SMBs: A soft target for cyberattacks

How SMBs can overcome security challenges despite budget and resource constraints?

Small to midsized businesses (SMBs) are on the receiving end of ever-more sophisticated cyberattacks. As we have learned, the risks are high, but SMB security budgets and resources are finite.

SMB Security Risks

Cyberattackers like to pick on the most vulnerable targets. We see this in our work all the time. Smaller businesses, unfortunately, fall into this category. Indeed, according to the 2018 Gartner CIO Survey, 40% of SMBs do not even employ a cybersecurity expert. The responsibility for security falls on the IT department, typically. While the SMBs might not have a large attack surface unlike an enterprise, they are equally vulnerable.

Attacks are likely. The consequences are severe. According to the Ponemon Institute, 61% of SMBs experienced a cyberattack in the past 12 months. Fifty-four percent had data breaches in the same period. A Symantec study revealed that 43% of worldwide cyberattacks last year targeted businesses with fewer than 250 workers and that 52.4% of spear phishing attacks targeted SMBs. Over 60% of small businesses go out of business within six months of an attack.

Threat Remediation for SMBs

SMBs are becoming preferred targets as they often lack the resources and stronger security setups to thwart advanced attacks, plus they can also serve as a conduit to gain access to the larger organizations that they are contracting with. Regardless of available budget, SMBs should acknowledge the potential threat from cyber-attackers and work on a broad-based cyber-secure strategy. What we’ve found is that raising one’s security posture needn’t always be expensive.

Given the limited resources and security expertise, an SMB security solution should achieve a high level of comprehensive defense without requiring much administrative overhead. Web isolation offers an example. An isolation-based security approach puts a much-needed layer between an organization and its potential attackers. Isolating the vulnerable web browser, can protect corporate systems from web-borne malware automatically. In our experience, this approach helps reduce the attack surface by up to 70% and significantly improves the productivity of IT/security teams.

We offer the Isla Remote Browser Isolation solution for SMB cybersecurity. Learn more about this easy-to-deploy and easy-to-manage tool which makes a good fit for resource-constrained SMBs by visiting Isla Isolation Platform.

Balaji Desikamani

VP – Marketing & Channel Sales