Organizations of all sizes are at risk for a cyber-attack – not just highly regulated industries and major corporations – but small to medium-sized businesses (SMBs) as well. In honor of National Cyber Security Awareness Month, the Dell Women’s Entrepreneur Network recently hosted a webinar regarding today’s cybersecurity landscape and what entrepreneurs and SMBs need to know.
Erik Day, vice president and general manager of Small Business Sales at Dell, recently caught up with Brett Hansen, vice president of endpoint data security and management at Dell, for a deeper dive on the top cybersecurity risks for SMBs and how they can keep themselves and their businesses protected.
Erik Day (ED): Who is at risk for cyber-attacks today?
Brett Hansen (BH): I don’t want to be an alarmist, but the short answer is that everyone is at risk today and the problem is not getting better. In 2015, an estimated $455 billion was lost to cyber theft and that number is sure to grow in 2016. While we’ve seen a lot of press coverage of major government and corporate breaches, but what hasn’t been covered consistently is that the problem is actually becoming more pervasive and effecting more people – not just the big names.
Many entrepreneurs and SMBs think they may be too small to matter or become a target, but 70% of all attacks globally are not focused on government or major corporations, they are focused on businesses with under 5,000 employees. Sadly, 60% of all small businesses that experience a significant breach will go out of business within six months after the attack.
ED: What are attackers going after and how are they doing it?
BH: The ecosystem of attacks is vast and it continues to grow and evolve daily. Currently there are 400,000 new malware attacks created every day and 7 million discrete phishing attacks launched each week. Right now we’re seeing a shift in what attackers are looking to accomplish. A decade ago, hackers focused on data theft and destruction of operations. Today, for profit actors are moving to direct attacks, focusing on extracting money right from the source rather than stealing information and then selling it. Ransomware is the most widely used form of this attack – there are 4,000 ransomware events every day according to the Department of Justice.
To break it down, ransomware works in three main stages: infection, encryption, and resolution. If an end-user opens an attachment or clicks on a link in a phishing email, their device becomes infected. Once infected, ransomware scans the device for files and, potentially, scans the broader network the device is connected to, encrypting data in network storage or on any linked device. Once it has embedded itself and encrypted data, the end-user will receive a message asking for money, usually in the form of Bitcoin, to release the data. If and when attackers are paid, they will deliver digital keys to unencrypt the data.
Unfortunately, it may not end there. Sometimes attackers will infect a user’s device with spyware during the resolution stage or the decryption key will only unlock some data, but not all.
ED: What are the steps small businesses should take to ensure they are safe?
BH: It is important to reduce vulnerabilities so you are more difficult to attack. While there is no silver bullet for cybersecurity and no one is impenetrable, there are some very practical steps you can take to make yourself and your business safer:
ED: What do you think is the most important information SMBs should understand about cybersecurity today?
BH: SMBs should never assume they are too small to be at risk. The sheer volume of attacks happening today means that everyone is at risk. It is key to build a cybersecurity plan that best addresses the needs of your business and considers not just your data, but the data of your customers and partners as well. It is also critical to consistently educate your employees on cybersecurity issues and best practices, as they are the weakest link in the security chain! Educate them often and drive accountability to make sure all of your data stays safe.
There is no one single technology that will solve all of your cybersecurity problems. You would never rely on an antiquated home security system to protect your family, so you shouldn’t rely on an antiquated cybersecurity solution to protect your data. Collaboration is key in today’s workforce, which means data is on the move and you have to protect it wherever it goes. Deploying solutions that incorporate advanced threat protection will help defend against attacks and prevent infections.
If you have more questions on what you can be doing to prevent cybersecurity at your business, ask your Dell representative to connect you with a security expert. If you do not have a Dell representative, please visit http://dellsecurity.dell.com/ for more information about Dell’s Endpoint Data Security and Management solutions.
To post a comment
login or create an account
Great article, Now days its very important to maintain the security of servers because organizations of all sizes are at risk for a cyber-attack.Many entrepreneurs and SMBs think they may be too small to matter or become a target, but 70% of all attacks globally are not focused on government or major corporations, they are focused on small businesses . Collaboration is key in today’s workforce, which means data is on the move and we have to protect it wherever it goes. Deploying solutions that incorporate advanced threat protection will help defend against attacks and prevent infections.
Thanks for sharing the way you explained each and everything about cybersecurity is really great . Thanks once again.
Cybersecurity is now very important with the developpement of phishing...