Social Engineering Warning for SME’s


The UK government’s Cyber Security Breaches Survey 2022 has revealed that 48% of small firms and 59% percent of medium-sized businesses suffered a cyber attack in the past year. 

These businesses are being warned to watch out for scammers who are targeting restaurants and local businesses through social engineering, which gives criminals access to sensitive data and customer information.

Social engineering is where cyber criminals manipulate people into sending money into fake accounts or sharing important information. 

Criminals may use baiting attacks to attract victims through curiosity or greed, luring them into a trap that can bring down systems through malware or steal data. 

Malware-infected flash drives can be left in businesses, such as on a table in a restaurant, and may be presented as authentic and related to the firm in some way. 

Victims may pick up and install a flash drive out of curiosity, which gives criminals access to files once malware on ransomware is installed. 

However, malware doesn’t just have to be carried out in the physical world: online attacks consist of phishing emails, infected ads, or applications that download malware onto a victim’s computer.

Being a small business doesn’t protect you from scammers or online criminals, as any organisation can be targeted.

To stay safe, be wary of tempting offers from strangers, don’t open phishing emails from suspicious sources, and keep your antivirus updated  after all, if it seems too good to be true, it probably is.

The NEBRC is a not-for-profit organisation established to support and educate businesses across the UK on cyber security and online crime.

If you would further advice on protecting yourself and your business against malware and baiting attempts, contact our team at