The latest findings from cybersecurity platform Guardz highlight a gap in digital safety for small and medium-sized businesses (SMBs) across the USA. Despite the escalating threat landscape, a concerning number of these businesses continue to manage their cybersecurity in-house, without the assistance of trained partners.
The report reveals nearly half (43%) of US SMBs have been victim to cyberattacks, yet the reliance on untrained staff to operate crucial security measures persists. Over half of these businesses still entrust their cybersecurity to internal employees untrained in the nuances of cyber defence.
Common threats like phishing, ransomware, and employee negligence predominantly afflict these organisations. Employee errors, in particular, concern 45% of respondents, especially within the education sector, underscoring the importance of comprehensive training programmes.
A closer look shows that 27% of SMBs faced cyberattacks within the last year, yet many managed rapid recovery. Nonetheless, a number of businesses experienced prolonged repercussions, marking a clear need for formal security frameworks.
- Network firewalls: used by 58% of SMBs.
- Email/spam filters: utilised by 52%.
- Endpoint protection: employed by 41%.
However, 26% of these businesses still skip regular security checks. Furthermore, a quarter remain deeply concerned about outdated technology systems, specifically within the healthcare industry.
Despite the worrying trends, there is a silver lining: half of SMBs report bolstered cybersecurity budgets, with 17% making notable investments. Yet, spending per employee remains limited, and a substantial 31% remain unaware of their exact cybersecurity expenses. Only a minority (34%) have developed comprehensive incident response strategies, leading to significant vulnerabilities.
The combination of rising threats and the clear benefits of professional partnerships may signal a turning point. Fear of attacks and the responsibility towards clients are major drivers for engaging with Managed Service Providers (MSPs). For those with structured response plans, the ability to stave off significant damages provides a persuasive case for professionalised cybersecurity measures.
Guardz underscores that as SMBs become increasingly aware of cyber threats, acknowledging and rectifying their current practice could be pivotal. Partnering with professionals not only strengthens an organisation's posture but imparts resilience against ever-evolving dangers.
