A survey conducted by Appstractor Corporation has discovered that SMBs operating in the UK have faced at least 5 cyber threats in the last year. And most of them have kept them as a secret for reasons.
Almost four IT decision makers working for SMBs across the UK have confirmed the report findings admitting that their companies did conceal attacks made on their databases, due to the GDPR repercussions which came into effect in May this year.
Only 12% of the respondents who participated in the survey agreed that the cybersecurity software monitoring their IT assets has managed to keep up with the complexities of the threats prevailing in the current cyber landscape- with a third believing that this puts their firms at a higher risk than their big business counterparts.
“Usually we think that only big companies grab many of the cybersecurity headlines. But its the other way around, as SMBs usually become prime targets for criminals who are able to deploy easily available tools and software to automatically mass target thousands of small companies at once”, said Raizy Zelcer, a senior security analyst at Appstractor.
Zelcer added that SMBs often suffer from the fact that many are operated by only a few people and most don’t have the cash or resources to fund full time IT staff. At this juncture, those working for the company/s can crop-up as serious cyber threats.
Meanwhile, as the latest GDPR rules have come into effect from May 26th,2018, SMBs are expected to bolster their cybersecurity policies and practices in order to defend themselves against data breaches.
But in reality, the study found that over 75% of SMBs are not yet ready to upgrade their security strategies for various reasons.- with 27% of them agreeing that they are not even ready to counter even the basic cyber threats like DDoS or password attacks.
Therefore, we can come to a conclusion that most of the SMBs operating in the UK are under-prepared when it comes to securing their digital infrastructure. With many of them either still in a process of reviewing their security policies in line with GDPR or are yet to start the process of evaluating.
What’s your say on this…?
You can share your views through the comments section below.
