Small Business Still Not Ready For Cyber Attacks

Very few US small business see cyber attacks and security as a big risk, according to a report from CNBC which finds that only 5% saw cyber security as a business risk and inflation was far higher on their list of potential issues.

The CNBC SurveyMonkey Small Business Survey talked to more than 2,000 small business owners every quarter to understand their outlook on the overall business environment along with their own business’s health. It looks like small business directors are failing to take any new steps to reduce their business risk  from cyber attacks compared to last year.

Since the attempted in invasion of Ukraine, US security agencies have stepped up their warnings about an increased risk of a cyber attack, which Russia could use to try to draw the US into a direct conflict. “The cyber security authorities of the United States, Australia, Canada, New Zealand, and the United Kingdom (the Five Eyes), have released this joint Cyber Security Advisory (CSA). “The intent of this joint CSA is to warn organisations that Russia’s invasion of Ukraine could expose organisations both within and beyond the region to increased malicious cyber activity... This activity may occur as a response to the unprecedented economic costs imposed on Russia as well as materiel support provided by the United States and US allies and partners,” says the Cybersecurity & Infrastructure Security Agency.

This latest round of the Small Business Survey is the first since the start of the Ukraine war, although the international events have had no perceptible impact on the preparedness of small business in the US.

Key findings from the Survey include:

  • Eight in ten small business owners expect a recession to occur this year
  • Inflation continues to be a top concern, but small business owners are reluctant to raise their own prices.
  • Despite the potential threat from Russia, cybersecurity is no more of a concern for small business owners now than in previous quarters.
  • President Biden’s approval rating remains underwater among small business owners, with no change over the past three quarters.
  • Small business confidence ticks up for the first time in the Biden Administration, popping up to a score of 46 out of 100, but remains near its all-time lows.

Smaller businesses are the least concerned about cyber attacks: just 33% of owners with 0-4 employees are concerned about experiencing a cyber attack within a year, compared with 61% of small business owners who have 50 or more employees. 

Consumers would rather not be the victim of a cyber security attack themselves, and they are wary to trust businesses that have been compromised in the past. 

In SurveyMonkey’s polling, 55% of people in the US say they would be less likely to continue to do business with brands who are victims of a cyber attack and small businesses need to be prepared and have a strategy and cyber security tactics list that they enact. 

  • Fewer than 50% of businesses say they have installed antivirus or malware software, strengthened their passwords, or backed up files on an external hard drive to protect their business against potential cyber attacks. 
  • Only a third each have enabled automatic software updates or enabled multi-factor authentication. Just one quarter have installed a virtual private network (VPN). 

Small businesses that fail to take the cyber threat seriously risk losing customers, or much more, when a cyber threat emerges. Small and medium sized business must take cyber threats seriously and education and training of directors and staff is vital.

CISA:      CNBC:      Momentlive:    Survey Monkey:    NewsQuick24:    CISO Magazine:     TechRepublic:  

You Might Also Read: 

Are Your Employees The Weakest Link Against Cyber Crime?:

 

« Iran Caught Using Intermediaries To Hack Israeli Business
Global Cyber Security Insurance Market Will Grow To $61.2B »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Itaccel

Itaccel

IT Accel began a decade ago as a band of technical recruiters who wanted to bring our experience and depth of knowledge to solving complex human resou

Digital Detective

Digital Detective

Digital Detective offer a range of products and services for digital forensic analysis and advanced data recovery.

Future of Cyber Security Europe

Future of Cyber Security Europe

Future of Cyber Security Europe is a European wide event examining the latest cyber security strategies and technologies.

Sistem Integra (SISB)

Sistem Integra (SISB)

SISB provide IT Security Infrastructure & Development, Mechanical & Electrical Services, Fire Safety & Detection Services, Facilities Management & Application Development.

CERT Tonga

CERT Tonga

CERT Tonga is the national Computer Emergency Response Team for Tonga.

ITonlinelearning

ITonlinelearning

ITonlinelearning specialises in providing professional certification courses to help aspiring and seasoned IT professionals develop their careers.

Improsec

Improsec

Improsec is a fully independent Cyber Security advisory company - we provide knowledge, experience and both strategic and deep technical expertise to our clients.

Sigma IT

Sigma IT

SIGMA IT is one of the largest IT services organizations in EMEA region providing a full range of solutions and services including cybersecurity, data protection and business continuity.

Angoka

Angoka

Angoka provide hardware-based solutions for managing the cybersecurity risks inherent in machine-to-machine communication networks.

National Cryptologic Foundation (NCF) - USA

National Cryptologic Foundation (NCF) - USA

The National Cryptologic Foundation strives to influence the cryptologic future by sharing our educational resources, stimulating new knowledge, and commemorating our heritage.

ViewQwest

ViewQwest

ViewQwest is a regional telecommunications & information technology services company. We specialize in providing Connectivity, Managed Network, Managed SD-WAN, and Managed Security solutions.

NetApp

NetApp

The NetApp portfolio includes intelligent cloud services, data services, and storage infrastructure that helps organizations manage applications and data everywhere across hybrid cloud environments.

Prompt Security

Prompt Security

Prompt Security provides an LLM agnostic approach to ensure security, data privacy and safety across all aspects of Generative AI.

Longbow Security

Longbow Security

Longbow automates root cause for your application and cloud risks, enabling teams with intelligent remediation actions that reduce the most risk with the least effort.

Invisinet Technologies

Invisinet Technologies

Invisinet is a cybersecurity technology company specializing in innovative solutions that protect network infrastructure and critical assets from advanced threats.

Defend-OT

Defend-OT

Defend-OT is a Belgium-based cybersecurity firm specializing in OT environments.