In 2025, the cost and complexity of cyberattacks have reached unprecedented levels. According to IBM’s Cost of a Data Breach Report 2024, the global average cost of a data breach has risen to $4.88 million, marking a 10% increase from the previous year – the highest ever recorded. In the UK specifically, the average cost is even higher, at $5.05 million, reflecting the region’s rigorous regulatory standards and high digital exposure.
Recent events have brought the reality of this statistic home. In the past week, two of the UK’s most recognisable retailers – Marks & Spencer (M&S) and the Co-op – were hit by significant cyberattacks. The operational fallout has been substantial, highlighting the critical importance of secure, resilient communication infrastructure as part of any modern cybersecurity strategy.
When a breach occurs, the true cost extends well beyond IT. The financial, legal, operational and reputational consequences can last for years. On average, an organisation can expect the following costs:
Total potential damage: $20 million to over $200 million, depending on scale, sector, and the organisation's preparedness.
READ MORE: 51% of CIOs lack access to cybersecurity solutions that fit their business needs
For M&S, the financial hit was immediate. Online order capability was suspended for weeks, resulting in a reported £43 million in lost revenue per week. Meanwhile, the Co-op faced supply chain disruptions and customer frustration due to IT shutdowns affecting stock availability across multiple stores.
For M&S the markets have also been unforgiving. As of early May 2025 MoneyWeek reported a £700M drop in the company’s valuation on the stock market.
The Human Element: A Persistent Weakness
Despite significant investment in perimeter defences and monitoring, 74% of breaches still involve a human element, according to Secureframe. In the M&S and Co-op incidents, early reports indicate that attackers gained access via social engineering tactics, including impersonating staff to manipulate IT service desks into resetting credentials. This is a reminder that the weakest point in any system is often not the technology – but the people using it.
If the company had an approved closed secure comms solution over which to communicate highly sensitive information the challenge for the imposter of impersonating a colleague over this system increases dramatically. A system like Salt, when used as an internal safe haven network, can prevent these types of attacks.
When a cyberattack hits and core systems are compromised, what fails next is often coordination. Internal communications stall as the normal modes of communications are not available. Executives and response teams scramble to find an alternative way to communicate safely. Without an available reliable means of communication, the propagation of important information relating to the incident drops dramatically.
This is why having a readily available and independent secure communications network – a “safe haven” – becomes essential. A platform purpose-built to withstand breaches and remain operational when other systems fail is no longer a luxury; it is a necessity.
Salt Communications: A Practical Safe Haven
Salt Communications provides such a platform. Designed with strong perimeter defences, end-to-end encryption and independent infrastructure, Salt allows organisations to:
Communicate securely (voice, messaging, file sharing) even during widespread outages.
Coordinate executive and operational response without exposing sensitive information.
Maintain confidentiality and control over incident-related decision-making.
Securely Broadcast the status of the unfolding situation to key staff members to maintain coherency while the crisis is being managed.
Cyberattacks are not rare events. For most organisations, the question is not if but when an incident will occur. When it does, maintaining secure and resilient communication is critical to containing damage and recovering quickly.
Investing in technical defences is vital, but so is preparing for the moment those systems are breached. A secure communications platform like Salt can serve as your operational backbone before, during and after a crisis. It’s too late and too fast moving to think about something like this in the middle of the crisis. Think about it now. Act now.
Read the latest edition, Spring 2025, of Sync NI here completely free of charge.
Subscribe to the Sync NI newsletter for all the latest technology news, jobs and upcoming events in Northern Ireland.
Visit Sync NI online for the latest technology news in Northern Ireland.
