Small Business Still Not Ready For Cyber Attacks

Very few US small business see cyber attacks and security as a big risk, according to a report from CNBC which finds that only 5% saw cyber security as a business risk and inflation was far higher on their list of potential issues.

The CNBC SurveyMonkey Small Business Survey talked to more than 2,000 small business owners every quarter to understand their outlook on the overall business environment along with their own business’s health. It looks like small business directors are failing to take any new steps to reduce their business risk  from cyber attacks compared to last year.

Since the attempted in invasion of Ukraine, US security agencies have stepped up their warnings about an increased risk of a cyber attack, which Russia could use to try to draw the US into a direct conflict. “The cyber security authorities of the United States, Australia, Canada, New Zealand, and the United Kingdom (the Five Eyes), have released this joint Cyber Security Advisory (CSA). “The intent of this joint CSA is to warn organisations that Russia’s invasion of Ukraine could expose organisations both within and beyond the region to increased malicious cyber activity... This activity may occur as a response to the unprecedented economic costs imposed on Russia as well as materiel support provided by the United States and US allies and partners,” says the Cybersecurity & Infrastructure Security Agency.

This latest round of the Small Business Survey is the first since the start of the Ukraine war, although the international events have had no perceptible impact on the preparedness of small business in the US.

Key findings from the Survey include:

  • Eight in ten small business owners expect a recession to occur this year
  • Inflation continues to be a top concern, but small business owners are reluctant to raise their own prices.
  • Despite the potential threat from Russia, cybersecurity is no more of a concern for small business owners now than in previous quarters.
  • President Biden’s approval rating remains underwater among small business owners, with no change over the past three quarters.
  • Small business confidence ticks up for the first time in the Biden Administration, popping up to a score of 46 out of 100, but remains near its all-time lows.

Smaller businesses are the least concerned about cyber attacks: just 33% of owners with 0-4 employees are concerned about experiencing a cyber attack within a year, compared with 61% of small business owners who have 50 or more employees. 

Consumers would rather not be the victim of a cyber security attack themselves, and they are wary to trust businesses that have been compromised in the past. 

In SurveyMonkey’s polling, 55% of people in the US say they would be less likely to continue to do business with brands who are victims of a cyber attack and small businesses need to be prepared and have a strategy and cyber security tactics list that they enact. 

  • Fewer than 50% of businesses say they have installed antivirus or malware software, strengthened their passwords, or backed up files on an external hard drive to protect their business against potential cyber attacks. 
  • Only a third each have enabled automatic software updates or enabled multi-factor authentication. Just one quarter have installed a virtual private network (VPN). 

Small businesses that fail to take the cyber threat seriously risk losing customers, or much more, when a cyber threat emerges. Small and medium sized business must take cyber threats seriously and education and training of directors and staff is vital.

CISA:      CNBC:      Momentlive:    Survey Monkey:    NewsQuick24:    CISO Magazine:     TechRepublic:  

You Might Also Read: 

Are Your Employees The Weakest Link Against Cyber Crime?:

 

« Iran Caught Using Intermediaries To Hack Israeli Business
Global Cyber Security Insurance Market Will Grow To $61.2B »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Intland Software

Intland Software

Intland offer an integrated Application Lifecycle Management platform that offers all-round Requirements, Development, and Testing & Quality Assurance functionality.

Kent Interdisciplinary Research Centre in Cyber Security (KirCCS) - University of Kent

Kent Interdisciplinary Research Centre in Cyber Security (KirCCS) - University of Kent

KirCCS harnesses expertise across Kent University to address current and potential cyber security challenges.

Spherical Defense

Spherical Defense

Spherical Defense offers an alternative approach to WAFs and first generation API security tools.

Proteus

Proteus

Proteus is an Information Security consulting firm specialized in Risk Analysis and Executive Control.

Indusface

Indusface

Indusface offers best website security, web application firewall and SSL certificate to keep your online business much safer.

ThreatAware

ThreatAware

Total visibility of your business cybersecurity. Monitoring, management and compliance for your cybersecurity tools, people and processes from one easy to use dashboard.

Build38

Build38

Build38 provides the highest levels of security for mobile applications.

ITRenew

ITRenew

ITRenew is a leading global IT lifecycle management solutions company, specializing in onsite data center decommissioning and data erasure services.

SterlingRisk Programs

SterlingRisk Programs

SterlingRisk’s Cyber practice brings experience working with a wide array of clients across a broad spectrum of industries.

Absa Cybersecurity Academy

Absa Cybersecurity Academy

Absa Cybersecurity Academy is an initiative aimed at empowering marginalised South African youths to become certified cybersecurity specialists.

Ampere Industrial Security

Ampere Industrial Security

Ampere is an industrial security firm. We specialize in industrial control systems (ICS) and operational technology (OT) security.

CyberX9

CyberX9

CyberX9 helps you protect against a wide range of cyber attacks whether you are a business or a high-net worth individual under risk.

CyberFOX

CyberFOX

CyberFOX is a global cybersecurity solutions provider focused on identity access management (IAM) for managed service providers (MSPs) and IT professionals.

ResilientX

ResilientX

ResilientX is an All-In-One Security Testing Platform designed to help MSPs and SMBs to perform their security testing and assessments without having to outsource IT.

OryxLabs

OryxLabs

OryxLabs provide advanced enterprise digital risk protection solutions. Learn more about how 24x7 continuous assessment, monitoring, and improvement can secure your network.

Cypherleak

Cypherleak

Cypherleak provide Automated Cyber Risk Monitoring & Ai powered cyber recommendations.