Insights
Training
On-demand
INSIGHTS
All Topics
How Breast Cancer Now fights cyber crime: one alert at a time
22 Dec 2020by Former Member
Charity leaders have enough to worry about without dedicating their time and resources to fighting increasingly sophisticated cyber criminals. Automated digital risk protection can give charities peace of mind and allow them to concentrate on delivering their services
This article is sponsored by Skurio, innovative cyber security and digital risk management experts.
Breast Cancer Now is a large charity formed by the 2019 merger of Breast Cancer Now and Breast Cancer Care to form one unifying charity for the disease within the UK.
The charity’s aim is to change the future of breast cancer and make sure that by 2050, everyone diagnosed with the disease lives and is supported to live well.
Their work is twofold: providing support for today through better services and care and hope for the future through their funding of world-leading research into new treatments. Breast Cancer Now funds around one-third of the UK’s research into the disease.
The legacy of Breast Cancer Care is more on the support side, and the organisation is well-known for its helpline and programme of support workshops and other longer-term care.
Breast Cancer Now’s digital services help those affected by COVID-19
This dual approach led to specific challenges during COVID-19.
Much of the work that Breast Cancer Now does falls under the banner of fundraising, as they raise money for ground-breaking medical research into the condition. This fundraising often takes place on digital channels, with the website providing a major fundraising portal.
"In our fundraising directorate, we have a philanthropy and a major giving section. There’s been a move towards live events pitched at major donors, a lot of whom wish to remain anonymous, as well as [sessions] where our directors and CEO and scientists are talking about the impact of COVID and how it’s impacted our income."
- Brigid Macdonald - Head of IT, Breast Cancer Now
As a result of the merger, the charity has launched a wider raft of services such as support groups for those living with breast cancer. These services were increasingly digitised in the wake of COVID-19.
People living with cancer are at an increased risk of suffering more severe symptoms should they contract COVID-19, so Breast Cancer Now were faced with a conundrum common to many health-related charities. On the one hand, their services are now more in-demand than ever, on the other, they could no longer be delivered in the usual way, as this would risk infection.
As part of an ongoing investment in digital, the organisation rolled out a programme of digital service delivery that allows Breast Cancer Now to deliver services during lockdown, connecting with service users on their preferred digital channels.
A large part of this work took place over Zoom, and live video call support was complemented by a range of pre-recorded resources accessible through Breast Cancer Now’s online portal.
Follow-up questions for CAI
How does automated digital risk protection enhance charity cybersecurity?What role did Skurio's BreachAlert play in Breast Cancer Now's security?How did Breast Cancer Now adapt digital services during COVID-19?What benefits does real-time cyber threat monitoring provide charities?How can monitoring typosquatting protect charity supporter data?What challenges were they facing?
This means that Breast Cancer Now were handling two primary kinds of personal data: financial data related to their donors and other fundraising activities, and beneficiary data related to those engaging with their digital services.
This will be a familiar model to most charities, as these are the most common types of digital data collection in the sector.
"Since the merger, there are two massive CRM systems to integrate."
- Brigid Macdonald - Head of IT, Breast Cancer Now
All organisations have a legal duty to protect any personal information that they collect. But charities face greater scrutiny than corporate businesses. This is due to two main reasons: the importance of supporter trust in securing funding, and the ethical duty to safeguard the personal information of vulnerable service users.
How did Skurio help Breast Cancer Now to overcome these challenges?
"The attraction was having more of an eye on the unknown. It was at a time when cyber security was becoming more important. We’d had to deal with a ransomware attack and other things like that. It just felt right."
- Brigid Macdonald - Head of IT, Breast Cancer Now
They began by introducing the BreachAlert solution – an automated tool that monitors cyber risk by searching for critical data and information around the clock and providing instant alerts. BreachAlert uses Cyber Threat Intelligence to extend data collection to social channels and specialist forums to look for threats that are specific to your organisation.
Like many organisations using the tool, Breast Cancer Now benefits from automated monitoring of the surface, deep and Dark Web to look for sensitive organisational information, including account information and IP addresses.
Skurio was one part of a wider investment in cyber security, as leaders at Breast Cancer Now prioritised the importance of cyber security in a changing threat landscape.
"There was one specific ransomware attack where we got off a bit lightly. I think at the time there were a few patchy practices. I’m not going to lie and claim that we’re perfect, because we’re not. There are very few companies that could claim perfection without spending a small country’s GDP on it."
- Brigid Macdonald - Head of IT, Breast Cancer Now
Getting started was simple and easy
Many charities exploring next-gen cyber security solutions may have concerns about the complexity of the products and the level of expertise needed to use them.
The team at Breast Cancer Now found the Skurio dashboard easy to use. The onboarding process was smooth, and the interface was simple and end-user friendly.
"It really is quite self-explanatory. I wish all onboarding processes were that simple."
- Brigid Macdonald - Head of IT, Breast Cancer Now
What benefits did the charity experience?
Skurio automated risk monitoring provides the team at Breast Cancer Now with peace of mind. One of the benefits of the automated monitoring solution is the rapid response time.
In the event of a breach, organisations must act quickly. The problem is, cybersecurity teams usually don’t know a breach has happened until it’s too late, and harm has already been done.
Skurio’s solutions allow charities like Breast Cancer Now to scan for threats in real time and respond to them as quickly as possible – thus drastically reducing the risk posed to any sensitive data.
This peace of mind doesn’t just apply to the charity. For any organisation involved in fundraising activity, supporter trust is vital. Without it, organisations face an arduous task of rebuilding their reputation. Sophisticated risk management platforms allow charities to provide the highest level of assurance to their supporters that their data is being protected by market-leading technology.
"The support is really good. It’s nice to know we’ve got reassurance. The ‘Ask an Analyst’ feature is reassuring for us because we’re quite a small team.’"
- Brigid Macdonald - Head of IT, Breast Cancer Now
Breast Cancer Now also recognised the value of an automated risk monitoring solution like Skurio from a GDPR perspective. The ICO clearly states that organisations must demonstrate a commitment to keeping user data secure. Skurio’s high level of protection is a great way for organisations to show that data security is a real priority.
Building a secure future
Skurio is just one part of Breast Cancer Now’ extensive cybersecurity infrastructure.
Automated monitoring provides reassurance to the charity’s cybersecurity team that all their other systems are working. Scanning for breaches and finding none shows that all the other defences which the team has put in place are doing their job correctly.
Breast Cancer Now continue to work with Skurio and are currently examining ways to further integrate their innovative solutions into new areas of digital service delivery.
Skurio and Breast Cancer Now plan to roll out new features to further protect constituent data. One of these involves monitoring typosquatting to identify fraudulent domains which imitate the charity and could be used by cyber criminals to perpetrate fraud.
Find out more
The Skurio Digital Risk Protection platform provides you with critical components to adopt a data-centric approach to Cybersecurity for your organisation.
More on this topic
Recommended Products
03 Feb 2026by Nicola Cheese
How AI can create engaging supporter journeysSponsored Article
02 Feb 2026by Laura Stanley
How partnerships can drastically boost your fundraisingSponsored Article
02 Feb 2026by Laura Stanley
Why mobile device management mattersSponsored Article
02 Feb 2026by Kellie Smith
Five books and resources for people working in social media
Our Events
13 May 2026Online
Masterclass: An introduction to generative AI
Charity Digital Academy
Our courses aim, in just three hours, to enhance soft skills and hard skills, boost your knowledge of finance and artificial intelligence, and supercharge your digital capabilities. Check out some of the incredible options by clicking here.
© 2022 Charity Digital Trust. All rights reserved
