90% of UK businesses risk cyber-attacks and fines due to IT weaknesses