, a specialist NHS hospital in was the target of a ransomware attack that forced it to cancel operations and appointments. The attack caused significant disruption to patient care and highlighted the vulnerability of healthcare organizations to cybercrime.

Phishing Attacks:

  • In 2021, an international development charity, was targeted by a phishing attack that attempted to trick its employees into disclosing their login credentials. The attack was unsuccessful, but it highlights the importance of employee training and awareness of cyber threats.
  • In 2022, a cancer research charity in Europe, was targeted by a phishing attack that attempted to trick donors into giving their credit card information to a fake website. The attack was unsuccessful, but it highlights the importance of being vigilant against phishing scams, especially during periods of high online activity like fundraising campaigns.

These are just a few examples of the many ways that cybercriminals can target NPOs in the UK. It is important for NPOs to be aware of the risks and take steps to protect themselves from cyberattacks. Here are some resources that can help UK NPOs protect themselves from cybercrime:

By taking steps to protect themselves from cybercrime, UK NPOs can continue their vital work without fear of disruption or data breaches.