How much does a cyber breach cost a UK business?

The average cost of the most disruptive breach is £3,550 for UK businesses. For businesses that experienced negative outcomes such as data loss or financial theft, the average cost rises to £8,260. Medium and large businesses face average costs of £10,830 per disruptive incident.

What is the most common type of cyber attack in the UK?

Phishing is the most common attack type, identified by 85% of businesses that experienced a breach (DSIT 2025). Phishing accounts for 93% of cyber crimes against businesses. AI-powered phishing has driven a 204% increase in phishing emails delivering malware in 2025.

How do supply chain attacks affect UK businesses?

Only 14% of UK businesses formally review cyber risks from their immediate suppliers. 35.5% of all global data breaches in 2024 originated from third-party compromises. Supply chain attacks add an average of £241,620 to the total cost of a breach and take 267 days to detect and contain.

How quickly should a business respond to a cyber incident?

The first hour after detection is considered the golden hour that determines outcome severity. Organisations that detect breaches internally save an average of $900,000 in costs. Only 22% of UK businesses have a formal cybersecurity incident management plan in place.

Comparison

SIEM vs SOC: What's the Difference?

A practical comparison for UK businesses — covering features, costs, and which option suits different requirements.

Key Facts

85%of breaches involved phishing as the attack vector (DSIT 2025)

19,000UK businesses hit by ransomware in the past 12 months

82.6%of phishing emails now use AI-generated content (KnowBe4)

£8,260average breach cost for businesses with negative outcomes

Last updated: March 2026

SIEM vs SOC

Feature	SIEM	SOC
Best For	Depends on requirements	Depends on requirements
UK Availability	Widely available	Widely available
Typical Cost	Varies	Varies
Complexity	Varies	Varies

When to Choose Each Option

Guidance based on your business requirements.

Choose SIEM When

Your business has specific requirements that favour this approach. Budget and resources align with this solution. Your existing infrastructure supports it

Choose SOC When

Your business needs a different approach. You have different budget considerations. Your team has relevant experience

Cost Considerations

Both SIEM and SOC have different cost profiles. The right choice depends on your business size, existing infrastructure, and specific requirements. AMVIA can help you evaluate which option delivers the best value for your situation.

The AMVIA Recommendation

For most UK SMEs, choose a managed SOC service over standalone SIEM. A managed SOC includes SIEM technology, threat intelligence, and 24/7 analyst coverage — delivering the outcomes that SIEM alone promises but rarely achieves without dedicated staff to operate it. AMVIA's managed SOC service provides full coverage from £5,000 per year for organisations under 50 users.

Get a Free SOC Assessment