Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Operations

10/23/2019
11:45 AM
50%
50%

10% of Small Businesses Breached Shut Down in 2019

As a result of cybercrime, 69% of small organizations were forced offline for a limited time and 37% experienced financial loss.

Ten percent of small businesses hit with a cyberattack in 2019 were forced to shut down as a result, researchers found in a new survey focused on the consequences of cybercrime for small and midsize businesses.

To compile the report, commissioned by the National Cyber Security Alliance and conducted by Zogby Analytics, analysts polled 1,006 small business decision-makers on cybersecurity topics. They learned 88% consider themselves a "somewhat likely" target for attacks, including 46% who believe they are a "very likely" target. Nearly two-thirds (62%) say security is a top priority. One-third of respondents have an in-house IT department with 10 or more people, 30% have an IT department with fewer than 10, and 55% have an annually updated cybersecurity plan.

The numbers say small businesses are preparing for a future attack: Nearly half (46%) of respondents feel "very prepared" to quickly respond to a security incident and limit its impact, and 58% have a response plan they could immediately put into action. One-third say they would be able to full operate their organization without computers. Bigger companies are better prepared: 73% of those with 251–500 employees have a prepared response plan.

Still, cyberattacks can be devastating. Nearly 30% of businesses surveyed have experienced an official security breach within the past year, a number that ranges from 11% for businesses with 1–10 employees, to 44% among companies with 251–400 employees. Following a breach, 69% of these respondents were knocked offline for a limited time, 37% experienced financial loss, 25% filed for bankruptcy, and 10% went out of business, researchers report.

Read more details here.

This free, all-day online conference offers a look at the latest tools, strategies, and best practices for protecting your organization’s most sensitive data. Click for more information and, to register, here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
10/24/2019 | 8:23:08 AM
On small business support
I provided managed service support for small accounts a few years ago -- they do not have the resources for a full CSirt department of course or really an on-staff engineer skilled in the field.  So they are vulneable by default.  A real opening for consulting is to provide such support to clients with more emphasis on the cyber side than simple and relatively dull server management and workstation management.  The latter are endpoints of course but also good TEACHING AND INSTRUCTION to staff is a fine thing too.  That would solve a ton of problems right there.    Small firms have almost no financial depth too, so lack of income or hit to perception can drive business away real fast and their cashflow cannot tolerate that.  They also do not see the need for tech protection as miuch as larger organizations do that have, after all, a runnning CSirt department.  Smal business sees risk as small - so goes their name.  Risk = large but their size mitigates against that perception.  They ARE small so who would be interested in them?   Well, any hacker is interested ---- any one of them. 
News
Former CISA Director Chris Krebs Discusses Risk Management & Threat Intel
Kelly Sheridan, Staff Editor, Dark Reading,  2/23/2021
Edge-DRsplash-10-edge-articles
Security + Fraud Protection: Your One-Two Punch Against Cyberattacks
Joshua Goldfarb, Director of Product Management at F5,  2/23/2021
News
Cybercrime Groups More Prolific, Focus on Healthcare in 2020
Robert Lemos, Contributing Writer,  2/22/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: "The truth behind Stonehenge...."
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Building the SOC of the Future
Building the SOC of the Future
Digital transformation, cloud-focused attacks, and a worldwide pandemic. The past year has changed the way business works and the way security teams operate. There is no going back.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-25902
PUBLISHED: 2021-03-02
Blackboard Collaborate Ultra 20.02 is affected by a cross-site scripting (XSS) vulnerability. The XSS payload will execute on the class room, which leads to stealing cookies from users who join the class.
CVE-2020-1936
PUBLISHED: 2021-03-02
A cross-site scripting issue was found in Apache Ambari Views. This was addressed in Apache Ambari 2.7.4.
CVE-2021-27904
PUBLISHED: 2021-03-02
An issue was discovered in app/Model/SharingGroupServer.php in MISP 2.4.139. In the implementation of Sharing Groups, the "all org" flag sometimes provided view access to unintended actors.
CVE-2021-27901
PUBLISHED: 2021-03-02
An issue was discovered on LG mobile devices with Android OS 11 software. They mishandle fingerprint recognition because local high beam mode (LHBM) does not function properly during bright illumination. The LG ID is LVE-SMP-210001 (March 2021).
CVE-2021-21321
PUBLISHED: 2021-03-02
fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server is &...