Security Market Segment LS
Friday, 26 July 2019 11:22

SMBs ‘severely underestimate’ cybersecurity vulnerabilities: report Featured


SMBs are the primary target for cyber attacks, yet most are unprepared and “severely underestimate their cyber security vulnerabilities” when it comes to cyber criminals and cyber security risks, according to research of the US market.

And, according to cyber security provider Keeper Security, which commissioned a study of more than 500 senior-level decision makers at companies with 500 employees or less, cyber security efforts are not at the top of the list of SMBs when it comes to where leaders are putting their focus and efforts – with US businesses “ripe for the picking”.

Among the findings of the study, two out of three business leaders surveyed (66%) don't believe they'll fall victim to a cyber attack, but Keeper says a previous study conducted by the Ponemon Institute for the company found that 67% of business had been attacked within the prior 12 months.

"Businesses face a vulnerability crisis when it comes to cyber criminals, and this reality won't get better until cyber security gets higher billing on their to-do list," said Darren Guccione, chief executive and co-founder of Keeper.

"Our Cyberthreat Study findings show that many companies don't know where to start with cyber security prevention and even more don't think they will fall victim to an attack, but it's time they dramatically change their perspectives and put a plan in place. We are working very hard to educate SMBs about how they can protect themselves quickly and on a cost-effective basis."

Keeper's 2019 Cyberthreat SMB study found that only about one in ten (12%) understand the reality that an attack is very likely, no matter how big or small the company.

Keeper says the SMB study also reveals differences in perception between newer and more mature businesses, with companies in business less than five years believing they're at a much higher risk than those operating for 10 or more years.

And, of companies in business less than five years, 28% believed it was "very likely" that they would be the target of a cyber attack, while only 6% operating for 10 or more years thought the same.

In fact, 70% of businesses operating for 10 or more years believed a cyber attack was not very likely or not likely at all, Keeper said.

According to Keeper, there is lack of organisational awareness into the importance of cyber security, and of the leadership polled, only 9% thought cyber security was the most important aspect of their business when compared with recruitment, marketing, sales, quality of internal tools, and contributing to social good.

In fact, nearly one in five respondents (18%) ranked cyber security as the least important aspect of all six, Keeper observed.

“Furthermore, respondents ranked a recession, damage to public reputation and a disruption to the business model as the most prominent threats to their business,” Keeper said, with cybersecurity ranked last by over one in five surveyed (21%), “despite the fact that such an attack would likely cause both a disruption in business model and damage to public reputation”.

Keeper says the survey revealed a disconnect between password security and cyber attack prevention strategy, although most companies understand the critical role of passwords when it comes to security.

The majority of respondents (69%) to the survey expressed positive sentiment about passwords, saying passwords make them feel "confident" or "secure" – and 75% of companies have policies in place that encourage or require employees to update their passwords regularly.

However, 60% of respondents reported not having any prevention plan in place against a cyber attack and Keeper said that since 81% of breaches are caused by weak or stolen passwords, the difference in reported password policies and lack of prevention plans points to a “disconnect in understanding that password security is itself a strategic prevention plan”.

And a quarter of business leaders surveyed (25%) admitted they don't even know where to start when it comes to cyber security.

“Cyber security starts with password security,” Keeper said.

Read 2411 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here


Thoughtworks presents XConf Australia, back in-person in three cities, bringing together people who care deeply about software and its impact on the world.

In its fifth year, XConf is our annual technology event created by technologists for technologists.

Participate in a robust agenda of talks as local thought leaders and Thoughtworks technologists share first-hand experiences and exchange new ways to empower teams, deliver quality software and drive innovation for responsible tech.

Explore how at Thoughtworks, we are making tech better, together.

Tickets are now available and all proceeds will be donated to Indigitek, a not-for-profit organisation that aims to create technology employment pathways for First Nations Peoples.

Click the button below to register and get your ticket for the Melbourne, Sydney or Brisbane event



It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site and prominent Newsletter promotion and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.


Peter Dinham

Peter Dinham - retired in 2020. He is a veteran journalist and corporate communications consultant. He has worked as a journalist in all forms of media – newspapers/magazines, radio, television, press agency and now, online – including with the Canberra Times, The Examiner (Tasmania), the ABC and AAP-Reuters. As a freelance journalist he also had articles published in Australian and overseas magazines. He worked in the corporate communications/public relations sector, in-house with an airline, and as a senior executive in Australia of the world’s largest communications consultancy, Burson-Marsteller. He also ran his own communications consultancy and was a co-founder in Australia of the global photographic agency, the Image Bank (now Getty Images).

Share News tips for the iTWire Journalists? Your tip will be anonymous




Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News