However, 39% of respondents said they have no plans in place to prevent cybercrime; 29% remain uninsured against digital crime and a further 33% have no business continuity strategy in place in the event of a severe cyber attack, leaving them vulnerable to the consequences - which can be far-reaching.
Cybercrime is a digital attack on an individual or organisation with the aim of obtaining valuable information or causing damage to a website or online platform. This can be through hacking, when data is stolen, or phishing, when fraudulent emails are sent in attempt to get individuals to reveal personal information online, such as passwords and credit card details.
Grant Thornton's research comes on the back of further evidence which shows a third of cyber attacks carried out during 2015 were directed at small and medium sized businesses**, highlighting that no company is immune to the threat.
Dominic Preston of Grant Thornton's St Albans Space, said: "There have been a number of high profile cybercrimes cases directed towards large companies, such as TalkTalk and Vodafone, but we are now seeing a shift towards criminals targeting smaller and mid-sized businesses.
"Cyber attacks are an increasingly significant danger for organisations of all sizes. Not just in terms of financial penalties but serious reputational damage and loss of business. Despite this, our research shows a concerning number of local firms still lack a strategy to deal with cyber threats or even understand the risks to their organisation.
"Businesses cannot afford to be behind the curve on this. Cyber attacks can strike without warning and sometimes without the victim being immediately aware. In this digital age, rigorous security and privacy is expected. If this cannot be guaranteed the ultimate risk is that customers will simply go elsewhere."
Grant Thornton's research also found that just 24% of local businesses are aware of the Government's new 'Cyber Essentials' scheme, designed to help provide basic protection against the most prevalent forms of internet threat. Displaying the Cyber Essentials badge enables organisations to show they adhere to government recommended security standards and is mandatory for central government contracts which involve handling personal information or providing certain ICT products and services.
Dominic continues: "Vigilance alone won't keep businesses safe. The conversation about cybercrime should be happening at boardroom level with managers ensuring their employees are aware of the risks and are on the lookout for any suspicious activity, particularly phishing emails, which have started to become much more sophisticated in recent months. Just as critically, clients and customers also need reassurance that effective controls are in place.
"Cyber attacks are a real threat and those firms who don't have effective strategies in place to deal with the issue could be risking not only their finances but also, and very importantly, their reputation."
Cyber security will be the hot topic for discussion at Grant Thornton's next FD Club event which takes place on Tuesday 28 June at Churchill House, Hertfordshire, AL1 3UU.