Publication date:
Publication from:
In March 2025, the IT Ukraine Association, together with Calibrated, EBA, LOOQME, MMR conducted a quick survey to assess the preparedness of Ukrainian businesses for crisis communications during cyber and information attacks.
More than half of the organisations acknowledge a moderate or high likelihood of cyber or information attacks in the coming year. However, 30% of respondents noted that their company rarely or never conducts risk assessments.
62% of respondents stated that they lack a clear action strategy during a cyber crisis, and 39% of companies do not have a separate crisis communication plan. Only one-third of those surveyed indicated that they are fully prepared for a cyber crisis, with response teams and designated speakers in place. 41% of companies do not have specialised practical training for preparing for cyber and information crises.
The survey revealed a trend: companies that have already experienced cyberattacks demonstrate much higher preparedness, regularly conducting training and having fully integrated crisis communication plans.
The primary cyber threats identified by respondents were:
Survey participants acknowledged that the main barriers to creating an effective incident response system include rapidly evolving threats (57%), lack of internal expertise (37%), as well as limited budgets for training and threat monitoring (38% and 30%, respectively).
The most in-demand tools for combating crises were:
The survey involved communication professionals, top managers, IT and security specialists — representatives from 63 companies ranging from large businesses (2000+ employees) to small and medium-sized enterprises.
