Phishing Mentioned by SMBs as Main Attack Threat

June 28, 2018

 

A new analysis of 600 IT decision makers at small-to-midsized businesses (SMBs) found that almost all SMBs are carrying out some type of worker cybersecurity consciousness training, which might be due partly to the dread of phishing.

It might seem promising to note that the new global report, Webroot SMB Cybersecurity Preparedness, found nearly 100% of companies train their workers in cybersecurity consciousness. Nonetheless, the report also found that the number considerably declines for ongoing training practices, with just 39% of businesses reporting that they educate workers constantly all through the period of employment.

In spite of that, the report found that companies in the US, UK, and Australia are taking cybersecurity seriously. It exposed a change in the attacks companies believed themselves to be most vulnerable to in 2017. Also notable was the finding that the approximated cost of a breach is declining.

Although phishing rated third for most risky threat in 2017, it topped the chart for 2018. Approximately half (48%) of respondents identified phishing attacks as the top supposed danger, and 45% said that their company will be vulnerable to DNS attacks. Generally, phishing displaced new types of malware, which decreased to number six, behind distributed denial-of-service (DDoS) and moveable attacks. Ransomware expanded from fifth place in 2017 to third in 2018; nevertheless, the replies differed by geography.

The big majority of SMBs in the UK (69%) reported that their companies were practically totally ready to handle IT safety and safeguard against dangers, while 54% of SMBs in both the US and Australia reported the same.

“As our study indicates, the increase of new attacks is leaving SMBs considering unprepared. Among the most effective plans to keep your business secure is with a layered cybersecurity plan that can safeguard users and their appliances at every phase of an attack, across every possible attack vector. And for several companies, depending on a managed service provider (MSP) when time and skill are not easily available is a vital step to fortify their safety efforts,” Charlie Tomeo, vice president of worldwide business sales, Webroot, stated in a press release.