Why SMEs need to be extra-vigilant about cyber security

We provide cyber security services for a wide range of organisations, from large household names to relatively small SMEs. Smaller businesses need to be particular aware of cyber threats. Here are five reasons why.??

Hackers like to target SMEs?

SMEs often lack the advanced security infrastructure that you’d find larger organisations. Cyber criminals know this, so SMEs are a popular target. By most assessments, around half of all cyber attacks are against SMEs.??

If you’re attacked, there are costs on top of costs?

The immediate cost of a breach – ransom payments, for example, or repairing your system – can be bad enough, but that’s just the start. The further damage include regulatory fines, and other costs that are harder to quantify but which are still very real, like reputational damage and losing customers’ trust.??

Cybersecurity training is essential?

The vast majority of data breaches in the UK are caused by human error: around 90% by most estimates. You can hugely reduce your organisation’s risks by putting in place a good training program. (We work with specialist partners to provide a wide range of training courses to suit your particular needs.)?

Supply chain attacks are increasing?

The SME itself is not always the ultimate target. It can be hard for hackers to get into larger organisations directly, so they often start by attacking smaller and less secure businesses that work with them. Just two months ago hackers successfully stole personal data from BBC, Boots and British Airways, among others, in a supply chain attack that started with a payroll provider (ref).??

For SMEs, cyber attacks can be a fatal blow?

According to research in the US by the non-profit National Cyber Security Alliance, 60% of small companies go out of business within six months of a cyber attack.??

...but it is possible to defend yourself?

One of the best ways to address these threats is to make sure that someone is always watching. Very big organisations can benefit from setting up their own in-house team and Security Operations Centre, but for most it’s better to outsource the job to a Managed Detection and Response service.??

This will combine technology and human expertise to remotely monitor, detect, and responds to threats. We provide this service from our 24/7 SOC, working with our strategic partners such as the market-leaders CrowdStrike. ?

Not sure if your organisation’s cyber defences are up to the job? Just get in touch with us and we’ll be happy to explore both the issues and some potential solutions. We’re at [email protected] and 0141 552 000.?

?