By industry
Cyber security guidance — by UK industry
Sector-specific threats, regulations and quick wins for UK small and medium businesses. Real numbers, plain English, written by practitioners.
Estate Agents
Estate agents handle high-value transactions, sensitive ID documents and large property deposits — making them a prime target for business email compromise, deposit redirection fraud and ransomware.
Accountants
Accountants are high-value targets — they hold client financial data, payroll details and HMRC credentials. HMRC-themed phishing and impersonation attacks against UK accountants surged 240% in the past year.
Ecommerce
Ecommerce sites face constant card-skimming (Magecart), account takeover and supply-chain attacks via third-party scripts. A single skimmer left undetected for weeks can trigger a PCI fine and reputational collapse.
Hospitality
Hospitality firms run high-turnover staff, public Wi-Fi, integrated booking systems and card terminals — a complex attack surface that attackers exploit for cardholder data, loyalty fraud and ransomware.
Recruitment
Recruiters hold rich personal data — CVs, right-to-work documents, bank details for placed candidates — and process huge volumes of email attachments. That makes them a top target for invoice fraud and data theft.
Manufacturing
Manufacturers face a unique mix of IT and OT (operational technology) risk: ransomware that halts production lines, IP theft, and supply-chain compromise via Tier-1 customers like automotive, aerospace and defence.
Different sector?
Run a free UK Energy Cyber Risk Assessment for any home or small business.
Free energy cyber check