This site uses cookies to provide you with a more responsive and personalised service. By using this site you agree to our use of cookies. Please read our cookie notice for more information on the cookies we use and how to delete or block them.

Bookmark Email Print page

Nearly 4.6 million UK consumers have fallen victim to cyber crime

A sceptical public wants companies to show they are taking cyber security seriously

12 March 2013

  • Nearly 4.6 million UK consumers have had details stolen to buy goods online;
  • Less than half of consumers trust companies to tell the truth about the quality of their data security procedures;
  • Three-quarters want companies to beef up their identity authentication;
  • 88% say it’s the responsibility of the companies who collect their data to keep it secure and protect them from fraud;
  • Two-thirds of consumers said they were more likely to use companies that went out of their way to show customers they kept their information safe.

Nearly 4.6 million UK consumers have had their personal details stolen and their bank accounts used to buy goods or services, according to new research from business advisory firm Deloitte. In addition, approximately two-thirds of consumers (65%) claimed to have received ‘phishing’ emails and one in three said they had been a victim of ‘cybersquatting’.

With so many people having fallen victim to cyber crime, the latest Deloitte Consumer Review found that less than half (44%) trusted companies to tell the truth about the quality of their data security procedures. Only 40% thought their data was safe when they shared it with a company - even one they trusted.

Chris Gaines, partner in Deloitte’s Audit Advisory practice, said: “People are doing more and more online, and as consumers’ digital activities expand, so does their data footprint. Consumer awareness of cyber crime is at an all-time high, fuelled by first-hand experience and media coverage of recent high profile security breaches, not to mention government regulation such as the EU ‘cookie law’ which requires organisations to tell web users how their cookies will be used.”

Indeed, nine out of 10 people said they had thought about the need to protect their activities and data online. Nearly the same number (88%) thought it was the responsibility of the companies that collect their data to keep it secure and protect them from fraud. Consumers want companies to take more action too. Three quarters (75%) said they want businesses to introduce more ID authentication processes on their websites, despite the extra effort this would mean for them.

Consumers are clearly placing the burden of security with the company, but this also presents an opportunity. Shopping around today is as easy as the click of a mouse or the tap of a touch screen, and two thirds (66%) of people said they were more likely to use companies that went out of their way to show customers they kept their information safe. On the other hand, nearly one third (29%) of people affected by security breaches shifted their loyalty away from the company responsible for losing their data. Therefore, exceeding consumers’ expectations could help in maintaining loyalty and indeed enticing new customers from competitors. Not doing enough could well push them away.

Gaines commented: “There is an opportunity for companies to gain a competitive advantage if they can show customers their information will be safe. Customers expect businesses to protect their personal information and are ready to shop elsewhere if these expectations are not met.

“Cyber attacks used to try to disrupt services or damage files, now customer data has also become a target. The information companies hold about their customers is one of their most valuable assets. In this new digital world, consumers will turn to trusted brands who they know will protect this data. Those that fail to act risk losing loyal customers.”


Notes to Editors:
About the survey

This is the fourth edition of Deloitte’s Consumer Review. The research is based on a consumer survey carried out by independent market research agency, Ipsos Mori, on our behalf. This survey was conducted online with a nationally representative sample of over 2,000 UK adults aged 16 to 75 in January 2013. Deloitte also conducted interviews with a number of leading consumer business executives on their attitudes to cyber security and experiences of cyber crime.

About Deloitte
In this press release references to Deloitte are references to Deloitte LLP, which is among the country's leading professional services firms.

Deloitte LLP is the United Kingdom member firm of Deloitte Touche Tohmatsu Limited (“DTTL”), a UK private company limited by guarantee, whose member firms are legally separate and independent entities. Please see for a detailed description of the legal structure of DTTL and its member firms.

The information contained in this press release is correct at the time of going to press.

Member of Deloitte Touche Tohmatsu Limited.

Media contacts

Celine Gordine-Wright
Deloitte LLP
Job Title:
+44 (0) 20 7007 6384
Ben Jun-Tai
Deloitte LLP
Job Title:
020 7303 6989

Related links

Share this page

Email this Send to LinkedIn Send to Facebook Tweet this More sharing options

Get in touch

More on Deloitte