Here’s the translation to American English:
—
According to the European Union Agency for Cybersecurity (ENISA), cyberattacks have become a critical threat to small and medium-sized enterprises (SMEs) in Europe. A concerning 57% of these companies have claimed that they could close or declare bankruptcy within just a week after suffering an attack, highlighting the need to promote business resilience. This concept refers to an organization’s capacity to anticipate, withstand, and recover from digital security incidents.
In response to this growing issue, the European Union has launched the Cyber Resilience Act (CRA), which aims to establish guidelines for designing, developing, and managing software vulnerabilities with a more secure approach. However, for these guidelines to be truly effective, it is vital to have strong governance that integrates both information security and cybersecurity. This forms part of a comprehensive approach to cyber resilience that companies must adopt.
A clear example of the devastating consequences that can arise from a cyberattack is the case of Mt. Gox, a bitcoin exchange platform in Japan. In 2014, the company lost approximately 850,000 bitcoins due to a cyberattack, leading it to seek bankruptcy protection. This situation underscores how such an incident can jeopardize a company’s financial viability.
On the other hand, the case of Alcampo, a supermarket chain in Spain, illustrates how an effective cybersecurity strategy can ensure operational continuity. In August 2024, the company suffered a cyberattack that impacted some of its systems. However, thanks to its cybersecurity protocols, they were able to activate contingency measures that allowed them to continue operating and minimize the effect on their supply chain.
The Spanish government, through the Spain Digital 2026 initiative and the National Cybersecurity Institute (INCIBE), is working to reduce risk exposure, especially in critical sectors undergoing digital transformation. Implementing a business continuity plan that addresses cybersecurity and resilience aspects is essential for all organizations, regardless of size. This includes emergency response procedures, identification of critical assets, secure data backups, and ongoing training for staff.
Companies must recognize that the relationship between cybersecurity and resilience is a fundamental pillar for their sustainability. Employee training in security is as crucial as the resilience measures implemented. Therefore, adopting a comprehensive approach to digital protection, accompanied by a strong cybersecurity culture, will enable organizations to minimize risks and ensure their operational continuity in an increasingly complex digital environment.
via: MiMub in Spanish