WELCOME TO THE CONTINUITY CENTRAL ARCHIVE SITE

Please note that this is a page from a previous version of Continuity Central and is no longer being updated.

To see the latest business continuity news, jobs and information click here.

Business continuity information

Survey shows cybersecurity complacency

US small business owners or operators have a false sense of cybersecurity as more than three-fourths (77 percent) say their company is safe from cyber threats such as hackers, viruses, malware or a cybersecurity breach, yet 83 percent have no formal cybersecurity plan. These findings are from a new survey of 1,015 US small- and medium-sized businesses (SMBs) by the National Cyber Security Alliance (NCSA) and Symantec.

Although SMBs increasingly rely on the Internet for daily operations, they are not taking the necessary measures to keep their businesses safe and secure:

  • A majority of SMBs believe security is critical to their success and brand: 73 percent of SMBs say a safe and trusted Internet is critical to their success, and 77 percent say a strong cybersecurity and online safety posture is good for their company's brand.
  • SMBs unprepared to handle data breach losses: Nearly six out of 10 (59 percent) SMBs do not have a contingency plan outlining procedures for responding and reporting data breach losses.
  • Two-thirds of SMBs aren't concerned about cyber threats: 66percent of SMBs are not concerned about cyber threats - either external or internal. External threats include a hacker or cyber-criminal stealing data while internal threats include an employee, ex-employee, or contractor/consultant stealing data.

"We want US small businesses to understand they cannot completely remain safe from cyber threats if they do not take the necessary precautions," said Michael Kaiser, executive director of the National Cyber Security Alliance. "A data breach or hacking incident can really harm SMBs and unfortunately lead to a lack of trust from consumers, partners and suppliers. Small businesses must make plans to protect their businesses from cyber threats and help employees stay safe online."

"It's terrifying that the majority of US small businesses believe their information is protected, yet so many do not have the required policies or protection in place to remain safe," said Brian Burch, vice president of Americas Marketing for SMB, at Symantec. "Almost 40 percent of the over 1 billion cyberattacks Symantec prevented in the first three months of 2012 targeted companies with less than 500 employees. And for the small, poorly protected companies that suffer an attack, it's often fatal to their business."

Additional survey findings revealed the disparities between online safety perceptions and actual practices, which include:

  • Employee Internet security policies, procedures lacking for SMBs: Eighty-seven percent of SMBs do not have a formal written Internet security policy for employees, while 69 percent do not even have an informal Internet security policy. While social media is an increasingly popular vector for phishing attacks, 70 percent of SMBs do not have policies for employee social media use.
  • SMBs satisfied with their online safety posture despite lack of policies/plans: 86 percent of SMBs say they are satisfied with the amount of security they provide to protect customer or employee data. Additionally, 83 percent strongly or somewhat agree that they are doing enough or making enough investments to protect customer data. Yet, Visa Inc. reports small businesses represent more than 90 percent of the payment data breaches reported to the company.
  • On a positive note, companies born of the recession are leading by example. Companies born since 2008 are almost 20 percent more likely than older small businesses to have a written plan in place for keeping their business secure from cyber threats.

The full survey is available at: http://www.staysafeonline.org/stay-safe-online/resources/.

•Date: 18th Oct 2012 • US •Type: Article • Topic: ISM

Business Continuity Newsletter Sign up for Continuity Briefing, our weekly roundup of business continuity news. For news as it happens, subscribe to Continuity Central on Twitter.
   

How to advertise How to advertise on Continuity Central.

To submit news stories to Continuity Central, e-mail the editor.

Want an RSS newsfeed for your website? Click here