UK firms' Security Flaws an Open Door to Hackers